$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa File: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (raw, json) Hash identifier: uA3ZeD81Ey+SQMUY6max8Ur1zQBSW7JWHCluKDYrMdY= Subject key identifier: 7E:35:28:08:F1:C2:76:5C:97:FB:2E:15:2F:C7:86:7C:3B:59:0F:5A Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 464701A66F4717A39E3A809C5689CA9CCDE2E6C2 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa Signing time: Fri 15 May 2026 00:00:36 +0000 ROA not before: Fri 15 May 2026 00:00:36 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:47:01:a6:6f:47:17:a3:9e:3a:80:9c:56:89:ca:9c:cd:e2:e6:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:36 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=7d9d3d03adafeeee901142918904d27ce14287a364cf79f0fba84763a91ca55d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:aa:1c:e2:cf:7e:fb:e1:49:e2:2e:48:68:8e: ee:8a:c0:9b:7b:45:b1:e0:3e:6a:d5:2a:3d:38:f0: 26:63:41:35:07:82:cb:66:05:5b:c5:a2:94:8a:41: 86:26:04:83:d8:94:00:7b:b7:99:13:a5:f7:ec:5e: 5f:fa:6c:99:ed:43:54:d5:c3:76:bd:76:86:9f:06: 57:c4:f1:93:1a:f7:35:b5:4c:6b:3f:69:74:77:57: de:38:26:ac:f4:53:28:15:40:3a:c0:9d:0c:9d:36: 27:4f:5a:f4:80:3d:cc:0e:b8:b1:6c:bd:fb:36:ef: cb:83:9d:ea:f1:c9:87:58:76:b6:19:9b:48:af:d2: 0b:b2:7c:c2:d5:a6:bf:fb:d9:2f:3b:3f:81:80:88: 06:a0:bf:6c:43:3c:71:67:bd:e2:3f:39:17:61:8f: a7:c6:a3:ca:38:64:58:35:9b:cc:c2:22:c5:09:54: 6f:86:84:8a:ad:3b:53:ca:57:ae:a8:36:4e:7f:ce: ee:25:bc:09:a1:00:93:04:47:91:e4:61:2d:37:f3: 78:28:13:db:7b:10:03:f7:0c:23:31:81:ec:17:ec: 66:bc:66:30:91:72:be:e3:f2:64:b8:03:98:54:25: 21:19:41:45:05:98:e3:f2:8a:fb:ec:ac:54:e9:96: 91:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:35:28:08:F1:C2:76:5C:97:FB:2E:15:2F:C7:86:7C:3B:59:0F:5A X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.196.0/22 Signature Algorithm: sha256WithRSAEncryption 47:7e:85:ac:d0:e0:c4:05:d0:55:05:20:95:37:e8:cc:37:37: 6e:7e:18:c3:7b:da:59:94:00:7f:e4:cb:19:7b:60:6b:76:9c: 91:27:db:aa:4d:9b:06:e5:73:93:47:45:27:63:bf:91:4f:ff: d4:81:c8:74:a3:c6:de:01:d8:d4:94:b1:5a:34:c7:e5:78:87: be:ca:62:5e:2b:40:aa:31:4b:ad:ed:ff:e6:66:c0:39:3b:bd: 03:b8:2f:01:df:5b:7a:b6:9a:71:32:85:41:ea:4f:ce:c7:46: 4c:3e:d3:c4:9e:19:86:b0:25:b3:e8:9b:c1:45:b8:d0:1f:bf: 23:9f:8f:19:3f:31:d0:e6:9f:a5:7b:5d:b0:fc:92:d0:dc:e8: 4d:03:b5:99:9e:c0:7c:c6:d7:fc:69:8d:f8:c8:c5:ff:69:39: c1:c0:ac:55:b1:cc:29:06:44:9c:a9:c6:a3:cc:74:0f:16:83: f9:f8:1e:b9:83:a3:fa:7e:a7:eb:61:90:ab:47:31:ec:5d:9a: a7:94:30:ab:c0:e7:e0:f9:01:4c:42:9b:9b:94:c8:a5:64:09: ba:81:05:72:21:8f:93:c7:2d:70:16:e8:0c:0b:9d:09:ef:a4: 57:7f:5d:8d:1e:0b:11:9d:e2:64:05:e0:d8:8a:51:62:17:16: 8b:41:b0:4c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIURkcBpm9HF6OeOoCcVonKnM3i5sIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDAzNloX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAN2Q5ZDNkMDNhZGFmZWVlZTkwMTE0 MjkxODkwNGQyN2NlMTQyODdhMzY0Y2Y3OWYwZmJhODQ3NjNhOTFjYTU1ZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKoc4s9+++FJ4i5IaI7uisCbe0Wx 4D5q1So9OPAmY0E1B4LLZgVbxaKUikGGJgSD2JQAe7eZE6X37F5f+myZ7UNU1cN2 vXaGnwZXxPGTGvc1tUxrP2l0d1feOCas9FMoFUA6wJ0MnTYnT1r0gD3MDrixbL37 Nu/Lg53q8cmHWHa2GZtIr9ILsnzC1aa/+9kvOz+BgIgGoL9sQzxxZ73iPzkXYY+n xqPKOGRYNZvMwiLFCVRvhoSKrTtTyleuqDZOf87uJbwJoQCTBEeR5GEtN/N4KBPb exAD9wwjMYHsF+xmvGYwkXK+4/JkuAOYVCUhGUFFBZjj8or77KxU6ZaRoQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFH41KAjxwnZcl/suFS/Hhnw7WQ9aMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzgyNDU2ZmYyLWY4YzQtNGM1YS05NDU4LTgyZDkwOWY4M2Y3ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynEMA0GCSqGSIb3DQEBCwUAA4IBAQBHfoWs0ODEBdBVBSCVN+jM NzdufhjDe9pZlAB/5MsZe2BrdpyRJ9uqTZsG5XOTR0UnY7+RT//Ugch0o8beAdjU lLFaNMfleIe+ymJeK0CqMUut7f/mZsA5O70DuC8B31t6tppxMoVB6k/Ox0ZMPtPE nhmGsCWz6JvBRbjQH78jn48ZPzHQ5p+le12w/JLQ3OhNA7WZnsB8xtf8aY34yMX/ aTnBwKxVscwpBkScqcajzHQPFoP5+B65g6P6fqfrYZCrRzHsXZqnlDCrwOfg+QFM QpublMilZAm6gQVyIY+Txy1wFugMC50J76RXf12NHgsRneJkBeDYilFiFxaLQbBM -----END CERTIFICATE-----Generated at Thu May 21 11:14:17 2026 by rpki-client