$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa File: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (raw, json) Hash identifier: aWTrNq1G+utWB6tkA4hz4DH0ZMMJfiIsmt+vshKxw30= Subject key identifier: E9:07:26:58:45:A7:13:6F:91:A6:40:E0:C9:7E:C4:3D:72:6F:70:0E Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1A3EB619048B38F4214A59FAE60B488A0CD45666 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa Signing time: Sat 16 May 2026 00:00:41 +0000 ROA not before: Sat 16 May 2026 00:00:41 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:3e:b6:19:04:8b:38:f4:21:4a:59:fa:e6:0b:48:8a:0c:d4:56:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 16 00:00:41 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=4b50bbddf238625432de058ddc4fd971ac7b583ec785562a1df3f11d5b10d4ab, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:91:70:42:2b:dc:fa:fd:ff:94:d2:bc:2c:35: 9a:ba:6e:f4:1e:9f:eb:4e:65:56:20:e6:cb:a1:5c: 14:b9:0c:d0:d1:d7:8c:be:75:72:a1:4e:db:86:05: 53:57:f5:5a:e1:87:45:50:4e:83:d4:54:29:14:01: 23:25:14:30:41:88:1d:d1:27:12:b4:a4:8c:03:b4: 70:a8:ea:6e:43:12:3e:58:de:b4:f6:8c:79:bd:2a: f6:ab:3c:a1:93:1c:ba:5d:93:8e:4a:14:e8:6d:8b: a8:48:d0:ea:44:af:f0:36:6c:fc:26:22:f3:02:c0: 46:e3:5d:e2:fa:b5:22:96:a4:a7:d5:f1:04:60:66: 14:96:61:9e:97:83:95:09:80:65:07:9f:ee:6a:86: f5:86:af:13:27:e5:5a:11:53:8f:7d:bd:e7:0f:e8: f6:c1:23:2e:04:9d:4d:16:e0:5c:23:3c:c1:1a:6a: 70:fb:36:05:30:3b:11:70:99:06:15:fc:ad:db:00: 6d:b7:20:2d:b9:76:5c:b2:ff:1a:00:77:7c:d4:6d: 54:cf:31:68:2a:af:27:85:ca:a1:18:e5:19:b2:21: 5f:f1:3e:62:86:3f:73:05:b6:b3:85:58:1d:6d:83: 2b:8d:a4:d4:f0:ea:d6:d2:6a:b8:2c:fd:7a:03:59: 66:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:07:26:58:45:A7:13:6F:91:A6:40:E0:C9:7E:C4:3D:72:6F:70:0E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:4000::/48 Signature Algorithm: sha256WithRSAEncryption 1e:f7:69:3a:ee:1b:1b:f1:f3:da:93:e1:75:13:04:d7:d0:26: fa:50:4c:c0:d9:aa:b7:3c:a7:64:ce:48:5f:5f:32:dd:40:cf: 5e:98:c9:0f:26:bc:70:28:b9:9c:82:c2:01:6b:80:7d:d4:80: e3:4d:97:e7:9a:f9:c5:cf:05:7c:4c:a5:7f:b7:5f:fd:c5:09: 50:45:3d:7d:d6:84:6d:46:2d:03:b3:09:82:c9:16:58:c5:b3: 21:9a:28:a7:a1:13:95:68:2e:02:4e:11:d5:be:1f:54:12:ad: bf:51:4f:90:df:90:3f:fa:b6:ba:c6:c1:e3:9d:60:ca:5f:c5: f3:0c:32:5e:8e:25:4f:f9:93:b2:62:15:f7:24:d4:a3:00:55: 26:d6:4a:61:75:98:0c:6c:1d:f1:b7:4e:7c:da:20:df:3c:9c: 9f:24:f7:39:f7:0b:89:cf:1c:cd:b3:ef:4c:49:10:8a:ce:41: 4b:81:81:2f:59:1a:e1:6b:80:09:00:3c:fd:79:7f:cd:44:52: 74:29:4d:a8:a4:75:d7:79:90:26:cf:b5:8c:e5:a6:18:0c:53: c3:60:dd:21:f4:e6:1f:13:db:de:27:d7:a1:78:86:08:38:59: 22:87:85:34:48:40:bc:c8:97:d6:7a:5b:67:17:af:7d:cd:4a: 27:84:a4:4c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUGj62GQSLOPQhSln65gtIigzUVmYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNjAwMDA0MVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNANGI1MGJiZGRmMjM4NjI1NDMyZGUw NThkZGM0ZmQ5NzFhYzdiNTgzZWM3ODU1NjJhMWRmM2YxMWQ1YjEwZDRhYjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJFwQivc+v3/lNK8LDWaum70Hp/r TmVWIObLoVwUuQzQ0deMvnVyoU7bhgVTV/Va4YdFUE6D1FQpFAEjJRQwQYgd0ScS tKSMA7RwqOpuQxI+WN609ox5vSr2qzyhkxy6XZOOShTobYuoSNDqRK/wNmz8JiLz AsBG413i+rUilqSn1fEEYGYUlmGel4OVCYBlB5/uaob1hq8TJ+VaEVOPfb3nD+j2 wSMuBJ1NFuBcIzzBGmpw+zYFMDsRcJkGFfyt2wBttyAtuXZcsv8aAHd81G1UzzFo Kq8nhcqhGOUZsiFf8T5ihj9zBbazhVgdbYMrjaTU8OrW0mq4LP16A1lmzwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFOkHJlhFpxNvkaZA4Ml+xD1yb3AOMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzhjMTcwNTg0LTdjOWItNDE0Yi04Y2JhLWE5MzRhMGE3OWJiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAEAAMA0GCSqGSIb3DQEBCwUAA4IBAQAe92k67hsb8fPak+F1 EwTX0Cb6UEzA2aq3PKdkzkhfXzLdQM9emMkPJrxwKLmcgsIBa4B91IDjTZfnmvnF zwV8TKV/t1/9xQlQRT191oRtRi0DswmCyRZYxbMhmiinoROVaC4CThHVvh9UEq2/ UU+Q35A/+ra6xsHjnWDKX8XzDDJejiVP+ZOyYhX3JNSjAFUm1kphdZgMbB3xt058 2iDfPJyfJPc59wuJzxzNs+9MSRCKzkFLgYEvWRrha4AJADz9eX/NRFJ0KU2opHXX eZAmz7WM5aYYDFPDYN0h9OYfE9veJ9eheIYIOFkih4U0SEC8yJfWeltnF699zUon hKRM -----END CERTIFICATE-----Generated at Fri Jun 19 08:13:03 2026 by rpki-client