$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa File: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (raw, json) Hash identifier: 94IdkhuysCtpUhjxxnTBDxDY8wcAFCDxnvDHBRF5fs8= Subject key identifier: 8A:C0:41:E2:E6:B8:2B:34:25:05:CA:EF:20:41:47:5D:3D:B7:2F:2C Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 7B8CA707DB71EE5CC307FF5438CEE3B3C83DCA9C Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa Signing time: Tue 24 Feb 2026 00:00:31 +0000 ROA not before: Tue 24 Feb 2026 00:00:31 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:8c:a7:07:db:71:ee:5c:c3:07:ff:54:38:ce:e3:b3:c8:3d:ca:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 24 00:00:31 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=ba7b286492c28a9eecc0c4e4f6f03a1d5ff7b698a02ef5f314ed64bd6b36b12b, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:8b:45:4c:9e:a8:e7:eb:db:52:c6:36:77:c8: e6:a1:34:cd:f6:8f:42:f4:e5:c5:98:b0:f9:18:b2: 83:ae:0e:c0:b9:6a:27:f2:69:91:88:1f:e4:4c:57: 93:e9:b9:23:bf:fc:3b:6e:e3:d9:b5:6f:68:92:6a: 45:67:af:73:2e:63:05:bf:47:2d:25:0d:19:f5:6d: 41:68:33:e6:c3:0b:21:79:a0:b7:d7:4f:78:ce:4b: 39:94:ac:b9:0d:23:31:45:27:58:8c:a2:65:35:f0: 87:af:39:7d:ad:48:4b:60:b5:e6:a1:c4:66:00:cc: 6d:f4:c7:04:67:f7:bc:a8:d2:c1:8d:bc:9c:ec:ce: a1:ab:6d:60:44:9b:c5:e9:4f:be:39:02:c2:73:cb: 9a:08:e2:69:f5:b2:39:a6:3f:4b:d8:91:1b:32:64: ab:60:17:c7:55:68:d5:09:59:c5:3a:6f:91:bc:64: 94:51:4a:67:20:26:95:56:d9:cd:ae:a5:8c:e9:11: f4:bd:e5:7c:1f:ee:38:99:0a:5c:11:04:92:7f:49: e9:80:9c:2a:3c:38:7f:68:a5:81:0e:81:12:23:9b: 49:80:79:d1:d5:2e:a6:5c:86:d3:aa:48:c2:d5:0d: c4:8a:ad:f0:4b:33:af:17:ad:4b:aa:ed:c4:cb:7c: 0c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C0:41:E2:E6:B8:2B:34:25:05:CA:EF:20:41:47:5D:3D:B7:2F:2C X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.208.0/20 Signature Algorithm: sha256WithRSAEncryption 08:cb:ce:df:70:d2:11:9f:09:b8:c1:73:fe:42:24:ae:80:5c: 6c:9b:65:64:2f:23:c2:b7:7d:6a:6f:e3:1e:6e:57:08:29:a7: 6e:20:fb:9f:90:61:9d:bc:8e:d8:59:d0:3e:86:f1:0b:f5:e8: 88:01:6e:8b:3f:a4:3b:da:c0:3b:d6:df:f8:87:37:71:0b:4f: 1b:96:1c:e7:05:8d:b8:60:67:42:95:52:ea:63:05:06:82:48: e1:74:ec:0c:70:39:11:d5:38:b6:9a:7e:10:89:da:bd:c7:29: 93:42:c8:e5:a5:00:22:8a:ec:2a:49:9e:b2:24:ed:ba:91:ab: 94:94:45:19:b1:6f:1c:c9:be:52:9c:2e:53:e7:bc:61:d5:02: 31:ec:0f:2b:4c:1d:8e:46:1e:f5:d7:51:08:14:db:57:49:16: 84:71:0b:67:a0:c3:98:4c:59:56:03:06:f7:be:04:da:da:4f: 28:af:2f:06:bc:c4:7e:8a:ba:cb:2d:93:7d:0f:35:04:45:4b: 0c:7e:2f:a0:15:56:95:f7:3b:7c:1a:29:58:6f:b4:89:03:57: 74:7a:cd:e4:e4:f6:08:98:0e:c7:a7:4b:e4:c1:cb:bb:a2:5a: b7:5b:f2:e2:e0:7c:d2:d1:3f:49:d6:99:98:74:0b:f4:cf:7a: 20:14:83:76 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUe4ynB9tx7lzDB/9UOM7js8g9ypwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIyNDAwMDAzMVoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAYmE3YjI4NjQ5MmMyOGE5ZWVjYzBj NGU0ZjZmMDNhMWQ1ZmY3YjY5OGEwMmVmNWYzMTRlZDY0YmQ2YjM2YjEyYjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiotFTJ6o5+vbUsY2d8jmoTTN9o9C 9OXFmLD5GLKDrg7AuWon8mmRiB/kTFeT6bkjv/w7buPZtW9okmpFZ69zLmMFv0ct JQ0Z9W1BaDPmwwsheaC31094zks5lKy5DSMxRSdYjKJlNfCHrzl9rUhLYLXmocRm AMxt9McEZ/e8qNLBjbyc7M6hq21gRJvF6U++OQLCc8uaCOJp9bI5pj9L2JEbMmSr YBfHVWjVCVnFOm+RvGSUUUpnICaVVtnNrqWM6RH0veV8H+44mQpcEQSSf0npgJwq PDh/aKWBDoESI5tJgHnR1S6mXIbTqkjC1Q3Eiq3wSzOvF61Lqu3Ey3wMIwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFIrAQeLmuCs0JQXK7yBBR109ty8sMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzA1YmM4ZGJiLWM3MGEtNDhkYS1iNDViLTQ0NDgzNjQ2MTRmZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynQMA0GCSqGSIb3DQEBCwUAA4IBAQAIy87fcNIRnwm4wXP+QiSu gFxsm2VkLyPCt31qb+MeblcIKaduIPufkGGdvI7YWdA+hvEL9eiIAW6LP6Q72sA7 1t/4hzdxC08blhznBY24YGdClVLqYwUGgkjhdOwMcDkR1Ti2mn4Qidq9xymTQsjl pQAiiuwqSZ6yJO26kauUlEUZsW8cyb5SnC5T57xh1QIx7A8rTB2ORh7111EIFNtX SRaEcQtnoMOYTFlWAwb3vgTa2k8ory8GvMR+irrLLZN9DzUERUsMfi+gFVaV9zt8 GilYb7SJA1d0es3k5PYImA7Hp0vkwcu7olq3W/Li4HzS0T9J1pmYdAv0z3ogFIN2 -----END CERTIFICATE-----Generated at Mon Mar 2 01:32:27 2026 by rpki-client