$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa File: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (raw, json) Hash identifier: sweULcZjHPT8IwxPRaLVa8xz7kL7MLaA+OqEV/RFsD8= Subject key identifier: 19:F1:36:61:19:90:4B:2B:67:2F:91:48:EC:FD:07:7E:25:2D:5E:82 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 3B64460E0638786AC9B383AED4A23A195C5FAA87 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa Signing time: Fri 15 May 2026 00:00:36 +0000 ROA not before: Fri 15 May 2026 00:00:36 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:64:46:0e:06:38:78:6a:c9:b3:83:ae:d4:a2:3a:19:5c:5f:aa:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:36 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=868f34cd9d671b48fa7aa103b42c24ccb163db0132af3a57d92a668ae907b815, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e7:64:fc:4e:01:e9:9e:db:af:9e:1c:fd:71: f3:b7:2c:85:af:60:25:06:d1:65:64:cf:30:7e:72: 2c:ec:bc:9a:7a:9a:ae:87:22:ba:6b:80:b4:59:1b: 33:ab:f4:48:fc:9e:ee:40:82:3b:88:5e:2b:a0:c1: 02:b7:ee:d4:20:a8:98:86:1c:38:4c:50:7d:8b:06: de:6d:3a:94:e4:5e:b0:4e:53:99:c9:62:fd:75:16: fb:01:df:80:67:48:c7:af:b0:7f:7b:7c:25:d4:4d: f4:69:c6:8c:d0:27:2d:0b:79:ee:e4:69:bd:c0:d0: b9:17:47:d2:71:b2:aa:eb:1c:e9:81:c5:9f:ca:51: 7f:fa:7b:0f:5f:78:6d:a9:07:ce:b5:ce:ba:25:36: 62:b6:0d:3e:bb:60:a5:97:f2:21:9d:9b:ca:de:3c: 0f:f1:5d:67:65:2d:1a:4f:06:86:41:1c:09:47:70: f4:40:05:22:ca:2b:bb:a4:8a:36:70:5c:68:f8:ae: a7:0e:7d:ed:86:84:41:38:c2:cf:ce:90:2b:4f:e8: 30:3c:d4:c1:eb:3f:76:c7:c7:8e:d7:b9:71:e2:8a: 2b:5f:3f:60:c3:dc:08:aa:e8:64:8a:7e:fa:7d:44: a0:70:9c:31:e6:c4:71:35:12:93:27:4d:41:09:5a: 4e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F1:36:61:19:90:4B:2B:67:2F:91:48:EC:FD:07:7E:25:2D:5E:82 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.193.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:b3:06:0d:43:48:aa:28:b4:f1:4d:86:15:77:58:66:8a:be: 09:05:b3:e6:1f:46:3a:2e:b8:ab:4a:07:a7:3d:5c:de:c0:df: ce:85:1f:ae:2f:b1:19:2d:b7:45:43:c4:20:a2:cc:9b:fb:a6: 7a:83:a0:28:8d:ed:79:8a:81:1e:2f:6b:1a:ef:a3:6c:c0:68: 6f:5e:a5:10:2e:3b:38:f5:3e:d4:b3:b0:de:a2:af:97:74:c6: 1b:92:74:a4:26:d4:72:27:b2:30:0a:a5:a6:e6:bd:79:c0:50: f2:6b:34:a6:70:e1:fa:31:2d:00:a0:fb:cc:1d:46:ce:72:47: df:e0:b4:df:8d:40:aa:f4:12:a7:bd:b6:4b:6e:61:4c:ec:dd: e7:25:f1:23:f0:8b:08:e2:ef:2c:6f:8a:be:74:22:35:df:90: e1:81:a3:ab:5e:82:7d:5a:08:c7:ff:1a:7c:f3:58:06:2e:0a: 72:72:dd:cf:7e:7d:cb:20:e2:2b:ec:44:1c:49:d6:5d:2f:d2: 39:06:a7:d2:b9:75:b0:9a:21:c4:d7:f8:43:9e:bd:a1:1d:19: 1e:32:f0:4a:9e:08:9c:82:df:ae:b9:ba:e4:11:92:6d:fa:e7: c2:0c:f9:27:ff:48:d2:8f:fe:28:39:20:68:d9:fb:c5:06:62: 64:fe:ed:15 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUO2RGDgY4eGrJs4Ou1KI6GVxfqocwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDAzNloX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAODY4ZjM0Y2Q5ZDY3MWI0OGZhN2Fh MTAzYjQyYzI0Y2NiMTYzZGIwMTMyYWYzYTU3ZDkyYTY2OGFlOTA3YjgxNTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6udk/E4B6Z7br54c/XHztyyFr2Al BtFlZM8wfnIs7LyaepquhyK6a4C0WRszq/RI/J7uQII7iF4roMECt+7UIKiYhhw4 TFB9iwbebTqU5F6wTlOZyWL9dRb7Ad+AZ0jHr7B/e3wl1E30acaM0CctC3nu5Gm9 wNC5F0fScbKq6xzpgcWfylF/+nsPX3htqQfOtc66JTZitg0+u2Cll/IhnZvK3jwP 8V1nZS0aTwaGQRwJR3D0QAUiyiu7pIo2cFxo+K6nDn3thoRBOMLPzpArT+gwPNTB 6z92x8eO17lx4oorXz9gw9wIquhkin76fUSgcJwx5sRxNRKTJ01BCVpOYwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBnxNmEZkEsrZy+RSOz9B34lLV6CMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzJmNDdkY2RkLWMzODQtNGViMi1hZWZkLWY0YWQ2NGYyNmNjZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArynBMA0GCSqGSIb3DQEBCwUAA4IBAQBtswYNQ0iqKLTxTYYVd1hm ir4JBbPmH0Y6LrirSgenPVzewN/OhR+uL7EZLbdFQ8Qgosyb+6Z6g6Aoje15ioEe L2sa76NswGhvXqUQLjs49T7Us7Deoq+XdMYbknSkJtRyJ7IwCqWm5r15wFDyazSm cOH6MS0AoPvMHUbOckff4LTfjUCq9BKnvbZLbmFM7N3nJfEj8IsI4u8sb4q+dCI1 35DhgaOrXoJ9WgjH/xp881gGLgpyct3Pfn3LIOIr7EQcSdZdL9I5BqfSuXWwmiHE 1/hDnr2hHRkeMvBKngicgt+uubrkEZJt+ufCDPkn/0jSj/4oOSBo2fvFBmJk/u0V -----END CERTIFICATE-----Generated at Thu May 21 11:57:14 2026 by rpki-client