$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa File: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (raw, json) Hash identifier: Tq3fF/a7OvBkU3g4aoOjzGeIopJptNOAvtshIuCffME= Subject key identifier: A4:3F:6F:F6:E7:70:BD:E1:E1:4F:41:86:5C:87:E3:97:28:FF:78:ED Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 286071EF299C09E07CFE638ADC495033791D2486 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa Signing time: Fri 15 May 2026 00:00:40 +0000 ROA not before: Fri 15 May 2026 00:00:40 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:60:71:ef:29:9c:09:e0:7c:fe:63:8a:dc:49:50:33:79:1d:24:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:40 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=7a550eb1abd07378b78bdcc185bad1c6db6ed8745aa6456d33ae0d5c4ccabe6e, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a9:9d:40:b0:a8:5c:1d:f8:f2:3f:8e:25:35: 30:5c:01:d0:9e:1e:60:f4:2e:2f:ca:5f:b7:14:02: a3:e2:33:c5:88:d1:fc:ad:0c:77:07:fe:1a:cd:9a: 3c:78:31:b0:49:05:b0:ab:d8:9b:b2:be:d5:a0:29: 12:71:3a:46:61:4f:e5:f4:e0:18:bd:21:0e:60:38: d7:82:63:ed:d6:05:48:af:52:4b:8b:d4:50:fb:10: f2:47:cc:c6:79:8e:7c:e2:b5:5f:dc:77:d4:a6:ed: 30:ed:f3:45:ad:9c:f0:b6:74:c4:f4:15:9f:d2:e8: 21:03:45:4f:0d:55:94:7c:9e:3c:86:9f:80:77:c3: 5b:17:92:07:c2:5a:15:d7:b8:9f:85:a5:69:92:42: 5d:4e:53:5b:09:0a:6d:70:c4:4b:12:94:7b:2d:5f: fc:de:4c:43:74:5c:2f:3b:f9:a0:9e:47:ed:fc:65: 38:e1:eb:3c:a2:5b:7d:83:da:8e:02:7e:6f:3f:73: f8:35:43:2d:57:1a:12:59:10:fa:67:90:c9:5f:89: 0d:4d:16:ef:32:82:f4:13:78:6e:6f:6d:56:fa:74: 2f:6c:5f:89:bd:e8:03:e6:fe:c3:c8:5a:30:04:bd: 7b:7c:d9:e7:e9:66:be:d4:67:b3:33:3c:31:c7:83: 91:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:3F:6F:F6:E7:70:BD:E1:E1:4F:41:86:5C:87:E3:97:28:FF:78:ED X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.208.0/20 Signature Algorithm: sha256WithRSAEncryption 15:14:56:7e:e8:f1:91:7c:80:7d:6a:16:f7:cc:86:2c:ec:02: 40:21:2c:fa:68:54:76:0e:ab:be:e8:bf:25:7a:12:5e:6f:47: 35:e5:15:22:73:a6:52:93:b1:a1:8f:fa:d6:9a:9c:d3:c1:16: c5:55:f0:cd:c0:f6:23:9a:9d:50:c7:78:fd:b4:fa:1f:c6:f1: ef:b0:06:20:36:0e:25:51:ef:dd:3e:b7:22:75:4d:4c:16:b8: d7:b9:aa:a2:50:e7:ba:bc:1f:de:26:0a:4e:39:a7:90:a9:73: b8:e5:ee:bf:9d:8b:78:d4:32:86:3b:dc:99:11:f4:a1:a0:e5: 24:22:ff:8e:0c:06:d1:c2:b8:6b:9f:c0:1d:2b:34:88:c8:2f: 8f:a1:e6:57:28:9a:72:0a:0a:b0:07:ba:81:a6:5d:d5:82:4d: a1:27:7d:70:a0:d4:5b:e4:a4:c1:44:10:2c:53:89:1c:56:0f: 91:9d:fa:7a:46:a5:01:c3:c3:32:01:4b:0c:a3:0e:5a:5d:36: a9:7d:41:36:36:ec:7b:8f:ab:1a:db:bb:6d:df:48:b6:65:cb: 2d:1c:0b:74:3d:a3:42:71:01:af:9c:b2:0c:4c:91:f8:81:29: e5:df:e3:ed:5c:0f:cc:2b:7f:15:5a:88:92:09:1c:6a:f3:bd: 29:42:f8:5e -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUKGBx7ymcCeB8/mOK3ElQM3kdJIYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDA0MFoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAN2E1NTBlYjFhYmQwNzM3OGI3OGJk Y2MxODViYWQxYzZkYjZlZDg3NDVhYTY0NTZkMzNhZTBkNWM0Y2NhYmU2ZTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqmdQLCoXB348j+OJTUwXAHQnh5g 9C4vyl+3FAKj4jPFiNH8rQx3B/4azZo8eDGwSQWwq9ibsr7VoCkScTpGYU/l9OAY vSEOYDjXgmPt1gVIr1JLi9RQ+xDyR8zGeY584rVf3HfUpu0w7fNFrZzwtnTE9BWf 0ughA0VPDVWUfJ48hp+Ad8NbF5IHwloV17ifhaVpkkJdTlNbCQptcMRLEpR7LV/8 3kxDdFwvO/mgnkft/GU44es8olt9g9qOAn5vP3P4NUMtVxoSWRD6Z5DJX4kNTRbv MoL0E3hub21W+nQvbF+JvegD5v7DyFowBL17fNnn6Wa+1GezMzwxx4ORTwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKQ/b/bncL3h4U9BhlyH45co/3jtMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzA1YmM4ZGJiLWM3MGEtNDhkYS1iNDViLTQ0NDgzNjQ2MTRmZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynQMA0GCSqGSIb3DQEBCwUAA4IBAQAVFFZ+6PGRfIB9ahb3zIYs 7AJAISz6aFR2Dqu+6L8lehJeb0c15RUic6ZSk7Ghj/rWmpzTwRbFVfDNwPYjmp1Q x3j9tPofxvHvsAYgNg4lUe/dPrcidU1MFrjXuaqiUOe6vB/eJgpOOaeQqXO45e6/ nYt41DKGO9yZEfShoOUkIv+ODAbRwrhrn8AdKzSIyC+PoeZXKJpyCgqwB7qBpl3V gk2hJ31woNRb5KTBRBAsU4kcVg+Rnfp6RqUBw8MyAUsMow5aXTapfUE2Nux7j6sa 27tt30i2ZcstHAt0PaNCcQGvnLIMTJH4gSnl3+PtXA/MK38VWoiSCRxq870pQvhe -----END CERTIFICATE-----Generated at Thu May 21 11:57:14 2026 by rpki-client