$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa File: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (raw, json) Hash identifier: doGDeV/JZpETUW2CE9tY+Z4Pwxu5xmhr4Vl+a0gqJU8= Subject key identifier: FA:56:D1:76:59:DB:5B:8F:B2:67:5A:E7:42:E1:16:12:AA:CC:D6:80 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 0F59028F178D3A05524F74C0FFF0090DB389AD15 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa Signing time: Tue 24 Feb 2026 00:00:06 +0000 ROA not before: Tue 24 Feb 2026 00:00:06 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:59:02:8f:17:8d:3a:05:52:4f:74:c0:ff:f0:09:0d:b3:89:ad:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Feb 24 00:00:06 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=8e7e0844706784ba80e3d1c2fbc13289bf45608b17d53f8c1c17a84c63a3bf71, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:ba:b0:51:3e:5d:48:e5:02:b9:23:fb:42:49: dc:53:ce:4f:f0:cd:d2:88:a4:75:19:ad:d3:ec:f9: 67:5e:12:fa:13:f5:2c:82:47:7c:e0:bb:27:2a:05: 31:2c:4c:16:4d:81:45:e2:15:fd:94:cc:23:97:87: d3:4a:8f:83:0a:01:c0:6f:89:72:a0:cb:af:4a:ee: 24:2a:97:6c:ae:12:49:9d:6e:c1:30:b5:2c:05:0b: 42:4f:58:f2:f0:cf:d0:0e:7e:98:54:a8:73:96:ad: bf:93:65:c7:7f:de:30:b6:67:63:9d:50:ba:74:7a: 4a:0d:db:49:cd:ae:fe:cd:f9:0f:32:e9:b7:da:52: ac:5e:42:2b:da:62:f6:0d:ea:16:02:7d:ca:e3:01: fd:40:83:8e:01:a6:bf:de:52:13:b3:a7:1a:de:86: da:e2:91:f9:83:25:53:1f:30:9e:17:dc:85:0d:3a: 58:7c:e9:a5:74:29:ea:ad:3b:44:27:22:d8:c3:54: a2:ea:9b:be:7f:c5:0c:fb:88:9c:be:0e:1c:3c:8c: 5e:ce:b5:e6:58:21:87:fc:ff:02:df:2e:df:7f:fd: 08:fc:e4:d5:43:13:18:da:f6:98:f7:f9:92:be:85: 01:97:41:cd:01:35:2d:5e:dc:10:40:ac:a1:c4:00: de:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:56:D1:76:59:DB:5B:8F:B2:67:5A:E7:42:E1:16:12:AA:CC:D6:80 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.132.0/22 Signature Algorithm: sha256WithRSAEncryption 99:d8:bc:ae:b6:d1:de:94:06:44:fb:45:c2:88:b4:b0:05:d9: 0f:19:e4:5b:e8:f1:06:a3:12:9a:07:a2:a6:f2:2a:bd:c7:d6: e8:5c:c2:9d:e1:2a:dc:a6:2e:42:28:7e:96:be:52:b5:39:58: 19:2f:4b:d5:29:3f:2b:13:80:1b:c3:56:15:de:e8:ed:62:de: 37:ac:dd:f1:94:37:90:ba:ff:d5:5a:8c:22:fb:f1:01:b8:c2: f4:2a:b6:ce:7c:05:c0:f2:f7:91:9d:f1:1a:1a:2d:b7:6c:75: 6a:57:3a:e3:03:e5:87:d9:a4:c2:db:1b:4e:3e:60:0d:2c:ff: 72:80:88:21:26:f1:5c:87:24:bd:8e:a4:ab:54:bc:54:07:10: 36:70:98:8d:a9:a7:0b:5e:c7:84:55:9f:49:9d:53:e9:2f:ae: 7e:ed:26:6a:e5:44:e3:3b:a4:e6:9b:e0:cc:43:b8:45:cd:9b: 65:24:32:7d:51:09:37:d2:df:06:34:00:78:4b:49:71:4e:a5: cd:dd:12:a2:a2:87:e0:09:2c:37:bf:a1:50:ef:db:d3:cd:37: 38:79:6d:c7:ba:07:46:a2:06:c0:9f:8d:63:ad:14:a0:43:e4: 25:25:e0:38:00:66:e8:cc:28:5c:da:77:37:ba:24:9f:9a:26: 92:e5:63:88 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUD1kCjxeNOgVST3TA//AJDbOJrRUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDIyNDAwMDAwNloX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAOGU3ZTA4NDQ3MDY3ODRiYTgwZTNk MWMyZmJjMTMyODliZjQ1NjA4YjE3ZDUzZjhjMWMxN2E4NGM2M2EzYmY3MTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7qwUT5dSOUCuSP7QkncU85P8M3S iKR1Ga3T7PlnXhL6E/Usgkd84LsnKgUxLEwWTYFF4hX9lMwjl4fTSo+DCgHAb4ly oMuvSu4kKpdsrhJJnW7BMLUsBQtCT1jy8M/QDn6YVKhzlq2/k2XHf94wtmdjnVC6 dHpKDdtJza7+zfkPMum32lKsXkIr2mL2DeoWAn3K4wH9QIOOAaa/3lITs6ca3oba 4pH5gyVTHzCeF9yFDTpYfOmldCnqrTtEJyLYw1Si6pu+f8UM+4icvg4cPIxezrXm WCGH/P8C3y7ff/0I/OTVQxMY2vaY9/mSvoUBl0HNATUtXtwQQKyhxADe8wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPpW0XZZ21uPsmda50LhFhKqzNaAMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzZiMTVhYmI2LTEwYjctNGVjZC05OTQ3LWM5NjAxMmY4MjRjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymEMA0GCSqGSIb3DQEBCwUAA4IBAQCZ2LyuttHelAZE+0XCiLSw BdkPGeRb6PEGoxKaB6Km8iq9x9boXMKd4Srcpi5CKH6WvlK1OVgZL0vVKT8rE4Ab w1YV3ujtYt43rN3xlDeQuv/VWowi+/EBuML0KrbOfAXA8veRnfEaGi23bHVqVzrj A+WH2aTC2xtOPmANLP9ygIghJvFchyS9jqSrVLxUBxA2cJiNqacLXseEVZ9JnVPp L65+7SZq5UTjO6Tmm+DMQ7hFzZtlJDJ9UQk30t8GNAB4S0lxTqXN3RKioofgCSw3 v6FQ79vTzTc4eW3HugdGogbAn41jrRSgQ+QlJeA4AGbozChc2nc3uiSfmiaS5WOI -----END CERTIFICATE-----Generated at Sun Mar 1 23:47:29 2026 by rpki-client