$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa File: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (raw, json) Hash identifier: fYYnNyZky/qrlLWP5S8zSm2v17ULDsXYq5Y9Nh1hza0= Subject key identifier: B1:C5:53:CA:81:06:3F:02:29:AD:53:DC:1C:67:5C:EF:26:51:8B:6F Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 2C3630EADA8B5BCAA2A55E2FB06E88DC00B9090B Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa Signing time: Fri 15 May 2026 00:00:35 +0000 ROA not before: Fri 15 May 2026 00:00:35 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:36:30:ea:da:8b:5b:ca:a2:a5:5e:2f:b0:6e:88:dc:00:b9:09:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:35 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=b897602898cbc2a947cb6e9dd66d07243226eb8cd5265680dd7fe94b7659665d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:50:5b:4a:24:cb:44:04:1d:59:8f:fe:23:30: 1d:12:37:2e:58:20:81:4b:e9:8e:e0:fb:19:77:9e: a2:26:45:b3:09:ab:60:8f:68:25:70:1c:ab:19:79: be:68:62:b6:94:fa:49:fd:1d:65:9b:e5:b9:a7:f3: 49:15:2a:81:89:3e:8e:bc:ee:52:9f:c3:06:4e:05: 2c:2d:a2:4f:8e:b5:dd:e8:93:f5:ae:a7:e5:e2:0e: 09:ae:17:71:85:10:4b:81:0d:ba:e2:89:09:a5:6a: c0:19:d6:3a:55:9b:2c:73:fd:41:1a:66:37:2b:59: b8:df:95:62:2e:f2:67:37:3c:8a:67:08:c7:68:77: 5f:69:90:b8:7b:f2:2b:ad:a0:38:53:12:52:7c:b9: d2:9d:30:e0:4b:07:fb:f0:a6:de:27:71:e8:58:81: 5e:9e:33:a1:6d:36:97:63:40:08:92:00:75:b9:db: 9b:6d:35:2b:ec:52:8e:5b:40:9b:fa:51:48:7b:89: ed:86:73:aa:61:05:2a:ae:41:cc:f4:13:d4:ac:e4: ad:6e:da:c9:9c:ca:35:27:e7:5e:b7:65:45:10:39: de:06:0a:79:db:87:77:fd:62:ab:43:5b:9f:cd:05: 65:ee:42:05:c9:6d:1d:b4:72:a6:4d:20:c1:04:b9: 85:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:C5:53:CA:81:06:3F:02:29:AD:53:DC:1C:67:5C:EF:26:51:8B:6F X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.194.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:aa:cb:18:6b:fc:9f:45:89:7d:8e:07:83:6d:8b:ed:3e:be: a1:3f:72:24:8f:41:b5:d5:b4:c0:87:ba:e7:0a:1f:1c:34:ef: be:7b:53:55:91:dc:68:78:85:af:ff:88:4c:27:ee:31:e9:96: c4:e3:ff:99:d4:2f:a7:92:fc:dd:80:c9:5c:05:02:05:20:fb: c2:72:ba:ff:4e:f3:54:e3:25:ab:87:2d:94:49:f5:c7:16:65: fb:b8:4a:6b:0f:d8:5c:00:9e:e2:a3:86:8d:db:fb:12:d7:ab: c0:db:ad:8c:5c:43:8e:f4:b0:94:a6:95:21:55:49:40:28:e6: f0:70:ee:88:d2:f6:d3:0b:42:12:f2:a3:3b:53:63:ab:e4:cd: c3:87:b7:70:f4:61:1d:a4:f7:42:ee:03:8f:09:fe:bf:59:3c: 37:ac:d2:40:a6:7b:3b:69:2f:64:23:8f:62:16:66:7e:7c:73: f5:68:37:85:a1:af:b2:57:ca:95:86:8b:b0:f2:da:24:b9:85: 7e:ae:54:cf:78:a8:f7:25:7a:83:f7:d2:85:5f:44:82:46:67: 60:97:0c:a1:37:ae:fb:ae:8c:4b:5b:17:15:ed:76:ba:a3:12: b8:c5:ed:79:f4:8e:78:23:77:b9:67:67:ef:86:de:5a:d5:58: b9:f8:8e:5e -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIULDYw6tqLW8qipV4vsG6I3AC5CQswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDAzNVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAYjg5NzYwMjg5OGNiYzJhOTQ3Y2I2 ZTlkZDY2ZDA3MjQzMjI2ZWI4Y2Q1MjY1NjgwZGQ3ZmU5NGI3NjU5NjY1ZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFBbSiTLRAQdWY/+IzAdEjcuWCCB S+mO4PsZd56iJkWzCatgj2glcByrGXm+aGK2lPpJ/R1lm+W5p/NJFSqBiT6OvO5S n8MGTgUsLaJPjrXd6JP1rqfl4g4JrhdxhRBLgQ264okJpWrAGdY6VZssc/1BGmY3 K1m435ViLvJnNzyKZwjHaHdfaZC4e/IrraA4UxJSfLnSnTDgSwf78KbeJ3HoWIFe njOhbTaXY0AIkgB1udubbTUr7FKOW0Cb+lFIe4nthnOqYQUqrkHM9BPUrOStbtrJ nMo1J+det2VFEDneBgp524d3/WKrQ1ufzQVl7kIFyW0dtHKmTSDBBLmFrwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLHFU8qBBj8CKa1T3BxnXO8mUYtvMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzZjZjU3YWE2LTZiYTMtNDNhZi1iYmQ1LTQ0NDg1ZTNiOWY2Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynCMA0GCSqGSIb3DQEBCwUAA4IBAQBPqssYa/yfRYl9jgeDbYvt Pr6hP3Ikj0G11bTAh7rnCh8cNO++e1NVkdxoeIWv/4hMJ+4x6ZbE4/+Z1C+nkvzd gMlcBQIFIPvCcrr/TvNU4yWrhy2USfXHFmX7uEprD9hcAJ7io4aN2/sS16vA262M XEOO9LCUppUhVUlAKObwcO6I0vbTC0IS8qM7U2Or5M3Dh7dw9GEdpPdC7gOPCf6/ WTw3rNJApns7aS9kI49iFmZ+fHP1aDeFoa+yV8qVhouw8tokuYV+rlTPeKj3JXqD 99KFX0SCRmdglwyhN677roxLWxcV7Xa6oxK4xe159I54I3e5Z2fvht5a1Vi5+I5e -----END CERTIFICATE-----Generated at Thu May 21 11:13:59 2026 by rpki-client