$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa File: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (raw, json) Hash identifier: NMamOf9rJQLEFcxePu5jji6CzEB+kU961XK/hVBXFrA= Subject key identifier: C8:19:75:25:5F:32:49:B1:29:BC:13:88:5E:8C:71:F9:7C:CE:37:93 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 31A30711383BF9A63F02CE439D8478C29E159D89 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa Signing time: Fri 15 May 2026 00:00:12 +0000 ROA not before: Fri 15 May 2026 00:00:12 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.130.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:a3:07:11:38:3b:f9:a6:3f:02:ce:43:9d:84:78:c2:9e:15:9d:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:12 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=0f707f39db39fe058786c3d96ce6035f7b04e55b1f6c6e8405e928804dbe11b0, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:76:d6:b5:42:3a:80:08:13:e6:b0:32:10:d9: 56:70:ef:12:b5:59:ce:43:73:ee:0d:96:ff:7b:0f: d2:57:33:24:98:f7:32:7a:68:9d:72:c8:23:db:d5: b1:d2:ba:4c:a9:7c:45:96:7f:f7:67:a1:6c:8e:86: 4a:6c:9a:46:e5:01:aa:32:8c:16:e6:45:48:9f:f7: 78:43:d6:23:c8:d3:28:30:ef:fa:e0:bf:2b:85:03: c6:2a:c5:fb:32:7b:a9:e4:8d:03:16:29:b9:9b:75: 6f:f8:19:17:da:51:01:86:e1:fa:4f:6f:25:4c:05: 45:9a:b3:16:7f:36:9c:21:c6:a8:cb:52:c3:e0:7b: 15:89:d4:e1:15:e1:bb:58:6b:33:76:94:7b:d8:c8: 76:da:c4:56:c3:6e:da:ae:f3:7c:6c:af:6e:cb:27: 63:c1:73:53:71:0c:fe:04:dc:0a:67:d1:4a:4a:75: 76:46:6e:f0:a0:c3:4e:9c:79:50:a8:f9:c9:e6:18: 45:08:1f:63:8e:12:f7:b3:ac:07:9c:b8:be:9f:df: 8d:0e:61:4b:0d:e9:04:14:16:86:78:82:3f:f8:a0: 61:73:02:cf:09:bc:c7:df:0b:0f:59:e2:59:cc:72: 23:01:fe:16:31:52:f1:f3:32:33:30:06:b2:33:ac: d3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:19:75:25:5F:32:49:B1:29:BC:13:88:5E:8C:71:F9:7C:CE:37:93 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.130.0/23 Signature Algorithm: sha256WithRSAEncryption be:ba:f1:b3:91:d0:f9:ac:53:06:f1:71:3c:f3:00:9b:39:76: 46:c0:64:28:93:4b:0d:c6:83:01:0e:88:06:d4:dc:30:21:b5: e5:b3:16:c1:c6:bb:19:30:01:6f:05:f6:d4:de:0f:79:b6:26: 19:54:71:0a:62:cc:86:19:d9:fc:8d:dd:98:f4:24:ba:05:cd: d2:ac:52:2e:1d:9f:45:1a:93:44:2a:78:01:f2:97:7c:06:81: ff:72:f4:f9:a7:62:cc:22:84:9c:62:b8:a5:1f:d0:f4:b4:fe: be:df:17:df:19:6d:eb:e3:fd:cb:3a:e4:34:39:f5:8b:44:98: 70:c8:72:de:04:a4:d1:bc:34:99:19:8d:8e:fc:62:13:95:b7: ab:67:f6:5d:63:de:45:69:2c:38:77:12:63:f8:92:08:b0:94: e7:45:98:63:3d:18:7a:7a:a3:a6:f5:03:1b:d6:dd:f3:5a:ae: 11:89:e0:f7:40:c1:79:b4:94:1f:65:d9:75:90:f7:83:5c:1f: 6e:3e:90:37:33:fd:b6:cf:da:9b:96:a0:24:b3:7a:9a:ae:c8: 6e:b8:29:22:a5:2a:a9:6c:cd:27:ab:68:5e:26:b7:0b:9d:2f: 6e:65:8b:03:86:93:e6:3c:d1:9a:49:92:83:23:74:43:19:57: a6:3c:49:58 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUMaMHETg7+aY/As5DnYR4wp4VnYkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxMloX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMGY3MDdmMzlkYjM5ZmUwNTg3ODZj M2Q5NmNlNjAzNWY3YjA0ZTU1YjFmNmM2ZTg0MDVlOTI4ODA0ZGJlMTFiMDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03bWtUI6gAgT5rAyENlWcO8StVnO Q3PuDZb/ew/SVzMkmPcyemidcsgj29Wx0rpMqXxFln/3Z6FsjoZKbJpG5QGqMowW 5kVIn/d4Q9YjyNMoMO/64L8rhQPGKsX7Mnup5I0DFim5m3Vv+BkX2lEBhuH6T28l TAVFmrMWfzacIcaoy1LD4HsVidThFeG7WGszdpR72Mh22sRWw27arvN8bK9uyydj wXNTcQz+BNwKZ9FKSnV2Rm7woMNOnHlQqPnJ5hhFCB9jjhL3s6wHnLi+n9+NDmFL DekEFBaGeII/+KBhcwLPCbzH3wsPWeJZzHIjAf4WMVLx8zIzMAayM6zTXwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFMgZdSVfMkmxKbwTiF6Mcfl8zjeTMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQyOTMyZGQ0LTI3MjAtNDdiMy1hNDcyLWZjMmM4YTUwYTQ2Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymCMA0GCSqGSIb3DQEBCwUAA4IBAQC+uvGzkdD5rFMG8XE88wCb OXZGwGQok0sNxoMBDogG1NwwIbXlsxbBxrsZMAFvBfbU3g95tiYZVHEKYsyGGdn8 jd2Y9CS6Bc3SrFIuHZ9FGpNEKngB8pd8BoH/cvT5p2LMIoScYrilH9D0tP6+3xff GW3r4/3LOuQ0OfWLRJhwyHLeBKTRvDSZGY2O/GITlberZ/ZdY95FaSw4dxJj+JII sJTnRZhjPRh6eqOm9QMb1t3zWq4RieD3QMF5tJQfZdl1kPeDXB9uPpA3M/22z9qb lqAks3qarshuuCkipSqpbM0nq2heJrcLnS9uZYsDhpPmPNGaSZKDI3RDGVemPElY -----END CERTIFICATE-----Generated at Fri Jun 19 08:14:06 2026 by rpki-client