$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa File: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (raw, json) Hash identifier: Hi54Gbhw3DEMbkLoHk2FXWg76N5z+6Fx0yPf7AZ7FXk= Subject key identifier: E5:87:5A:ED:CA:C9:18:1C:3D:C5:D3:33:A0:58:23:B8:0D:FF:86:0C Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 5EBAE4D8032A38CFDB2E3EF4E8E7DC85B992ED46 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa Signing time: Fri 15 May 2026 00:00:15 +0000 ROA not before: Fri 15 May 2026 00:00:15 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Jun 2026 00:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ba:e4:d8:03:2a:38:cf:db:2e:3e:f4:e8:e7:dc:85:b9:92:ed:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:15 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=b831c9f6c4b8a9b628a94cefb844ba5ce81866b817db0d83165c4203bcce7441, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cc:38:5d:61:ce:5a:35:5f:5b:66:08:3e:0d: e5:65:c4:1d:88:2e:4f:b6:f8:32:cc:93:a7:23:40: ee:11:74:3b:ff:45:4f:f7:1a:3e:3a:59:e6:5e:5b: ed:ba:74:5b:66:16:9c:4f:e3:49:c5:03:d6:4f:40: 6e:12:9d:01:32:c3:e5:61:e0:6d:59:fb:67:3b:60: ff:de:72:11:f2:4f:67:43:de:32:bf:26:51:73:bb: 68:b5:ab:5e:cf:1c:0f:63:02:8f:1c:63:b9:e1:3a: 02:68:8a:ac:36:a2:b9:e8:f5:5b:5f:d0:a6:91:5e: 60:01:e0:d8:2c:b4:30:24:4f:ca:35:97:c7:bd:bd: 2b:49:b8:fd:df:64:01:9f:02:cf:d7:96:a1:a5:e1: 87:bd:a3:6d:7b:cb:4e:c6:95:dc:37:a4:74:ca:59: 4e:5f:17:10:04:d6:3e:d6:2e:e9:67:3f:d0:f9:c5: 1c:3b:c4:1a:22:08:d5:60:3b:ee:23:75:d3:7b:82: b1:56:aa:56:ec:af:0b:d3:68:fe:5a:e1:a5:96:f6: 7c:88:49:eb:08:e2:2b:46:af:a7:12:e2:f3:c9:79: 51:e5:1e:16:1e:b2:1f:17:4c:c1:2c:ff:0b:d1:83: 43:9b:87:ca:3d:d5:51:6e:b9:ab:81:dd:0a:05:b7: f8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:87:5A:ED:CA:C9:18:1C:3D:C5:D3:33:A0:58:23:B8:0D:FF:86:0C X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.232.0/21 Signature Algorithm: sha256WithRSAEncryption c2:24:5d:35:2c:3d:aa:0e:4e:53:9d:a7:dd:91:9b:47:bc:8c: 3e:a3:5f:34:8a:8e:63:d0:10:1d:6e:63:b7:ce:55:8b:e2:02: d6:55:cd:b8:ee:25:96:d8:21:b1:b1:67:8e:07:f7:7c:c2:45: 83:13:63:79:c2:cc:d3:de:91:11:3a:6b:b5:c3:13:71:4f:b2: 18:62:df:b3:14:e3:7e:db:ca:cd:41:8a:ab:ca:57:68:a3:c4: 38:9b:94:32:48:58:e1:81:d3:75:92:48:4d:35:5f:19:a8:e8: 29:d6:c3:74:59:5a:77:cf:f1:de:d1:89:de:31:d8:cd:b5:6b: a5:a2:fe:ab:65:45:26:38:25:12:79:f2:ef:b8:6a:61:39:ff: 06:b9:a6:8a:8f:07:9f:54:7e:ec:ca:fb:d7:33:ae:8b:07:7b: b2:fa:f9:cd:42:2e:8f:34:11:2e:f4:ea:a9:5f:f7:01:49:7a: 5c:e3:3f:2c:3a:dc:9b:86:48:4b:17:9c:8a:08:be:aa:a4:fd: 18:4c:80:df:ce:bf:7d:0d:b9:53:8c:85:27:2f:19:79:f9:a8: 2b:c6:1b:9b:b6:8b:28:08:a3:2d:9e:1c:a2:6b:38:72:b8:44: fa:9c:3a:ee:34:f3:97:20:1f:0a:b0:91:58:67:e9:cf:89:47: 03:24:15:ad -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUXrrk2AMqOM/bLj706OfchbmS7UYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxNVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAYjgzMWM5ZjZjNGI4YTliNjI4YTk0 Y2VmYjg0NGJhNWNlODE4NjZiODE3ZGIwZDgzMTY1YzQyMDNiY2NlNzQ0MTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcw4XWHOWjVfW2YIPg3lZcQdiC5P tvgyzJOnI0DuEXQ7/0VP9xo+OlnmXlvtunRbZhacT+NJxQPWT0BuEp0BMsPlYeBt WftnO2D/3nIR8k9nQ94yvyZRc7totatezxwPYwKPHGO54ToCaIqsNqK56PVbX9Cm kV5gAeDYLLQwJE/KNZfHvb0rSbj932QBnwLP15ahpeGHvaNte8tOxpXcN6R0yllO XxcQBNY+1i7pZz/Q+cUcO8QaIgjVYDvuI3XTe4KxVqpW7K8L02j+WuGllvZ8iEnr COIrRq+nEuLzyXlR5R4WHrIfF0zBLP8L0YNDm4fKPdVRbrmrgd0KBbf4LwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOWHWu3KyRgcPcXTM6BYI7gN/4YMMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2UzMmM5Y2JkLWEyNDEtNGRmNi05OWJiLWU3ZDE1YWJlNGIzYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDevjoMA0GCSqGSIb3DQEBCwUAA4IBAQDCJF01LD2qDk5TnafdkZtH vIw+o180io5j0BAdbmO3zlWL4gLWVc247iWW2CGxsWeOB/d8wkWDE2N5wszT3pER Omu1wxNxT7IYYt+zFON+28rNQYqryldoo8Q4m5QySFjhgdN1kkhNNV8ZqOgp1sN0 WVp3z/He0YneMdjNtWulov6rZUUmOCUSefLvuGphOf8GuaaKjwefVH7syvvXM66L B3uy+vnNQi6PNBEu9OqpX/cBSXpc4z8sOtybhkhLF5yKCL6qpP0YTIDfzr99DblT jIUnLxl5+agrxhubtosoCKMtnhyiazhyuET6nDruNPOXIB8KsJFYZ+nPiUcDJBWt -----END CERTIFICATE-----Generated at Sun Jun 21 08:03:37 2026 by rpki-client