$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa File: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (raw, json) Hash identifier: zZSdfeX8NNWn6l7ff8TltCcHKYzcM1IAhXvaT99erpc= Subject key identifier: 5B:3D:5C:D5:5D:93:BE:6E:37:74:D5:7D:05:48:17:FC:C2:26:E8:56 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 582E0C000CD3804A8354C273A2F913F608EE3B37 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa Signing time: Tue 24 Feb 2026 00:00:11 +0000 ROA not before: Tue 24 Feb 2026 00:00:11 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:2e:0c:00:0c:d3:80:4a:83:54:c2:73:a2:f9:13:f6:08:ee:3b:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Feb 24 00:00:11 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=60bd12f5e4510146cf49281f9c1f3bf3a5ef993573d67bdb94266a1c1ff690b1, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e3:8e:ef:9f:eb:11:44:de:e5:a4:29:8c:74: d4:91:4e:d0:75:cd:fe:2c:9e:a8:d9:20:b9:63:10: 93:f1:8b:b6:ab:b7:0c:0d:1a:91:ca:59:e9:72:50: 2d:17:77:08:f4:d5:cf:02:f5:b0:c1:c6:59:ad:c4: fb:3b:06:51:3d:fc:17:a1:12:d5:ce:d5:4b:91:35: e1:bd:60:37:ff:ac:94:c8:ff:4a:25:10:e0:0c:3d: 21:07:ef:d5:d7:34:f9:4b:a9:b0:82:15:06:7f:02: 87:b6:92:4c:03:98:60:44:e9:d2:46:1b:21:84:66: 5a:85:dd:5a:e6:47:6c:13:5a:8e:91:64:3f:ce:ec: 1b:3e:da:c6:8b:a0:95:38:c1:5a:b4:c0:d7:53:e2: bb:83:e6:30:62:0e:fb:ee:d7:a7:6f:3b:e7:3e:f7: f7:92:99:44:59:c2:25:6c:26:0e:f8:a1:0e:16:b1: 99:ed:0c:59:84:b3:1f:4c:00:f0:28:51:eb:5e:2e: 37:e2:41:88:61:26:6e:cf:43:45:24:fe:66:79:9d: 00:6f:0b:dc:8e:23:c9:9c:ea:49:68:33:7f:53:c2: a0:d6:45:fd:08:58:af:7b:47:19:8f:78:bb:5d:cf: 98:ae:13:a6:92:86:5f:96:99:df:8a:80:68:eb:c1: a7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3D:5C:D5:5D:93:BE:6E:37:74:D5:7D:05:48:17:FC:C2:26:E8:56 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.148.0/23 Signature Algorithm: sha256WithRSAEncryption e8:96:38:14:19:e5:15:a8:3c:1e:e6:ea:32:15:8c:a1:9a:05: af:97:18:06:7d:1f:6d:88:ee:01:9f:2c:61:23:ba:d7:fe:e3: 1e:ac:de:49:45:31:6c:2b:36:95:cd:a1:a7:03:91:1a:00:89: 50:ff:29:7c:18:7e:43:83:0c:25:7f:c1:85:4b:73:9b:a6:49: dc:46:21:e2:25:f1:2c:43:2c:cb:97:dc:bb:fb:e8:b2:b5:eb: fd:08:d0:db:18:5e:a1:90:9c:22:46:96:38:c8:09:59:c0:b4: 0c:45:2f:c7:cb:58:21:84:a3:d6:b3:db:7b:bd:e8:f6:a5:bd: 57:67:4a:bb:f0:c1:63:1b:ba:06:b6:b3:23:d1:65:30:e3:be: 8b:a7:a5:92:e5:75:cf:a3:cc:6c:29:2e:b0:81:75:7c:90:eb: 72:50:e4:e9:02:91:d7:2f:a8:ed:d6:db:fb:e8:a4:6a:e8:ff: c1:99:df:7a:1c:c3:f0:93:ee:10:5e:1b:51:14:74:be:ab:4b: 47:df:2e:75:d3:8b:79:30:1c:34:27:ea:5b:d6:f9:02:ea:cf: 5a:81:54:0f:48:e9:73:25:ac:c1:4d:9a:6f:76:98:6b:a6:e4: 47:9f:89:58:0f:59:44:ca:06:80:41:4f:77:91:75:05:8a:53: 58:b4:ac:62 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUWC4MAAzTgEqDVMJzovkT9gjuOzcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDIyNDAwMDAxMVoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNANjBiZDEyZjVlNDUxMDE0NmNmNDky ODFmOWMxZjNiZjNhNWVmOTkzNTczZDY3YmRiOTQyNjZhMWMxZmY2OTBiMTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAluOO75/rEUTe5aQpjHTUkU7Qdc3+ LJ6o2SC5YxCT8Yu2q7cMDRqRylnpclAtF3cI9NXPAvWwwcZZrcT7OwZRPfwXoRLV ztVLkTXhvWA3/6yUyP9KJRDgDD0hB+/V1zT5S6mwghUGfwKHtpJMA5hgROnSRhsh hGZahd1a5kdsE1qOkWQ/zuwbPtrGi6CVOMFatMDXU+K7g+YwYg777tenbzvnPvf3 kplEWcIlbCYO+KEOFrGZ7QxZhLMfTADwKFHrXi434kGIYSZuz0NFJP5meZ0Abwvc jiPJnOpJaDN/U8Kg1kX9CFive0cZj3i7Xc+YrhOmkoZflpnfioBo68GnMwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFFs9XNVdk75uN3TVfQVIF/zCJuhWMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzdiMjZkNDEwLTE3ZDctNDMxMC1iYjU4LTQxYzQ2NWY4ZWVmMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymUMA0GCSqGSIb3DQEBCwUAA4IBAQDoljgUGeUVqDwe5uoyFYyh mgWvlxgGfR9tiO4BnyxhI7rX/uMerN5JRTFsKzaVzaGnA5EaAIlQ/yl8GH5Dgwwl f8GFS3ObpkncRiHiJfEsQyzLl9y7++iytev9CNDbGF6hkJwiRpY4yAlZwLQMRS/H y1ghhKPWs9t7vej2pb1XZ0q78MFjG7oGtrMj0WUw476Lp6WS5XXPo8xsKS6wgXV8 kOtyUOTpApHXL6jt1tv76KRq6P/Bmd96HMPwk+4QXhtRFHS+q0tH3y5104t5MBw0 J+pb1vkC6s9agVQPSOlzJazBTZpvdphrpuRHn4lYD1lEygaAQU93kXUFilNYtKxi -----END CERTIFICATE-----Generated at Sun Mar 1 21:54:41 2026 by rpki-client