$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa File: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (raw, json) Hash identifier: pklnbVub/fuu34AybFXOGT+PdGgA5UEdWQ9SFNOmiw4= Subject key identifier: F7:F3:FE:CD:55:CD:D7:0C:BA:2A:2B:37:E3:22:AA:E8:B0:C8:D7:74 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 5A0B7480CB471D647CECC63D8F2A50CDD3690034 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa Signing time: Tue 24 Feb 2026 00:00:08 +0000 ROA not before: Tue 24 Feb 2026 00:00:08 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:0b:74:80:cb:47:1d:64:7c:ec:c6:3d:8f:2a:50:cd:d3:69:00:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Feb 24 00:00:08 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=4b465aa2086b0365736bd9cb5326a1b06da9e30e9980d6b7926aa41ca7425fe1, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0f:cd:ea:df:f3:33:46:e4:00:ba:21:e8:72: f8:07:32:f7:d2:28:73:47:e6:a7:e4:49:47:75:77: ac:2f:5f:f0:59:62:2b:5f:40:28:b0:b5:39:34:20: 7a:b4:9b:41:54:62:8d:16:e4:f9:e5:08:a9:3a:45: 9b:1e:db:2f:11:a1:0c:3e:7a:d5:60:bf:53:b4:97: 6b:2a:90:bc:98:55:36:d2:02:9f:60:b0:d4:c9:cb: 0d:03:c5:eb:d5:3f:96:f1:0e:13:a8:11:52:ac:75: 90:b0:3b:f0:9b:17:91:c6:43:3b:68:64:a8:0f:f2: 8a:d8:9c:98:d3:f5:a1:c4:2f:08:c6:b9:bd:66:c7: 89:59:b6:5d:42:10:98:70:02:b2:e6:aa:97:26:73: 88:69:49:2e:bf:2d:47:b7:55:7b:7c:4a:19:ee:4a: d9:aa:9b:9a:7b:25:51:18:b6:9f:75:23:a6:49:16: 84:87:bc:7c:ae:9b:8d:d5:76:22:9e:c3:9a:e2:e7: b1:25:7e:67:36:a3:5c:68:e8:65:c3:60:28:f5:ae: 97:5a:d0:05:a4:ad:60:45:60:f8:a2:00:76:17:10: f8:68:9f:fa:85:01:0b:cc:e8:ad:7c:7b:a9:31:05: f8:00:c0:91:52:71:62:71:20:0a:83:84:c2:26:7a: ee:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F3:FE:CD:55:CD:D7:0C:BA:2A:2B:37:E3:22:AA:E8:B0:C8:D7:74 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.160.0/19 Signature Algorithm: sha256WithRSAEncryption c5:02:4b:ee:b8:af:9f:65:e3:d0:6c:89:4b:a6:96:98:97:f8: cb:16:19:d3:9a:f4:38:ba:f2:70:c4:a1:24:5d:09:45:30:37: d4:25:f0:2d:0b:22:e5:ca:dc:81:0d:bd:2e:43:06:c4:3f:fe: da:bd:fa:16:ca:9f:08:6d:bf:91:a8:45:f2:3e:94:cf:a5:7c: 4b:6f:b4:3b:58:29:30:1d:6b:cd:d8:bd:4e:dd:f7:cd:d9:c1: 0a:f7:2b:b4:4f:e6:d9:7a:e2:ba:fc:83:61:96:ae:98:83:d4: 28:2c:b1:84:9c:5a:2e:7b:3c:f9:ab:07:67:29:a2:04:73:eb: 2e:8a:0a:9e:c0:35:fe:2f:35:d5:9f:f5:85:2a:b8:3c:07:3c: 1c:64:7a:a2:09:a9:a7:31:a5:30:8f:79:5d:44:3a:a5:61:cc: 22:ac:48:04:d6:30:0f:1b:24:c3:57:4f:3d:79:3a:cb:30:1d: 36:4c:94:82:49:b2:d5:81:62:7b:a6:5f:94:fc:8d:0d:07:81: 50:70:10:33:ca:60:df:43:60:19:66:3e:19:3a:85:f1:83:8b: 46:c5:87:69:02:73:78:56:b0:1d:e6:34:89:bb:1f:df:65:93: 1a:47:e6:02:5d:e0:3b:bd:e9:ac:a1:a0:94:45:67:a7:c7:b2: 5c:c4:cd:5d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUWgt0gMtHHWR87MY9jypQzdNpADQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDIyNDAwMDAwOFoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNANGI0NjVhYTIwODZiMDM2NTczNmJk OWNiNTMyNmExYjA2ZGE5ZTMwZTk5ODBkNmI3OTI2YWE0MWNhNzQyNWZlMTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQ/N6t/zM0bkALoh6HL4BzL30ihz R+an5ElHdXesL1/wWWIrX0AosLU5NCB6tJtBVGKNFuT55QipOkWbHtsvEaEMPnrV YL9TtJdrKpC8mFU20gKfYLDUycsNA8Xr1T+W8Q4TqBFSrHWQsDvwmxeRxkM7aGSo D/KK2JyY0/WhxC8Ixrm9ZseJWbZdQhCYcAKy5qqXJnOIaUkuvy1Ht1V7fEoZ7krZ qpuaeyVRGLafdSOmSRaEh7x8rpuN1XYinsOa4uexJX5nNqNcaOhlw2Ao9a6XWtAF pK1gRWD4ogB2FxD4aJ/6hQELzOitfHupMQX4AMCRUnFicSAKg4TCJnrupQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPfz/s1VzdcMuiorN+MiquiwyNd0MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQzZmQ4Njg3LTEyZDQtNDliNS05OTU4LTg1MzZjZTgxNjBiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFrymgMA0GCSqGSIb3DQEBCwUAA4IBAQDFAkvuuK+fZePQbIlLppaY l/jLFhnTmvQ4uvJwxKEkXQlFMDfUJfAtCyLlytyBDb0uQwbEP/7avfoWyp8Ibb+R qEXyPpTPpXxLb7Q7WCkwHWvN2L1O3ffN2cEK9yu0T+bZeuK6/INhlq6Yg9QoLLGE nFouezz5qwdnKaIEc+suigqewDX+LzXVn/WFKrg8BzwcZHqiCamnMaUwj3ldRDql YcwirEgE1jAPGyTDV089eTrLMB02TJSCSbLVgWJ7pl+U/I0NB4FQcBAzymDfQ2AZ Zj4ZOoXxg4tGxYdpAnN4VrAd5jSJux/fZZMaR+YCXeA7vemsoaCURWenx7JcxM1d -----END CERTIFICATE-----Generated at Mon Mar 2 06:30:39 2026 by rpki-client