$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa File: 3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa (raw, json) Hash identifier: gvyzuHo1Rq2CUm3xPRJ3/SMJriiWd/xSrtjuBGswy9A= Subject key identifier: 06:DD:8F:27:2B:92:EC:48:4B:37:DA:60:AF:8F:96:2C:96:53:94:E8 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 656512FB1FA3971628C48E432D5176C73BD63ED4 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa Signing time: Fri 15 May 2026 00:00:39 +0000 ROA not before: Fri 15 May 2026 00:00:39 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:65:12:fb:1f:a3:97:16:28:c4:8e:43:2d:51:76:c7:3b:d6:3e:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:39 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=02239617dd59cd5948045225b74cbf85e66f54c7e40b54fdb7cc87b5c908ca81, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d4:1f:69:5a:f6:4e:e6:b7:74:55:e5:73:18: 12:b0:b3:87:3b:9f:a0:67:63:3c:8f:95:ac:63:d8: 1e:e6:00:53:ba:04:86:2b:06:e0:f4:ed:e5:3b:b4: 0f:54:04:6d:cc:5c:c2:cc:6f:19:78:3a:a2:13:af: f9:98:57:04:cd:d7:a9:ef:19:5c:2d:51:a3:d0:1e: 06:a8:e8:d7:a6:5c:f6:6d:57:ce:c1:7d:7c:f7:ee: b1:2a:22:87:71:32:49:8c:02:21:4a:73:55:20:d3: 50:94:38:41:a8:cd:fc:7a:f6:a0:bd:10:31:d2:19: 95:74:db:3c:16:dd:c8:0a:aa:bb:05:32:cb:42:90: 5f:03:e9:75:ab:e9:e3:03:34:6b:45:41:5c:1a:7f: 8e:65:3c:5d:4e:d5:c8:46:a0:7d:67:5a:80:c0:47: 02:48:45:86:a4:eb:a2:59:49:80:63:12:93:16:5c: 4d:fc:42:e1:97:04:d4:eb:f5:bf:f9:37:f6:16:01: 5c:96:75:b7:62:47:d7:ac:d1:66:41:b6:d1:d4:f1: 10:c1:55:72:67:7e:e8:8d:48:51:04:cc:97:dc:2d: a7:cf:da:e3:9c:63:9d:d3:03:64:f3:5c:65:40:cd: 31:7d:d3:b6:39:ab:0d:17:60:46:8f:d5:df:4d:0a: 5b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:DD:8F:27:2B:92:EC:48:4B:37:DA:60:AF:8F:96:2C:96:53:94:E8 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/3b940d14-b8c4-4c3d-978f-a1a3b7a0a82c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.224.0/21 Signature Algorithm: sha256WithRSAEncryption 72:cf:d3:5e:e5:87:f6:84:2b:e4:b2:cf:c5:1b:0f:78:58:c8: 12:54:aa:50:ac:5f:78:39:11:81:f6:dd:9a:82:09:11:5d:e9: 55:07:9d:5a:6d:8a:fd:a4:fd:3e:21:c8:f2:a5:36:f9:9e:a8: 12:75:7c:60:b4:6e:b5:e5:9e:bf:82:40:16:db:9a:e2:f7:f7: 44:aa:34:9f:82:21:67:6a:77:92:39:97:3b:49:c1:d4:2a:67: a2:5f:27:28:85:24:02:6e:e2:0b:c2:25:5f:d1:1f:75:38:35: d2:8a:19:ef:99:2c:f6:ad:f5:89:ae:1a:f5:a2:cc:9f:4f:59: 3e:7e:95:21:7b:70:4c:d6:e8:cc:db:9f:a4:7d:d5:0f:bf:51: 17:98:94:7a:39:53:68:34:d4:49:28:3e:8d:35:d0:22:a2:14: ad:d6:37:6a:9d:6e:7d:a6:bd:ca:9e:9f:a1:2a:ed:e1:26:c2: fb:a9:dc:27:75:f3:e8:85:7c:03:0e:41:82:74:2b:69:23:5d: 6d:a0:a4:b5:cc:92:cd:68:0a:c3:f8:f4:9c:64:64:7a:6b:4d: 47:2d:97:c3:be:11:5f:f9:01:12:8d:04:2c:70:40:1e:40:9e: fd:27:6c:0f:6a:57:82:a0:67:bf:a9:eb:d0:dc:03:72:91:9f: 46:1c:bf:24 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUZWUS+x+jlxYoxI5DLVF2xzvWPtQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDAzOVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMDIyMzk2MTdkZDU5Y2Q1OTQ4MDQ1 MjI1Yjc0Y2JmODVlNjZmNTRjN2U0MGI1NGZkYjdjYzg3YjVjOTA4Y2E4MTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9QfaVr2Tua3dFXlcxgSsLOHO5+g Z2M8j5WsY9ge5gBTugSGKwbg9O3lO7QPVARtzFzCzG8ZeDqiE6/5mFcEzdep7xlc LVGj0B4GqOjXplz2bVfOwX189+6xKiKHcTJJjAIhSnNVINNQlDhBqM38evagvRAx 0hmVdNs8Ft3ICqq7BTLLQpBfA+l1q+njAzRrRUFcGn+OZTxdTtXIRqB9Z1qAwEcC SEWGpOuiWUmAYxKTFlxN/ELhlwTU6/W/+Tf2FgFclnW3YkfXrNFmQbbR1PEQwVVy Z37ojUhRBMyX3C2nz9rjnGOd0wNk81xlQM0xfdO2OasNF2BGj9XfTQpbBQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAbdjycrkuxISzfaYK+PliyWU5ToMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzNiOTQwZDE0LWI4YzQtNGMzZC05NzhmLWExYTNiN2EwYTgyYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDryngMA0GCSqGSIb3DQEBCwUAA4IBAQByz9Ne5Yf2hCvkss/FGw94 WMgSVKpQrF94ORGB9t2aggkRXelVB51abYr9pP0+IcjypTb5nqgSdXxgtG615Z6/ gkAW25ri9/dEqjSfgiFnaneSOZc7ScHUKmeiXycohSQCbuILwiVf0R91ODXSihnv mSz2rfWJrhr1osyfT1k+fpUhe3BM1ujM25+kfdUPv1EXmJR6OVNoNNRJKD6NNdAi ohSt1jdqnW59pr3Knp+hKu3hJsL7qdwndfPohXwDDkGCdCtpI11toKS1zJLNaArD +PScZGR6a01HLZfDvhFf+QESjQQscEAeQJ79J2wPaleCoGe/qevQ3ANykZ9GHL8k -----END CERTIFICATE-----Generated at Thu May 21 11:14:00 2026 by rpki-client