$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa File: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (raw, json) Hash identifier: t5iHZ0YZekzmfq0y+PhVUngf/qO+t6VtPofs+84y//8= Subject key identifier: BC:93:CC:A0:94:79:AC:D2:60:78:3F:8D:60:2D:CA:D4:9A:00:D3:91 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 3F00507AD7527E74BB3B4DC0B357FB748C4E7080 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa Signing time: Fri 15 May 2026 00:00:37 +0000 ROA not before: Fri 15 May 2026 00:00:37 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:00:50:7a:d7:52:7e:74:bb:3b:4d:c0:b3:57:fb:74:8c:4e:70:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:37 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=4f320ea0e924ccb834f834950ad34b4318170a80ea34c11f0d538620ffae90ea, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:df:a4:ab:e6:ab:24:d5:6d:30:b9:cd:b9:65: b9:c4:8d:b5:f9:79:8b:46:16:69:3c:96:c7:ca:9c: 4c:ff:dc:88:bd:c4:f1:9b:90:9c:a9:d4:f6:4e:29: ac:17:c3:73:fc:fb:88:ac:36:13:33:4d:79:fd:c3: 28:1c:e4:59:61:ac:73:a0:2d:d9:09:74:03:85:88: 04:75:d8:36:43:03:8e:9c:d3:0a:bb:5a:9b:d1:c3: f9:c2:17:f7:77:de:72:2d:bd:74:76:5c:44:68:65: f7:21:b7:a5:69:ce:a0:88:12:d5:24:38:28:20:9f: fd:cf:b0:d4:b1:61:ba:b7:46:03:41:62:69:ad:c4: 40:2d:1d:38:c8:b8:99:a5:1d:ad:25:a5:5b:d8:40: a8:ea:2a:8c:79:86:83:00:ab:86:5f:a0:62:cd:23: 99:9e:bc:6c:37:57:1e:47:fc:06:64:7c:e4:0a:f7: 42:e7:73:46:58:58:3d:5c:9b:37:7f:da:3f:83:88: 0e:6c:c0:ad:fe:55:36:fc:12:29:d7:6c:f2:12:bd: 6b:03:fe:2d:a0:f3:49:47:1b:86:99:24:5a:3d:4d: 3c:8e:5e:3c:3d:89:ff:99:a1:f3:47:ed:20:90:09: 58:9a:72:29:26:27:24:43:ee:d6:05:75:e4:21:5a: 7d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:93:CC:A0:94:79:AC:D2:60:78:3F:8D:60:2D:CA:D4:9A:00:D3:91 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 2e:17:d1:48:01:a7:73:dc:47:33:09:34:67:1e:a1:bd:2d:22: cc:9e:7c:d5:83:8c:48:34:18:3a:8f:d7:6b:70:d5:de:ea:98: 90:ca:31:ae:f3:98:2c:b5:9a:4d:01:72:97:67:93:02:4c:e0: 6d:a3:d9:f1:2b:a0:93:3f:ff:f7:d8:8f:1f:50:27:be:3e:e3: c7:dc:8e:ab:0d:8d:1d:81:72:ab:e9:1c:19:0e:21:a8:69:d5: 18:15:89:b0:cd:4d:64:a7:3a:59:d5:ff:f4:66:39:e5:b7:5d: 7d:60:2b:c2:8b:f3:35:c0:ef:9f:28:8e:dc:35:be:b1:19:b7: b6:cb:e6:05:36:ae:bc:50:c1:10:e8:3b:60:a2:f0:9e:29:0b: f6:c9:e9:c5:76:6a:3c:5a:1d:c6:19:fb:5c:61:f1:dd:17:26: 65:fb:93:74:af:3c:86:80:9d:d2:eb:45:8e:50:75:89:95:97: 5b:7b:ea:3a:61:f0:ee:c0:f9:95:13:fc:8a:8b:8e:83:61:c5: 68:61:b2:94:94:1a:51:19:61:36:14:d8:17:a1:aa:fd:72:c4: a7:a4:6f:09:eb:f6:1e:7d:6a:25:c0:cd:19:3d:c0:cd:51:23: 2f:1a:21:46:f3:ae:e8:e1:b4:a0:ed:4f:65:e9:77:05:cb:e6: 78:3b:d1:98 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUPwBQetdSfnS7O03As1f7dIxOcIAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDAzN1oX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNANGYzMjBlYTBlOTI0Y2NiODM0Zjgz NDk1MGFkMzRiNDMxODE3MGE4MGVhMzRjMTFmMGQ1Mzg2MjBmZmFlOTBlYTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwd+kq+arJNVtMLnNuWW5xI21+XmL RhZpPJbHypxM/9yIvcTxm5CcqdT2TimsF8Nz/PuIrDYTM015/cMoHORZYaxzoC3Z CXQDhYgEddg2QwOOnNMKu1qb0cP5whf3d95yLb10dlxEaGX3Ibelac6giBLVJDgo IJ/9z7DUsWG6t0YDQWJprcRALR04yLiZpR2tJaVb2ECo6iqMeYaDAKuGX6BizSOZ nrxsN1ceR/wGZHzkCvdC53NGWFg9XJs3f9o/g4gObMCt/lU2/BIp12zyEr1rA/4t oPNJRxuGmSRaPU08jl48PYn/maHzR+0gkAlYmnIpJickQ+7WBXXkIVp9zwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLyTzKCUeazSYHg/jWAtytSaANORMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzdhNjQ2ZWMzLWZjMGUtNDBlNy1hZGI0LTgyZDVmZDgzZjAyOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQAuF9FIAadz3EczCTRnHqG9 LSLMnnzVg4xINBg6j9drcNXe6piQyjGu85gstZpNAXKXZ5MCTOBto9nxK6CTP//3 2I8fUCe+PuPH3I6rDY0dgXKr6RwZDiGoadUYFYmwzU1kpzpZ1f/0Zjnlt119YCvC i/M1wO+fKI7cNb6xGbe2y+YFNq68UMEQ6DtgovCeKQv2yenFdmo8Wh3GGftcYfHd FyZl+5N0rzyGgJ3S60WOUHWJlZdbe+o6YfDuwPmVE/yKi46DYcVoYbKUlBpRGWE2 FNgXoar9csSnpG8J6/YefWolwM0ZPcDNUSMvGiFG867o4bSg7U9l6XcFy+Z4O9GY -----END CERTIFICATE-----Generated at Thu May 21 11:14:14 2026 by rpki-client