$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa File: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (raw, json) Hash identifier: LWW7G4vSgrTVoC49iuj/jpZ5T5IkSgMBRFaAY/6AWUQ= Subject key identifier: 70:65:72:FC:5B:A6:C4:DF:32:8D:E5:D4:DC:17:CB:26:61:3E:C9:FB Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1C41BCBDB4CFD37BDD2DB8AAA33385C1666D7B61 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa Signing time: Fri 15 May 2026 00:00:14 +0000 ROA not before: Fri 15 May 2026 00:00:14 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:41:bc:bd:b4:cf:d3:7b:dd:2d:b8:aa:a3:33:85:c1:66:6d:7b:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:14 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=4c3f3246657d64eb7437d0862feaab20a3e916e981fb5dea7913b6cc5d016062, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2c:4e:82:1f:92:8b:e1:40:85:49:c5:e3:df: 0c:3a:af:cf:a5:17:6b:c4:03:6e:b6:59:af:0d:7c: 31:0f:61:5e:af:f9:de:86:b5:92:94:d0:de:64:74: bf:79:53:d3:2b:5e:b6:c3:1d:93:96:fc:f8:f9:af: 1b:76:cc:cd:d5:83:ea:ec:3c:44:a8:00:cf:90:e6: c8:cf:47:1c:27:10:12:2a:bd:d8:ac:d0:b0:66:1b: 6c:99:83:17:da:fd:23:8c:aa:8e:61:eb:30:81:c4: 08:e9:2a:87:5d:32:85:2f:7d:e0:79:b2:d9:fe:98: d7:be:19:fd:d1:b0:49:1e:d1:cf:0b:a6:e4:81:f9: 41:3f:3b:88:95:c2:e0:1c:ee:28:3d:a0:88:16:eb: 2a:64:16:b6:67:20:1c:d6:e0:90:45:37:dd:b9:08: cf:89:11:01:3a:d8:8d:7b:0a:46:a7:f9:4b:b7:48: e3:57:a6:9c:3a:64:28:6f:c2:50:ec:6d:f2:c5:16: a8:96:a1:04:fb:ea:88:f7:d1:35:1e:2d:cc:01:f4: 41:f4:41:cb:3c:38:36:28:23:8f:6c:20:25:f2:e5: 36:da:a0:27:09:46:3c:00:02:de:8c:78:a0:30:70: 47:4a:98:6e:2c:b5:5c:5d:13:44:78:5b:fe:07:0f: 6f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:65:72:FC:5B:A6:C4:DF:32:8D:E5:D4:DC:17:CB:26:61:3E:C9:FB X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.144.0/22 Signature Algorithm: sha256WithRSAEncryption c7:a0:97:ff:0b:a3:52:95:36:cd:82:45:f7:9f:eb:fa:3b:16: 00:b1:ab:ed:4b:40:5a:1d:38:9a:69:43:67:22:73:24:51:5d: da:5e:9f:50:9f:cc:51:88:b3:71:30:27:30:15:3d:9c:9a:54: 03:4c:a0:51:3f:d8:8f:7e:53:16:20:7d:c6:14:32:bb:46:1d: cb:fd:f1:63:45:44:b1:67:8d:e5:77:ec:91:d4:33:39:ee:97: 17:a3:d9:65:c3:1a:ea:56:f5:2d:93:bd:81:d3:ec:e6:ef:a4: 98:b5:1b:0a:66:6a:29:05:c2:c5:b4:5c:80:44:33:96:a6:bc: 1b:ad:f5:66:b9:f3:bf:56:a4:59:8f:4c:92:b5:19:e2:99:26: f9:5f:b7:ef:6c:ee:39:e3:33:12:8b:9e:cf:aa:c1:23:45:e4: b0:67:b0:56:21:ff:a5:58:e2:51:06:b6:7b:95:24:bf:93:2b: f9:37:3c:7f:d9:d1:81:2d:19:52:b6:39:41:9c:60:9e:85:72: dc:32:07:3c:e2:92:50:d1:2d:3d:3f:95:df:a2:86:30:e5:b0: 03:33:5a:4f:bc:3e:0a:da:26:4f:0b:ae:05:89:03:56:4c:37: c1:b7:a2:2d:11:d9:69:5c:5b:8a:53:78:08:2b:40:fc:36:f9: 6a:7e:10:88 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUHEG8vbTP03vdLbiqozOFwWZte2EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxNFoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNANGMzZjMyNDY2NTdkNjRlYjc0Mzdk MDg2MmZlYWFiMjBhM2U5MTZlOTgxZmI1ZGVhNzkxM2I2Y2M1ZDAxNjA2MjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxixOgh+Si+FAhUnF498MOq/PpRdr xANutlmvDXwxD2Fer/nehrWSlNDeZHS/eVPTK162wx2Tlvz4+a8bdszN1YPq7DxE qADPkObIz0ccJxASKr3YrNCwZhtsmYMX2v0jjKqOYeswgcQI6SqHXTKFL33gebLZ /pjXvhn90bBJHtHPC6bkgflBPzuIlcLgHO4oPaCIFusqZBa2ZyAc1uCQRTfduQjP iREBOtiNewpGp/lLt0jjV6acOmQob8JQ7G3yxRaolqEE++qI99E1Hi3MAfRB9EHL PDg2KCOPbCAl8uU22qAnCUY8AALejHigMHBHSphuLLVcXRNEeFv+Bw9vmQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHBlcvxbpsTfMo3l1NwXyyZhPsn7MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzFkZmZlYWM4LWI3NzktNDllZi1iYTI3LTU4YmMxOTg5MWU2MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymQMA0GCSqGSIb3DQEBCwUAA4IBAQDHoJf/C6NSlTbNgkX3n+v6 OxYAsavtS0BaHTiaaUNnInMkUV3aXp9Qn8xRiLNxMCcwFT2cmlQDTKBRP9iPflMW IH3GFDK7Rh3L/fFjRUSxZ43ld+yR1DM57pcXo9llwxrqVvUtk72B0+zm76SYtRsK ZmopBcLFtFyARDOWprwbrfVmufO/VqRZj0yStRnimSb5X7fvbO454zMSi57PqsEj ReSwZ7BWIf+lWOJRBrZ7lSS/kyv5Nzx/2dGBLRlStjlBnGCehXLcMgc84pJQ0S09 P5XfooYw5bADM1pPvD4K2iZPC64FiQNWTDfBt6ItEdlpXFuKU3gIK0D8NvlqfhCI -----END CERTIFICATE-----Generated at Fri Jun 19 08:26:38 2026 by rpki-client