$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c759ed47-7de1-4858-b207-c77b1f7d2c35.roa File: c759ed47-7de1-4858-b207-c77b1f7d2c35.roa (raw, json) Hash identifier: hWpgEnmXOc/6/7mqwc9NiKA+nSpuSSnXqyeXu6O6CZM= Subject key identifier: EC:C3:FB:73:F4:03:30:16:FF:D1:1B:D3:0A:E2:5E:42:61:61:08:C3 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 62451034E79FFF6D533F91490DDB41FDE92541F6 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c759ed47-7de1-4858-b207-c77b1f7d2c35.roa Signing time: Tue 24 Feb 2026 00:10:35 +0000 ROA not before: Tue 24 Feb 2026 00:10:35 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 103.21.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:45:10:34:e7:9f:ff:6d:53:3f:91:49:0d:db:41:fd:e9:25:41:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 24 00:10:35 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=a358c1998478796e955fe4bf003e5d5cbe99d12c675eb2c0ca7ee71147b0ee9e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fd:af:ab:a0:a4:9a:92:2a:8c:7d:e4:49:52: 74:6b:08:6f:d6:18:f0:48:78:30:9e:bf:0f:22:3c: b9:cc:5c:80:a3:38:85:e1:60:bf:14:17:e6:4a:3f: 64:80:69:e7:33:60:bf:6c:41:bd:0b:be:3b:b3:91: 29:51:ee:c3:f4:a5:be:2a:83:1b:88:0f:94:00:43: 82:e8:06:dc:1a:04:97:92:d2:03:95:f6:97:8d:27: ee:aa:32:d1:84:85:ea:a0:01:ca:d8:e5:f4:2b:b1: 71:1d:23:1a:30:72:33:03:c7:d7:e5:74:13:04:58: 28:2a:95:db:7e:15:80:f4:25:3e:a4:e1:c2:ac:b9: e9:d4:40:b5:65:8a:1b:06:f2:d1:a1:39:69:ff:33: f6:e8:ec:10:46:b3:29:18:4a:4d:a8:23:90:97:3e: 8f:1f:38:46:81:41:11:95:f1:c4:59:5c:6e:58:b0: 89:de:f0:d1:f5:68:c0:d7:e3:de:c5:c2:9c:1e:70: 6e:32:a0:c9:b6:9d:a0:21:c8:57:5e:1f:c0:4d:db: 57:e6:7c:c5:44:44:10:c3:06:03:8e:8e:7c:d1:07: b3:6f:f9:9e:f0:ba:60:82:37:bc:fa:b7:73:e9:5b: 52:aa:c6:60:f4:0a:75:9c:1a:f7:80:cb:2f:32:0d: c9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C3:FB:73:F4:03:30:16:FF:D1:1B:D3:0A:E2:5E:42:61:61:08:C3 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c759ed47-7de1-4858-b207-c77b1f7d2c35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.240.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:f2:c6:2a:f1:62:71:ed:88:45:1e:a2:39:68:60:dd:36:eb: bd:0d:c4:6e:56:1d:74:f4:d4:89:f2:fb:7a:e2:0f:c5:a2:6d: 61:f9:fa:b6:e8:38:55:d5:68:06:92:c3:3b:6e:b7:7f:4d:97: 7a:2e:a2:c4:a6:5a:24:b6:c8:72:ae:15:56:49:2e:78:05:52: 57:9c:96:ec:ae:df:2a:9b:cd:21:c5:b9:b2:64:bd:b2:a5:55: 1c:0a:1e:b1:5c:96:bd:bb:54:29:a0:5c:fd:31:58:ce:d2:fe: 1b:98:a8:2f:05:83:4f:e8:f3:88:fe:da:05:b3:c0:cb:90:7a: b4:3e:5f:61:be:37:f7:c2:96:65:ca:98:58:4e:8c:28:4b:6f: 31:13:2c:f5:34:a9:bc:14:46:0e:c3:d8:44:3c:ce:e7:e0:cf: 95:15:b4:b1:83:67:69:2f:14:7c:b3:b4:34:d6:08:0f:f4:13: 57:2f:26:c9:2a:0e:aa:10:ef:46:2b:0b:aa:53:34:5f:00:67: 3a:f6:f4:47:62:ac:2c:ce:2a:29:a0:e6:1e:6b:32:c3:56:be: 9b:b8:e0:fd:3b:42:f4:a9:3d:24:10:c0:4f:d8:ef:48:89:51: 5e:3f:8b:4f:7e:b8:95:c2:1f:dd:0d:63:4c:a0:62:f4:26:8d: 21:9c:d8:5f -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUYkUQNOef/21TP5FJDdtB/eklQfYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNDAwMTAzNVoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAYTM1OGMxOTk4NDc4Nzk2ZTk1NWZl NGJmMDAzZTVkNWNiZTk5ZDEyYzY3NWViMmMwY2E3ZWU3MTE0N2IwZWU5ZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuv2vq6CkmpIqjH3kSVJ0awhv1hjw SHgwnr8PIjy5zFyAoziF4WC/FBfmSj9kgGnnM2C/bEG9C747s5EpUe7D9KW+KoMb iA+UAEOC6AbcGgSXktIDlfaXjSfuqjLRhIXqoAHK2OX0K7FxHSMaMHIzA8fX5XQT BFgoKpXbfhWA9CU+pOHCrLnp1EC1ZYobBvLRoTlp/zP26OwQRrMpGEpNqCOQlz6P HzhGgUERlfHEWVxuWLCJ3vDR9WjA1+PexcKcHnBuMqDJtp2gIchXXh/ATdtX5nzF REQQwwYDjo580Qezb/me8Lpggje8+rdz6VtSqsZg9Ap1nBr3gMsvMg3JywIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOzD+3P0AzAW/9Eb0wriXkJhYQjDMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M3NTllZDQ3LTdkZTEtNDg1OC1iMjA3LWM3N2IxZjdkMmMzNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZxXwMA0GCSqGSIb3DQEBCwUAA4IBAQBa8sYq8WJx7YhFHqI5aGDd Nuu9DcRuVh109NSJ8vt64g/Fom1h+fq26DhV1WgGksM7brd/TZd6LqLEploktshy rhVWSS54BVJXnJbsrt8qm80hxbmyZL2ypVUcCh6xXJa9u1QpoFz9MVjO0v4bmKgv BYNP6POI/toFs8DLkHq0Pl9hvjf3wpZlyphYTowoS28xEyz1NKm8FEYOw9hEPM7n 4M+VFbSxg2dpLxR8s7Q01ggP9BNXLybJKg6qEO9GKwuqUzRfAGc69vRHYqwsziop oOYeazLDVr6buOD9O0L0qT0kEMBP2O9IiVFeP4tPfriVwh/dDWNMoGL0Jo0hnNhf -----END CERTIFICATE-----Generated at Mon Mar 2 02:48:47 2026 by rpki-client