$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa File: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (raw, json) Hash identifier: ZLXxMwM4vDfoBdxGaRhMGTm+FfO6E/g3I0EGSRmBbYY= Subject key identifier: BB:C1:9E:03:FA:C9:0F:63:8E:6E:67:90:56:EF:D0:02:D0:98:1A:8E Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 31A25388473790ED725C57F61105A1FFD6A81664 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa Signing time: Tue 24 Feb 2026 00:00:07 +0000 ROA not before: Tue 24 Feb 2026 00:00:07 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:a2:53:88:47:37:90:ed:72:5c:57:f6:11:05:a1:ff:d6:a8:16:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Feb 24 00:00:07 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=23220e73d6df4afc18fbd753568848fc3c3521a3a75b62d3f7dbfc110d01c975, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bf:d0:a0:ad:1d:14:83:76:64:76:1f:df:f0: 44:70:3f:1b:1c:e5:2c:92:4c:eb:b9:d1:24:28:f9: 1d:5e:ca:a0:ce:a3:ce:4c:5d:e9:4d:ab:9d:67:4c: 82:47:63:c1:a1:a9:a8:0e:e7:2c:d6:9b:73:69:b7: e5:b6:08:86:80:04:14:c7:2c:e7:17:e2:e1:f6:52: a4:79:a8:c2:0e:fd:e2:1a:48:ee:a2:72:79:1d:44: 54:45:cd:1a:8c:58:2e:57:b0:79:f9:d7:3d:2e:86: 8d:bc:75:4d:53:29:e7:44:99:3e:c1:7b:01:17:be: 48:5b:30:a0:cb:5d:ee:bb:5e:8a:0e:ce:ab:ab:55: 65:44:67:37:76:64:df:3e:64:4b:67:cb:c9:72:e6: 27:f2:94:10:ff:db:32:fc:3c:aa:09:17:eb:b2:ae: 94:d1:e6:df:bc:e9:1c:e7:a2:d4:66:e2:64:9c:5d: 99:a2:56:f0:db:b1:07:77:fd:71:a3:be:38:43:58: eb:3f:d3:fb:ed:f8:0d:f6:dd:b9:53:85:fe:18:04: 43:74:e4:29:d7:b2:0a:e2:bc:a6:b3:f8:21:4f:e9: df:79:c2:89:82:99:b7:68:f5:01:86:ef:44:1e:c6: a3:f9:85:d2:7d:12:fd:75:35:a6:63:51:00:7d:c8: 3f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C1:9E:03:FA:C9:0F:63:8E:6E:67:90:56:EF:D0:02:D0:98:1A:8E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/18 Signature Algorithm: sha256WithRSAEncryption 5f:9d:49:06:c8:dc:2c:6b:09:de:3d:9f:72:cf:e3:ce:87:1c: 04:15:e8:2a:5f:30:9d:a4:ed:41:3d:0f:28:e9:41:18:b0:62: 90:10:67:37:f7:78:10:21:e4:f1:9f:c5:6a:89:a2:50:fc:41: 09:de:c8:58:8b:72:04:66:c0:c6:57:1c:66:27:de:71:c6:4c: 69:fa:b8:e4:2d:1e:c2:70:ca:18:c8:f3:b2:4e:50:b9:4d:b1: 93:e7:64:b3:e8:6d:39:c8:36:da:04:e2:73:13:ef:c3:78:d7: 2e:d9:c1:f7:2f:b3:63:1e:70:86:52:f8:97:b6:b1:62:19:09: fd:81:ce:f8:ce:fc:b7:31:01:9f:29:e1:6f:19:4d:f0:da:fd: 5e:9f:fe:68:ed:05:9c:99:97:e4:db:1a:0d:4e:89:f9:de:93: 04:c6:cc:26:69:f2:1e:2b:3e:5c:81:c6:9d:30:74:10:81:68: 63:d0:1e:e4:ce:2a:d8:1a:7e:28:d5:5a:04:b3:1a:9d:9d:88: 42:e5:67:5e:9f:0e:05:f5:5e:f6:ba:58:27:71:76:ce:9c:80: 19:65:26:34:62:3a:49:d3:d5:d0:a2:a1:34:56:a0:14:01:a4: 5f:7d:03:7e:9a:cf:5e:0c:8c:ba:71:8d:22:81:9e:f4:e9:a9: ec:10:f9:d5 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUMaJTiEc3kO1yXFf2EQWh/9aoFmQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDIyNDAwMDAwN1oX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAMjMyMjBlNzNkNmRmNGFmYzE4ZmJk NzUzNTY4ODQ4ZmMzYzM1MjFhM2E3NWI2MmQzZjdkYmZjMTEwZDAxYzk3NTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsr/QoK0dFIN2ZHYf3/BEcD8bHOUs kkzrudEkKPkdXsqgzqPOTF3pTaudZ0yCR2PBoamoDucs1ptzabfltgiGgAQUxyzn F+Lh9lKkeajCDv3iGkjuonJ5HURURc0ajFguV7B5+dc9LoaNvHVNUynnRJk+wXsB F75IWzCgy13uu16KDs6rq1VlRGc3dmTfPmRLZ8vJcuYn8pQQ/9sy/DyqCRfrsq6U 0ebfvOkc56LUZuJknF2Zolbw27EHd/1xo744Q1jrP9P77fgN9t25U4X+GARDdOQp 17IK4ryms/ghT+nfecKJgpm3aPUBhu9EHsaj+YXSfRL9dTWmY1EAfcg/AQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLvBngP6yQ9jjm5nkFbv0ALQmBqOMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzllMzdmODU1LTQ4YmYtNDIwYS1hODZjLTVlZWI0ZmMxZjc5MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrymAMA0GCSqGSIb3DQEBCwUAA4IBAQBfnUkGyNwsawnePZ9yz+PO hxwEFegqXzCdpO1BPQ8o6UEYsGKQEGc393gQIeTxn8VqiaJQ/EEJ3shYi3IEZsDG VxxmJ95xxkxp+rjkLR7CcMoYyPOyTlC5TbGT52Sz6G05yDbaBOJzE+/DeNcu2cH3 L7NjHnCGUviXtrFiGQn9gc74zvy3MQGfKeFvGU3w2v1en/5o7QWcmZfk2xoNTon5 3pMExswmafIeKz5cgcadMHQQgWhj0B7kzirYGn4o1VoEsxqdnYhC5Wdenw4F9V72 ulgncXbOnIAZZSY0YjpJ09XQoqE0VqAUAaRffQN+ms9eDIy6cY0igZ706ansEPnV -----END CERTIFICATE-----Generated at Sun Mar 1 21:51:53 2026 by rpki-client