$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa File: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (raw, json) Hash identifier: cN5Dt6FayyiAKQcY6Lfn/GGbMLbZidxIe56c5AQO0tk= Subject key identifier: 41:D7:97:38:0F:B8:C4:CE:E3:96:E6:C7:71:17:94:E1:F3:80:17:08 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 744ADFF4210A385F5B9FD131A19C709BCF3AA98E Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa Signing time: Sat 16 May 2026 00:00:09 +0000 ROA not before: Sat 16 May 2026 00:00:09 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 159.248.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 00:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:4a:df:f4:21:0a:38:5f:5b:9f:d1:31:a1:9c:70:9b:cf:3a:a9:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: May 16 00:00:09 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=720f0954f92395afd95b087943575687a69a21ba3ca47574b171dd1fc88937bf, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d6:99:d7:8c:ce:34:da:c1:17:53:f0:e7:c1: 10:14:eb:9a:6d:2f:9c:c8:b1:53:9e:02:4c:af:f4: a3:2c:42:5d:4f:8f:27:6f:4e:67:f6:47:75:1b:21: df:1a:74:f6:2b:37:54:9b:ea:2c:4f:41:1f:2b:da: 34:5f:37:d0:b3:f8:7d:7c:fc:31:8a:4d:ab:0c:81: 91:7b:9b:fe:c6:02:db:3d:38:54:17:60:e3:5b:a6: 0a:74:75:63:6a:4b:ac:fe:8d:d0:d5:52:7d:a1:b5: 4e:58:dd:e0:60:c2:4b:02:72:15:35:49:a4:e2:a7: f8:fe:d4:4a:a7:40:c8:f8:9c:49:d6:ca:b3:5c:bc: 02:a6:4a:9b:32:a1:be:5e:4f:05:ad:14:33:cc:c7: 5c:4b:54:59:69:56:5e:1f:39:a8:97:1f:9c:47:b6: fd:86:76:58:1d:e9:0c:69:a0:68:99:86:72:ca:5e: 4e:fe:62:3c:aa:4a:cc:a2:c0:3c:b9:98:20:5f:39: 5a:76:1d:1d:23:64:16:35:e3:51:a9:67:ab:14:46: 66:64:42:ce:23:fa:ad:35:48:47:f1:dd:25:b6:52: 77:d7:9e:95:71:e0:38:3e:d4:78:30:8f:3a:b5:1a: 30:b7:e4:dc:ef:33:c5:45:74:9a:cb:5f:00:a9:11: 09:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D7:97:38:0F:B8:C4:CE:E3:96:E6:C7:71:17:94:E1:F3:80:17:08 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.248.216.0/21 Signature Algorithm: sha256WithRSAEncryption 2d:ff:72:49:b9:00:dc:67:99:d3:97:fb:25:ae:b2:67:39:67: c7:7c:54:8d:47:08:ab:ec:51:b4:11:cf:ec:60:22:cf:df:19: 14:b8:a7:da:7c:5b:01:51:3b:af:c7:23:fb:44:cc:77:d3:d5: 85:76:6b:94:17:ee:97:d0:1b:84:34:cc:d7:a6:ee:f6:69:ba: cd:43:b6:83:99:6d:1e:4e:fe:eb:5c:65:f1:c1:bd:12:77:a4: b4:b8:fd:3e:c5:cd:c4:4e:fb:48:57:ce:b6:36:35:00:11:00: ff:aa:57:a8:81:84:38:1f:b3:c4:30:41:b8:1d:8a:52:63:62: 76:1c:0d:29:11:b6:88:7d:57:4e:5e:7f:e8:ff:21:04:ad:f3: 54:b0:f8:de:0a:85:05:91:a2:fc:b2:d0:d4:c1:bc:8f:56:c2: 19:5f:66:ed:9f:55:3e:e9:f4:c0:f7:3c:c3:2e:59:46:5f:b4: 59:fe:ba:53:cc:b2:fe:38:89:9e:0c:22:8c:d2:ea:b9:46:b4: 18:ce:75:e1:99:e7:d0:0e:a5:f3:ad:bb:78:27:24:d2:0d:c1: 9e:81:f6:27:50:5e:0b:9d:6f:65:7f:d8:a3:60:79:c5:94:bb: 43:bc:c3:68:59:27:9d:12:73:5d:e0:2d:40:20:22:39:c3:5f: 21:d0:06:9b -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUdErf9CEKOF9bn9ExoZxwm886qY4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI2MDUxNjAwMDAwOVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNANzIwZjA5NTRmOTIzOTVhZmQ5NWIw ODc5NDM1NzU2ODdhNjlhMjFiYTNjYTQ3NTc0YjE3MWRkMWZjODg5MzdiZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytaZ14zONNrBF1Pw58EQFOuabS+c yLFTngJMr/SjLEJdT48nb05n9kd1GyHfGnT2KzdUm+osT0EfK9o0XzfQs/h9fPwx ik2rDIGRe5v+xgLbPThUF2DjW6YKdHVjakus/o3Q1VJ9obVOWN3gYMJLAnIVNUmk 4qf4/tRKp0DI+JxJ1sqzXLwCpkqbMqG+Xk8FrRQzzMdcS1RZaVZeHzmolx+cR7b9 hnZYHekMaaBomYZyyl5O/mI8qkrMosA8uZggXzladh0dI2QWNeNRqWerFEZmZELO I/qtNUhH8d0ltlJ3156VceA4PtR4MI86tRowt+Tc7zPFRXSay18AqREJNwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFEHXlzgPuMTO45bmx3EXlOHzgBcIMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU1ZDZjYmFlLThiN2YtNDVhOS04ZDliLTQ1OGQxMGE5YjFjYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvYTViMDFiZGQtY2RlYi00Y2ZjLThjOTMtN2U3MGM1ZTA5MzA2LmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDn/jYMA0GCSqGSIb3DQEBCwUAA4IBAQAt/3JJuQDcZ5nTl/slrrJn OWfHfFSNRwir7FG0Ec/sYCLP3xkUuKfafFsBUTuvxyP7RMx309WFdmuUF+6X0BuE NMzXpu72abrNQ7aDmW0eTv7rXGXxwb0Sd6S0uP0+xc3ETvtIV862NjUAEQD/qleo gYQ4H7PEMEG4HYpSY2J2HA0pEbaIfVdOXn/o/yEErfNUsPjeCoUFkaL8stDUwbyP VsIZX2btn1U+6fTA9zzDLllGX7RZ/rpTzLL+OImeDCKM0uq5RrQYznXhmefQDqXz rbt4JyTSDcGegfYnUF4LnW9lf9ijYHnFlLtDvMNoWSedEnNd4C1AICI5w18h0Aab -----END CERTIFICATE-----Generated at Wed Jun 17 08:38:25 2026 by rpki-client