$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa File: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (raw, json) Hash identifier: NBLGSURJiomLlOLBraVQVdoTSr6bS+7HxfARclWtYgE= Subject key identifier: 75:FB:98:8D:08:30:19:71:CC:31:B2:23:F9:8B:12:F9:80:09:F5:46 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 3901AE90F49EA10042D2EDBEC0805C06560A948F Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa Signing time: Fri 15 May 2026 00:00:16 +0000 ROA not before: Fri 15 May 2026 00:00:16 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:01:ae:90:f4:9e:a1:00:42:d2:ed:be:c0:80:5c:06:56:0a:94:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:16 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=4095363dd670bc964c39353090cd318d199a4f17d627613e9102c1e5073ae341, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c6:09:b7:7f:06:8d:7e:d0:74:79:ed:ed:cd: 50:88:90:21:d1:5a:d9:cc:af:f4:5b:e8:09:9f:da: f0:af:c8:b5:20:c8:16:2e:2f:3b:a2:17:bb:6f:6c: 28:d5:d1:c2:06:bc:2e:1c:f6:3e:11:47:4c:b2:f0: e6:ec:6e:b1:91:ce:72:d2:42:e5:ba:14:10:46:72: 93:b2:2d:7b:c4:d9:d0:93:90:65:82:f7:fa:bf:bb: be:ad:9d:50:be:3a:2c:42:08:91:b4:94:b2:f6:d4: 24:75:7a:c8:0f:f5:d5:bf:20:32:b9:fe:06:ea:af: f8:cf:06:1e:1a:65:c1:1b:53:55:0c:21:90:83:09: 4a:a4:07:23:54:d4:a9:36:f6:b1:77:68:4f:cf:66: 63:e4:8b:ab:14:1e:58:80:66:cd:ae:0c:95:7e:de: 00:b9:2a:55:b2:be:c8:82:2a:fe:58:d4:01:ef:10: a2:c9:66:13:cc:fd:e6:55:67:2d:70:a2:05:fa:3d: a1:a1:1f:d9:b4:cd:c1:1a:c2:04:02:1a:70:00:a2: 33:d3:c8:3f:19:03:22:69:71:06:e9:aa:8f:bd:97: ad:44:42:8e:b0:13:07:93:4d:e3:ea:ac:37:88:ee: 93:63:c3:6b:b7:f9:f6:cb:cb:5c:7b:b4:85:c2:52: 83:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:FB:98:8D:08:30:19:71:CC:31:B2:23:F9:8B:12:F9:80:09:F5:46 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.152.0/21 Signature Algorithm: sha256WithRSAEncryption ce:1e:c4:9d:7c:63:9e:f8:42:5b:fd:8f:88:ae:4e:bb:ac:98: 18:01:fb:51:f1:0d:e2:75:2c:e0:e0:ac:f5:46:0d:f9:11:2f: 53:2b:cb:e8:13:25:2e:67:08:90:56:8a:cc:a0:84:c6:2f:14: 91:5f:61:74:cb:1e:e8:87:34:ca:ee:30:42:fe:81:8b:5f:67: 78:70:19:07:5e:6b:51:c2:20:86:d2:77:fa:e6:47:e3:fa:fe: de:81:40:80:7e:11:fc:4c:54:30:72:b3:2b:e4:46:0d:84:4e: d2:0e:74:f2:35:56:56:13:d0:6d:d8:86:a6:34:45:d3:48:0c: 3a:4d:6a:f2:2d:d4:69:03:5b:8f:61:f7:16:b6:c1:2c:43:2e: 43:8d:d6:66:bd:5c:e2:93:a1:a8:b1:24:d1:33:24:ad:3e:72: 0d:4a:fc:46:99:85:96:5d:b8:0a:4e:62:e8:d6:cf:14:1a:f2: 89:cb:a2:df:8b:6b:dd:05:3e:e2:77:c8:84:3e:3a:07:82:7e: af:10:9e:4f:05:8c:82:6b:26:f8:a1:99:a5:28:eb:3f:77:56: 39:2f:db:34:a1:2c:df:55:e7:c7:6e:c0:53:24:dd:48:7e:9f: 9f:25:24:8d:a5:c9:2e:47:cb:94:af:4e:d8:89:d2:fb:f1:23: ae:8e:63:b4 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUOQGukPSeoQBC0u2+wIBcBlYKlI8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxNloX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNANDA5NTM2M2RkNjcwYmM5NjRjMzkz NTMwOTBjZDMxOGQxOTlhNGYxN2Q2Mjc2MTNlOTEwMmMxZTUwNzNhZTM0MTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcYJt38GjX7QdHnt7c1QiJAh0VrZ zK/0W+gJn9rwr8i1IMgWLi87ohe7b2wo1dHCBrwuHPY+EUdMsvDm7G6xkc5y0kLl uhQQRnKTsi17xNnQk5Blgvf6v7u+rZ1QvjosQgiRtJSy9tQkdXrID/XVvyAyuf4G 6q/4zwYeGmXBG1NVDCGQgwlKpAcjVNSpNvaxd2hPz2Zj5IurFB5YgGbNrgyVft4A uSpVsr7Igir+WNQB7xCiyWYTzP3mVWctcKIF+j2hoR/ZtM3BGsIEAhpwAKIz08g/ GQMiaXEG6aqPvZetREKOsBMHk03j6qw3iO6TY8Nrt/n2y8tce7SFwlKDAwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHX7mI0IMBlxzDGyI/mLEvmACfVGMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2FkZjc1ZTJlLTlkMmMtNDcxOC1hNDlkLWFkNDQwNzliMjY2Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrymYMA0GCSqGSIb3DQEBCwUAA4IBAQDOHsSdfGOe+EJb/Y+Irk67 rJgYAftR8Q3idSzg4Kz1Rg35ES9TK8voEyUuZwiQVorMoITGLxSRX2F0yx7ohzTK 7jBC/oGLX2d4cBkHXmtRwiCG0nf65kfj+v7egUCAfhH8TFQwcrMr5EYNhE7SDnTy NVZWE9Bt2IamNEXTSAw6TWryLdRpA1uPYfcWtsEsQy5DjdZmvVzik6GosSTRMySt PnINSvxGmYWWXbgKTmLo1s8UGvKJy6Lfi2vdBT7id8iEPjoHgn6vEJ5PBYyCayb4 oZmlKOs/d1Y5L9s0oSzfVefHbsBTJN1Ifp+fJSSNpckuR8uUr07YidL78SOujmO0 -----END CERTIFICATE-----Generated at Fri Jun 19 08:11:16 2026 by rpki-client