$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22d6913e-5f3d-4f99-9a60-48579f471838.roa File: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (raw, json) Hash identifier: 8F7U3HuBEHAbZxeotbZdxHhB0w+z61KRGEVZWZ1NOPA= Subject key identifier: BC:1B:AB:73:A2:2F:21:C7:07:B7:31:B5:F2:CE:B2:C3:6D:A2:8C:43 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6F2F4C425DD338C0C382CBF529B21DE76101E479 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22d6913e-5f3d-4f99-9a60-48579f471838.roa Signing time: Sat 16 May 2026 00:00:40 +0000 ROA not before: Sat 16 May 2026 00:00:40 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Jun 2026 00:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:2f:4c:42:5d:d3:38:c0:c3:82:cb:f5:29:b2:1d:e7:61:01:e4:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 16 00:00:40 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=5c1b8cbd55e689a1a66630f58dec9c0d7059396e51a34c6a28ed198f8cdca192, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:55:b4:7a:dd:57:78:63:6c:50:a2:4e:84:36: a3:1b:9d:16:4e:36:43:21:1e:17:a2:7c:8b:ca:b7: 54:33:39:9d:24:dc:8c:6b:c0:a6:89:e3:df:ac:33: 71:6a:e8:ff:2e:2b:43:2c:6e:8d:4c:6a:14:7a:bc: eb:13:4f:93:38:dc:14:44:94:0e:94:d6:74:90:23: fb:f4:4f:bf:9f:d8:19:02:b6:78:68:c2:25:64:ae: 83:5b:16:27:2a:20:54:8d:1b:8e:7a:9f:b4:43:e7: 35:49:55:44:4f:68:e7:00:bd:6b:cb:33:b0:4c:42: c2:de:31:b5:97:ed:a6:93:ff:8e:4f:29:ef:3f:f7: 20:ed:2a:a2:35:d9:87:61:b7:62:65:c8:1b:a4:ed: 17:4f:e4:e6:f3:49:ef:eb:61:9f:51:ce:5e:8c:0b: 34:8a:67:67:9c:e0:ab:40:05:db:dd:7e:d5:47:1e: 10:37:73:bb:dd:ae:58:35:a8:9c:3d:85:76:8e:e9: d6:4f:f1:49:ec:37:7c:8f:31:87:06:30:9a:be:be: 24:21:85:69:b3:a2:bc:6b:c1:d9:87:95:7c:43:c2: 47:a4:13:4e:69:79:a2:92:5b:6e:9f:b1:ec:04:a2: 8f:03:13:a0:d5:16:cf:65:35:e9:20:4d:fb:75:59: 52:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1B:AB:73:A2:2F:21:C7:07:B7:31:B5:F2:CE:B2:C3:6D:A2:8C:43 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22d6913e-5f3d-4f99-9a60-48579f471838.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:2000::/36 Signature Algorithm: sha256WithRSAEncryption 9f:57:00:d5:c2:5e:67:8c:90:cb:c1:c6:83:d1:43:cb:d0:98: ba:a1:80:60:c8:d2:0c:15:01:fe:8a:74:3c:b9:80:6e:21:72: 5d:17:66:ca:d0:f2:e6:30:8a:19:d2:04:d6:1a:3c:9a:6d:d2: ee:a5:2d:ae:96:f5:53:f6:9d:15:0c:bd:ab:91:b3:8d:bc:83: dc:6c:3a:8f:c3:d9:e6:72:0d:5d:31:a7:1c:81:05:71:89:00: d6:6a:b3:bc:af:b5:dd:8b:1a:35:e7:0f:9b:ef:89:40:67:49: 36:5b:44:a1:4a:18:03:82:12:f0:cf:c5:c5:89:e8:7f:aa:94: b3:87:bc:f7:89:0a:98:15:ac:8d:e5:69:53:70:4f:0f:32:9c: 13:40:f0:c4:85:36:12:b6:b8:b4:00:8e:ea:a1:87:ae:43:4f: 4d:20:46:b6:47:06:1c:28:db:f7:bf:63:43:15:0a:16:bb:b9: e8:f8:18:53:38:18:70:6e:5f:79:c3:96:45:e0:d0:e2:49:9f: 21:f3:96:5b:f8:dd:65:d5:c2:1b:5a:68:43:ac:c2:20:c6:f9: 28:cf:09:f7:ad:1e:87:5d:21:0e:9c:eb:d0:02:0c:65:77:7a: 8e:eb:02:37:9d:3d:5b:5d:2d:47:92:21:15:9a:1e:3d:47:37: c7:65:f1:08 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUby9MQl3TOMDDgsv1KbId52EB5HkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNjAwMDA0MFoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNANWMxYjhjYmQ1NWU2ODlhMWE2NjYz MGY1OGRlYzljMGQ3MDU5Mzk2ZTUxYTM0YzZhMjhlZDE5OGY4Y2RjYTE5MjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1W0et1XeGNsUKJOhDajG50WTjZD IR4XonyLyrdUMzmdJNyMa8CmiePfrDNxauj/LitDLG6NTGoUerzrE0+TONwURJQO lNZ0kCP79E+/n9gZArZ4aMIlZK6DWxYnKiBUjRuOep+0Q+c1SVVET2jnAL1ryzOw TELC3jG1l+2mk/+OTynvP/cg7SqiNdmHYbdiZcgbpO0XT+Tm80nv62GfUc5ejAs0 imdnnOCrQAXb3X7VRx4QN3O73a5YNaicPYV2junWT/FJ7Dd8jzGHBjCavr4kIYVp s6K8a8HZh5V8Q8JHpBNOaXmikltun7HsBKKPAxOg1RbPZTXpIE37dVlSYQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLwbq3OiLyHHB7cxtfLOssNtooxDMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzIyZDY5MTNlLTVmM2QtNGY5OS05YTYwLTQ4NTc5ZjQ3MTgzOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJABlACAwDQYJKoZIhvcNAQELBQADggEBAJ9XANXCXmeMkMvBxoPR Q8vQmLqhgGDI0gwVAf6KdDy5gG4hcl0XZsrQ8uYwihnSBNYaPJpt0u6lLa6W9VP2 nRUMvauRs428g9xsOo/D2eZyDV0xpxyBBXGJANZqs7yvtd2LGjXnD5vviUBnSTZb RKFKGAOCEvDPxcWJ6H+qlLOHvPeJCpgVrI3laVNwTw8ynBNA8MSFNhK2uLQAjuqh h65DT00gRrZHBhwo2/e/Y0MVCha7uej4GFM4GHBuX3nDlkXg0OJJnyHzllv43WXV whtaaEOswiDG+SjPCfetHoddIQ6c69ACDGV3eo7rAjedPVtdLUeSIRWaHj1HN8dl 8Qg= -----END CERTIFICATE-----Generated at Sun Jun 21 08:04:02 2026 by rpki-client