$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dbe44f29-2c7d-46ec-898d-c756e1c81196.roa File: dbe44f29-2c7d-46ec-898d-c756e1c81196.roa (raw, json) Hash identifier: MSHAcsXdY21ky99XtnBCtmXMTqKG886ALVwUsKOxXc8= Subject key identifier: C6:BF:5F:54:7C:AD:C7:70:16:35:90:78:F0:88:8F:45:87:5E:FD:C3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1C4AB57EB3FEBDB9DCB9F1C7D6290409AFEB9754 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dbe44f29-2c7d-46ec-898d-c756e1c81196.roa Signing time: Fri 15 May 2026 00:00:49 +0000 ROA not before: Fri 15 May 2026 00:00:49 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.216.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:4a:b5:7e:b3:fe:bd:b9:dc:b9:f1:c7:d6:29:04:09:af:eb:97:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 15 00:00:49 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=d4b1fe128fe303cf6e14c507542575a05683e628425c4777f5c31ad0d455bac3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5f:f7:b6:c1:39:8e:21:55:58:82:f5:56:98: 05:5c:96:2f:cf:96:2f:50:f6:e9:9f:ec:da:c5:32: f1:4e:dc:54:23:fc:8c:18:54:78:fc:41:96:f8:d4: f3:28:47:cd:20:7e:05:48:be:83:a0:98:ed:ef:ef: 6c:b4:fa:31:fb:c1:14:e4:51:8b:73:58:7c:6e:43: 69:40:3e:ff:4e:35:de:2e:18:88:f5:0a:00:9a:2b: 01:40:1c:a9:2a:49:bb:5c:b2:8d:df:51:d6:78:0c: a6:df:e8:e7:f8:49:6e:27:e0:9e:a3:e1:11:3b:09: 96:08:27:4e:79:7e:2b:0c:d6:b2:ed:35:96:10:dc: 8f:4c:e9:6a:68:a8:24:c2:a6:bf:68:73:69:a1:95: 8a:f3:d8:f3:a2:d6:84:12:df:05:3d:ab:ea:55:20: cd:75:4c:95:1d:c0:4b:52:c3:07:8a:84:36:45:7c: b6:58:a5:92:b7:f5:f2:ed:ea:ec:e5:51:61:be:dd: 55:68:8c:0e:28:9a:ac:00:09:ed:4a:7e:6b:8d:45: c3:02:f6:51:24:c0:9a:e2:27:34:90:3f:f4:de:5c: 96:e6:52:95:50:75:03:10:f3:18:e0:a7:73:91:a7: 23:93:d0:90:0f:77:a4:61:f8:77:6b:06:96:ac:54: 9a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:BF:5F:54:7C:AD:C7:70:16:35:90:78:F0:88:8F:45:87:5E:FD:C3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dbe44f29-2c7d-46ec-898d-c756e1c81196.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.216.52.0/23 Signature Algorithm: sha256WithRSAEncryption 65:cf:04:54:a5:7e:0f:ba:c5:8c:1e:c8:5e:48:04:c4:7a:88: 4a:62:86:63:3a:4d:88:7b:22:58:9e:7b:8e:cc:3a:b6:bb:37: ce:32:74:bb:e2:d2:f2:b8:ef:d5:96:6e:3a:6a:ea:cc:bb:ca: eb:8d:c9:cd:ba:cc:4a:37:9a:b4:49:fe:fc:28:46:fc:d8:36: 35:bb:72:e3:85:89:b9:de:5c:8a:9a:73:66:99:9d:28:8a:cc: 4d:b9:22:d1:1c:d7:f0:2f:45:58:66:f1:77:6e:8c:9f:b4:98: 8f:c1:7a:c0:de:9e:cd:0d:28:a3:b0:df:fa:e3:b6:2f:f1:bc: da:de:c9:42:a9:51:12:f5:d7:5e:13:72:26:94:fa:f0:3f:dc: 2e:b3:1a:f5:3b:aa:9d:71:b9:ce:16:5a:fd:44:aa:aa:70:db: b5:7e:2c:51:ad:e7:fa:25:89:64:05:58:46:b6:4a:5c:2c:de: 41:bd:31:78:3a:63:d4:e3:f3:01:7a:e0:76:8a:b9:ac:04:9c: 90:9b:40:d0:22:ac:0d:00:0e:51:61:ab:9a:92:dc:7f:f7:1f: 29:4f:75:58:40:0c:0f:0b:32:a0:c5:8b:c1:c4:d4:0c:2c:2a: 20:a1:81:d4:4d:21:80:ce:cf:e8:a3:cd:2e:5e:78:e5:bb:f2: db:a1:c5:a8 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUHEq1frP+vbncufHH1ikECa/rl1QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNTAwMDA0OVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAZDRiMWZlMTI4ZmUzMDNjZjZlMTRj NTA3NTQyNTc1YTA1NjgzZTYyODQyNWM0Nzc3ZjVjMzFhZDBkNDU1YmFjMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0V/3tsE5jiFVWIL1VpgFXJYvz5Yv UPbpn+zaxTLxTtxUI/yMGFR4/EGW+NTzKEfNIH4FSL6DoJjt7+9stPox+8EU5FGL c1h8bkNpQD7/TjXeLhiI9QoAmisBQBypKkm7XLKN31HWeAym3+jn+EluJ+Ceo+ER OwmWCCdOeX4rDNay7TWWENyPTOlqaKgkwqa/aHNpoZWK89jzotaEEt8FPavqVSDN dUyVHcBLUsMHioQ2RXy2WKWSt/Xy7ers5VFhvt1VaIwOKJqsAAntSn5rjUXDAvZR JMCa4ic0kD/03lyW5lKVUHUDEPMY4Kdzkacjk9CQD3ekYfh3awaWrFSaXQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFMa/X1R8rcdwFjWQePCIj0WHXv3DMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2RiZTQ0ZjI5LTJjN2QtNDZlYy04OThkLWM3NTZlMWM4MTE5Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBK9g0MA0GCSqGSIb3DQEBCwUAA4IBAQBlzwRUpX4PusWMHsheSATE eohKYoZjOk2IeyJYnnuOzDq2uzfOMnS74tLyuO/Vlm46aurMu8rrjcnNusxKN5q0 Sf78KEb82DY1u3LjhYm53lyKmnNmmZ0oisxNuSLRHNfwL0VYZvF3boyftJiPwXrA 3p7NDSijsN/647Yv8bza3slCqVES9ddeE3ImlPrwP9wusxr1O6qdcbnOFlr9RKqq cNu1fixRref6JYlkBVhGtkpcLN5BvTF4OmPU4/MBeuB2irmsBJyQm0DQIqwNAA5R Yauaktx/9x8pT3VYQAwPCzKgxYvBxNQMLCogoYHUTSGAzs/oo80uXnjlu/LbocWo -----END CERTIFICATE-----Generated at Sat Jun 13 09:13:49 2026 by rpki-client