$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa File: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (raw, json) Hash identifier: mmDjTVF7uC6IcLTQiEaOr33xzbFkcnbXUdIc6xa3iKs= Subject key identifier: D8:F8:74:27:67:1E:B9:7D:AD:BA:12:E9:32:4E:B5:FD:09:A5:97:80 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 6DF9800E969EB51FDD2D986D64C7090B4F257E3F Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa Signing time: Fri 15 May 2026 00:00:13 +0000 ROA not before: Fri 15 May 2026 00:00:13 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:f9:80:0e:96:9e:b5:1f:dd:2d:98:6d:64:c7:09:0b:4f:25:7e:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:13 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=5c23c39629435aebb6fefb5f2b27cb84e49786b5848e5f5a8281ae41a0ddb3d4, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2a:56:eb:70:62:63:01:a5:0c:3d:e3:d5:e3: 3a:a5:85:34:c6:eb:0c:79:4e:eb:b9:38:d7:e9:a4: f2:8d:0b:56:9c:ea:bc:47:ac:97:7a:f2:18:38:67: 3e:c0:2b:8d:c0:e0:62:6d:46:98:93:15:37:78:e8: 3d:5f:4c:e0:91:ae:b5:97:63:9a:0e:7f:e7:83:52: d3:aa:04:6b:50:b0:b9:a6:d5:b0:c1:ea:31:14:af: 7b:b7:81:f6:b2:18:2e:ef:88:1f:35:91:ff:89:e9: 93:6f:e8:41:92:cc:a8:c4:c2:92:8f:d3:d5:35:8b: cb:e4:de:2c:a0:c4:19:8f:bd:2a:41:2c:9c:76:0d: fb:77:3e:03:9d:5e:10:62:4c:bf:c1:62:eb:69:7b: bf:28:54:3b:bf:5b:7a:09:81:5c:58:09:dd:60:f3: b0:bf:06:b5:8d:1d:7c:83:a3:66:30:ac:ed:7c:30: 64:d9:5c:81:45:47:7d:b7:fe:77:fa:df:7a:03:31: c7:00:6d:69:85:57:c4:84:55:dc:22:e1:82:15:6e: 2d:b8:aa:32:86:4b:38:14:0c:52:8a:4b:bd:0c:65: ee:5d:c5:68:19:76:f3:02:cc:81:5c:9e:a4:9d:ed: 4e:c8:90:dd:77:03:a4:1a:51:80:e2:62:93:61:70: 63:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:F8:74:27:67:1E:B9:7D:AD:BA:12:E9:32:4E:B5:FD:09:A5:97:80 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/18 Signature Algorithm: sha256WithRSAEncryption 96:c4:f0:50:0e:97:a5:8b:7a:3a:9b:de:f3:7c:dc:c1:3d:fd: 32:a7:19:41:36:12:37:0b:21:58:49:35:d1:6f:56:7a:e0:c4: b6:fb:d0:7c:39:9f:7d:f1:0e:7c:6c:05:d4:d9:e6:be:5f:23: af:11:a1:3f:68:7f:6e:f2:17:64:ab:23:52:75:d9:15:b4:71: 2e:5b:b6:53:bd:a6:3e:63:5c:e9:1a:08:c3:3b:80:fa:bb:5f: f9:e0:0d:2f:fb:c0:42:32:ef:7f:a1:d3:4a:97:25:c6:e5:91: 10:97:27:96:77:12:a0:8b:0a:7d:8a:99:a6:a2:c4:86:6a:68: 6f:f4:8d:5e:96:b6:8f:b2:24:5b:71:03:c8:09:39:65:ee:62: c9:b3:d4:f2:8f:25:bb:38:0c:88:c5:9c:f0:7e:02:e5:c0:6d: 1f:ba:5d:92:df:43:13:c0:fa:cc:78:a4:75:e8:95:88:5d:45: 89:c5:54:81:62:3c:44:22:67:44:e8:dd:d5:de:5f:77:c5:b1: 35:66:4a:5b:a7:f5:68:70:3d:ba:cc:cb:cc:84:57:5b:49:16: 9c:dc:91:20:82:8e:46:27:24:d3:23:93:d8:0a:5a:cd:99:aa: e9:a6:7c:07:2d:fa:c4:44:64:0c:f8:9f:f1:d1:7e:02:5c:35: 1c:de:76:6e -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUbfmADpaetR/dLZhtZMcJC08lfj8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxM1oX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNANWMyM2MzOTYyOTQzNWFlYmI2ZmVm YjVmMmIyN2NiODRlNDk3ODZiNTg0OGU1ZjVhODI4MWFlNDFhMGRkYjNkNDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCpW63BiYwGlDD3j1eM6pYU0xusM eU7ruTjX6aTyjQtWnOq8R6yXevIYOGc+wCuNwOBibUaYkxU3eOg9X0zgka61l2Oa Dn/ng1LTqgRrULC5ptWwweoxFK97t4H2shgu74gfNZH/iemTb+hBksyoxMKSj9PV NYvL5N4soMQZj70qQSycdg37dz4DnV4QYky/wWLraXu/KFQ7v1t6CYFcWAndYPOw vwa1jR18g6NmMKztfDBk2VyBRUd9t/53+t96AzHHAG1phVfEhFXcIuGCFW4tuKoy hks4FAxSiku9DGXuXcVoGXbzAsyBXJ6kne1OyJDddwOkGlGA4mKTYXBjgQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFNj4dCdnHrl9rboS6TJOtf0JpZeAMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzllMzdmODU1LTQ4YmYtNDIwYS1hODZjLTVlZWI0ZmMxZjc5MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrymAMA0GCSqGSIb3DQEBCwUAA4IBAQCWxPBQDpeli3o6m97zfNzB Pf0ypxlBNhI3CyFYSTXRb1Z64MS2+9B8OZ998Q58bAXU2ea+XyOvEaE/aH9u8hdk qyNSddkVtHEuW7ZTvaY+Y1zpGgjDO4D6u1/54A0v+8BCMu9/odNKlyXG5ZEQlyeW dxKgiwp9ipmmosSGamhv9I1elraPsiRbcQPICTll7mLJs9TyjyW7OAyIxZzwfgLl wG0ful2S30MTwPrMeKR16JWIXUWJxVSBYjxEImdE6N3V3l93xbE1Zkpbp/VocD26 zMvMhFdbSRac3JEggo5GJyTTI5PYClrNmarppnwHLfrERGQM+J/x0X4CXDUc3nZu -----END CERTIFICATE-----Generated at Fri Jun 19 08:11:17 2026 by rpki-client