$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa File: 9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa (raw, json) Hash identifier: lTJ9xkd/SlQSbPng8pTW94VELlAQaZ5FwTHkGmAPDdE= Subject key identifier: D1:EE:16:7C:9F:8F:58:9D:DC:3B:45:05:DC:1D:C4:E5:D3:D9:0D:67 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 080E9680CD9531877F3DBF00A9750B3758BB6D33 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa Signing time: Wed 25 Feb 2026 00:00:09 +0000 ROA not before: Wed 25 Feb 2026 00:00:09 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.208.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:0e:96:80:cd:95:31:87:7f:3d:bf:00:a9:75:0b:37:58:bb:6d:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 25 00:00:09 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=6d06638fe6db3cb3531e731cff8de757eb2e6b71b6783494662b4b6468c8746b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:95:f2:82:88:21:35:07:d3:25:aa:d1:77:0b: 0e:f5:d2:93:61:7e:c0:20:80:fd:0d:a5:ef:0a:9d: c0:26:5d:97:93:83:21:ad:d5:16:23:65:5b:ab:f1: 16:65:35:d6:3e:44:38:05:82:a6:c9:d5:34:f6:a3: 27:16:90:e0:47:de:41:02:ed:00:d6:39:54:45:d0: 72:28:47:6a:a8:4d:ce:f8:5c:26:69:b0:07:c4:27: 74:b5:7d:75:0f:39:12:3a:62:fd:c7:a3:08:e9:fc: b3:9c:84:a2:5e:69:78:a9:07:b7:b9:06:69:44:ce: 97:91:86:5a:27:86:ee:0a:d2:bf:56:e0:96:44:22: 10:7c:02:69:87:93:69:0e:a1:c7:c3:d7:c6:91:4e: dc:39:86:bc:03:98:9e:2e:fa:c5:7f:a5:bc:9f:32: a6:24:a9:57:8b:90:1f:9d:bc:3c:c2:02:15:e6:63: 50:f8:24:c5:31:41:a4:0f:83:9d:f3:c8:24:36:ae: 49:19:46:9e:9b:31:a1:73:a4:5c:9e:7f:0a:cc:3e: 60:8e:cb:21:5e:ae:8e:17:05:01:b0:a6:ca:56:dd: e3:b0:d1:37:1c:e2:db:c9:34:f2:79:50:1d:9c:8b: 5b:30:aa:15:f4:c9:b8:ac:e7:8e:a5:9d:85:d7:0c: 07:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:EE:16:7C:9F:8F:58:9D:DC:3B:45:05:DC:1D:C4:E5:D3:D9:0D:67 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.208.53.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:0e:21:06:3c:64:33:ca:28:5e:61:1b:77:52:61:86:e1:74: af:90:12:de:7b:ec:e4:b0:80:dd:bb:63:9d:5d:65:fb:f9:fb: 80:74:8a:a8:fe:7e:dd:1c:1a:14:04:3d:18:da:a6:b7:6b:31: f5:bb:de:07:72:6b:6d:43:f4:e2:78:85:c8:6e:e0:99:a6:5f: d6:16:40:d1:b6:8d:72:03:95:d2:ae:ae:52:3f:13:95:0c:2a: f5:c6:aa:94:12:9b:90:cd:e3:cf:fd:a2:02:64:47:a0:34:93: ac:e8:42:f3:0c:01:63:65:f4:64:e6:6f:f4:2d:aa:56:59:5a: 9e:90:55:df:18:cf:e5:d9:52:b6:c4:58:28:98:1b:55:58:65: 38:2f:6a:31:ce:d9:ab:64:c7:6c:5b:dc:16:a6:12:3e:38:ed: 27:de:8e:b2:22:03:b6:fb:cb:00:e4:4e:70:61:dd:c2:54:7f: 01:16:dd:08:a8:29:56:98:a1:6c:34:23:b1:3b:11:c4:a9:5a: df:39:d4:72:00:98:23:49:d2:47:39:3a:0f:a3:c3:a9:7a:07: 19:02:8c:50:92:18:d5:92:3a:88:4a:69:4b:bf:f9:c0:2a:ba: e7:88:63:7d:d1:26:cb:bc:a4:08:f8:38:87:b0:56:ca:7f:82: 17:30:04:e5 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUCA6WgM2VMYd/Pb8AqXULN1i7bTMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyNTAwMDAwOVoX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNANmQwNjYzOGZlNmRiM2NiMzUzMWU3 MzFjZmY4ZGU3NTdlYjJlNmI3MWI2NzgzNDk0NjYyYjRiNjQ2OGM4NzQ2YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpXygoghNQfTJarRdwsO9dKTYX7A IID9DaXvCp3AJl2Xk4MhrdUWI2Vbq/EWZTXWPkQ4BYKmydU09qMnFpDgR95BAu0A 1jlURdByKEdqqE3O+FwmabAHxCd0tX11DzkSOmL9x6MI6fyznISiXml4qQe3uQZp RM6XkYZaJ4buCtK/VuCWRCIQfAJph5NpDqHHw9fGkU7cOYa8A5ieLvrFf6W8nzKm JKlXi5Afnbw8wgIV5mNQ+CTFMUGkD4Od88gkNq5JGUaemzGhc6Rcnn8KzD5gjssh Xq6OFwUBsKbKVt3jsNE3HOLbyTTyeVAdnItbMKoV9Mm4rOeOpZ2F1wwHKQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFNHuFnyfj1id3DtFBdwdxOXT2Q1nMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlhYjg3NTVhLWI0MGUtNDEyZS04YjBiLWQxM2UwYzM5YWVkMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9A1MA0GCSqGSIb3DQEBCwUAA4IBAQCLDiEGPGQzyiheYRt3UmGG 4XSvkBLee+zksIDdu2OdXWX7+fuAdIqo/n7dHBoUBD0Y2qa3azH1u94HcmttQ/Ti eIXIbuCZpl/WFkDRto1yA5XSrq5SPxOVDCr1xqqUEpuQzePP/aICZEegNJOs6ELz DAFjZfRk5m/0LapWWVqekFXfGM/l2VK2xFgomBtVWGU4L2oxztmrZMdsW9wWphI+ OO0n3o6yIgO2+8sA5E5wYd3CVH8BFt0IqClWmKFsNCOxOxHEqVrfOdRyAJgjSdJH OToPo8OpegcZAoxQkhjVkjqISmlLv/nAKrrniGN90SbLvKQI+DiHsFbKf4IXMATl -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:44 2026 by rpki-client