$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5496107b-eefe-4905-9cf9-59440b1209c9.roa File: 5496107b-eefe-4905-9cf9-59440b1209c9.roa (raw, json) Hash identifier: 1xjS60/FunyvMWBw3zDr3fTt8oDimp4Mr8MRbPNHFYY= Subject key identifier: E5:44:82:70:37:8A:94:A6:FE:AB:8E:6F:F5:B3:37:91:46:69:43:5D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5E1440C35F1F2D1E866F32ED4F691639EF660D10 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5496107b-eefe-4905-9cf9-59440b1209c9.roa Signing time: Mon 27 Apr 2026 00:00:34 +0000 ROA not before: Mon 27 Apr 2026 00:00:34 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.216.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:14:40:c3:5f:1f:2d:1e:86:6f:32:ed:4f:69:16:39:ef:66:0d:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 27 00:00:34 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=d70cfb24b216ded78997a58c630b492d058d5914a6a2aa8fd1e397ba1d310d89, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:06:fd:c2:07:f2:6c:e7:dd:c4:19:25:5c:bd: 85:2d:19:ab:92:b6:07:11:7a:1b:c3:dd:d0:66:64: 69:c5:3e:21:5f:3d:66:66:e7:fa:45:6d:26:6b:bf: 18:17:29:e6:e0:0d:e5:31:80:34:b7:3e:02:df:56: ac:bf:d2:95:31:ce:1e:8d:47:e8:4c:79:79:4f:30: ea:47:5c:3f:9b:41:92:b0:53:c7:cb:08:6e:c7:20: b2:73:da:bf:bb:5a:b1:05:0a:12:7b:7a:a3:3b:cb: a4:49:1f:74:10:28:72:a0:d7:fc:50:2c:80:94:83: 62:f6:7b:37:c1:56:a6:65:23:b4:fb:e1:ea:7c:a0: 11:3f:fb:ce:37:b9:0a:52:1d:ed:32:7f:7e:04:a6: da:b9:2e:7f:8e:01:af:2c:0c:18:fb:23:04:24:d1: 14:af:73:31:b6:ba:e7:d6:de:fe:31:6c:5e:99:b7: df:b1:50:20:4e:2b:38:fc:b5:d2:4a:e3:d1:7b:6c: 9a:74:34:af:c9:61:83:2a:06:74:10:cf:9c:e3:66: 20:32:f7:9c:17:71:57:da:ce:ce:bb:8e:a6:56:f7: 67:6d:98:07:91:96:8f:bf:bb:61:9c:b2:56:26:d8: 2d:a7:6f:06:7e:7c:f3:da:95:0b:99:dc:1e:ff:bb: 4e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:44:82:70:37:8A:94:A6:FE:AB:8E:6F:F5:B3:37:91:46:69:43:5D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5496107b-eefe-4905-9cf9-59440b1209c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.216.62.0/24 Signature Algorithm: sha256WithRSAEncryption 96:95:a3:d4:af:ec:8d:5a:e7:8e:c6:17:2d:83:e8:9e:6e:43: 60:66:0c:2b:08:0a:e6:63:9d:27:d1:86:0a:98:95:e3:6e:4d: 83:f4:be:62:c7:98:c0:45:6c:b0:7a:02:e9:58:47:e8:66:17: 6f:74:2e:6f:cc:63:0c:a1:5f:58:15:3a:4a:8c:af:05:8e:01: 30:1a:37:bd:cb:e0:9b:cd:33:b4:2d:9c:ad:8a:3a:26:a1:bf: 51:b6:04:c0:59:5d:fc:19:29:a3:af:ba:62:ae:f3:24:3c:3c: 64:80:f7:e6:d0:73:d0:13:5a:54:f5:91:e0:7a:1b:7c:9e:30: 35:b9:74:f0:a1:70:02:e2:4a:da:54:b5:05:ec:1f:83:ea:a9: b1:93:6b:76:3d:b6:41:ad:36:33:6e:24:29:31:04:63:dd:85: 4a:2e:47:d3:43:63:cb:7a:3a:50:e2:bf:98:64:07:0c:03:4d: 70:94:85:4a:54:86:07:c5:25:bf:10:08:21:f8:d2:80:22:00: 5f:a2:09:30:76:08:80:65:99:77:09:ed:9b:fa:b4:ab:05:2f: 4c:52:59:83:41:7b:ce:c3:a9:94:8f:c8:a7:b0:1e:8e:dc:b9: 88:43:df:d2:69:96:dc:ce:7f:69:c3:b6:e4:25:2d:be:ff:08: f9:f5:f8:a4 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUXhRAw18fLR6GbzLtT2kWOe9mDRAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDQyNzAwMDAzNFoX DTI2MDcyNjIzNTk1OVowejFJMEcGA1UEBRNAZDcwY2ZiMjRiMjE2ZGVkNzg5OTdh NThjNjMwYjQ5MmQwNThkNTkxNGE2YTJhYThmZDFlMzk3YmExZDMxMGQ4OTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQb9wgfybOfdxBklXL2FLRmrkrYH EXobw93QZmRpxT4hXz1mZuf6RW0ma78YFynm4A3lMYA0tz4C31asv9KVMc4ejUfo THl5TzDqR1w/m0GSsFPHywhuxyCyc9q/u1qxBQoSe3qjO8ukSR90EChyoNf8UCyA lINi9ns3wVamZSO0++HqfKARP/vON7kKUh3tMn9+BKbauS5/jgGvLAwY+yMEJNEU r3Mxtrrn1t7+MWxembffsVAgTis4/LXSSuPRe2yadDSvyWGDKgZ0EM+c42YgMvec F3FX2s7Ou46mVvdnbZgHkZaPv7thnLJWJtgtp28Gfnzz2pULmdwe/7tO7wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOVEgnA3ipSm/quOb/WzN5FGaUNdMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU0OTYxMDdiLWVlZmUtNDkwNS05Y2Y5LTU5NDQwYjEyMDljOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9g+MA0GCSqGSIb3DQEBCwUAA4IBAQCWlaPUr+yNWueOxhctg+ie bkNgZgwrCArmY50n0YYKmJXjbk2D9L5ix5jARWywegLpWEfoZhdvdC5vzGMMoV9Y FTpKjK8FjgEwGje9y+CbzTO0LZytijomob9RtgTAWV38GSmjr7pirvMkPDxkgPfm 0HPQE1pU9ZHgeht8njA1uXTwoXAC4kraVLUF7B+D6qmxk2t2PbZBrTYzbiQpMQRj 3YVKLkfTQ2PLejpQ4r+YZAcMA01wlIVKVIYHxSW/EAgh+NKAIgBfogkwdgiAZZl3 Ce2b+rSrBS9MUlmDQXvOw6mUj8insB6O3LmIQ9/SaZbczn9pw7bkJS2+/wj59fik -----END CERTIFICATE-----Generated at Wed May 13 00:42:30 2026 by rpki-client