$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa File: d953b731-7921-47dd-abf3-b7b8cc367900.roa (raw, json) Hash identifier: +2Ox8MRpSKcyTvXMAxijBxiUi8rZJNCBj7CY+0WEQd4= Subject key identifier: 85:DC:CC:6E:E9:CE:F8:4F:61:A6:37:00:7B:57:A3:30:22:D2:70:EF Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 21346060CCA1415152C0393F5F4B210109A941FD Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa Signing time: Tue 24 Feb 2026 00:00:04 +0000 ROA not before: Tue 24 Feb 2026 00:00:04 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:34:60:60:cc:a1:41:51:52:c0:39:3f:5f:4b:21:01:09:a9:41:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Feb 24 00:00:04 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=fc0d50f3b467f9c49396dcc596b002763e9bd5005984afa5af860f2178e70bfb, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:9e:46:90:c5:e5:f5:c9:1f:57:3f:aa:82:2a: 2e:1f:85:13:46:13:7d:23:37:b2:6c:ad:a6:53:08: 69:38:b2:15:f2:b2:f7:8a:0d:fe:50:70:65:65:57: 7d:be:71:ec:16:3a:67:b2:72:bc:24:32:72:11:65: c2:fe:e6:a7:30:0a:71:ad:42:03:9e:a1:bd:c9:fa: 3f:bb:1c:bb:4f:4a:aa:e1:5f:5d:a6:96:ba:57:ce: 15:d8:7e:88:1f:7c:dc:c0:f7:d2:18:d6:31:8a:05: c1:2f:dd:d2:8f:d8:38:32:7e:05:04:9e:b4:30:77: 3b:8a:53:3c:4d:c1:b6:38:e9:c2:f9:c1:fe:6b:c9: 86:7d:ef:9a:04:fa:07:86:10:bc:7d:da:ae:23:61: 17:9a:a4:03:26:bf:ce:d1:96:7d:37:ca:29:6d:43: 31:97:12:01:55:6f:b2:1e:26:47:ae:0e:76:92:c2: e6:98:af:8f:df:81:08:08:3a:dd:f1:0f:49:78:de: 47:33:5d:f7:82:f3:3f:45:0a:f7:fd:f8:bc:a9:cf: e0:ff:26:16:5a:4a:c3:b0:ce:1a:a6:fd:85:46:1e: 8f:d9:47:17:00:a6:f3:6b:6d:ac:19:3a:9a:5e:94: 1e:70:09:15:77:fc:16:bf:bd:93:d0:38:51:e9:fd: f1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:DC:CC:6E:E9:CE:F8:4F:61:A6:37:00:7B:57:A3:30:22:D2:70:EF X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/18 Signature Algorithm: sha256WithRSAEncryption 59:41:b2:69:4d:5c:2f:84:88:54:59:eb:1c:c1:6d:b0:63:e6: c9:f7:d9:5d:7f:86:c7:8e:b1:74:60:88:43:e9:c5:27:32:f9: 40:cc:45:06:0d:46:cc:55:fd:f1:1b:c2:ef:e6:79:3f:4c:25: 94:b3:69:c4:dd:5d:e0:6f:94:e6:88:42:79:d7:2a:af:1f:56: 3c:b6:05:db:7f:a4:7c:60:ce:5d:4f:25:a3:a3:91:32:16:0b: b4:d7:9c:d2:88:19:44:a2:6d:54:c5:1a:d4:85:93:38:ea:07: 9a:72:90:59:83:48:40:9a:c7:f8:d4:3b:1d:f5:ad:5a:01:7f: 91:99:3f:c2:42:ad:3e:af:39:a9:0e:36:12:11:94:2b:b2:fb: 9e:fd:e4:e4:f8:c6:2b:5f:c8:40:d3:6f:8c:6f:af:eb:4e:be: 6d:d7:4e:ed:3d:22:7c:76:b8:f5:43:ad:fb:92:83:13:0a:5b: 91:d5:33:11:54:d5:61:b0:90:81:5c:5b:ba:03:8b:11:3c:26: b4:2a:48:de:c9:54:1c:9b:f9:80:fc:e6:77:e3:a1:8e:de:eb: 8b:e3:bc:05:0d:a3:2c:5f:66:63:bc:7c:ec:a9:91:fd:56:18: 50:a5:ca:69:95:59:5d:1e:c9:04:3a:85:c5:6a:16:56:94:56: 43:24:0b:3c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUITRgYMyhQVFSwDk/X0shAQmpQf0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDIyNDAwMDAwNFoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAZmMwZDUwZjNiNDY3ZjljNDkzOTZk Y2M1OTZiMDAyNzYzZTliZDUwMDU5ODRhZmE1YWY4NjBmMjE3OGU3MGJmYjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6p5GkMXl9ckfVz+qgiouH4UTRhN9 IzeybK2mUwhpOLIV8rL3ig3+UHBlZVd9vnHsFjpnsnK8JDJyEWXC/uanMApxrUID nqG9yfo/uxy7T0qq4V9dppa6V84V2H6IH3zcwPfSGNYxigXBL93Sj9g4Mn4FBJ60 MHc7ilM8TcG2OOnC+cH+a8mGfe+aBPoHhhC8fdquI2EXmqQDJr/O0ZZ9N8opbUMx lxIBVW+yHiZHrg52ksLmmK+P34EICDrd8Q9JeN5HM133gvM/RQr3/fi8qc/g/yYW WkrDsM4apv2FRh6P2UcXAKbza22sGTqaXpQecAkVd/wWv72T0DhR6f3xrwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFIXczG7pzvhPYaY3AHtXozAi0nDvMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2Q5NTNiNzMxLTc5MjEtNDdkZC1hYmYzLWI3YjhjYzM2NzkwMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGevjAMA0GCSqGSIb3DQEBCwUAA4IBAQBZQbJpTVwvhIhUWescwW2w Y+bJ99ldf4bHjrF0YIhD6cUnMvlAzEUGDUbMVf3xG8Lv5nk/TCWUs2nE3V3gb5Tm iEJ51yqvH1Y8tgXbf6R8YM5dTyWjo5EyFgu015zSiBlEom1UxRrUhZM46geacpBZ g0hAmsf41Dsd9a1aAX+RmT/CQq0+rzmpDjYSEZQrsvue/eTk+MYrX8hA02+Mb6/r Tr5t107tPSJ8drj1Q637koMTCluR1TMRVNVhsJCBXFu6A4sRPCa0KkjeyVQcm/mA /OZ346GO3uuL47wFDaMsX2ZjvHzsqZH9VhhQpcpplVldHskEOoXFahZWlFZDJAs8 -----END CERTIFICATE-----Generated at Mon Mar 2 03:22:27 2026 by rpki-client