$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa File: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (raw, json) Hash identifier: qH4UYxIo4GmiVDct5oCvngMgU+M+xfB7x0cpSWfBWpI= Subject key identifier: 21:D7:13:CE:B2:25:14:12:E0:5F:08:DA:96:B1:63:52:D5:11:A7:BE Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 46E83A9ECAE12CA65CB13A9E68D0F310BBB97B5C Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa Signing time: Tue 24 Feb 2026 00:00:29 +0000 ROA not before: Tue 24 Feb 2026 00:00:29 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:e8:3a:9e:ca:e1:2c:a6:5c:b1:3a:9e:68:d0:f3:10:bb:b9:7b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 24 00:00:29 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=18cbbfd7fae65e3253972642e5ad322a7d9b29c3751215842d04681b543925d7, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7d:dc:43:4f:51:12:e2:e5:3d:b5:09:74:10: 36:92:59:e8:d5:ee:5a:a2:d5:df:3d:c0:3e:8f:43: 4f:ed:ea:13:30:02:99:5a:a4:e8:76:6a:73:66:2d: 6a:5f:ce:53:26:40:19:3d:e2:ca:0c:9b:c6:30:21: d0:ae:25:4d:f2:a1:38:f8:eb:b4:88:f9:ca:79:0e: 18:bf:ba:35:35:a8:4b:9d:15:16:67:91:91:14:5c: b6:74:33:9b:89:28:9c:e3:39:25:b1:36:65:92:40: 38:62:bc:1e:b2:f8:bc:7f:cd:bd:57:a0:24:3a:b1: ba:f2:bc:6b:48:ba:c4:2c:d9:9f:a8:73:e8:f2:91: 95:63:8f:df:47:f8:13:b3:0f:9d:2e:43:52:40:30: 48:48:58:7d:7d:7f:77:e7:41:69:64:b5:9d:64:93: ac:a7:60:78:55:ef:2d:3c:fe:e6:d5:24:e4:c0:2c: de:1e:e2:16:ef:9f:cb:a0:c3:8d:61:88:dc:4e:cd: 48:2e:62:54:c1:a8:69:0d:e8:ca:14:90:2d:f2:0d: 61:de:5f:76:5d:56:13:f3:0c:ac:74:f6:2c:1d:cb: b8:34:d6:14:82:48:cc:e1:ba:1c:a4:77:53:57:9f: 87:48:a3:87:21:44:6c:27:f2:e3:cb:26:9f:cf:4e: b0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D7:13:CE:B2:25:14:12:E0:5F:08:DA:96:B1:63:52:D5:11:A7:BE X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.232.0/22 Signature Algorithm: sha256WithRSAEncryption 25:49:3e:15:43:34:b6:a8:e5:59:da:8f:98:fd:a1:e4:71:ea: 63:ed:fc:7e:d3:f0:76:da:55:a5:b5:1b:1d:7a:c6:d7:6d:ba: 45:88:d7:b4:60:69:cb:a4:36:3b:c9:69:07:06:18:49:a2:ea: 16:10:d8:d7:b5:2a:0c:e2:10:1d:1a:2c:39:58:9a:1d:c1:98: 6d:87:20:6f:1e:30:a6:48:16:bf:03:85:e6:4e:8d:1b:f8:9b: 86:a8:64:8e:e3:07:1b:82:cd:52:e8:3d:e8:6f:92:ef:44:88: 66:7f:ee:b4:ea:11:e0:df:d7:cd:be:68:14:a2:c2:94:30:63: c9:50:e2:ef:c1:8a:0b:f5:08:42:99:a8:0d:f5:ed:95:7c:2e: 40:4d:8f:8b:06:1f:68:29:1a:79:b9:01:b9:99:1f:bd:db:41: 0c:09:85:f9:e0:48:8a:cb:c5:e1:2c:44:e7:6d:5a:c8:62:1f: d4:68:40:22:dc:14:d8:09:30:d0:25:b7:3a:46:6d:45:57:26: 09:bd:a2:21:3b:67:af:eb:24:da:4b:9e:47:0a:4b:34:ff:cc: 39:fe:10:3c:90:a8:d4:c8:b7:75:41:3b:4e:f7:48:bf:4a:1f: 90:56:e4:63:6a:44:b2:b6:06:0c:1e:23:52:69:5f:3b:2b:58: d1:fb:6f:ef -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIURug6nsrhLKZcsTqeaNDzELu5e1wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIyNDAwMDAyOVoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAMThjYmJmZDdmYWU2NWUzMjUzOTcy NjQyZTVhZDMyMmE3ZDliMjljMzc1MTIxNTg0MmQwNDY4MWI1NDM5MjVkNzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwn3cQ09REuLlPbUJdBA2klno1e5a otXfPcA+j0NP7eoTMAKZWqTodmpzZi1qX85TJkAZPeLKDJvGMCHQriVN8qE4+Ou0 iPnKeQ4Yv7o1NahLnRUWZ5GRFFy2dDObiSic4zklsTZlkkA4Yrwesvi8f829V6Ak OrG68rxrSLrELNmfqHPo8pGVY4/fR/gTsw+dLkNSQDBISFh9fX9350FpZLWdZJOs p2B4Ve8tPP7m1STkwCzeHuIW75/LoMONYYjcTs1ILmJUwahpDejKFJAt8g1h3l92 XVYT8wysdPYsHcu4NNYUgkjM4bocpHdTV5+HSKOHIURsJ/Ljyyafz06w7QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFCHXE86yJRQS4F8I2paxY1LVEae+MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBjNWM1NGZmLWY5NzctNGI5Ni04Y2U5LWExZWFmMDgyZmU5Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynoMA0GCSqGSIb3DQEBCwUAA4IBAQAlST4VQzS2qOVZ2o+Y/aHk cepj7fx+0/B22lWltRsdesbXbbpFiNe0YGnLpDY7yWkHBhhJouoWENjXtSoM4hAd Giw5WJodwZhthyBvHjCmSBa/A4XmTo0b+JuGqGSO4wcbgs1S6D3ob5LvRIhmf+60 6hHg39fNvmgUosKUMGPJUOLvwYoL9QhCmagN9e2VfC5ATY+LBh9oKRp5uQG5mR+9 20EMCYX54EiKy8XhLETnbVrIYh/UaEAi3BTYCTDQJbc6Rm1FVyYJvaIhO2ev6yTa S55HCks0/8w5/hA8kKjUyLd1QTtO90i/Sh+QVuRjakSytgYMHiNSaV87K1jR+2/v -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:23 2026 by rpki-client