$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/882a767c-0faf-4e71-a224-ecec47d98fcb.roa File: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (raw, json) Hash identifier: MUN3E1NLiG+U9TN+LvMQxVmbYWbeCf+Yz3FFqM07XUk= Subject key identifier: 73:62:9E:DF:D1:55:0F:AF:57:93:DA:BA:9D:C8:87:CB:71:85:A6:85 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 72B3EC2EA6A684F3FBEADD9CAF3FE924DE04AAA8 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/882a767c-0faf-4e71-a224-ecec47d98fcb.roa Signing time: Fri 15 May 2026 00:00:15 +0000 ROA not before: Fri 15 May 2026 00:00:15 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:b3:ec:2e:a6:a6:84:f3:fb:ea:dd:9c:af:3f:e9:24:de:04:aa:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:15 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=6f64cec0293146e4eb37705884672ac1be3588c95ff23423bc00d78f9c2d5ccd, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:99:9d:20:e7:f9:17:cc:3b:1c:22:23:31:43: ab:96:fc:63:e1:97:56:58:e0:78:b9:c8:e0:6b:b6: b9:56:6c:9c:05:93:ae:b6:97:73:43:53:6a:c6:9b: 54:6b:c6:0b:ef:25:11:10:f2:5b:d6:61:6a:51:dc: be:e7:5c:37:6f:25:a1:6f:5c:52:29:78:a5:a9:31: 00:b9:27:d9:8d:a8:2b:ad:34:84:41:29:ec:f5:b1: 12:12:96:c2:91:48:fe:aa:72:32:8e:c2:76:7a:53: 29:4e:5f:97:06:d0:2c:d8:60:82:11:7f:7e:ad:82: 4c:7e:25:cf:86:77:34:cf:48:e0:42:aa:9e:f8:a4: b4:c0:73:f0:d0:b3:f0:5f:94:2f:c7:f1:25:2e:7c: db:bf:43:0b:3f:85:f7:6b:af:13:15:58:b3:ff:2c: f6:b6:4d:92:d5:e9:e8:5f:bc:d9:ad:31:dc:d7:58: 22:88:95:9e:eb:5e:56:b1:9f:b6:bf:ce:67:2f:fc: e6:7b:c0:2c:39:c7:50:63:34:78:f6:85:b3:d3:62: 3a:f5:45:05:c5:10:17:70:04:80:03:af:34:e3:2b: 8b:0b:db:3d:d7:b5:db:f8:6b:f0:d6:e1:79:9e:a2: 27:91:e0:d5:3f:7f:8c:f9:17:2b:ab:75:a8:b2:97: 91:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:62:9E:DF:D1:55:0F:AF:57:93:DA:BA:9D:C8:87:CB:71:85:A6:85 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/882a767c-0faf-4e71-a224-ecec47d98fcb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.224.0/21 Signature Algorithm: sha256WithRSAEncryption 04:02:18:03:d9:77:f9:0c:f7:86:64:89:c6:bf:3c:f0:21:62: 9d:cd:66:af:60:56:9e:2d:f5:20:5d:be:73:14:b1:58:a8:39: fa:a5:20:08:db:11:94:79:37:47:c5:a8:58:5a:90:92:b8:56: 53:8d:90:c2:e5:4f:b8:40:e4:85:2b:a8:f7:1c:12:84:23:8d: 4d:0c:88:1e:ca:94:39:5a:dd:41:dd:f2:75:1d:1e:be:34:07: 2f:65:6d:02:f6:d1:83:79:6f:7f:76:e7:00:95:0e:4d:e5:ab: da:f2:bc:8b:31:ff:df:80:a5:bb:1e:cf:01:27:b9:17:76:89: 6f:a4:44:a6:84:10:30:ff:e3:45:ff:f6:68:26:89:8f:0c:60: bb:b7:f0:d7:6e:79:63:08:8e:18:f8:9c:f4:2c:1f:b1:3a:06: ad:d4:bf:7b:e7:e0:a2:d4:ce:49:9e:b0:58:c4:99:d0:61:43: f3:3a:76:5c:23:a7:d8:6d:fa:48:2b:df:1a:72:b8:a0:27:81: 96:15:69:a7:61:a6:30:21:2f:11:67:99:de:5c:82:06:5f:a6: c6:39:76:2e:76:13:ff:96:6a:1e:c7:99:dd:b1:ea:02:c5:18: 69:23:f3:81:a4:b0:21:e1:46:aa:d3:fc:74:37:a2:6e:bf:c9: 0e:23:2e:74 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUcrPsLqamhPP76t2crz/pJN4EqqgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxNVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNANmY2NGNlYzAyOTMxNDZlNGViMzc3 MDU4ODQ2NzJhYzFiZTM1ODhjOTVmZjIzNDIzYmMwMGQ3OGY5YzJkNWNjZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5mdIOf5F8w7HCIjMUOrlvxj4ZdW WOB4ucjga7a5VmycBZOutpdzQ1NqxptUa8YL7yUREPJb1mFqUdy+51w3byWhb1xS KXilqTEAuSfZjagrrTSEQSns9bESEpbCkUj+qnIyjsJ2elMpTl+XBtAs2GCCEX9+ rYJMfiXPhnc0z0jgQqqe+KS0wHPw0LPwX5Qvx/ElLnzbv0MLP4X3a68TFViz/yz2 tk2S1enoX7zZrTHc11giiJWe615WsZ+2v85nL/zme8AsOcdQYzR49oWz02I69UUF xRAXcASAA6804yuLC9s917Xb+Gvw1uF5nqInkeDVP3+M+Rcrq3WospeRMwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHNint/RVQ+vV5Paup3Ih8txhaaFMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 Lzg4MmE3NjdjLTBmYWYtNGU3MS1hMjI0LWVjZWM0N2Q5OGZjYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDevjgMA0GCSqGSIb3DQEBCwUAA4IBAQAEAhgD2Xf5DPeGZInGvzzw IWKdzWavYFaeLfUgXb5zFLFYqDn6pSAI2xGUeTdHxahYWpCSuFZTjZDC5U+4QOSF K6j3HBKEI41NDIgeypQ5Wt1B3fJ1HR6+NAcvZW0C9tGDeW9/ducAlQ5N5ava8ryL Mf/fgKW7Hs8BJ7kXdolvpESmhBAw/+NF//ZoJomPDGC7t/DXbnljCI4Y+Jz0LB+x Ogat1L975+Ci1M5JnrBYxJnQYUPzOnZcI6fYbfpIK98acrigJ4GWFWmnYaYwIS8R Z5neXIIGX6bGOXYudhP/lmoex5ndseoCxRhpI/OBpLAh4Uaq0/x0N6Juv8kOIy50 -----END CERTIFICATE-----Generated at Fri Jun 19 08:10:35 2026 by rpki-client