$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa File: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (raw, json) Hash identifier: 4UuC+OYJXwgl+ZOhdImkz2/tYQnFq/fxM6y2ExbbwJc= Subject key identifier: F2:46:26:85:26:98:21:E1:68:D7:D8:A9:6C:74:5D:D9:92:68:3B:E8 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 1B7017EEB4EF437DF8CA3F2BE3EFB34409F61109 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa Signing time: Fri 15 May 2026 00:00:37 +0000 ROA not before: Fri 15 May 2026 00:00:37 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:70:17:ee:b4:ef:43:7d:f8:ca:3f:2b:e3:ef:b3:44:09:f6:11:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:37 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=96809f77e94f6a54b4f0c3339f036217876f74191629263dc7f08537301fb4dc, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:58:dd:bc:ae:b8:16:b9:93:59:f4:8d:b0:b0: 44:9c:6d:24:da:c8:5c:89:79:3c:64:0c:78:4e:07: 87:e6:3d:76:2b:f0:81:57:ac:e0:74:6e:3f:da:fb: 36:14:bd:cd:c9:8a:54:4b:ce:f3:0c:41:ee:9e:d7: 2d:78:ef:52:60:84:ba:86:27:6f:85:a0:b3:b9:f8: a1:0a:12:52:c6:d9:37:48:36:32:c9:f4:ce:46:e1: 47:fc:2f:60:02:9f:87:7a:16:dd:9d:5f:64:67:1a: a3:7d:9c:1a:a2:6b:bf:e3:96:88:92:67:bc:ed:21: bc:26:7b:06:79:1e:cd:d3:72:fd:c2:a5:79:5c:26: f7:3f:b5:4b:2b:39:16:8b:17:7f:d7:0f:17:f7:af: c0:24:c5:62:df:45:53:9f:08:26:67:70:0b:d2:28: 5e:ab:d1:13:3b:a3:86:a5:34:3e:7e:d6:c1:b3:8b: b3:2f:30:02:8a:cc:ff:f9:e8:bf:a6:d9:90:42:a6: 99:76:e0:e6:b8:4e:29:1b:cc:2c:cd:94:4c:bd:d0: 1b:96:36:36:00:0b:a6:b2:81:81:40:f7:57:fd:d9: 97:60:18:ef:3e:7c:0d:a1:aa:86:90:2a:da:b7:4d: 0f:1d:2d:1e:8b:91:94:f6:2f:10:80:29:4d:5d:9a: b1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:46:26:85:26:98:21:E1:68:D7:D8:A9:6C:74:5D:D9:92:68:3B:E8 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.240.0/20 Signature Algorithm: sha256WithRSAEncryption 0d:e0:29:03:7e:ff:e1:75:62:a0:3c:ec:87:72:79:fb:20:4e: f5:12:f6:44:c4:0a:ec:5b:3e:80:cd:fd:1e:12:0b:b4:83:59: 36:a7:f3:39:89:c2:bc:0b:e0:96:08:a5:7e:9d:d5:aa:56:d1: 8a:21:0d:41:04:cf:a0:58:9b:3e:5a:53:eb:fe:14:79:3f:61: 6d:aa:b6:11:84:40:4d:a8:33:ff:dd:a5:81:a0:b7:19:b4:47: 14:35:e4:d8:2d:bf:2a:21:57:54:e2:51:10:83:94:30:33:cb: a0:3c:a0:c9:9c:44:f5:3e:ea:d9:f3:54:42:55:1c:9a:8d:12: 59:01:f5:d6:9e:9a:83:54:16:54:34:e4:b8:ef:38:66:c8:f9: 4d:6c:be:b9:2a:c4:b4:30:89:e8:b6:ef:ee:b6:8d:01:a7:20: 24:57:d9:8e:94:55:ce:84:79:70:7a:66:5c:73:9b:d9:94:e8: ce:87:a3:86:2d:43:06:be:7f:19:4b:a0:99:92:78:c4:26:b2: 09:2c:1a:ab:bd:50:42:50:7c:a1:8f:b0:47:6c:c5:21:96:6a: 8d:62:0d:53:ae:86:05:9d:c3:45:bc:8f:42:9f:1f:ed:2f:f2: 6f:b7:aa:39:30:7d:c4:82:6b:bb:5e:ef:0a:cc:4e:0a:2f:ae: 73:8e:a5:b5 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUG3AX7rTvQ334yj8r4++zRAn2EQkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDAzN1oX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAOTY4MDlmNzdlOTRmNmE1NGI0ZjBj MzMzOWYwMzYyMTc4NzZmNzQxOTE2MjkyNjNkYzdmMDg1MzczMDFmYjRkYzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1jdvK64FrmTWfSNsLBEnG0k2shc iXk8ZAx4TgeH5j12K/CBV6zgdG4/2vs2FL3NyYpUS87zDEHuntcteO9SYIS6hidv haCzufihChJSxtk3SDYyyfTORuFH/C9gAp+HehbdnV9kZxqjfZwaomu/45aIkme8 7SG8JnsGeR7N03L9wqV5XCb3P7VLKzkWixd/1w8X96/AJMVi30VTnwgmZ3AL0ihe q9ETO6OGpTQ+ftbBs4uzLzACisz/+ei/ptmQQqaZduDmuE4pG8wszZRMvdAbljY2 AAumsoGBQPdX/dmXYBjvPnwNoaqGkCrat00PHS0ei5GU9i8QgClNXZqxRQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPJGJoUmmCHhaNfYqWx0XdmSaDvoMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 Lzc0ZWZlOGIzLWQzOWMtNGE4Yi05YjdiLTU5OTRhYTRjOGQ4Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynwMA0GCSqGSIb3DQEBCwUAA4IBAQAN4CkDfv/hdWKgPOyHcnn7 IE71EvZExArsWz6Azf0eEgu0g1k2p/M5icK8C+CWCKV+ndWqVtGKIQ1BBM+gWJs+ WlPr/hR5P2FtqrYRhEBNqDP/3aWBoLcZtEcUNeTYLb8qIVdU4lEQg5QwM8ugPKDJ nET1PurZ81RCVRyajRJZAfXWnpqDVBZUNOS47zhmyPlNbL65KsS0MInotu/uto0B pyAkV9mOlFXOhHlwemZcc5vZlOjOh6OGLUMGvn8ZS6CZknjEJrIJLBqrvVBCUHyh j7BHbMUhlmqNYg1TroYFncNFvI9Cnx/tL/Jvt6o5MH3Egmu7Xu8KzE4KL65zjqW1 -----END CERTIFICATE-----Generated at Thu May 21 11:57:16 2026 by rpki-client