$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa File: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (raw, json) Hash identifier: 56ohyAlTtw3nDjDnI6PeLZ9qx5aGxhIqza4yGFF5fkk= Subject key identifier: 56:17:8C:7E:04:8A:E7:15:54:15:45:D3:EC:84:34:0F:87:24:D8:8F Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 2A9EF759C5F50B7B79DA9CE9C3036CF007423823 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa Signing time: Fri 15 May 2026 00:00:14 +0000 ROA not before: Fri 15 May 2026 00:00:14 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:9e:f7:59:c5:f5:0b:7b:79:da:9c:e9:c3:03:6c:f0:07:42:38:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:14 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=3c74887bf9eda26f9e7c82e873cdcfb9ce7ca451ed742f27873aad99ba812b7c, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a5:89:f3:b6:50:3c:c1:33:6a:99:43:e7:20: 6b:5a:08:8b:9c:49:91:98:de:a5:c2:44:ab:37:57: 87:d6:7d:55:c1:6d:83:c0:78:ad:c6:95:23:50:2a: 1d:e2:f1:d7:b1:ea:5c:1f:05:d1:f7:ba:0b:82:a3: 82:a4:de:72:d2:42:8a:bf:85:98:cf:bc:57:d4:77: 85:ba:5e:ef:ea:60:41:ba:17:23:25:c5:df:5b:7d: cf:90:b1:4c:b1:af:c3:32:54:9b:ec:97:33:9a:9a: f9:d5:9a:d9:ba:34:f4:19:21:9f:ff:87:a1:c3:ab: 10:9b:f6:13:c9:ed:ad:45:e1:bc:a4:37:3d:78:ba: 78:a4:c6:ba:d2:68:71:ba:f3:19:01:bc:2f:cb:c7: 08:1e:9f:7f:b7:92:26:27:3e:ed:9f:60:63:16:19: 6f:e0:0d:fd:f9:15:7c:b9:d1:6a:ac:99:29:ca:08: b5:ae:89:ef:2d:47:90:ac:53:f2:2e:6e:3e:6d:0c: 5f:47:33:20:84:12:09:fa:5d:37:8e:4e:9a:72:7a: 94:64:63:4e:5c:27:78:59:1c:bb:df:05:6c:80:dd: be:89:5f:c3:a7:c7:e8:4b:07:28:d0:46:e9:43:16: 48:55:df:cc:44:25:db:c1:7d:1c:0a:36:51:2c:7a: 66:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:17:8C:7E:04:8A:E7:15:54:15:45:D3:EC:84:34:0F:87:24:D8:8F X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.160.0/19 Signature Algorithm: sha256WithRSAEncryption e9:b8:1a:c4:91:38:4e:41:00:e3:6c:70:64:42:b5:79:43:d3: c6:47:e8:60:fb:5f:fb:5b:3d:34:29:a4:d6:74:15:c3:26:d7: 55:2e:36:08:20:f5:7a:0c:66:eb:03:4a:ef:95:0d:d4:1e:f8: 9a:8d:0d:0d:11:2a:3c:a9:a1:ba:8a:2d:46:57:06:a4:7d:cd: c9:cd:ea:ac:65:f4:9c:ce:3b:d0:b2:b0:aa:52:04:fb:b1:10: 63:b6:ed:69:58:d5:88:e5:01:2d:f4:2e:4b:2d:26:4a:6f:ef: 41:31:4f:37:e0:41:29:b0:be:95:16:d6:35:6a:51:f1:b5:f5: df:af:49:ad:c6:15:0a:e6:e7:e3:ec:87:87:8d:13:3a:ae:79: 4c:d5:4b:39:f0:c5:8f:08:79:09:62:52:a2:de:df:8a:4b:4f: 28:a6:35:26:9e:7a:2b:57:4c:b4:40:a2:13:5c:d2:d0:5e:41: 08:f2:f4:76:f9:52:72:fb:db:51:b1:f8:a4:06:8e:ae:8f:82: fc:36:0f:94:de:a4:e7:28:6a:ee:9a:6d:5b:36:5d:4b:c6:1a: 5b:4b:5b:d3:71:bc:27:64:fa:3b:84:7c:54:74:73:0c:97:d4: 5a:d0:21:3a:d8:77:10:1d:84:c8:70:35:64:f7:ab:26:6a:86: 11:f0:17:9a -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUKp73WcX1C3t52pzpwwNs8AdCOCMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxNFoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAM2M3NDg4N2JmOWVkYTI2ZjllN2M4 MmU4NzNjZGNmYjljZTdjYTQ1MWVkNzQyZjI3ODczYWFkOTliYTgxMmI3YzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyaWJ87ZQPMEzaplD5yBrWgiLnEmR mN6lwkSrN1eH1n1VwW2DwHitxpUjUCod4vHXsepcHwXR97oLgqOCpN5y0kKKv4WY z7xX1HeFul7v6mBBuhcjJcXfW33PkLFMsa/DMlSb7Jczmpr51ZrZujT0GSGf/4eh w6sQm/YTye2tReG8pDc9eLp4pMa60mhxuvMZAbwvy8cIHp9/t5ImJz7tn2BjFhlv 4A39+RV8udFqrJkpygi1ronvLUeQrFPyLm4+bQxfRzMghBIJ+l03jk6acnqUZGNO XCd4WRy73wVsgN2+iV/Dp8foSwco0EbpQxZIVd/MRCXbwX0cCjZRLHpm+QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFFYXjH4EiucVVBVF0+yENA+HJNiPMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQzZmQ4Njg3LTEyZDQtNDliNS05OTU4LTg1MzZjZTgxNjBiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFrymgMA0GCSqGSIb3DQEBCwUAA4IBAQDpuBrEkThOQQDjbHBkQrV5 Q9PGR+hg+1/7Wz00KaTWdBXDJtdVLjYIIPV6DGbrA0rvlQ3UHviajQ0NESo8qaG6 ii1GVwakfc3JzeqsZfSczjvQsrCqUgT7sRBjtu1pWNWI5QEt9C5LLSZKb+9BMU83 4EEpsL6VFtY1alHxtfXfr0mtxhUK5ufj7IeHjRM6rnlM1Us58MWPCHkJYlKi3t+K S08opjUmnnorV0y0QKITXNLQXkEI8vR2+VJy+9tRsfikBo6uj4L8Ng+U3qTnKGru mm1bNl1LxhpbS1vTcbwnZPo7hHxUdHMMl9Ra0CE62HcQHYTIcDVk96smaoYR8Bea -----END CERTIFICATE-----Generated at Fri Jun 19 08:13:34 2026 by rpki-client