$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0e19dc7f-7a49-4d2e-840b-9f3162a4af2b.roa File: 0e19dc7f-7a49-4d2e-840b-9f3162a4af2b.roa (raw, json) Hash identifier: mtma2wPkNtu9ReSNZpQTUR9JK5jSkOz/hCWX0X2untY= Subject key identifier: 0C:55:E9:40:D6:00:20:6D:83:2C:B3:E0:A7:6B:C1:A8:E8:DB:7C:BB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 76BF0C5FB1217C04B7F71AC43B704214A28B4D21 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0e19dc7f-7a49-4d2e-840b-9f3162a4af2b.roa Signing time: Tue 05 May 2026 00:00:37 +0000 ROA not before: Tue 05 May 2026 00:00:37 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.212.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:bf:0c:5f:b1:21:7c:04:b7:f7:1a:c4:3b:70:42:14:a2:8b:4d:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 5 00:00:37 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=96559bde2ac6efa517ca9dc0a0f018f2553ea49a157a5fcf67e7b0df0a5487ff, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:28:63:fc:db:34:6f:8a:f4:7f:88:70:01:f5: 19:90:76:71:4b:46:be:7c:f0:62:8d:9c:c0:96:1c: 28:b0:73:c5:b0:56:03:5c:46:38:20:dd:8d:07:8b: 20:91:6c:c0:b4:73:51:53:26:00:1e:5d:b0:84:6e: 32:72:6c:f8:9a:8f:18:f3:57:44:70:27:27:34:5d: 76:dd:07:90:96:6d:4a:e6:bc:48:45:43:23:7b:5f: b6:9c:a2:90:57:33:1a:52:0d:ea:7a:68:18:26:fb: 20:d1:25:e3:f2:3e:dc:a1:b6:98:76:9d:37:0f:14: 6b:3b:89:1d:09:15:02:6c:cc:8d:79:d3:9b:b0:56: 32:74:41:b0:b8:8c:89:5e:3b:c6:9b:ac:3f:7b:be: c6:e8:14:ee:73:74:c4:f9:e3:db:c4:0e:a3:33:97: c5:e9:ae:d4:ad:69:eb:61:6f:00:73:d3:bf:41:a5: 25:5b:96:d3:01:57:20:1b:38:76:8b:39:af:10:22: 55:47:22:c7:59:70:bd:31:48:bf:82:fd:41:b2:8c: 15:4a:1e:de:e1:2d:71:58:40:e5:c2:d0:09:bb:b9: 62:d8:34:84:24:67:76:55:f1:9b:3e:ee:2f:ec:2e: 43:56:a2:f1:84:d5:4c:8f:68:2d:3f:6d:d0:7a:57: dd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:55:E9:40:D6:00:20:6D:83:2C:B3:E0:A7:6B:C1:A8:E8:DB:7C:BB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0e19dc7f-7a49-4d2e-840b-9f3162a4af2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.212.66.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:c2:a1:ed:7a:c6:97:a7:f6:6d:25:ea:b1:bd:42:a1:d1:92: cf:53:f3:16:a3:9e:18:05:59:a1:af:2a:af:0a:2e:79:cf:e4: e5:37:bd:50:c3:b3:3d:2a:34:46:09:80:af:4d:58:87:39:fe: e6:12:52:05:60:13:b7:46:ee:55:93:12:35:bf:1d:0f:ea:54: 01:c2:ff:f1:bb:75:6b:65:7c:9b:51:8b:dc:45:98:63:a2:54: b7:60:c3:ba:56:68:20:b7:9a:40:7d:82:33:cc:ae:84:42:8a: 3e:d7:d0:a8:68:fb:64:38:3c:3f:f5:db:00:16:38:3e:20:53: c9:0d:f0:5f:af:e2:18:02:15:82:25:a2:30:f8:0a:7a:fb:bf: 34:d0:b6:90:a4:ba:41:4a:cc:67:ce:1f:31:27:90:1b:4a:7f: 7d:ad:fd:95:32:a1:cb:5f:70:c5:5f:90:53:82:24:16:45:d3: 82:65:92:9c:94:c3:a4:e5:0c:cc:0c:41:36:e9:4a:31:03:d8: 7e:fa:ef:1d:86:29:c9:2f:3b:45:bc:9a:89:61:b6:a0:9c:e2: 65:03:b8:50:39:9c:7a:27:78:83:42:8f:ae:33:3a:ae:85:e4: d8:4b:89:d7:a2:75:d8:fe:1d:a1:ee:ee:19:86:81:36:64:31: 25:6f:ee:c0 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUdr8MX7EhfAS39xrEO3BCFKKLTSEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwNTAwMDAzN1oX DTI2MDgwMzIzNTk1OVowejFJMEcGA1UEBRNAOTY1NTliZGUyYWM2ZWZhNTE3Y2E5 ZGMwYTBmMDE4ZjI1NTNlYTQ5YTE1N2E1ZmNmNjdlN2IwZGYwYTU0ODdmZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ihj/Ns0b4r0f4hwAfUZkHZxS0a+ fPBijZzAlhwosHPFsFYDXEY4IN2NB4sgkWzAtHNRUyYAHl2whG4ycmz4mo8Y81dE cCcnNF123QeQlm1K5rxIRUMje1+2nKKQVzMaUg3qemgYJvsg0SXj8j7cobaYdp03 DxRrO4kdCRUCbMyNedObsFYydEGwuIyJXjvGm6w/e77G6BTuc3TE+ePbxA6jM5fF 6a7UrWnrYW8Ac9O/QaUlW5bTAVcgGzh2izmvECJVRyLHWXC9MUi/gv1BsowVSh7e 4S1xWEDlwtAJu7li2DSEJGd2VfGbPu4v7C5DVqLxhNVMj2gtP23QelfdrwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAxV6UDWACBtgyyz4Kdrwajo23y7MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzBlMTlkYzdmLTdhNDktNGQyZS04NDBiLTlmMzE2MmE0YWYyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9RCMA0GCSqGSIb3DQEBCwUAA4IBAQCOwqHtesaXp/ZtJeqxvUKh 0ZLPU/MWo54YBVmhryqvCi55z+TlN71Qw7M9KjRGCYCvTViHOf7mElIFYBO3Ru5V kxI1vx0P6lQBwv/xu3VrZXybUYvcRZhjolS3YMO6Vmggt5pAfYIzzK6EQoo+19Co aPtkODw/9dsAFjg+IFPJDfBfr+IYAhWCJaIw+Ap6+7800LaQpLpBSsxnzh8xJ5Ab Sn99rf2VMqHLX3DFX5BTgiQWRdOCZZKclMOk5QzMDEE26UoxA9h++u8dhinJLztF vJqJYbagnOJlA7hQOZx6J3iDQo+uMzquheTYS4nXonXY/h2h7u4ZhoE2ZDElb+7A -----END CERTIFICATE-----Generated at Tue May 12 23:30:45 2026 by rpki-client