$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/565f9740-389f-45ac-956e-b96e19889315.roa File: 565f9740-389f-45ac-956e-b96e19889315.roa (raw, json) Hash identifier: 8UX4MeSRd7upoffLe62HCmWqH9tHPe92Ibwf6x5JZ+A= Subject key identifier: B0:07:0D:19:13:F4:3B:05:13:0B:40:C1:4C:B1:DA:08:B3:CD:3B:CB Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 54FF7ED281AD1BCF82BEDE2FF48954188FD84A1B Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/565f9740-389f-45ac-956e-b96e19889315.roa Signing time: Sat 16 May 2026 00:00:53 +0000 ROA not before: Sat 16 May 2026 00:00:53 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 159.248.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:06:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ff:7e:d2:81:ad:1b:cf:82:be:de:2f:f4:89:54:18:8f:d8:4a:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: May 16 00:00:53 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=00c27f68e804172690c1b67383aec0446769174bd5498b9cd05de25ed5df8357, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fc:5c:ab:7f:a3:4e:df:30:71:b1:ee:21:14: 45:e7:00:8b:80:9d:14:ad:7c:fa:eb:50:5a:36:39: 94:aa:bb:e5:9f:93:73:44:66:ed:4b:76:c1:06:72: 8d:5d:63:d9:0a:84:38:a6:1b:da:b6:3c:40:b5:8d: c8:db:c4:b0:97:04:a2:90:6c:3c:f4:c8:64:f7:b0: 67:16:73:3f:d8:5a:d3:08:c2:66:84:88:70:2c:7a: ac:ab:8a:c3:76:81:8f:24:41:da:f7:1f:15:2f:06: 36:44:70:3d:ce:a8:49:c2:cb:65:f2:87:f4:6f:81: 5e:77:e5:68:34:37:04:8d:0f:bb:6d:a4:a3:dd:b1: 10:1d:e9:d2:de:ce:60:6c:e7:15:3b:32:75:ea:82: 61:66:b8:89:a7:e2:8e:f2:88:4c:2e:bf:d8:84:bd: 17:45:e9:88:6f:18:30:26:5b:65:f5:c8:00:6d:29: 05:d7:18:eb:fd:c9:5c:68:9f:28:c5:28:89:35:7b: 0c:f8:41:17:61:0a:2d:4d:d5:32:ed:7b:cf:c6:5d: e1:df:ed:fa:72:75:d7:7a:2d:cf:96:7d:6f:04:14: 3a:88:15:40:b9:68:ba:68:8e:cf:7d:1a:32:0f:9e: fe:30:13:ed:ae:65:46:4d:08:5d:bd:3a:1e:8e:be: 35:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:07:0D:19:13:F4:3B:05:13:0B:40:C1:4C:B1:DA:08:B3:CD:3B:CB X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/565f9740-389f-45ac-956e-b96e19889315.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.248.224.0/21 Signature Algorithm: sha256WithRSAEncryption 4c:4d:59:f6:5d:f3:9e:f9:1b:19:3f:2b:3f:c9:c5:02:56:2d: 3b:00:28:0e:41:41:e1:37:a2:7f:67:2f:99:c3:0c:9b:24:88: bd:d2:a4:db:32:7d:c9:58:ce:a2:55:9f:ca:71:c8:5e:3a:1b: 95:5f:e5:d1:e7:4e:a3:d6:3c:6a:3b:94:65:79:44:e9:2a:50: 71:40:81:41:7f:8c:d7:25:3c:3f:a2:8c:19:1b:f3:21:4f:b0: 57:51:2a:5e:36:c0:0f:bb:de:65:01:45:38:21:b3:05:97:99: 77:4d:d2:d9:c6:38:fa:ad:84:38:0d:8d:c2:e3:cd:ba:ce:e0: b0:88:55:a5:7e:b8:80:45:60:8d:45:51:9d:da:b4:4c:3a:0c: fd:98:08:2f:44:47:05:49:93:89:b3:fa:db:1b:0f:47:a5:76: 57:85:c8:87:05:3e:60:f9:2a:08:87:52:a3:38:58:c2:cc:74: 28:33:96:9b:de:c8:54:bf:13:11:a7:a5:c9:7e:f5:33:ad:54: 53:18:74:99:4a:10:90:87:5c:90:85:14:e5:bb:ba:5c:a0:6a: 18:5e:8f:18:d7:da:7e:71:80:a8:31:2a:12:fc:c3:06:4d:3e: b4:43:96:7b:c1:fd:63:a9:9d:98:a4:6f:60:0b:6c:9e:ab:3f: bd:b6:21:69 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUVP9+0oGtG8+Cvt4v9IlUGI/YShswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI2MDUxNjAwMDA1M1oX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAMDBjMjdmNjhlODA0MTcyNjkwYzFi NjczODNhZWMwNDQ2NzY5MTc0YmQ1NDk4YjljZDA1ZGUyNWVkNWRmODM1NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/xcq3+jTt8wcbHuIRRF5wCLgJ0U rXz661BaNjmUqrvln5NzRGbtS3bBBnKNXWPZCoQ4phvatjxAtY3I28SwlwSikGw8 9Mhk97BnFnM/2FrTCMJmhIhwLHqsq4rDdoGPJEHa9x8VLwY2RHA9zqhJwstl8of0 b4Fed+VoNDcEjQ+7baSj3bEQHenS3s5gbOcVOzJ16oJhZriJp+KO8ohMLr/YhL0X RemIbxgwJltl9cgAbSkF1xjr/clcaJ8oxSiJNXsM+EEXYQotTdUy7XvPxl3h3+36 cnXXei3Pln1vBBQ6iBVAuWi6aI7PfRoyD57+MBPtrmVGTQhdvToejr41ywIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLAHDRkT9DsFEwtAwUyx2gizzTvLMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU2NWY5NzQwLTM4OWYtNDVhYy05NTZlLWI5NmUxOTg4OTMxNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvYTViMDFiZGQtY2RlYi00Y2ZjLThjOTMtN2U3MGM1ZTA5MzA2LmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDn/jgMA0GCSqGSIb3DQEBCwUAA4IBAQBMTVn2XfOe+RsZPys/ycUC Vi07ACgOQUHhN6J/Zy+ZwwybJIi90qTbMn3JWM6iVZ/KccheOhuVX+XR506j1jxq O5RleUTpKlBxQIFBf4zXJTw/oowZG/MhT7BXUSpeNsAPu95lAUU4IbMFl5l3TdLZ xjj6rYQ4DY3C4826zuCwiFWlfriARWCNRVGd2rRMOgz9mAgvREcFSZOJs/rbGw9H pXZXhciHBT5g+SoIh1KjOFjCzHQoM5ab3shUvxMRp6XJfvUzrVRTGHSZShCQh1yQ hRTlu7pcoGoYXo8Y19p+cYCoMSoS/MMGTT60Q5Z7wf1jqZ2YpG9gC2yeqz+9tiFp -----END CERTIFICATE-----Generated at Sat Jun 13 12:56:18 2026 by rpki-client