$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa File: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (raw, json) Hash identifier: cBXtNI3VbGLGZEDX6FlUDTPJNJ35d5uKk0qGRhvviKM= Subject key identifier: D7:15:D0:E3:93:15:63:6D:88:ED:19:08:C1:12:DE:89:20:04:20:9E Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 0CEAAE572D23A1B0AB9B50DBCB0C5964BFB06BD8 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa Signing time: Tue 24 Feb 2026 00:00:07 +0000 ROA not before: Tue 24 Feb 2026 00:00:07 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ea:ae:57:2d:23:a1:b0:ab:9b:50:db:cb:0c:59:64:bf:b0:6b:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Feb 24 00:00:07 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=b7781fcbc07a078da4db3dc730d3a9d1a6e797550fd48df942a3e45918069459, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:69:8c:08:06:26:7e:15:23:f6:06:72:ba:0b: a1:3f:ba:99:07:06:be:23:f1:7c:d5:9a:e0:de:6d: 5d:56:76:ca:a0:e7:68:07:b8:ee:80:72:2b:2d:56: 4d:74:62:d9:b0:1d:05:73:01:b3:2e:e9:83:35:3d: 5f:75:23:7a:a4:47:6b:d5:bc:2c:72:25:b3:bc:6b: 2f:47:b8:6c:ee:af:50:4b:49:be:c1:db:45:a5:b5: 17:22:06:ce:ca:69:82:f5:c7:78:88:41:32:c5:2a: 90:75:05:97:4b:01:68:b0:43:f8:30:a7:6a:1a:65: 21:fd:94:51:df:83:4e:09:f0:70:f6:9c:4a:03:62: 0a:70:5c:38:30:3a:a0:bd:2b:4a:ae:c0:49:2b:52: 31:84:95:11:61:dc:9f:21:75:f0:a0:2f:39:b3:4f: d7:76:6d:9c:3d:a6:db:1d:31:4c:3d:73:6a:7c:da: 08:e0:53:d1:f7:60:b6:4f:bc:be:76:33:0a:f8:e7: 2d:e8:a4:a9:e9:53:00:c5:98:c7:44:33:cf:62:34: a8:c1:71:1b:c2:dc:f4:10:5f:3c:0b:36:3b:b2:df: f5:df:98:c8:4a:b8:f5:69:36:3e:c0:cb:81:be:dc: cf:b3:22:a0:e6:27:37:6a:df:10:32:86:58:59:d4: 85:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:15:D0:E3:93:15:63:6D:88:ED:19:08:C1:12:DE:89:20:04:20:9E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.144.0/22 Signature Algorithm: sha256WithRSAEncryption 56:33:44:85:57:24:86:8c:da:57:b1:14:2a:64:87:4b:4a:49: 68:c5:c1:8c:af:a8:f8:46:c9:23:d9:4d:75:0e:04:5f:eb:34: 40:b8:ae:cc:56:42:94:8a:9d:04:30:d9:b8:e7:e6:e1:54:4d: 7b:37:32:28:29:1e:c2:cc:d7:d0:d0:b1:1d:12:37:4f:bb:31: a9:ac:bc:b2:11:3f:2e:4f:07:2a:cc:a0:7c:aa:2f:08:31:e9: 1d:5f:39:ed:df:b3:d8:15:6f:a7:45:dd:22:70:07:27:63:c5: c3:b0:68:6a:0e:2b:be:9f:26:0d:ed:2f:f5:05:5b:10:30:74: 17:1f:a2:57:a0:8a:59:35:4e:51:ba:84:2f:2c:23:77:58:97: d0:18:1d:29:b0:b1:9f:93:6b:55:d5:39:ee:43:0c:81:e7:8f: 37:c9:f9:42:63:fc:bf:34:88:4a:00:60:1e:fe:5f:ba:77:e9: 89:97:de:19:43:48:8e:8d:fe:d0:72:37:99:20:b6:04:46:c6: 79:b1:ce:02:98:37:b1:54:f6:e9:4b:7b:e9:dc:a7:3c:9b:f3: d2:0f:28:57:23:79:e6:0e:b2:93:96:f7:f8:84:2a:7d:6b:da: c5:5f:26:ca:1c:3c:63:a5:e3:87:e7:88:09:e0:89:8f:e1:df: b5:51:21:9b -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUDOquVy0jobCrm1DbywxZZL+wa9gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDIyNDAwMDAwN1oX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAYjc3ODFmY2JjMDdhMDc4ZGE0ZGIz ZGM3MzBkM2E5ZDFhNmU3OTc1NTBmZDQ4ZGY5NDJhM2U0NTkxODA2OTQ1OTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2mMCAYmfhUj9gZyuguhP7qZBwa+ I/F81Zrg3m1dVnbKoOdoB7jugHIrLVZNdGLZsB0FcwGzLumDNT1fdSN6pEdr1bws ciWzvGsvR7hs7q9QS0m+wdtFpbUXIgbOymmC9cd4iEEyxSqQdQWXSwFosEP4MKdq GmUh/ZRR34NOCfBw9pxKA2IKcFw4MDqgvStKrsBJK1IxhJURYdyfIXXwoC85s0/X dm2cPabbHTFMPXNqfNoI4FPR92C2T7y+djMK+Oct6KSp6VMAxZjHRDPPYjSowXEb wtz0EF88CzY7st/135jISrj1aTY+wMuBvtzPsyKg5ic3at8QMoZYWdSFFwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFNcV0OOTFWNtiO0ZCMES3okgBCCeMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzFkZmZlYWM4LWI3NzktNDllZi1iYTI3LTU4YmMxOTg5MWU2MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymQMA0GCSqGSIb3DQEBCwUAA4IBAQBWM0SFVySGjNpXsRQqZIdL SkloxcGMr6j4Rskj2U11DgRf6zRAuK7MVkKUip0EMNm45+bhVE17NzIoKR7CzNfQ 0LEdEjdPuzGprLyyET8uTwcqzKB8qi8IMekdXznt37PYFW+nRd0icAcnY8XDsGhq Diu+nyYN7S/1BVsQMHQXH6JXoIpZNU5RuoQvLCN3WJfQGB0psLGfk2tV1TnuQwyB 5483yflCY/y/NIhKAGAe/l+6d+mJl94ZQ0iOjf7QcjeZILYERsZ5sc4CmDexVPbp S3vp3Kc8m/PSDyhXI3nmDrKTlvf4hCp9a9rFXybKHDxjpeOH54gJ4ImP4d+1USGb -----END CERTIFICATE-----Generated at Sun Mar 1 23:38:46 2026 by rpki-client