$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/b3ba338e-4843-454b-abe5-65f09756225a.roa File: b3ba338e-4843-454b-abe5-65f09756225a.roa (raw, json) Hash identifier: 8rR2NDI380wGgc15cYW7w6lGnHDb3tV92XlKn9SGrDM= Subject key identifier: 2D:DC:2B:49:DF:DC:D3:6E:4C:A0:E4:3D:31:F9:6D:2D:BA:79:21:A4 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 51B84083A9A4A3BEAE3D1172BDD435076FB1356B Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/b3ba338e-4843-454b-abe5-65f09756225a.roa Signing time: Fri 15 May 2026 00:00:39 +0000 ROA not before: Fri 15 May 2026 00:00:39 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:b8:40:83:a9:a4:a3:be:ae:3d:11:72:bd:d4:35:07:6f:b1:35:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: May 15 00:00:39 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=86e2fe70ea04b529530e9e3018e60840ba54e9b3b2dd47c2f57d13ca4bffc673, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:60:6a:7f:f7:a3:7c:81:69:c3:db:2e:6c:2f: d8:aa:53:44:1f:ef:d2:6d:64:70:dd:6e:e4:12:f4: 1f:d6:1a:8c:4e:e6:5c:d7:db:1c:7a:18:7d:d1:9c: 22:06:e5:50:e6:ae:12:a4:bc:8f:26:8b:85:99:cd: 52:ac:35:31:54:a5:85:a0:12:9d:99:41:37:e8:60: a2:af:79:94:4c:34:69:95:78:42:92:12:cd:f7:6c: 6c:34:f5:4a:97:a4:9f:4c:48:32:9a:89:6c:f1:48: 3c:2a:5d:66:5c:6f:33:db:c2:75:f5:46:3b:ae:66: 4c:5a:b5:cf:03:b8:03:22:77:7f:c2:c7:69:66:a9: cf:49:8d:1f:a0:cb:24:61:af:1a:e0:9d:59:ae:7e: ec:06:ea:15:05:c4:48:7c:bd:06:9e:2c:1b:b9:4b: dd:0b:fa:d2:e3:e5:ed:63:f3:0e:aa:73:9d:e2:41: b7:3a:7e:f9:94:65:26:cb:cf:fa:3e:14:95:0a:94: 18:47:18:4b:8e:78:91:20:96:07:10:ec:77:0b:2a: 18:42:46:26:cf:e8:6d:5a:71:c5:a4:f4:ca:e1:5c: 94:b3:e3:61:3a:a6:6e:d0:5c:c5:10:a3:32:2f:97: 65:84:42:80:6b:f3:1e:5d:6a:96:84:9b:41:34:43: 3b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DC:2B:49:DF:DC:D3:6E:4C:A0:E4:3D:31:F9:6D:2D:BA:79:21:A4 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/b3ba338e-4843-454b-abe5-65f09756225a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/24 Signature Algorithm: sha256WithRSAEncryption 61:b4:c2:c1:93:4b:bf:75:62:03:de:34:55:87:7c:a1:74:4f: 34:be:f0:90:bc:be:4e:19:b6:e3:cf:e3:6a:1a:a7:ed:ae:c2: 8b:3b:fb:a6:c7:d5:2a:e6:c6:a9:bc:b6:47:32:cc:22:56:54: 2c:9c:78:9b:04:dc:23:39:66:1c:c6:73:24:16:09:ca:cd:0c: b7:31:ad:4c:e4:a5:d7:48:3a:ea:e0:82:41:d3:72:e4:df:49: 23:cc:17:dd:e8:9b:c3:00:b0:5d:85:7a:eb:40:fe:ee:2a:7d: 92:02:e4:1a:c9:d2:58:46:9d:c1:ef:54:a2:4d:b8:ea:95:7d: db:8e:c6:45:4b:8f:b4:75:e5:3b:9c:02:a1:69:9a:51:36:cd: 43:8c:05:0f:01:8a:4a:1b:5d:ef:50:2c:d2:0a:04:cd:df:af: 95:b2:48:8d:fc:c1:11:77:9a:66:de:96:ec:10:b6:87:07:91: a4:03:88:d5:dc:0b:ed:0a:1a:84:46:b7:fc:87:1c:57:82:4c: 21:d7:6d:11:ba:46:4d:70:b7:14:e1:24:8e:29:7d:ef:ae:64: 39:27:61:b1:d8:ec:5b:02:68:d1:f8:d4:05:3e:a7:e9:62:79: 7d:cf:83:e2:df:59:86:2f:1c:b0:78:15:a0:e2:2c:5e:32:54: 54:5c:4b:c1 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUUbhAg6mko76uPRFyvdQ1B2+xNWswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDUxNTAwMDAzOVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAODZlMmZlNzBlYTA0YjUyOTUzMGU5 ZTMwMThlNjA4NDBiYTU0ZTliM2IyZGQ0N2MyZjU3ZDEzY2E0YmZmYzY3MzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmBqf/ejfIFpw9subC/YqlNEH+/S bWRw3W7kEvQf1hqMTuZc19scehh90ZwiBuVQ5q4SpLyPJouFmc1SrDUxVKWFoBKd mUE36GCir3mUTDRplXhCkhLN92xsNPVKl6SfTEgymols8Ug8Kl1mXG8z28J19UY7 rmZMWrXPA7gDInd/wsdpZqnPSY0foMskYa8a4J1Zrn7sBuoVBcRIfL0GniwbuUvd C/rS4+XtY/MOqnOd4kG3On75lGUmy8/6PhSVCpQYRxhLjniRIJYHEOx3CyoYQkYm z+htWnHFpPTK4VyUs+NhOqZu0FzFEKMyL5dlhEKAa/MeXWqWhJtBNEM7JQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFC3cK0nf3NNuTKDkPTH5bS26eSGkMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2IzYmEzMzhlLTQ4NDMtNDU0Yi1hYmU1LTY1ZjA5NzU2MjI1YS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArynAMA0GCSqGSIb3DQEBCwUAA4IBAQBhtMLBk0u/dWID3jRVh3yh dE80vvCQvL5OGbbjz+NqGqftrsKLO/umx9Uq5sapvLZHMswiVlQsnHibBNwjOWYc xnMkFgnKzQy3Ma1M5KXXSDrq4IJB03Lk30kjzBfd6JvDALBdhXrrQP7uKn2SAuQa ydJYRp3B71SiTbjqlX3bjsZFS4+0deU7nAKhaZpRNs1DjAUPAYpKG13vUCzSCgTN 36+VskiN/MERd5pm3pbsELaHB5GkA4jV3AvtChqERrf8hxxXgkwh120RukZNcLcU 4SSOKX3vrmQ5J2Gx2OxbAmjR+NQFPqfpYnl9z4Pi31mGLxyweBWg4ixeMlRUXEvB -----END CERTIFICATE-----Generated at Thu May 21 11:13:57 2026 by rpki-client