$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa File: 9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa (raw, json) Hash identifier: Sjv+eegcjj7jn50q14IaqqpiuHn2ugMBFYdAXlffkh8= Subject key identifier: 2E:80:29:70:EE:16:B6:AA:D5:D5:42:03:36:71:43:50:74:36:36:71 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 45FE9AE92B24658EA8E067AF2D4277E28CEC44F8 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa Signing time: Sat 16 May 2026 00:00:06 +0000 ROA not before: Sat 16 May 2026 00:00:06 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.208.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:fe:9a:e9:2b:24:65:8e:a8:e0:67:af:2d:42:77:e2:8c:ec:44:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 16 00:00:06 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=9f61d09c6d0b05dbccd6e52c858a095cfad3bc782522e8c915c30dfff3251cca, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:37:15:a3:56:02:c6:50:b7:c4:38:f7:85:ef: dc:0e:1d:e5:5f:46:56:8f:52:64:d0:06:5f:00:60: 20:49:93:75:bc:26:cf:ac:6d:49:f1:f9:59:e5:dc: c3:3f:4f:54:87:a6:30:44:42:60:79:4e:fd:fc:81: d0:2f:e0:97:63:0d:d6:85:95:13:3d:34:8c:8a:b5: e9:92:ee:92:b2:70:42:e5:e8:de:b5:be:b1:7e:eb: c2:57:95:d6:06:36:34:23:66:6a:15:6b:b2:4c:9d: c2:87:81:2b:06:a4:0c:0e:00:95:bd:4b:30:f3:b1: a0:6a:44:9f:a1:20:7d:cc:32:73:75:ef:6d:07:bc: 3b:5d:3d:49:4a:18:91:93:87:a0:69:5b:1d:d7:7d: 6b:fd:d7:5d:2e:d4:c8:68:6f:71:48:36:49:fa:9a: 99:7d:44:ab:3b:af:86:6f:b3:6f:2b:cc:44:72:ca: 0c:2a:d1:fa:f6:6e:07:90:48:cc:c4:67:0b:d2:35: 1a:89:a2:7b:a1:9e:2e:d2:94:45:42:55:f1:34:21: f8:19:9e:7b:36:a7:24:df:9d:89:49:eb:fd:f3:ea: 33:e3:a2:7b:4d:33:32:53:04:d6:8f:94:37:6d:3c: 0d:b2:53:4f:2d:9c:ec:a3:07:a3:57:3c:a1:c9:46: f2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:80:29:70:EE:16:B6:AA:D5:D5:42:03:36:71:43:50:74:36:36:71 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.208.53.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:e9:3b:c7:26:2f:cd:b3:1c:8f:de:4d:e9:a8:ee:cb:01:50: 66:3a:3b:0d:b3:1e:8d:cc:0b:21:4e:eb:33:ef:32:6c:0e:f2: 83:6b:d8:dd:03:13:0c:d6:d9:16:a9:eb:bb:98:57:0d:b0:0e: c7:9a:df:23:ab:e0:fa:31:27:7e:31:02:66:c2:1e:4b:70:a6: ab:8a:10:5b:b3:0e:dc:95:ae:46:c4:a3:a1:e8:8a:1f:75:fe: 88:0d:3d:a5:af:fa:ed:96:f3:e7:97:56:ed:86:9b:70:0b:16: 39:fc:c3:c2:43:81:28:62:27:56:be:11:c2:5e:55:b1:db:fe: 77:21:6e:00:49:88:18:e7:6c:77:34:df:84:db:5d:27:21:d3: 84:43:be:68:c3:3f:ae:fd:37:a4:e2:7c:9d:42:30:f7:84:c9: fe:7e:1b:f5:b5:8f:1e:49:20:63:18:cd:01:05:66:41:1a:4f: 2b:7c:cf:f9:7a:39:10:a7:7e:0a:3e:0f:90:40:3c:cd:c9:c6: 20:a3:7f:55:be:a0:10:1c:76:0f:69:1f:04:fb:26:e6:9b:02: 24:67:05:b6:dc:76:93:b6:e0:e6:b9:44:cb:9c:dd:c5:d4:67: f0:f2:eb:b4:51:f5:05:76:01:e9:91:60:5a:d9:e8:93:8e:f7: b9:3f:82:2b -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIURf6a6SskZY6o4GevLUJ34ozsRPgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNjAwMDAwNloX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAOWY2MWQwOWM2ZDBiMDVkYmNjZDZl NTJjODU4YTA5NWNmYWQzYmM3ODI1MjJlOGM5MTVjMzBkZmZmMzI1MWNjYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTcVo1YCxlC3xDj3he/cDh3lX0ZW j1Jk0AZfAGAgSZN1vCbPrG1J8flZ5dzDP09Uh6YwREJgeU79/IHQL+CXYw3WhZUT PTSMirXpku6SsnBC5ejetb6xfuvCV5XWBjY0I2ZqFWuyTJ3Ch4ErBqQMDgCVvUsw 87GgakSfoSB9zDJzde9tB7w7XT1JShiRk4egaVsd131r/dddLtTIaG9xSDZJ+pqZ fUSrO6+Gb7NvK8xEcsoMKtH69m4HkEjMxGcL0jUaiaJ7oZ4u0pRFQlXxNCH4GZ57 Nqck352JSev98+oz46J7TTMyUwTWj5Q3bTwNslNPLZzsowejVzyhyUbysQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFC6AKXDuFraq1dVCAzZxQ1B0NjZxMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlhYjg3NTVhLWI0MGUtNDEyZS04YjBiLWQxM2UwYzM5YWVkMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9A1MA0GCSqGSIb3DQEBCwUAA4IBAQB66TvHJi/NsxyP3k3pqO7L AVBmOjsNsx6NzAshTusz7zJsDvKDa9jdAxMM1tkWqeu7mFcNsA7Hmt8jq+D6MSd+ MQJmwh5LcKarihBbsw7cla5GxKOh6Iofdf6IDT2lr/rtlvPnl1bthptwCxY5/MPC Q4EoYidWvhHCXlWx2/53IW4ASYgY52x3NN+E210nIdOEQ75owz+u/Tek4nydQjD3 hMn+fhv1tY8eSSBjGM0BBWZBGk8rfM/5ejkQp34KPg+QQDzNycYgo39VvqAQHHYP aR8E+ybmmwIkZwW23HaTtuDmuUTLnN3F1Gfw8uu0UfUFdgHpkWBa2eiTjve5P4Ir -----END CERTIFICATE-----Generated at Sat Jun 13 08:03:22 2026 by rpki-client