$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa File: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (raw, json) Hash identifier: IybdQRuGKUz+LbkBrptFU/9JKaJTr8Dn8X3VCAKzJNE= Subject key identifier: 56:DB:E0:AA:13:C4:19:67:0D:91:34:40:F0:13:78:D7:85:BA:33:B7 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 035D9E1028CB42DF7BD2E28CB49276FB5F636D84 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa Signing time: Fri 15 May 2026 00:00:35 +0000 ROA not before: Fri 15 May 2026 00:00:35 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:5d:9e:10:28:cb:42:df:7b:d2:e2:8c:b4:92:76:fb:5f:63:6d:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:35 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=9446c0cf525a446b04dd346fd0c5677fa9a6902b9d63ed34ab2ce6e1170c4d5b, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:55:a2:f7:46:9a:f4:e4:9b:f9:bb:90:84:0a: a4:21:df:bc:7b:1a:02:1c:78:e4:61:ad:f7:1e:4a: f2:5a:26:72:cc:c2:07:ba:2c:1a:25:c3:f0:4d:26: 3b:63:97:af:68:a4:b5:f8:09:8d:63:87:36:5f:f2: a4:f7:00:74:61:06:a8:b3:5e:5e:5b:79:30:c5:47: ec:41:24:e3:ca:de:a3:52:d8:b5:16:f6:3f:47:f8: c2:dc:a7:2a:30:f6:37:db:4a:4e:08:93:43:d4:c3: 17:fe:e1:6e:b2:d2:d1:1b:c7:b5:59:4c:63:06:f5: f7:71:1e:aa:86:f9:16:a7:af:1b:e1:44:9b:fa:88: d9:9e:21:89:83:68:35:92:db:03:40:54:3e:fd:b2: 77:41:88:36:42:7f:68:be:5c:91:d9:e9:11:6a:e2: f5:3a:78:f2:31:03:da:66:44:57:e0:ae:01:9e:be: 59:39:78:cd:3b:86:1c:67:4c:0f:b8:f3:c1:7d:d4: 14:ce:41:59:65:43:af:00:87:d5:58:3b:b1:a0:42: 46:55:6a:8b:0f:eb:1b:ec:fa:2d:e9:26:80:b4:8e: 95:47:27:07:42:bb:a1:04:18:8d:67:a7:9a:00:f2: eb:40:c7:c0:20:d6:bb:8c:91:fc:13:dc:fb:76:00: 1a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DB:E0:AA:13:C4:19:67:0D:91:34:40:F0:13:78:D7:85:BA:33:B7 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.200.0/21 Signature Algorithm: sha256WithRSAEncryption 37:5e:c0:c2:5a:67:56:a6:00:94:a6:75:86:6c:04:4a:5e:66: 74:95:ea:81:e9:b6:69:e9:70:17:30:70:2c:17:6c:78:f9:d2: f6:05:ce:d4:ed:f3:1e:50:b6:41:89:99:9e:82:7f:8d:80:5e: 8f:8c:12:6c:17:08:b6:b1:76:f3:b5:85:58:e5:ea:df:4c:85: 89:16:0c:98:b0:d1:d8:65:43:d7:7e:b9:13:31:9e:72:1e:39: 7f:98:28:95:4e:29:20:d1:b0:15:c7:d9:d0:48:70:90:d7:1f: 88:df:41:d6:da:1d:b3:20:47:d3:84:67:67:9d:e3:e8:ad:74: 4a:3e:80:a3:c0:21:ca:78:02:86:63:fe:c8:10:ce:b3:f3:20: f6:f5:4f:1d:71:e0:cd:64:c3:dc:c4:80:f1:af:e4:d9:2f:ec: f5:5f:50:03:6a:0a:06:e1:cf:5e:3b:7e:d1:c0:26:77:3f:4d: 13:93:f6:0f:cc:d2:b7:01:b8:7d:1b:16:4d:6b:96:bf:90:fd: 40:4c:39:60:1a:f6:d4:99:1b:3a:15:e5:88:a8:e3:06:60:2d: ed:78:4e:b0:be:47:7d:4d:2e:e2:7c:a4:e2:14:20:76:f9:fc: fd:fa:8f:c6:52:88:72:d2:48:fb:04:98:a3:c4:f7:3c:4e:74: b1:6c:d0:b1 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUA12eECjLQt970uKMtJJ2+19jbYQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDAzNVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAOTQ0NmMwY2Y1MjVhNDQ2YjA0ZGQz NDZmZDBjNTY3N2ZhOWE2OTAyYjlkNjNlZDM0YWIyY2U2ZTExNzBjNGQ1YjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA31Wi90aa9OSb+buQhAqkId+8exoC HHjkYa33HkryWiZyzMIHuiwaJcPwTSY7Y5evaKS1+AmNY4c2X/Kk9wB0YQaos15e W3kwxUfsQSTjyt6jUti1FvY/R/jC3KcqMPY320pOCJND1MMX/uFustLRG8e1WUxj BvX3cR6qhvkWp68b4USb+ojZniGJg2g1ktsDQFQ+/bJ3QYg2Qn9ovlyR2ekRauL1 OnjyMQPaZkRX4K4Bnr5ZOXjNO4YcZ0wPuPPBfdQUzkFZZUOvAIfVWDuxoEJGVWqL D+sb7Pot6SaAtI6VRycHQruhBBiNZ6eaAPLrQMfAINa7jJH8E9z7dgAa+QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFFbb4KoTxBlnDZE0QPATeNeFujO3MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBiZjE1ZDNmLWM1NDYtNGJiNi1hNzY0LTgyMTY1YzM4NGQzNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrynIMA0GCSqGSIb3DQEBCwUAA4IBAQA3XsDCWmdWpgCUpnWGbARK XmZ0leqB6bZp6XAXMHAsF2x4+dL2Bc7U7fMeULZBiZmegn+NgF6PjBJsFwi2sXbz tYVY5erfTIWJFgyYsNHYZUPXfrkTMZ5yHjl/mCiVTikg0bAVx9nQSHCQ1x+I30HW 2h2zIEfThGdnnePorXRKPoCjwCHKeAKGY/7IEM6z8yD29U8dceDNZMPcxIDxr+TZ L+z1X1ADagoG4c9eO37RwCZ3P00Tk/YPzNK3Abh9GxZNa5a/kP1ATDlgGvbUmRs6 FeWIqOMGYC3teE6wvkd9TS7ifKTiFCB2+fz9+o/GUohy0kj7BJijxPc8TnSxbNCx -----END CERTIFICATE-----Generated at Thu May 21 11:14:00 2026 by rpki-client