$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa File: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (raw, json) Hash identifier: e7DgUMtp6AoSqdNYLBl9ON3HVwaVdFMx/vALGOr1yFY= Subject key identifier: 2E:C3:21:41:77:C3:1D:89:76:6A:94:12:0C:00:F1:A4:F0:4A:3E:FF Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 2F1896BA60D7902F7D9A909C36685C064F0104C6 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa Signing time: Fri 15 May 2026 00:00:16 +0000 ROA not before: Fri 15 May 2026 00:00:16 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:18:96:ba:60:d7:90:2f:7d:9a:90:9c:36:68:5c:06:4f:01:04:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:16 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=b128555b65eaa9ba8f0c006d054f62b1ef0e0dd56d4196a636255d5e9cc8cfbc, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:08:ba:69:af:1e:ef:65:17:58:bf:f3:08:1b: cf:a8:6d:d4:59:59:8b:bc:36:b4:78:6d:fc:f6:bc: c4:0c:4c:1d:0b:ee:0d:68:9d:69:e7:e1:25:e0:36: 4d:99:e6:ed:18:7d:64:6f:3f:fd:ed:45:61:40:f5: 38:36:d2:3b:c0:f9:5b:65:2f:e4:b0:a5:2b:fa:f0: 83:93:43:3a:7a:70:95:88:1c:57:07:b3:4c:85:f1: 71:4e:d3:3e:6f:95:93:d6:e6:17:16:bd:e6:c0:a8: 33:ad:c8:0d:fd:0e:12:f2:9d:38:ec:c8:0b:c9:35: a2:b8:b7:36:8f:46:c2:ba:2b:1c:aa:ff:25:47:7c: b5:b2:da:67:17:c3:86:6e:f8:5b:56:f7:78:70:3c: c3:54:ed:12:6b:de:8b:63:86:b7:29:2e:b4:53:af: d8:df:91:66:69:de:dc:97:eb:f0:cc:d0:8e:dd:23: c9:cc:81:bd:66:98:60:f3:2f:62:82:1c:18:a1:59: d1:9c:1e:17:ac:3b:aa:a3:03:33:b3:89:d8:86:7a: 0c:41:f4:aa:e7:f0:49:fa:e5:5b:54:cd:b6:c1:38: 8f:6c:ac:33:f0:9e:26:ca:c7:80:26:0f:01:a5:bd: 0a:ba:14:02:83:57:cf:4b:5a:ee:68:4c:fa:57:db: 74:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C3:21:41:77:C3:1D:89:76:6A:94:12:0C:00:F1:A4:F0:4A:3E:FF X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.148.0/23 Signature Algorithm: sha256WithRSAEncryption de:8b:03:48:0e:65:f4:12:0d:3b:ec:86:2b:18:fd:81:d0:00: 9f:de:c3:a7:de:e5:75:26:e4:97:4b:3e:ef:ca:0c:62:4f:a0: 8e:5d:19:10:b3:3a:ce:6c:2f:7a:4e:e6:46:7a:ea:62:d1:c5: b8:bc:9b:3c:50:90:57:12:b3:cd:8f:8e:d5:53:3f:b3:05:7d: 10:95:55:f3:ac:40:9a:c0:fc:6e:d0:2c:86:b4:97:46:ff:de: c7:a9:df:af:75:9d:d0:07:9a:7e:f0:40:9c:90:c5:e2:57:9b: 4e:17:24:3d:42:77:6b:04:9a:f9:97:dc:1d:9a:27:63:c5:6c: c3:f8:70:f5:d3:16:3f:cb:2f:00:db:e6:14:62:47:93:e2:8f: 97:d5:03:1a:20:fd:1d:64:37:8a:b5:1e:ae:87:47:96:3f:76: 34:dc:52:7c:c3:97:c1:a8:5f:1d:92:9d:82:87:84:bc:0c:37: 90:63:ca:c8:f8:45:6e:f6:66:b8:14:c4:f5:18:d6:cb:df:68: 2c:4f:82:0a:11:3c:e4:34:50:7e:69:1e:dd:69:12:41:a0:cc: b5:f9:4b:60:c3:e2:c6:66:48:9c:31:e1:18:5d:30:4a:2b:03: 49:a7:ae:eb:d7:aa:c6:d1:01:29:c1:1a:57:50:74:17:e7:2b: ef:94:9c:c5 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIULxiWumDXkC99mpCcNmhcBk8BBMYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxNloX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAYjEyODU1NWI2NWVhYTliYThmMGMw MDZkMDU0ZjYyYjFlZjBlMGRkNTZkNDE5NmE2MzYyNTVkNWU5Y2M4Y2ZiYzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAi6aa8e72UXWL/zCBvPqG3UWVmL vDa0eG389rzEDEwdC+4NaJ1p5+El4DZNmebtGH1kbz/97UVhQPU4NtI7wPlbZS/k sKUr+vCDk0M6enCViBxXB7NMhfFxTtM+b5WT1uYXFr3mwKgzrcgN/Q4S8p047MgL yTWiuLc2j0bCuiscqv8lR3y1stpnF8OGbvhbVvd4cDzDVO0Sa96LY4a3KS60U6/Y 35Fmad7cl+vwzNCO3SPJzIG9Zphg8y9ighwYoVnRnB4XrDuqowMzs4nYhnoMQfSq 5/BJ+uVbVM22wTiPbKwz8J4myseAJg8Bpb0KuhQCg1fPS1ruaEz6V9t0KwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFC7DIUF3wx2JdmqUEgwA8aTwSj7/MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzdiMjZkNDEwLTE3ZDctNDMxMC1iYjU4LTQxYzQ2NWY4ZWVmMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymUMA0GCSqGSIb3DQEBCwUAA4IBAQDeiwNIDmX0Eg077IYrGP2B 0ACf3sOn3uV1JuSXSz7vygxiT6COXRkQszrObC96TuZGeupi0cW4vJs8UJBXErPN j47VUz+zBX0QlVXzrECawPxu0CyGtJdG/97Hqd+vdZ3QB5p+8ECckMXiV5tOFyQ9 QndrBJr5l9wdmidjxWzD+HD10xY/yy8A2+YUYkeT4o+X1QMaIP0dZDeKtR6uh0eW P3Y03FJ8w5fBqF8dkp2Ch4S8DDeQY8rI+EVu9ma4FMT1GNbL32gsT4IKETzkNFB+ aR7daRJBoMy1+Utgw+LGZkicMeEYXTBKKwNJp67r16rG0QEpwRpXUHQX5yvvlJzF -----END CERTIFICATE-----Generated at Fri Jun 19 08:12:52 2026 by rpki-client