$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22d6913e-5f3d-4f99-9a60-48579f471838.roa File: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (raw, json) Hash identifier: VNTjv8zj56XPQscVA1nVjmEH4qZHD6SH0x107VrlxlE= Subject key identifier: 01:17:BE:F4:83:ED:CA:6C:A7:97:EA:4E:59:9C:97:3F:D3:90:2E:D1 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 7997896D6BFF8E961B2A78F2D6F27607B18BDD35 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22d6913e-5f3d-4f99-9a60-48579f471838.roa Signing time: Wed 25 Feb 2026 00:00:06 +0000 ROA not before: Wed 25 Feb 2026 00:00:06 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:97:89:6d:6b:ff:8e:96:1b:2a:78:f2:d6:f2:76:07:b1:8b:dd:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Feb 25 00:00:06 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=a92611b8e9c6e64ec1d77fb989049af19d0fc539df17d223e77bb6eac87b3c7c, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:56:17:d9:9c:8a:18:68:38:cd:d1:b4:aa:7b: 44:de:38:64:86:a4:2e:cc:e5:50:bb:3c:90:8a:51: b0:fd:12:36:26:df:7b:bc:af:9a:d2:44:13:7a:29: 81:2f:c0:dd:66:2d:b1:ee:84:1c:61:2f:cf:77:62: 93:68:04:84:23:59:ba:fd:45:3e:27:0b:30:b8:ca: 22:2d:4a:f8:d8:38:83:e2:1d:8e:06:3e:05:f5:54: c8:d8:cb:f3:e1:26:1e:4d:f5:8c:b8:d5:c6:fa:46: 4a:82:78:e0:7d:1d:c0:94:8f:df:05:64:b2:51:29: 19:2f:28:36:6b:be:14:c1:c6:ba:64:6b:04:9d:bd: f1:ad:b8:b1:39:ef:a6:f5:e2:9b:d6:be:47:c0:0a: 8e:a0:84:f9:67:ab:c9:be:06:5f:eb:fb:10:d5:a3: c4:29:f7:f3:7b:e1:eb:a0:ed:5f:5f:5b:58:c5:8a: d7:85:fe:09:7e:71:15:1b:4a:9b:5b:68:6e:31:27: da:65:ef:ae:68:98:d0:4f:b5:37:ca:01:8a:5d:f1: fa:03:82:ba:07:a4:9e:ec:b2:cf:34:11:39:dc:51: 48:cb:cc:e5:d2:ab:e0:fd:53:62:7c:4c:92:9a:d3: d4:41:40:5e:80:c0:1f:2c:ab:01:14:ac:e9:18:f4: 56:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:17:BE:F4:83:ED:CA:6C:A7:97:EA:4E:59:9C:97:3F:D3:90:2E:D1 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22d6913e-5f3d-4f99-9a60-48579f471838.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:2000::/36 Signature Algorithm: sha256WithRSAEncryption 6c:37:3a:41:8a:51:8c:2d:53:a8:a6:d9:0f:2a:a8:cd:39:6f: a0:d2:be:21:7a:23:90:83:4c:d9:b0:cc:c9:20:48:ea:a8:90: d7:bb:0d:08:8b:0e:d4:50:4f:d8:71:37:d8:f5:ce:cc:51:de: e7:3a:c6:04:a5:08:c7:23:0a:d9:1e:f5:04:92:5c:4f:1d:67: b4:b1:37:bb:3d:f4:79:c2:9a:d5:4c:ee:29:2b:c6:9c:fc:7e: 87:10:0d:38:e6:03:d2:f2:3f:46:37:62:7f:55:aa:a4:2b:7e: 29:6e:75:82:ec:68:be:05:64:45:96:4f:ee:b1:c3:89:f3:39: bb:52:6e:e5:94:d7:37:0b:4f:ee:7e:ae:09:02:1a:39:03:8e: 52:42:6c:05:80:2c:95:6c:b3:dd:49:2c:a9:17:03:63:d6:53: 45:15:91:2e:7d:af:aa:87:cd:16:dc:f8:6b:a6:a2:ae:d2:71: 77:f0:d7:e9:59:82:07:1d:32:66:00:50:12:5d:a8:95:39:f8: 73:74:0f:df:cd:df:3b:e4:27:f2:02:27:3a:1a:db:4d:dd:10: 4d:a5:14:58:0a:ff:4f:4f:eb:c9:c2:8a:88:81:38:b4:59:3e: 12:a7:fa:c5:4a:a8:a1:8c:d2:9e:07:62:29:3e:10:8e:43:c5: 98:12:9f:9e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUeZeJbWv/jpYbKnjy1vJ2B7GL3TUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDIyNTAwMDAwNloX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAYTkyNjExYjhlOWM2ZTY0ZWMxZDc3 ZmI5ODkwNDlhZjE5ZDBmYzUzOWRmMTdkMjIzZTc3YmI2ZWFjODdiM2M3YzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1YX2ZyKGGg4zdG0qntE3jhkhqQu zOVQuzyQilGw/RI2Jt97vK+a0kQTeimBL8DdZi2x7oQcYS/Pd2KTaASEI1m6/UU+ JwswuMoiLUr42DiD4h2OBj4F9VTI2Mvz4SYeTfWMuNXG+kZKgnjgfR3AlI/fBWSy USkZLyg2a74Uwca6ZGsEnb3xrbixOe+m9eKb1r5HwAqOoIT5Z6vJvgZf6/sQ1aPE Kffze+HroO1fX1tYxYrXhf4JfnEVG0qbW2huMSfaZe+uaJjQT7U3ygGKXfH6A4K6 B6Se7LLPNBE53FFIy8zl0qvg/VNifEySmtPUQUBegMAfLKsBFKzpGPRWwwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAEXvvSD7cpsp5fqTlmclz/TkC7RMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzIyZDY5MTNlLTVmM2QtNGY5OS05YTYwLTQ4NTc5ZjQ3MTgzOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJABlACAwDQYJKoZIhvcNAQELBQADggEBAGw3OkGKUYwtU6im2Q8q qM05b6DSviF6I5CDTNmwzMkgSOqokNe7DQiLDtRQT9hxN9j1zsxR3uc6xgSlCMcj Ctke9QSSXE8dZ7SxN7s99HnCmtVM7ikrxpz8focQDTjmA9LyP0Y3Yn9VqqQrfilu dYLsaL4FZEWWT+6xw4nzObtSbuWU1zcLT+5+rgkCGjkDjlJCbAWALJVss91JLKkX A2PWU0UVkS59r6qHzRbc+Gumoq7ScXfw1+lZggcdMmYAUBJdqJU5+HN0D9/N3zvk J/ICJzoa203dEE2lFFgK/09P68nCioiBOLRZPhKn+sVKqKGM0p4HYik+EI5DxZgS n54= -----END CERTIFICATE-----Generated at Sun Mar 1 23:49:09 2026 by rpki-client