$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa File: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (raw, json) Hash identifier: 0e0o/tkj5uh6jJbrl8YvGeNAneNpldaUPLcDYFgyoBI= Subject key identifier: F4:DB:A1:B9:26:91:AF:DA:53:A6:07:38:96:C1:29:90:08:1A:6B:57 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 0A1D4280C80F8C6E96784FDB9D8F45A5ACE79BD3 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa Signing time: Tue 24 Feb 2026 00:00:05 +0000 ROA not before: Tue 24 Feb 2026 00:00:05 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:1d:42:80:c8:0f:8c:6e:96:78:4f:db:9d:8f:45:a5:ac:e7:9b:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Feb 24 00:00:05 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=a6696c698d8ffbb44d88630d1c2bc4c321f51dc4eafb738f2b33580dcfa25dfa, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2e:40:80:5c:17:a6:b6:46:83:57:98:f7:06: 61:67:79:8a:b2:98:5a:be:60:ac:22:cc:d2:3f:2a: 1f:5e:a3:19:3d:2d:a4:7a:d3:b7:88:f9:54:94:ba: 7e:20:e5:c1:bb:70:9d:c3:f9:8f:6b:98:5a:fc:9f: 15:14:cc:d5:20:50:f0:5e:e0:da:eb:49:54:d7:dc: c2:08:b3:da:86:e4:99:e0:b1:f8:f6:56:4c:ce:a3: b9:54:ae:97:62:49:ad:57:29:e8:33:a4:2b:35:fa: 27:5b:de:b7:92:30:46:97:9d:d2:82:fb:62:67:33: bc:6d:69:90:4c:52:e7:ee:ae:ca:4c:6c:e2:2c:be: 39:1c:e1:f7:2f:56:a8:8d:2e:7e:e9:73:8c:44:47: bd:c7:40:f2:3c:84:79:b7:4b:c3:7f:a9:f5:0b:38: cd:b5:29:99:71:04:0e:ce:30:cf:a6:c9:ee:0a:86: c4:61:26:16:7b:dc:8e:60:30:ce:40:c6:c4:3e:4f: da:62:d4:0c:ec:bb:ee:da:27:d7:ff:d8:90:6e:aa: 89:5f:81:0d:da:11:fb:36:1f:df:66:1b:f5:db:e7: c0:12:5e:d6:ca:c3:c0:93:10:81:0f:b5:13:47:db: f3:77:de:c0:c4:b1:19:6a:46:c7:d1:84:61:8d:70: 26:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DB:A1:B9:26:91:AF:DA:53:A6:07:38:96:C1:29:90:08:1A:6B:57 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.240.0/20 Signature Algorithm: sha256WithRSAEncryption 67:86:a9:e9:ee:00:72:c9:c6:d0:19:f8:60:aa:ec:da:bb:71: 84:a9:0c:d5:72:85:ca:93:0d:d7:40:8a:36:26:3e:5b:1b:ff: 41:20:04:ed:19:63:6f:a5:92:38:3a:9e:23:21:21:d6:37:1c: d5:20:f2:dd:41:c3:46:12:70:89:8d:bd:34:f2:14:c6:78:f4: d9:37:5f:25:07:b4:e3:0c:a5:a0:36:4e:9d:0b:69:33:ef:a2: bd:c4:18:af:93:3f:81:b0:e9:27:e1:97:50:36:8b:e0:19:2d: 24:26:ea:07:3c:62:5d:4c:82:dd:fb:36:02:f8:0f:84:22:57: bc:54:6d:70:77:a8:35:f3:d4:50:e5:5f:b0:c9:83:5a:93:6f: 6a:29:b5:b0:f9:f2:e1:36:44:80:ad:00:3d:e7:52:67:e8:4e: 22:74:ee:0f:10:2f:10:fa:a0:c8:8e:71:b9:6e:de:36:b2:64: b9:5c:16:2c:ce:65:a2:cc:d1:6b:77:7f:50:8c:9f:5c:1e:6a: de:f8:88:24:a8:59:3f:41:30:74:87:d5:8d:9e:58:9c:96:f2: 26:ad:5e:2a:f1:3e:43:b7:41:46:5a:cf:3c:91:e0:e2:fe:0c: 7f:f1:f0:dc:d4:e4:10:c2:6b:dd:23:8d:ca:59:fa:c1:bd:02: 8c:ac:37:bb -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUCh1CgMgPjG6WeE/bnY9Fpaznm9MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDIyNDAwMDAwNVoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAYTY2OTZjNjk4ZDhmZmJiNDRkODg2 MzBkMWMyYmM0YzMyMWY1MWRjNGVhZmI3MzhmMmIzMzU4MGRjZmEyNWRmYTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3i5AgFwXprZGg1eY9wZhZ3mKspha vmCsIszSPyofXqMZPS2ketO3iPlUlLp+IOXBu3Cdw/mPa5ha/J8VFMzVIFDwXuDa 60lU19zCCLPahuSZ4LH49lZMzqO5VK6XYkmtVynoM6QrNfonW963kjBGl53Sgvti ZzO8bWmQTFLn7q7KTGziLL45HOH3L1aojS5+6XOMREe9x0DyPIR5t0vDf6n1CzjN tSmZcQQOzjDPpsnuCobEYSYWe9yOYDDOQMbEPk/aYtQM7Lvu2ifX/9iQbqqJX4EN 2hH7Nh/fZhv12+fAEl7WysPAkxCBD7UTR9vzd97AxLEZakbH0YRhjXAm6wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPTbobkmka/aU6YHOJbBKZAIGmtXMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzE3N2M5NzAyLWVlMzktNDJkMS1iNzZmLTZjZWU3N2Y0ZmI0NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEevjwMA0GCSqGSIb3DQEBCwUAA4IBAQBnhqnp7gByycbQGfhgquza u3GEqQzVcoXKkw3XQIo2Jj5bG/9BIATtGWNvpZI4Op4jISHWNxzVIPLdQcNGEnCJ jb008hTGePTZN18lB7TjDKWgNk6dC2kz76K9xBivkz+BsOkn4ZdQNovgGS0kJuoH PGJdTILd+zYC+A+EIle8VG1wd6g189RQ5V+wyYNak29qKbWw+fLhNkSArQA951Jn 6E4idO4PEC8Q+qDIjnG5bt42smS5XBYszmWizNFrd39QjJ9cHmre+IgkqFk/QTB0 h9WNnliclvImrV4q8T5Dt0FGWs88keDi/gx/8fDc1OQQwmvdI43KWfrBvQKMrDe7 -----END CERTIFICATE-----Generated at Sun Mar 1 22:03:47 2026 by rpki-client