$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/48a67156-122e-41d4-a2a8-8046cc5ecc41.roa File: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (raw, json) Hash identifier: QG3zvrKKXmxLv+GVXi5B7E0Z2ufvNvdW7NKfX0GmA4U= Subject key identifier: E0:57:DB:36:4D:41:94:9A:B7:3F:4A:B1:FB:8B:36:AA:31:1E:E2:79 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 12414729599210A9713633B67E5A8338AB3D4850 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/48a67156-122e-41d4-a2a8-8046cc5ecc41.roa Signing time: Fri 15 May 2026 00:00:36 +0000 ROA not before: Fri 15 May 2026 00:00:36 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:41:47:29:59:92:10:a9:71:36:33:b6:7e:5a:83:38:ab:3d:48:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:36 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=2f2b173b594e0a6e914b7585e110ccf386ad90bbb37e4c5bf6145f124b783f6d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ec:8c:41:67:91:63:41:aa:e7:ec:81:b5:38: 25:0b:e5:1b:a9:2f:dc:72:7c:06:b6:c7:6c:65:0c: 3a:54:ca:e7:d8:e5:04:9b:33:96:e6:a0:40:d0:b9: 3a:89:b4:1b:2a:e1:37:7e:40:2c:3e:9e:de:c3:dd: 5d:7c:23:40:29:80:0d:3f:02:71:82:c1:1c:12:22: 07:67:4f:7f:1e:47:7e:c8:10:22:b9:3c:8d:a2:bb: 8d:59:00:aa:f9:1a:f5:d9:fa:44:c2:be:52:34:e1: 9e:e1:13:51:77:2b:09:40:71:5f:75:42:d3:16:8c: db:33:68:ef:70:eb:3f:cf:66:4a:6b:19:76:c9:ed: 31:48:4e:da:30:e6:d0:07:c6:a7:e9:39:e1:bb:95: ff:75:67:b2:e4:6a:62:b2:e4:71:79:dc:27:02:7b: 2f:0c:00:25:4c:14:ec:76:0a:92:3c:a0:c4:b1:c1: 2d:c2:1f:6b:16:8d:d9:fb:60:09:55:97:c8:1b:86: c7:75:12:6b:92:01:f9:4a:c5:2b:0f:0a:9c:35:98: 1a:9a:22:a3:2d:be:07:84:91:ca:b0:79:46:cc:ed: 13:3e:24:bc:9c:de:9f:1b:46:a2:64:0a:77:2d:09: 18:c1:e8:10:9a:d4:d6:fb:f2:91:30:45:bf:bd:98: b0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:57:DB:36:4D:41:94:9A:B7:3F:4A:B1:FB:8B:36:AA:31:1E:E2:79 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/48a67156-122e-41d4-a2a8-8046cc5ecc41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.238.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:b9:78:9f:a0:ec:03:40:0b:d2:57:b0:72:64:65:38:0c:76: b9:58:89:96:ea:43:d6:a6:dd:be:17:fe:de:8b:6b:e0:4f:e8: b8:4b:d0:7f:18:40:2d:71:c2:6b:2c:c3:87:1d:c7:ba:9d:e5: f0:0f:b9:94:c5:4e:37:71:a9:33:a8:7a:c3:62:fb:bd:80:41: a9:b5:73:b4:ad:06:7a:34:c5:84:59:ee:04:84:74:e2:fb:05: 7e:3e:40:73:8b:28:e2:2e:d0:b5:74:33:d8:33:b9:d6:dd:81: 6a:0d:d0:b5:d4:09:b2:62:bc:10:15:8e:9f:f8:89:8f:57:dd: a1:26:21:0e:e6:81:ea:b0:29:a3:d1:04:be:d1:24:64:bf:9a: 9d:e0:12:ab:f3:96:e8:32:15:b3:fc:51:73:51:7d:67:de:47: 14:40:61:90:57:ee:b7:25:a0:aa:a0:10:66:45:9e:e6:87:d9: 94:44:ef:e7:88:bc:3d:19:ec:ca:0a:80:73:57:3f:f3:b8:14: 11:f2:06:7f:0d:d9:5b:23:b3:30:fe:85:ca:4e:87:76:fe:2f: 14:f6:61:6f:64:ac:74:e4:9f:aa:5e:44:67:b4:34:3f:68:ba: c1:c0:c1:23:62:d6:32:4c:11:d8:7c:05:e4:88:b8:eb:6d:bf: f9:83:83:ed -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUEkFHKVmSEKlxNjO2flqDOKs9SFAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDAzNloX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMmYyYjE3M2I1OTRlMGE2ZTkxNGI3 NTg1ZTExMGNjZjM4NmFkOTBiYmIzN2U0YzViZjYxNDVmMTI0Yjc4M2Y2ZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuyMQWeRY0Gq5+yBtTglC+UbqS/c cnwGtsdsZQw6VMrn2OUEmzOW5qBA0Lk6ibQbKuE3fkAsPp7ew91dfCNAKYANPwJx gsEcEiIHZ09/Hkd+yBAiuTyNoruNWQCq+Rr12fpEwr5SNOGe4RNRdysJQHFfdULT FozbM2jvcOs/z2ZKaxl2ye0xSE7aMObQB8an6Tnhu5X/dWey5GpisuRxedwnAnsv DAAlTBTsdgqSPKDEscEtwh9rFo3Z+2AJVZfIG4bHdRJrkgH5SsUrDwqcNZgamiKj Lb4HhJHKsHlGzO0TPiS8nN6fG0aiZAp3LQkYwegQmtTW+/KRMEW/vZiwiQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOBX2zZNQZSatz9KsfuLNqoxHuJ5MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzQ4YTY3MTU2LTEyMmUtNDFkNC1hMmE4LTgwNDZjYzVlY2M0MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynuMA0GCSqGSIb3DQEBCwUAA4IBAQB8uXifoOwDQAvSV7ByZGU4 DHa5WImW6kPWpt2+F/7ei2vgT+i4S9B/GEAtccJrLMOHHce6neXwD7mUxU43cakz qHrDYvu9gEGptXO0rQZ6NMWEWe4EhHTi+wV+PkBziyjiLtC1dDPYM7nW3YFqDdC1 1AmyYrwQFY6f+ImPV92hJiEO5oHqsCmj0QS+0SRkv5qd4BKr85boMhWz/FFzUX1n 3kcUQGGQV+63JaCqoBBmRZ7mh9mURO/niLw9GezKCoBzVz/zuBQR8gZ/DdlbI7Mw /oXKTod2/i8U9mFvZKx05J+qXkRntDQ/aLrBwMEjYtYyTBHYfAXkiLjrbb/5g4Pt -----END CERTIFICATE-----Generated at Thu May 21 11:57:15 2026 by rpki-client