$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa File: 3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa (raw, json) Hash identifier: 4ERa0OLBAsTdhNR7PKjNbLOEoi7QlFl+HL77jxvD1Y0= Subject key identifier: 18:8C:76:1B:47:75:DC:CC:BD:22:EF:09:73:02:62:40:96:70:57:A3 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 394C879754B385E47D8693E2829E7EF35B28947E Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa Signing time: Sun 17 May 2026 00:00:11 +0000 ROA not before: Sun 17 May 2026 00:00:11 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 160.235.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 00:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:4c:87:97:54:b3:85:e4:7d:86:93:e2:82:9e:7e:f3:5b:28:94:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: May 17 00:00:11 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=ab2f853e9d95c2568c348182dd392bc673ec204f6a91ce8860c32e8cfcdf88fd, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ae:6b:58:6a:62:18:f4:61:c5:e4:43:be:05: f1:65:b8:45:40:fe:08:10:5f:f4:17:64:e3:44:32: bc:9c:27:ea:3a:b4:1c:6b:1b:ab:c9:19:fe:3e:11: 41:c3:ed:9f:38:31:34:ec:3d:a9:19:3e:e6:f3:e9: 90:19:b7:76:1c:79:05:80:26:3b:4a:09:a6:78:b4: 2a:83:a0:9b:12:32:3a:63:00:ff:4c:db:67:53:ba: 2c:c9:48:b0:83:6c:f6:26:92:93:81:cb:a4:05:21: 09:22:65:10:ea:b5:58:99:b9:c9:0e:b3:1e:9c:76: a8:35:82:02:35:48:4a:46:86:4e:97:2c:ac:2e:d2: 87:7f:da:ed:e8:26:ab:dc:ed:3b:78:1b:aa:2b:43: 15:2f:8d:bd:24:5c:42:88:7d:ab:6c:c2:45:d1:19: 8c:8f:ba:56:d5:30:b0:89:4e:9c:41:6a:9c:a2:9a: 7a:e9:df:e6:f5:ba:eb:7a:d6:ce:52:a4:97:ce:8c: b2:17:a9:3b:67:23:ec:76:d6:54:10:0c:c6:e2:1a: 2c:01:9f:05:1c:d9:45:d5:b5:7b:26:50:5a:12:f9: 57:89:85:38:60:d0:52:d8:54:34:32:75:9c:2d:6e: 77:68:6b:f2:67:b4:12:e2:44:52:2a:f0:92:d2:31: 36:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:8C:76:1B:47:75:DC:CC:BD:22:EF:09:73:02:62:40:96:70:57:A3 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3d1fb1c7-6140-4c57-928f-1a59586f9e2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.235.0.0/16 Signature Algorithm: sha256WithRSAEncryption 99:98:67:a5:55:85:1e:09:6c:4c:23:31:50:2c:e8:71:72:e0: 6a:3e:cf:13:06:4f:2c:18:9a:98:db:f5:31:b4:6e:de:07:b7: 8d:61:68:bc:3c:e1:7c:6f:af:96:b5:18:d8:d1:aa:67:9c:86: 5f:dc:00:86:77:2e:69:f9:8f:ee:48:6c:9a:ca:33:61:05:54: 98:a8:98:c5:41:bf:64:29:e8:88:4f:d1:36:c3:e1:0f:43:f7: bc:c1:e5:91:8b:b4:ca:2d:98:e6:3d:13:c6:b1:f3:7f:93:70: ed:ed:c5:5b:d2:88:09:e5:5c:9d:45:9b:51:56:8b:4b:e3:f5: 45:8a:eb:63:30:30:e3:a9:33:4e:d8:c6:f6:bb:1d:25:a5:86: e6:94:5d:3f:98:2e:55:b4:bc:d1:9a:fb:ee:8b:f6:9e:40:a1: 12:6f:20:a8:b3:b6:0d:31:55:02:d5:4f:7f:e0:c3:04:e5:a1: d0:ce:db:95:f3:09:fc:c9:5e:9e:b4:f4:f6:28:d7:f1:41:0b: 7b:a4:0b:a0:49:ea:d1:ef:0e:33:cc:f5:82:fe:97:77:a8:52: 52:92:3b:73:8d:80:f7:38:c5:a3:b8:63:e7:33:f6:2d:8b:2b: 15:98:68:09:ee:01:55:83:53:ad:55:f8:d6:6d:4d:35:7f:6b: 0a:e4:00:c0 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUOUyHl1SzheR9hpPigp5+81solH4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI2MDUxNzAwMDAxMVoX DTI2MDgxNTIzNTk1OVowejFJMEcGA1UEBRNAYWIyZjg1M2U5ZDk1YzI1NjhjMzQ4 MTgyZGQzOTJiYzY3M2VjMjA0ZjZhOTFjZTg4NjBjMzJlOGNmY2RmODhmZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzq5rWGpiGPRhxeRDvgXxZbhFQP4I EF/0F2TjRDK8nCfqOrQcaxuryRn+PhFBw+2fODE07D2pGT7m8+mQGbd2HHkFgCY7 SgmmeLQqg6CbEjI6YwD/TNtnU7osyUiwg2z2JpKTgcukBSEJImUQ6rVYmbnJDrMe nHaoNYICNUhKRoZOlyysLtKHf9rt6Car3O07eBuqK0MVL429JFxCiH2rbMJF0RmM j7pW1TCwiU6cQWqcopp66d/m9brretbOUqSXzoyyF6k7ZyPsdtZUEAzG4hosAZ8F HNlF1bV7JlBaEvlXiYU4YNBS2FQ0MnWcLW53aGvyZ7QS4kRSKvCS0jE2mwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFBiMdhtHddzMvSLvCXMCYkCWcFejMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzNkMWZiMWM3LTYxNDAtNGM1Ny05MjhmLTFhNTk1ODZmOWUyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvYTViMDFiZGQtY2RlYi00Y2ZjLThjOTMtN2U3MGM1ZTA5MzA2LmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAoOswDQYJKoZIhvcNAQELBQADggEBAJmYZ6VVhR4JbEwjMVAs6HFy 4Go+zxMGTywYmpjb9TG0bt4Ht41haLw84Xxvr5a1GNjRqmechl/cAIZ3Lmn5j+5I bJrKM2EFVJiomMVBv2Qp6IhP0TbD4Q9D97zB5ZGLtMotmOY9E8ax83+TcO3txVvS iAnlXJ1Fm1FWi0vj9UWK62MwMOOpM07Yxva7HSWlhuaUXT+YLlW0vNGa++6L9p5A oRJvIKiztg0xVQLVT3/gwwTlodDO25XzCfzJXp609PYo1/FBC3ukC6BJ6tHvDjPM 9YL+l3eoUlKSO3ONgPc4xaO4Y+cz9i2LKxWYaAnuAVWDU61V+NZtTTV/awrkAMA= -----END CERTIFICATE-----Generated at Wed Jun 17 09:01:28 2026 by rpki-client