$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/31f4f319-e479-493d-8b78-4861fcc44015.roa File: 31f4f319-e479-493d-8b78-4861fcc44015.roa (raw, json) Hash identifier: zhIBjyw04xraSMf+TNkS41z/IUr/Afcyvfsus/8jdaY= Subject key identifier: E3:FD:D8:F7:7A:9C:38:37:F7:D2:78:B6:5C:5F:4D:E9:75:09:8D:E3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7336C977E198694567E07A592D72F79A13BEBA04 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/31f4f319-e479-493d-8b78-4861fcc44015.roa Signing time: Wed 25 Feb 2026 00:00:12 +0000 ROA not before: Wed 25 Feb 2026 00:00:12 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.208.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:36:c9:77:e1:98:69:45:67:e0:7a:59:2d:72:f7:9a:13:be:ba:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 25 00:00:12 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=a3e060bb1acb482364d29056ca0922008d40821521624f055bf33a785cfc7f6c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6a:ee:be:9f:cf:f0:7c:77:45:0f:65:3e:91: 5e:a7:97:89:73:3e:77:8a:2e:a0:21:bf:b9:9d:16: 8b:fb:46:79:e3:a7:18:79:22:68:67:e1:aa:a1:bb: 47:e3:7f:a9:bc:30:e6:93:8e:d4:28:3e:47:96:88: c6:72:d6:a2:ff:54:fe:80:35:e1:65:a7:ce:41:f4: 23:aa:34:05:b5:f0:65:93:d5:5a:94:53:2a:83:2f: 03:8d:56:96:4e:6f:3d:d9:e3:7b:86:95:f1:37:7a: 1d:69:61:a0:ba:c7:02:0f:ed:b2:3b:5c:f1:64:d7: 27:f3:65:30:be:4e:b2:5c:be:0c:37:e3:fc:76:2b: bd:58:96:6d:38:d2:18:d5:36:b2:18:55:f0:b2:11: 91:46:10:eb:0d:d8:09:5b:4d:be:75:1a:36:66:74: b8:6e:dc:c1:ac:7e:53:9c:57:a7:69:e4:2e:46:4f: 58:92:c7:db:a3:7c:22:46:43:a9:6e:82:f0:e1:f5: 59:25:9e:bd:f1:5e:9b:66:d1:d8:bc:f7:08:1d:69: 80:20:43:f0:4d:de:64:1d:1c:0b:03:f2:fd:e6:92: 32:cc:fd:1b:34:99:82:9f:02:40:d9:38:db:0c:34: e8:74:b3:88:33:77:f9:65:0a:36:3d:b7:13:1d:36: bc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:FD:D8:F7:7A:9C:38:37:F7:D2:78:B6:5C:5F:4D:E9:75:09:8D:E3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/31f4f319-e479-493d-8b78-4861fcc44015.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.208.52.0/24 Signature Algorithm: sha256WithRSAEncryption 05:98:77:e3:aa:2a:0f:21:be:11:00:93:04:99:3b:e7:cd:b3: 75:ef:f1:13:1c:7a:f2:6c:31:e5:8b:8a:54:46:c6:78:64:82: 3f:09:54:7e:10:9e:eb:ee:f1:7c:c6:5a:0a:9b:76:22:7c:cf: 42:86:67:07:13:ba:ad:d5:18:b9:94:c1:ad:04:80:c5:e4:83: 18:fc:04:15:19:c9:1c:1c:12:8b:0c:1d:8c:10:6c:ca:bb:7f: e6:d3:1e:6e:01:57:bf:8d:4e:59:74:51:62:30:2e:b8:fe:31: a8:6c:4f:64:4b:57:f2:18:d3:52:e3:4e:92:27:ac:2d:34:6b: fb:4d:00:0d:35:8d:a9:64:7b:3b:09:e4:ab:58:b2:30:36:4a: 71:50:09:b7:0d:cd:dc:1c:34:d6:f8:19:3e:b1:c5:2a:16:94: d7:77:f1:8b:9b:34:ce:40:46:de:80:e7:e4:94:ef:56:db:c0: 5c:b9:b0:72:8f:85:7c:cd:1f:33:ed:e1:33:45:5b:5a:50:30: 0f:d7:0a:65:b3:df:fd:7d:0a:37:25:0e:07:10:aa:4b:45:95: 72:aa:cb:33:cd:63:2a:bc:8f:13:66:f0:df:a5:f8:c0:79:5d: ed:0e:bb:c6:be:35:17:4f:71:0b:14:ab:2f:59:6a:61:ce:25: fc:f0:f2:56 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUczbJd+GYaUVn4HpZLXL3mhO+ugQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyNTAwMDAxMloX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAYTNlMDYwYmIxYWNiNDgyMzY0ZDI5 MDU2Y2EwOTIyMDA4ZDQwODIxNTIxNjI0ZjA1NWJmMzNhNzg1Y2ZjN2Y2YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA62ruvp/P8Hx3RQ9lPpFep5eJcz53 ii6gIb+5nRaL+0Z546cYeSJoZ+GqobtH43+pvDDmk47UKD5HlojGctai/1T+gDXh ZafOQfQjqjQFtfBlk9ValFMqgy8DjVaWTm892eN7hpXxN3odaWGguscCD+2yO1zx ZNcn82Uwvk6yXL4MN+P8diu9WJZtONIY1TayGFXwshGRRhDrDdgJW02+dRo2ZnS4 btzBrH5TnFenaeQuRk9Yksfbo3wiRkOpboLw4fVZJZ698V6bZtHYvPcIHWmAIEPw Td5kHRwLA/L95pIyzP0bNJmCnwJA2TjbDDTodLOIM3f5ZQo2PbcTHTa8rQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOP92Pd6nDg399J4tlxfTel1CY3jMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzMxZjRmMzE5LWU0NzktNDkzZC04Yjc4LTQ4NjFmY2M0NDAxNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9A0MA0GCSqGSIb3DQEBCwUAA4IBAQAFmHfjqioPIb4RAJMEmTvn zbN17/ETHHrybDHli4pURsZ4ZII/CVR+EJ7r7vF8xloKm3YifM9ChmcHE7qt1Ri5 lMGtBIDF5IMY/AQVGckcHBKLDB2MEGzKu3/m0x5uAVe/jU5ZdFFiMC64/jGobE9k S1fyGNNS406SJ6wtNGv7TQANNY2pZHs7CeSrWLIwNkpxUAm3Dc3cHDTW+Bk+scUq FpTXd/GLmzTOQEbegOfklO9W28BcubByj4V8zR8z7eEzRVtaUDAP1wpls9/9fQo3 JQ4HEKpLRZVyqsszzWMqvI8TZvDfpfjAeV3tDrvGvjUXT3ELFKsvWWphziX88PJW -----END CERTIFICATE-----Generated at Mon Mar 2 05:30:38 2026 by rpki-client