$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c0e0735d-a91e-478d-82d2-a3f04ee435d2.roa File: c0e0735d-a91e-478d-82d2-a3f04ee435d2.roa (raw, json) Hash identifier: 9DeiO9FST5hZLD3tHapeEUOrAZ6f30kriQqMMxvtn7c= Subject key identifier: 77:BD:12:A9:9E:5B:3B:B9:CD:F3:DC:DF:4A:5E:F5:7C:78:B9:4F:59 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 542A1E30821BF3B66F226C372D906BA25DAC9B6E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c0e0735d-a91e-478d-82d2-a3f04ee435d2.roa Signing time: Fri 15 May 2026 00:00:52 +0000 ROA not before: Fri 15 May 2026 00:00:52 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.218.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:2a:1e:30:82:1b:f3:b6:6f:22:6c:37:2d:90:6b:a2:5d:ac:9b:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 15 00:00:52 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=92eac39c57422ada8a5117218e180d89db2a369b8ef4d805d7af2b785105fa32, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2f:41:17:82:91:10:29:ff:79:6c:88:6c:a5: 7d:da:9a:e6:61:bc:a2:d4:7b:0b:1f:dd:98:f6:a8: 7f:d4:f9:09:13:39:6e:87:43:10:ff:f1:e2:a8:03: 1b:65:1b:76:97:d8:54:35:32:ca:73:c2:e9:4e:47: c6:c2:f8:05:0b:38:c1:3d:d9:32:9d:fe:62:af:c4: 3b:8e:fc:59:ba:3c:82:f2:3d:dc:43:73:3b:8c:63: d4:16:c6:9c:01:01:f1:7a:98:b3:7f:4a:dd:a7:ea: c9:22:b3:43:36:0a:7e:b9:93:37:30:1d:ad:90:ba: 83:8e:36:d2:ab:de:aa:77:c9:0b:3c:a0:f0:02:97: 71:ca:53:33:c6:22:fb:2d:dd:2b:e6:6d:1d:8f:d9: ee:e2:66:b2:ec:01:e0:2b:a3:15:3c:47:9b:e3:41: 29:04:25:34:3d:ea:ce:94:89:4a:4c:64:7f:07:75: 23:a0:40:ce:68:10:d1:22:cb:24:a1:52:69:d5:33: e9:8d:d6:d6:cd:18:d4:b6:01:c4:99:bc:5d:4b:04: 7a:c1:ec:00:cf:c0:35:e4:70:dd:0d:eb:8d:a8:04: ba:9b:74:ad:7d:be:1f:47:65:62:91:18:d0:e1:38: e7:38:80:81:dd:5f:75:61:e2:fa:f5:26:ef:f7:15: d1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:BD:12:A9:9E:5B:3B:B9:CD:F3:DC:DF:4A:5E:F5:7C:78:B9:4F:59 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c0e0735d-a91e-478d-82d2-a3f04ee435d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.218.158.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:07:b6:68:fa:77:1b:84:6a:80:1e:80:d4:78:b3:dd:84:b6: 69:1d:36:14:de:7a:7a:49:3c:19:f4:a1:87:85:7f:94:81:12: 54:cb:37:60:e4:3f:45:a5:86:e3:06:d0:30:f3:2a:51:b5:f2: e6:f5:b7:24:7b:f9:5a:cb:f1:74:c0:dc:e1:d8:21:a4:f1:84: 2e:71:42:df:09:72:23:3e:3e:72:7a:7d:33:fa:70:3f:c9:c5: 41:2b:45:2f:5d:c1:9f:7f:45:bf:f5:c1:03:51:87:2e:36:36: 07:46:36:8a:a1:e6:c7:bb:8b:96:95:c1:ad:9f:6d:54:bd:3b: 71:cb:f7:f9:9e:8c:d4:8f:a1:8c:55:7b:39:bd:d2:8e:5a:f1: 1f:b1:8f:fc:10:13:cf:99:41:68:99:34:b7:ba:aa:72:f1:41: 66:e5:ed:1d:da:8f:4a:8a:2c:1c:02:62:d6:f9:65:7a:5e:89: 33:b3:5c:66:c6:78:f6:73:dd:10:0b:32:19:ce:ec:b8:c5:c2: 3d:e9:f3:82:f4:88:b1:6b:ff:0d:43:28:0b:01:d5:be:bf:02: 0f:14:0a:e7:fa:97:fa:6f:ab:2a:f7:fd:48:a7:da:7f:3b:fe: db:c2:50:0b:c3:66:b9:bd:ec:f8:08:19:e2:1d:2e:0e:08:bb: 13:cc:e4:56 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUVCoeMIIb87ZvImw3LZBrol2sm24wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNTAwMDA1MloX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAOTJlYWMzOWM1NzQyMmFkYThhNTEx NzIxOGUxODBkODlkYjJhMzY5YjhlZjRkODA1ZDdhZjJiNzg1MTA1ZmEzMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvi9BF4KRECn/eWyIbKV92prmYbyi 1HsLH92Y9qh/1PkJEzluh0MQ//HiqAMbZRt2l9hUNTLKc8LpTkfGwvgFCzjBPdky nf5ir8Q7jvxZujyC8j3cQ3M7jGPUFsacAQHxepizf0rdp+rJIrNDNgp+uZM3MB2t kLqDjjbSq96qd8kLPKDwApdxylMzxiL7Ld0r5m0dj9nu4may7AHgK6MVPEeb40Ep BCU0PerOlIlKTGR/B3UjoEDOaBDRIsskoVJp1TPpjdbWzRjUtgHEmbxdSwR6wewA z8A15HDdDeuNqAS6m3Stfb4fR2VikRjQ4TjnOICB3V91YeL69Sbv9xXRmwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHe9EqmeWzu5zfPc30pe9Xx4uU9ZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2MwZTA3MzVkLWE5MWUtNDc4ZC04MmQyLWEzZjA0ZWU0MzVkMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBK9qeMA0GCSqGSIb3DQEBCwUAA4IBAQBuB7Zo+ncbhGqAHoDUeLPd hLZpHTYU3np6STwZ9KGHhX+UgRJUyzdg5D9FpYbjBtAw8ypRtfLm9bcke/lay/F0 wNzh2CGk8YQucULfCXIjPj5yen0z+nA/ycVBK0UvXcGff0W/9cEDUYcuNjYHRjaK oebHu4uWlcGtn21UvTtxy/f5nozUj6GMVXs5vdKOWvEfsY/8EBPPmUFomTS3uqpy 8UFm5e0d2o9KiiwcAmLW+WV6Xokzs1xmxnj2c90QCzIZzuy4xcI96fOC9Iixa/8N QygLAdW+vwIPFArn+pf6b6sq9/1Ip9p/O/7bwlALw2a5vez4CBniHS4OCLsTzORW -----END CERTIFICATE-----Generated at Sat Jun 13 08:00:31 2026 by rpki-client