$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa File: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (raw, json) Hash identifier: Gc4Egy67JM0d/HEcfrgEvgnyi7RS8L58SIDhvgQi9/c= Subject key identifier: 7D:5B:19:92:74:57:AE:A0:9D:16:A0:BE:86:52:C2:0C:99:2A:3C:B3 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 34E8EAAED44CB5488D152CB8243AC47C154578E4 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa Signing time: Fri 15 May 2026 00:00:39 +0000 ROA not before: Fri 15 May 2026 00:00:39 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:e8:ea:ae:d4:4c:b5:48:8d:15:2c:b8:24:3a:c4:7c:15:45:78:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:39 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=15e01b592ec1e3039634ac7511544d0f647fe1894f2eaadd9804969bd83005a0, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:11:bb:2f:f9:10:75:d9:04:eb:99:25:4c:1f: ce:ca:20:2e:ff:23:dc:e1:58:b6:72:c8:47:30:b4: 65:eb:77:8b:a2:59:29:a8:ab:fc:4f:b6:45:03:26: 84:e0:e1:0f:ca:b5:9b:20:55:20:59:f0:d8:7b:64: 9a:13:3d:a0:99:01:ce:52:37:7c:03:c1:9a:23:5c: 24:6a:a4:55:5e:f1:55:32:94:e9:d6:4a:95:47:81: f7:ed:a8:7f:f8:4e:d2:1c:26:61:fc:96:2b:13:3e: ca:33:33:b3:47:97:e1:d0:d1:0a:fe:4e:fa:9a:11: f5:e4:96:cc:c7:79:c8:fb:3b:13:1d:82:8b:07:64: f5:03:9a:eb:6e:6d:bb:c3:cb:2f:dc:c1:78:bf:88: 52:fa:6d:49:e3:75:e0:c7:a7:12:13:9f:c8:b8:3a: 7c:7b:10:c4:2c:b9:cf:42:e4:96:9d:31:83:93:56: 40:07:a4:ce:94:18:a4:c2:b6:c9:d6:ad:7c:a7:bd: 0e:04:b9:2e:ee:8c:f9:d1:c7:67:89:e0:88:f6:b1: a8:45:3c:83:80:c8:bd:eb:d2:ff:f1:49:b6:58:40: 8a:ae:60:28:11:1d:50:22:d2:10:f0:02:1e:33:38: 0e:79:24:fa:ca:d1:0d:81:dc:e5:12:b5:78:c4:92: df:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:5B:19:92:74:57:AE:A0:9D:16:A0:BE:86:52:C2:0C:99:2A:3C:B3 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.236.0/23 Signature Algorithm: sha256WithRSAEncryption 78:70:6f:3d:91:44:ef:91:85:eb:50:99:71:c8:b9:d1:ac:45: c9:48:94:3a:df:17:72:56:2c:b2:3a:76:26:18:34:3c:f3:75: 96:9b:6a:3a:c0:99:67:40:a0:ef:72:2c:74:98:3d:0c:3f:ab: 29:6a:b9:25:43:a9:05:68:92:03:2d:7a:9a:71:bf:45:21:96: 37:15:ba:47:9d:23:1a:da:1b:e5:03:eb:75:64:5b:02:b3:a5: 96:a4:6e:a9:1c:d2:6e:bf:55:29:e5:ec:89:1f:48:23:ba:61: a6:4c:a5:ec:76:e1:a9:d5:eb:12:0b:06:b6:4d:7e:02:de:f8: 83:6a:0e:2c:29:dd:66:f4:79:0c:cb:d3:bf:1c:61:65:d6:6e: a7:8f:6c:85:6c:78:c6:15:b9:52:66:85:56:22:2e:8f:b1:85: c8:45:de:80:f0:b1:02:2f:f7:8a:eb:a1:d5:c8:ff:e9:34:59: 77:ba:21:21:3c:1d:2e:38:f4:ee:4a:18:cc:2e:f0:c7:90:a0: cf:74:bc:e1:91:72:ba:ee:01:6d:9f:4a:f0:b7:16:39:ef:13: 45:15:f3:98:f4:fd:dc:d1:a8:84:ac:e5:dc:e3:09:12:f8:12: 21:f0:ff:d9:9b:46:21:31:e1:06:54:71:66:c8:41:78:17:30: 05:ac:76:d1 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUNOjqrtRMtUiNFSy4JDrEfBVFeOQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDAzOVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMTVlMDFiNTkyZWMxZTMwMzk2MzRh Yzc1MTE1NDRkMGY2NDdmZTE4OTRmMmVhYWRkOTgwNDk2OWJkODMwMDVhMDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xG7L/kQddkE65klTB/OyiAu/yPc 4Vi2cshHMLRl63eLolkpqKv8T7ZFAyaE4OEPyrWbIFUgWfDYe2SaEz2gmQHOUjd8 A8GaI1wkaqRVXvFVMpTp1kqVR4H37ah/+E7SHCZh/JYrEz7KMzOzR5fh0NEK/k76 mhH15JbMx3nI+zsTHYKLB2T1A5rrbm27w8sv3MF4v4hS+m1J43Xgx6cSE5/IuDp8 exDELLnPQuSWnTGDk1ZAB6TOlBikwrbJ1q18p70OBLku7oz50cdnieCI9rGoRTyD gMi969L/8Um2WECKrmAoER1QItIQ8AIeMzgOeST6ytENgdzlErV4xJLfiwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFH1bGZJ0V66gnRagvoZSwgyZKjyzMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2E3OGI5MGRmLTIzM2ItNGVjNi04OWQyLWRlMjdhYzJkYzA0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynsMA0GCSqGSIb3DQEBCwUAA4IBAQB4cG89kUTvkYXrUJlxyLnR rEXJSJQ63xdyViyyOnYmGDQ883WWm2o6wJlnQKDvcix0mD0MP6sparklQ6kFaJID LXqacb9FIZY3FbpHnSMa2hvlA+t1ZFsCs6WWpG6pHNJuv1Up5eyJH0gjumGmTKXs duGp1esSCwa2TX4C3viDag4sKd1m9HkMy9O/HGFl1m6nj2yFbHjGFblSZoVWIi6P sYXIRd6A8LECL/eK66HVyP/pNFl3uiEhPB0uOPTuShjMLvDHkKDPdLzhkXK67gFt n0rwtxY57xNFFfOY9P3c0aiErOXc4wkS+BIh8P/Zm0YhMeEGVHFmyEF4FzAFrHbR -----END CERTIFICATE-----Generated at Thu May 21 11:57:15 2026 by rpki-client