$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa File: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (raw, json) Hash identifier: fB2mXgwfTDMHGU9TN7w89E4Dzg6sh/SSFtPBROFGSJg= Subject key identifier: FB:DC:BC:10:77:23:72:37:20:B3:B8:35:C6:86:B9:19:A2:8A:22:16 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 14F10584614A4B96E7FC2035405A68DB2F38DD01 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa Signing time: Tue 24 Feb 2026 00:00:10 +0000 ROA not before: Tue 24 Feb 2026 00:00:10 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f1:05:84:61:4a:4b:96:e7:fc:20:35:40:5a:68:db:2f:38:dd:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Feb 24 00:00:10 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=3e89b89700f363cb1054652c16563e58e74532485c7b81a4733ef8a2076aca89, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e3:c6:a6:24:b4:cc:1f:03:de:8e:77:6b:10: 3c:63:b6:19:b9:29:5d:68:f4:c4:43:4d:18:7d:13: 56:20:59:a8:99:c6:01:ef:3a:f0:d8:43:ac:4d:b3: ed:b0:09:be:90:11:03:96:b9:2f:a8:fe:66:2e:83: 4c:29:a6:66:3b:29:03:49:91:12:f4:a6:d9:16:c0: 8a:b9:cb:2d:a2:a9:19:b9:6f:46:e1:8d:65:02:d4: 49:f9:61:f1:8e:76:fa:18:af:2e:db:c7:02:b3:2c: 8b:c3:25:7b:a8:43:78:84:bd:03:b3:cb:c2:80:b4: bc:d0:99:f3:4d:8e:ed:40:5e:34:bb:2e:cc:e2:e8: 8e:11:74:6d:97:a3:7c:20:52:01:ec:ef:9a:b0:b3: ad:c2:b2:f0:5b:a5:0a:c2:81:a1:b2:bf:97:a3:2d: c1:2d:97:38:39:51:9d:31:77:53:fa:76:e8:fe:1f: e6:da:69:ff:7c:9e:00:1d:b0:d4:ac:c9:94:4e:a1: d0:63:22:3d:a2:a6:03:ea:45:3d:6c:91:7d:65:c8: 9f:cd:04:83:00:95:03:89:36:ef:b0:76:97:77:8d: d3:e4:38:3f:a4:e1:cc:50:ba:be:8d:51:39:60:dc: 6e:3a:f5:45:ec:7a:45:fe:ce:f7:c8:2e:44:3b:a9: 4f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:DC:BC:10:77:23:72:37:20:B3:B8:35:C6:86:B9:19:A2:8A:22:16 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.152.0/21 Signature Algorithm: sha256WithRSAEncryption ad:8f:6b:38:c9:e2:0a:fb:f5:09:3f:86:2d:11:9e:68:1a:6c: f3:a2:44:88:7b:7b:99:45:8e:79:7e:b4:74:03:5c:16:6c:67: 8f:c5:e5:d5:de:a2:df:bb:2f:ed:57:c0:9e:40:e7:15:bf:ca: 17:75:f6:f5:12:e4:9d:4b:3b:a0:0b:2b:9a:cd:a9:7f:ad:09: 9e:60:9c:f0:be:d6:9d:6c:2a:fd:fb:e8:b5:de:c7:a5:bc:10: e1:b7:00:38:02:8e:50:39:1a:e0:df:e1:98:34:21:49:1b:11: 09:e4:36:4c:98:a0:4a:cb:d9:1b:f9:ca:f1:a4:d7:bc:50:6f: fb:7e:b0:48:cb:d6:48:fd:cf:9e:7c:69:eb:c0:26:49:5b:f9: f6:e7:8c:88:03:fa:b7:5a:71:cb:fc:7a:34:72:5b:b3:c9:f1: ac:30:e7:b2:19:de:bd:2f:d6:98:c2:45:c9:95:05:49:fa:0e: 1d:75:f1:4e:2e:07:f5:3e:63:1a:86:9f:17:c2:ce:a1:62:d8: 27:27:f5:f8:a6:59:a6:cd:81:ce:ed:d4:8b:84:71:24:d2:4e: a8:08:30:b6:55:54:f3:69:50:83:de:5d:38:12:48:ff:10:d5: c0:bf:8d:39:82:4d:2e:10:dd:43:ad:68:e9:44:65:6b:e6:7b: 10:f6:78:87 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUFPEFhGFKS5bn/CA1QFpo2y843QEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDIyNDAwMDAxMFoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAM2U4OWI4OTcwMGYzNjNjYjEwNTQ2 NTJjMTY1NjNlNThlNzQ1MzI0ODVjN2I4MWE0NzMzZWY4YTIwNzZhY2E4OTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnePGpiS0zB8D3o53axA8Y7YZuSld aPTEQ00YfRNWIFmomcYB7zrw2EOsTbPtsAm+kBEDlrkvqP5mLoNMKaZmOykDSZES 9KbZFsCKucstoqkZuW9G4Y1lAtRJ+WHxjnb6GK8u28cCsyyLwyV7qEN4hL0Ds8vC gLS80JnzTY7tQF40uy7M4uiOEXRtl6N8IFIB7O+asLOtwrLwW6UKwoGhsr+Xoy3B LZc4OVGdMXdT+nbo/h/m2mn/fJ4AHbDUrMmUTqHQYyI9oqYD6kU9bJF9ZcifzQSD AJUDiTbvsHaXd43T5Dg/pOHMULq+jVE5YNxuOvVF7HpF/s73yC5EO6lPmQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPvcvBB3I3I3ILO4NcaGuRmiiiIWMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2FkZjc1ZTJlLTlkMmMtNDcxOC1hNDlkLWFkNDQwNzliMjY2Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrymYMA0GCSqGSIb3DQEBCwUAA4IBAQCtj2s4yeIK+/UJP4YtEZ5o GmzzokSIe3uZRY55frR0A1wWbGePxeXV3qLfuy/tV8CeQOcVv8oXdfb1EuSdSzug Cyuazal/rQmeYJzwvtadbCr9++i13selvBDhtwA4Ao5QORrg3+GYNCFJGxEJ5DZM mKBKy9kb+crxpNe8UG/7frBIy9ZI/c+efGnrwCZJW/n254yIA/q3WnHL/Ho0cluz yfGsMOeyGd69L9aYwkXJlQVJ+g4ddfFOLgf1PmMahp8Xws6hYtgnJ/X4plmmzYHO 7dSLhHEk0k6oCDC2VVTzaVCD3l04Ekj/ENXAv405gk0uEN1DrWjpRGVr5nsQ9niH -----END CERTIFICATE-----Generated at Sun Mar 1 21:52:07 2026 by rpki-client