$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa File: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (raw, json) Hash identifier: JRXJ76EhN1hTBPJiUCV0pPwXjtlo/Df5evwhbIWEB1c= Subject key identifier: 97:E9:3E:06:DC:BF:F1:6F:8C:C7:80:5F:08:8F:B0:E9:A4:FF:C3:43 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 1A4DD65286DC7A664FAFE6587D62B0C89C4E59E3 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa Signing time: Fri 06 Feb 2026 00:00:38 +0000 ROA not before: Fri 06 Feb 2026 00:00:38 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 7224 IP address blocks: 43.224.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:4d:d6:52:86:dc:7a:66:4f:af:e6:58:7d:62:b0:c8:9c:4e:59:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Feb 6 00:00:38 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=70d0c22b82c0dd95d29bcd273bbbb1c0b8721c0f5b8b37da73e5ff75ee4a93ac, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:47:62:33:96:a2:ca:40:b5:e2:93:03:db:b2: ba:24:77:7b:d3:9e:14:3b:19:fe:df:a5:4f:27:0a: b6:b4:32:8e:19:9c:2e:26:73:6a:72:85:b2:a9:b4: 34:6b:93:a1:c9:fb:3a:47:40:55:42:b6:15:21:1f: 48:bc:24:82:9b:0d:57:c9:48:6a:19:5d:d4:be:9f: 98:85:58:52:73:e5:0f:83:48:00:16:6b:7d:50:d4: fb:0e:ce:98:a8:d6:60:06:b7:ef:04:d3:fb:27:fa: a8:7b:e0:4a:b2:f7:19:26:a8:3c:08:5f:4d:dc:2d: b8:42:ad:f6:94:b8:1e:be:4d:b9:7e:4f:75:b6:56: c8:79:e7:c0:2b:66:31:64:34:8a:ad:b4:cb:c1:6b: 33:5f:a1:37:f2:c1:72:a6:b8:e4:03:cc:75:ce:0d: 32:5d:48:a3:d8:02:ef:af:7b:36:a8:4c:9f:07:cf: 6b:73:fb:ad:f2:74:37:21:28:48:55:ba:64:da:e7: dd:78:3e:14:9b:96:3d:82:6a:b4:33:24:09:8b:cc: 56:39:23:af:ac:96:d8:72:a3:a5:d8:f6:83:2b:59: f4:88:9f:12:8c:55:2b:e3:9a:4c:05:6d:41:94:2d: ee:a4:8e:60:56:ca:31:1b:2e:92:03:45:9d:bb:30: 7c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E9:3E:06:DC:BF:F1:6F:8C:C7:80:5F:08:8F:B0:E9:A4:FF:C3:43 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.224.76.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:bd:cb:33:eb:c5:03:0f:18:aa:4d:9b:71:21:91:3d:66:3b: f0:fd:f7:4e:44:6d:43:63:23:30:4e:7a:29:db:35:d1:a9:b7: cc:20:ce:04:06:04:79:0c:5a:67:4a:63:17:7a:57:70:f2:4a: ac:67:93:36:31:4c:7e:2e:09:85:7c:09:b3:6f:fd:0f:de:64: d9:c4:ce:16:38:4d:02:f0:a2:f7:66:5f:7a:a6:cf:bc:ec:c7: 90:8c:2b:ec:93:f1:84:0a:93:a9:28:30:82:12:52:c9:2e:d8: a5:19:06:da:6f:3d:a2:64:ee:77:06:bf:76:d7:a3:7c:42:59: 55:1e:43:63:51:56:ea:cc:68:33:38:74:3b:2f:ab:d9:81:61: 46:6b:4e:fd:4f:64:5c:ca:6a:8a:b5:d3:41:b5:c4:bd:4e:9b: c2:d6:07:55:17:c6:51:5c:c9:71:fc:7d:8e:f6:75:da:58:17: 68:2b:da:d5:f6:3f:a8:ff:b3:cc:79:54:2a:f7:22:ff:4c:da: 7b:d5:fd:29:dd:a7:a7:23:46:d3:35:5c:00:b7:34:1b:50:f8: 54:0d:fe:2b:75:f7:b9:74:00:0a:3a:46:5d:26:04:03:87:13: ab:4f:3e:e5:21:6d:d8:4f:a2:43:db:e4:46:a5:b8:9b:76:0d: be:22:9a:74 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUGk3WUobcemZPr+ZYfWKwyJxOWeMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDIwNjAwMDAzOFoX DTI2MDUwNzIzNTk1OVowejFJMEcGA1UEBRNANzBkMGMyMmI4MmMwZGQ5NWQyOWJj ZDI3M2JiYmIxYzBiODcyMWMwZjViOGIzN2RhNzNlNWZmNzVlZTRhOTNhYzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0diM5aiykC14pMD27K6JHd7054U Oxn+36VPJwq2tDKOGZwuJnNqcoWyqbQ0a5Ohyfs6R0BVQrYVIR9IvCSCmw1XyUhq GV3Uvp+YhVhSc+UPg0gAFmt9UNT7Ds6YqNZgBrfvBNP7J/qoe+BKsvcZJqg8CF9N 3C24Qq32lLgevk25fk91tlbIeefAK2YxZDSKrbTLwWszX6E38sFyprjkA8x1zg0y XUij2ALvr3s2qEyfB89rc/ut8nQ3IShIVbpk2ufdeD4Um5Y9gmq0MyQJi8xWOSOv rJbYcqOl2PaDK1n0iJ8SjFUr45pMBW1BlC3upI5gVsoxGy6SA0WduzB8tQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFJfpPgbcv/FvjMeAXwiPsOmk/8NDMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzQ5MTE5NzM0LTlkYmMtNGJkNC05OGJlLTU3ZTRjZTA3ODkyOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK+BMMA0GCSqGSIb3DQEBCwUAA4IBAQBsvcsz68UDDxiqTZtxIZE9 Zjvw/fdORG1DYyMwTnop2zXRqbfMIM4EBgR5DFpnSmMXeldw8kqsZ5M2MUx+LgmF fAmzb/0P3mTZxM4WOE0C8KL3Zl96ps+87MeQjCvsk/GECpOpKDCCElLJLtilGQba bz2iZO53Br9216N8QllVHkNjUVbqzGgzOHQ7L6vZgWFGa079T2RcymqKtdNBtcS9 TpvC1gdVF8ZRXMlx/H2O9nXaWBdoK9rV9j+o/7PMeVQq9yL/TNp71f0p3aenI0bT NVwAtzQbUPhUDf4rdfe5dAAKOkZdJgQDhxOrTz7lIW3YT6JD2+RGpbibdg2+Ipp0 -----END CERTIFICATE-----Generated at Mon Mar 2 13:15:46 2026 by rpki-client