$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa File: d953b731-7921-47dd-abf3-b7b8cc367900.roa (raw, json) Hash identifier: eemEEY86nS8bPyiVDFi6ZCQhg151yZIJ5Mn0I+PMcdc= Subject key identifier: 3B:8D:E5:68:3B:0A:DE:63:C8:AE:C7:EC:60:ED:94:00:BA:FD:9A:F9 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 28E186CA9CD476ED726BFE30CEB8FCCFAD504A5C Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa Signing time: Fri 15 May 2026 00:00:11 +0000 ROA not before: Fri 15 May 2026 00:00:11 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Jun 2026 00:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:e1:86:ca:9c:d4:76:ed:72:6b:fe:30:ce:b8:fc:cf:ad:50:4a:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:11 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=ae810b435ad2665237c6c67532cf3e73b1ec760d7cd6bf337249abaaf3550008, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9a:eb:4e:9f:99:b9:c3:da:b1:d9:e5:c3:12: 3a:b6:3d:bb:b0:c7:1c:1f:f2:26:48:d6:85:e4:c7: 49:73:17:6f:13:ad:24:e3:ff:62:98:01:b5:06:3d: ba:6a:2e:5d:17:ea:05:e8:50:1f:bf:94:97:19:f0: 13:b2:44:9b:45:4b:88:fb:fc:0e:16:1a:5a:2e:a9: d4:82:76:09:11:27:47:c6:03:b5:24:62:f1:12:90: ee:0e:2b:0e:f2:8c:e7:39:e0:8e:98:03:e3:7d:c1: 34:91:12:c2:32:8d:9e:81:f5:1c:11:68:2a:7f:ac: 29:44:d4:66:0c:97:98:49:84:57:76:f7:4d:c2:f8: 72:ff:a4:d5:e1:e5:90:d7:be:ab:f1:b0:f6:e6:0b: 48:3d:43:c4:7e:03:ba:ec:d2:34:1b:54:e5:1f:1c: 50:eb:9a:2b:d4:ff:be:cb:87:52:20:d1:24:45:fc: 27:32:0f:9c:61:ac:30:24:3f:36:d5:a5:18:55:a9: 73:1c:58:65:95:f2:41:30:b2:18:0f:64:e4:fd:50: 3e:73:21:3e:9b:77:f6:da:a7:2e:18:d2:4c:6c:c2: 5f:37:d9:21:e9:a3:0d:c5:ff:9b:c4:41:e0:db:57: 5b:72:30:68:90:30:2e:fb:0b:34:43:cc:98:9a:ee: 30:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:8D:E5:68:3B:0A:DE:63:C8:AE:C7:EC:60:ED:94:00:BA:FD:9A:F9 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/18 Signature Algorithm: sha256WithRSAEncryption 9c:d8:99:bb:54:2f:b9:cf:48:08:9d:89:e2:a6:04:e5:ab:d4: 09:c7:d2:4e:b5:18:3b:c1:0f:82:a2:4b:a2:f7:0c:5a:fb:6b: a9:c3:8d:00:1a:9b:af:5a:be:0e:a6:72:af:53:b7:94:87:7c: ad:d7:a8:fc:29:66:93:02:28:f2:2f:9f:91:29:7d:9f:af:a7: 75:8f:6e:db:b5:6a:8c:8a:b8:80:c4:38:a4:ca:67:fb:3e:9b: 4a:0e:cf:cd:f1:1c:36:cb:db:13:04:b5:04:d1:81:35:33:09: f2:58:28:80:a2:ab:4c:16:bf:76:4e:19:c6:44:f3:a6:10:f9: 9a:a7:f2:d6:52:84:a9:1d:fa:fe:7c:3f:82:a7:1f:f1:25:3f: 66:53:87:3e:f0:d8:85:58:cc:a8:c3:07:88:43:c4:a9:5d:a1: 4c:a9:01:6b:b5:11:ec:8c:ac:e8:a1:55:22:56:e2:a6:1d:84: d5:1c:74:56:c8:c4:fc:45:5a:72:9b:fb:74:00:b0:f4:b1:7f: 6b:91:06:09:07:9a:07:ac:c6:55:4b:a8:94:92:ff:bd:a4:99: f0:7b:c6:67:dc:64:db:67:ba:d0:94:5d:ff:cf:28:72:7e:b8: 60:04:22:25:ab:c2:40:26:cc:9d:b2:06:a2:84:85:f1:6f:0a: bc:db:49:1a -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUKOGGypzUdu1ya/4wzrj8z61QSlwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxMVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAYWU4MTBiNDM1YWQyNjY1MjM3YzZj Njc1MzJjZjNlNzNiMWVjNzYwZDdjZDZiZjMzNzI0OWFiYWFmMzU1MDAwODEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJrrTp+ZucPasdnlwxI6tj27sMcc H/ImSNaF5MdJcxdvE60k4/9imAG1Bj26ai5dF+oF6FAfv5SXGfATskSbRUuI+/wO FhpaLqnUgnYJESdHxgO1JGLxEpDuDisO8oznOeCOmAPjfcE0kRLCMo2egfUcEWgq f6wpRNRmDJeYSYRXdvdNwvhy/6TV4eWQ176r8bD25gtIPUPEfgO67NI0G1TlHxxQ 65or1P++y4dSINEkRfwnMg+cYawwJD821aUYValzHFhllfJBMLIYD2Tk/VA+cyE+ m3f22qcuGNJMbMJfN9kh6aMNxf+bxEHg21dbcjBokDAu+ws0Q8yYmu4wiwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFDuN5Wg7Ct5jyK7H7GDtlAC6/Zr5MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2Q5NTNiNzMxLTc5MjEtNDdkZC1hYmYzLWI3YjhjYzM2NzkwMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGevjAMA0GCSqGSIb3DQEBCwUAA4IBAQCc2Jm7VC+5z0gInYnipgTl q9QJx9JOtRg7wQ+Cokui9wxa+2upw40AGpuvWr4OpnKvU7eUh3yt16j8KWaTAijy L5+RKX2fr6d1j27btWqMiriAxDikymf7PptKDs/N8Rw2y9sTBLUE0YE1MwnyWCiA oqtMFr92ThnGRPOmEPmap/LWUoSpHfr+fD+Cpx/xJT9mU4c+8NiFWMyowweIQ8Sp XaFMqQFrtRHsjKzooVUiVuKmHYTVHHRWyMT8RVpym/t0ALD0sX9rkQYJB5oHrMZV S6iUkv+9pJnwe8Zn3GTbZ7rQlF3/zyhyfrhgBCIlq8JAJsydsgaihIXxbwq820ka -----END CERTIFICATE-----Generated at Fri Jun 19 08:13:04 2026 by rpki-client