$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa File: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (raw, json) Hash identifier: sgve8SNnpJRICXi56BMuftrBFNrW8ZCffoMP5NfnWZg= Subject key identifier: E5:20:A4:D2:D6:3E:36:15:BE:A9:36:6D:0E:A4:CB:46:86:DD:EF:84 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 2760DEA3E7F3548BF952777E65C14225E6611879 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa Signing time: Fri 15 May 2026 00:00:12 +0000 ROA not before: Fri 15 May 2026 00:00:12 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:60:de:a3:e7:f3:54:8b:f9:52:77:7e:65:c1:42:25:e6:61:18:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:12 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=0e68d3db82a0d3f47b108e3f58fa9567173eaef4d8cb3a9cce6d0354fa83677a, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:49:d6:21:80:6c:bd:eb:3e:b3:82:f6:32:ab: 04:a7:24:6b:14:0f:0b:03:ac:42:65:09:35:bb:9c: fd:f9:f1:5e:2e:f5:b2:f0:85:42:da:2a:09:60:3b: 9c:10:8b:9b:27:6a:fc:92:74:df:56:c0:b8:01:ef: 4f:4a:3c:0b:b8:0c:d5:ac:3a:e3:60:c6:3b:f9:d5: d3:71:fa:23:10:d4:23:5a:21:33:c7:0b:5c:f6:96: 7c:03:51:36:43:91:00:06:37:c2:5b:47:d9:21:8c: 7b:6d:f6:07:58:67:29:e2:1a:26:d3:cb:f6:1f:83: b0:b1:d2:a0:b1:6b:9c:03:29:c3:33:f4:75:00:e6: fa:05:e5:f3:c0:86:50:a6:2c:e5:40:b0:1a:bd:a2: de:77:18:ef:58:df:1b:0f:d1:4b:78:1f:f1:ea:0c: 8e:6f:6f:47:1d:5b:85:b4:e0:80:80:00:18:89:12: e4:aa:60:62:76:de:48:4a:49:32:33:ff:fe:8d:0c: d9:d1:94:7c:d9:73:e0:0f:62:5f:d0:b6:3d:df:0b: 43:96:3d:78:3c:87:8b:27:38:d1:ee:47:a9:77:9e: 94:74:44:09:39:51:cc:99:e0:4e:f2:98:d8:06:e8: 2a:d1:2f:77:d9:d2:05:54:60:4a:89:1d:d4:10:78: bf:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:20:A4:D2:D6:3E:36:15:BE:A9:36:6D:0E:A4:CB:46:86:DD:EF:84 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.132.0/22 Signature Algorithm: sha256WithRSAEncryption 66:33:99:c8:57:3f:73:d4:6f:51:b8:89:63:81:c2:25:f0:64: 6f:22:32:58:e4:01:60:95:c4:78:bc:f5:47:a9:cd:24:a5:27: 85:a5:35:e8:55:e4:d0:c8:51:31:3e:1e:f5:93:ad:40:ab:6f: 19:97:f3:78:e9:6a:7a:26:ff:9f:4e:1a:dd:7a:c2:e6:29:9b: 11:8b:c0:ad:42:c7:a6:33:e2:55:38:ef:99:96:fa:29:e1:2f: ef:24:21:b4:37:fb:f0:8c:4e:ad:4e:08:a1:c0:c8:12:0c:1f: 5d:14:1b:ce:3b:4b:9f:7e:54:ce:16:b1:73:59:33:0b:8b:18: 46:a7:8a:83:38:86:2e:a1:11:c9:5d:eb:0d:df:44:f6:5b:2d: d7:09:d8:ff:c2:2b:66:8a:b0:45:ff:3b:ea:11:d9:5e:52:9f: 55:0c:23:b0:f7:5f:a2:0f:c0:bf:c4:45:e1:5d:37:f8:5d:1a: 44:9c:92:7a:d2:99:88:4a:28:45:70:9d:6a:83:04:ae:3c:99: 18:71:31:b1:4c:e9:ef:16:96:aa:e6:1a:eb:87:50:1f:53:9d: e5:02:ec:9b:6c:73:12:12:98:a2:62:b3:67:2b:8e:5c:e7:29: 02:46:59:6b:30:6b:7b:e1:7f:5b:9a:af:c4:28:a3:9f:4a:27: 73:c3:fd:b3 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUJ2Deo+fzVIv5Und+ZcFCJeZhGHkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxMloX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMGU2OGQzZGI4MmEwZDNmNDdiMTA4 ZTNmNThmYTk1NjcxNzNlYWVmNGQ4Y2IzYTljY2U2ZDAzNTRmYTgzNjc3YTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0EnWIYBsves+s4L2MqsEpyRrFA8L A6xCZQk1u5z9+fFeLvWy8IVC2ioJYDucEIubJ2r8knTfVsC4Ae9PSjwLuAzVrDrj YMY7+dXTcfojENQjWiEzxwtc9pZ8A1E2Q5EABjfCW0fZIYx7bfYHWGcp4hom08v2 H4OwsdKgsWucAynDM/R1AOb6BeXzwIZQpizlQLAavaLedxjvWN8bD9FLeB/x6gyO b29HHVuFtOCAgAAYiRLkqmBidt5ISkkyM//+jQzZ0ZR82XPgD2Jf0LY93wtDlj14 PIeLJzjR7kepd56UdEQJOVHMmeBO8pjYBugq0S932dIFVGBKiR3UEHi/GQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOUgpNLWPjYVvqk2bQ6ky0aG3e+EMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzZiMTVhYmI2LTEwYjctNGVjZC05OTQ3LWM5NjAxMmY4MjRjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymEMA0GCSqGSIb3DQEBCwUAA4IBAQBmM5nIVz9z1G9RuIljgcIl 8GRvIjJY5AFglcR4vPVHqc0kpSeFpTXoVeTQyFExPh71k61Aq28Zl/N46Wp6Jv+f ThrdesLmKZsRi8CtQsemM+JVOO+Zlvop4S/vJCG0N/vwjE6tTgihwMgSDB9dFBvO O0ufflTOFrFzWTMLixhGp4qDOIYuoRHJXesN30T2Wy3XCdj/witmirBF/zvqEdle Up9VDCOw91+iD8C/xEXhXTf4XRpEnJJ60pmISihFcJ1qgwSuPJkYcTGxTOnvFpaq 5hrrh1AfU53lAuybbHMSEpiiYrNnK45c5ykCRllrMGt74X9bmq/EKKOfSidzw/2z -----END CERTIFICATE-----Generated at Fri Jun 19 08:12:40 2026 by rpki-client