$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/10466492-6e57-4b27-906d-531139de21f0.roa File: 10466492-6e57-4b27-906d-531139de21f0.roa (raw, json) Hash identifier: 5Cm7Qnj4SO/D3NKPmuUsTnisCrW6k7VIUgznj0WorWA= Subject key identifier: 05:15:F9:54:09:7E:41:CB:07:E2:7E:DF:C6:2F:26:66:CC:B3:8C:68 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 224A7DBBD5AB58FA3546D2EA17D734B8E0450EB6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/10466492-6e57-4b27-906d-531139de21f0.roa Signing time: Fri 15 May 2026 00:00:51 +0000 ROA not before: Fri 15 May 2026 00:00:51 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.218.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:4a:7d:bb:d5:ab:58:fa:35:46:d2:ea:17:d7:34:b8:e0:45:0e:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 15 00:00:51 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=6742ecca0cbd3ce11da1c28912a546d6b7ccf4d358cc2a9d0c554c26cf67709e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bd:4f:d0:61:96:41:34:56:e2:cd:00:44:4a: 28:96:e1:cd:95:b8:95:7a:33:21:d7:68:00:29:b1: f4:3b:22:c4:cc:92:cb:53:51:aa:11:47:87:9a:23: b8:d2:0e:15:d4:3d:5b:fb:09:32:68:ea:06:15:77: e8:66:0b:ed:46:e8:58:8d:d1:59:0f:98:ca:0c:21: e5:32:5a:95:cd:da:5d:13:00:a3:89:0b:4a:27:b0: 01:52:1b:a1:ef:c4:81:5e:99:2c:94:50:ab:76:83: 4d:2a:04:a6:3a:56:fb:be:f7:8c:73:0e:3d:e6:11: 4a:cc:b3:61:56:c4:3d:a6:64:17:8e:ec:bd:44:25: 60:a1:65:c7:5c:3f:3b:05:0d:33:8f:35:81:bd:26: 94:c9:0c:e5:f4:ab:f1:f7:dc:f2:d9:4a:b7:d6:16: c8:91:da:0b:f3:9f:fd:0b:f5:52:83:b6:b4:9e:35: a4:61:38:cb:1d:8c:f2:c3:87:a3:ea:4e:6a:e2:38: 23:6d:83:80:6a:3a:9d:bf:07:46:46:44:94:c2:73: 24:95:e8:55:0c:95:7d:5f:1b:e9:e7:8e:23:60:e2: 1f:b5:3c:e7:e3:44:e8:5b:93:60:ad:46:d1:fa:39: 49:f9:03:d6:c2:36:4d:cb:f8:8c:9e:fb:1c:eb:f5: b4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:15:F9:54:09:7E:41:CB:07:E2:7E:DF:C6:2F:26:66:CC:B3:8C:68 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/10466492-6e57-4b27-906d-531139de21f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.218.156.0/24 Signature Algorithm: sha256WithRSAEncryption 20:4f:dc:ac:2f:03:af:08:78:24:d5:67:d7:a4:0c:ac:8d:57: cb:08:14:6a:93:6a:dc:b4:c6:cb:5f:7a:63:ac:a6:0c:df:5d: 95:f3:3f:b1:7e:03:49:a2:57:6c:d8:8e:48:76:aa:99:dd:40: 44:0f:34:cd:bd:ba:1d:74:53:1d:9d:d9:27:6d:44:73:bb:ed: 0a:05:e3:b4:7a:b5:e4:60:3a:1f:a0:93:40:20:80:16:14:00: 55:1e:09:ac:d1:18:7d:ef:07:76:22:b7:92:c3:34:38:00:89: 6e:f4:9e:e4:7c:f6:fd:e6:2b:70:be:49:bf:3a:33:fe:01:94: a4:58:01:a6:0f:25:57:30:9b:4b:90:05:0f:10:df:0d:96:0a: b4:a9:87:61:ba:fc:a7:fa:6d:55:f6:e6:31:dc:1e:f4:37:ad: ff:e3:6d:59:c4:48:21:1e:d6:4a:8c:fc:42:fb:c3:fc:00:15: d3:8d:23:33:24:64:bd:4d:fc:80:75:30:a3:88:98:56:94:78: 81:74:5d:0d:72:99:d6:4f:84:f7:b7:f3:26:12:e7:1d:73:16: cd:7e:2e:7e:7e:10:cb:ac:ba:19:ef:94:21:09:f5:7f:1b:96: 68:88:69:61:8f:85:f3:bb:f3:67:a9:4e:f4:06:3f:5e:9d:1c: 6e:6c:28:10 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUIkp9u9WrWPo1RtLqF9c0uOBFDrYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNTAwMDA1MVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNANjc0MmVjY2EwY2JkM2NlMTFkYTFj Mjg5MTJhNTQ2ZDZiN2NjZjRkMzU4Y2MyYTlkMGM1NTRjMjZjZjY3NzA5ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv71P0GGWQTRW4s0AREooluHNlbiV ejMh12gAKbH0OyLEzJLLU1GqEUeHmiO40g4V1D1b+wkyaOoGFXfoZgvtRuhYjdFZ D5jKDCHlMlqVzdpdEwCjiQtKJ7ABUhuh78SBXpkslFCrdoNNKgSmOlb7vveMcw49 5hFKzLNhVsQ9pmQXjuy9RCVgoWXHXD87BQ0zjzWBvSaUyQzl9Kvx99zy2Uq31hbI kdoL85/9C/VSg7a0njWkYTjLHYzyw4ej6k5q4jgjbYOAajqdvwdGRkSUwnMklehV DJV9Xxvp544jYOIftTzn40ToW5NgrUbR+jlJ+QPWwjZNy/iMnvsc6/W0QQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAUV+VQJfkHLB+J+38YvJmbMs4xoMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzEwNDY2NDkyLTZlNTctNGIyNy05MDZkLTUzMTEzOWRlMjFmMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9qcMA0GCSqGSIb3DQEBCwUAA4IBAQAgT9ysLwOvCHgk1WfXpAys jVfLCBRqk2rctMbLX3pjrKYM312V8z+xfgNJolds2I5IdqqZ3UBEDzTNvboddFMd ndknbURzu+0KBeO0erXkYDofoJNAIIAWFABVHgms0Rh97wd2IreSwzQ4AIlu9J7k fPb95itwvkm/OjP+AZSkWAGmDyVXMJtLkAUPEN8Nlgq0qYdhuvyn+m1V9uYx3B70 N63/421ZxEghHtZKjPxC+8P8ABXTjSMzJGS9TfyAdTCjiJhWlHiBdF0NcpnWT4T3 t/MmEucdcxbNfi5+fhDLrLoZ75QhCfV/G5ZoiGlhj4Xzu/NnqU70Bj9enRxubCgQ -----END CERTIFICATE-----Generated at Sat Jun 13 11:05:03 2026 by rpki-client