$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa File: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (raw, json) Hash identifier: w9dP68hgjTwoVTVZbfzP2G5I7m0K6Q1OW+wD/LSUllg= Subject key identifier: 28:19:6F:27:D4:CE:07:68:B9:30:77:20:5D:6A:87:98:76:09:46:71 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 48A8B395356C68D390AC7F9EAA71541C5E72FA7B Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa Signing time: Tue 24 Feb 2026 00:00:26 +0000 ROA not before: Tue 24 Feb 2026 00:00:26 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:a8:b3:95:35:6c:68:d3:90:ac:7f:9e:aa:71:54:1c:5e:72:fa:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 24 00:00:26 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=47843669031e25f18c3b730b5af8069473c8ae954e6ce68d5e433bd61d75c7ba, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:55:97:df:8c:ae:c9:39:72:0f:89:c6:9e:a1: 65:c2:90:4f:aa:63:db:22:b2:fc:36:02:42:49:09: 13:0c:6c:4f:54:8c:e4:0b:f2:0a:fd:9f:71:8d:99: d7:0d:37:16:97:0a:af:e2:b3:6c:9e:09:18:d4:59: ae:a3:25:6d:44:d9:92:63:3d:8c:50:1f:2a:34:fb: 3a:0c:0d:14:31:73:b3:4c:cb:88:23:64:ba:70:7d: 8c:f1:9f:91:eb:24:79:5f:80:61:b1:bd:4f:48:9b: 0a:89:55:85:a5:e5:9b:55:0c:9e:84:83:55:4f:8b: c2:47:ec:7e:a5:9c:8b:1d:ff:50:50:81:b0:72:00: af:3c:ce:a7:a8:89:94:8c:87:9c:f4:9c:79:5f:31: 83:90:91:a8:8f:50:a4:b7:53:0b:76:a6:15:15:fc: c5:72:ff:0e:bc:45:75:df:cc:aa:38:3c:4b:bb:44: 5b:75:72:4d:9d:0c:5f:38:1b:80:47:a1:8d:55:7e: f6:fd:08:e5:80:55:20:6d:4a:fe:39:e8:19:55:96: 13:a7:6c:38:66:e5:71:ad:13:c4:ad:f0:95:c6:f0: ad:36:d3:0f:29:e8:3d:b7:55:52:f6:0a:2c:c5:83: f0:f4:28:f8:5d:95:07:c1:bc:c7:eb:2a:06:eb:58: 76:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:19:6F:27:D4:CE:07:68:B9:30:77:20:5D:6A:87:98:76:09:46:71 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.193.0/24 Signature Algorithm: sha256WithRSAEncryption 30:e4:6e:69:76:6b:36:16:2c:4f:10:0e:bf:b4:3b:bd:74:5e: 53:fd:d7:d3:ed:bb:08:9e:d6:74:67:db:40:6e:02:b4:de:18: 5d:aa:14:0a:aa:d7:7e:03:a6:b2:92:04:1f:b1:82:2d:bf:39: c9:e0:80:6c:03:fe:60:6c:ea:7f:86:3f:f1:1c:6e:54:96:ae: f3:d7:5e:1f:f2:00:1d:cc:30:64:59:8a:e9:fc:f8:b6:9e:60: dd:87:3f:6e:29:f1:b3:a7:d3:f5:9d:bf:17:0b:a0:37:88:f6: 5b:33:a9:38:d1:bb:0c:b3:60:df:a7:d8:54:21:5d:ef:75:47: ca:31:c8:ce:6c:eb:dc:76:aa:a0:b7:9f:d1:2f:e2:b0:1d:38: 6d:c3:95:41:41:fa:14:f1:ab:07:5e:1a:36:0b:3a:ed:46:09: 8e:6c:43:19:db:94:dd:56:b1:f2:4e:dd:e7:da:18:82:1b:c6: 1c:b9:23:29:26:bd:62:47:40:d0:38:b9:6d:2e:68:06:02:9c: 86:d8:c2:0d:7a:fc:7d:10:ae:bb:95:91:33:8e:15:48:15:37: 82:8a:3a:38:cb:bf:56:50:ef:14:a9:d1:10:59:74:ee:4e:83: 93:14:34:18:95:87:83:40:6e:f3:eb:91:73:e1:3a:a8:e9:62: 89:30:b4:3c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUSKizlTVsaNOQrH+eqnFUHF5y+nswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIyNDAwMDAyNloX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNANDc4NDM2NjkwMzFlMjVmMThjM2I3 MzBiNWFmODA2OTQ3M2M4YWU5NTRlNmNlNjhkNWU0MzNiZDYxZDc1YzdiYTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFWX34yuyTlyD4nGnqFlwpBPqmPb IrL8NgJCSQkTDGxPVIzkC/IK/Z9xjZnXDTcWlwqv4rNsngkY1FmuoyVtRNmSYz2M UB8qNPs6DA0UMXOzTMuII2S6cH2M8Z+R6yR5X4Bhsb1PSJsKiVWFpeWbVQyehINV T4vCR+x+pZyLHf9QUIGwcgCvPM6nqImUjIec9Jx5XzGDkJGoj1Ckt1MLdqYVFfzF cv8OvEV138yqODxLu0RbdXJNnQxfOBuAR6GNVX72/QjlgFUgbUr+OegZVZYTp2w4 ZuVxrRPErfCVxvCtNtMPKeg9t1VS9gosxYPw9Cj4XZUHwbzH6yoG61h2WQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFCgZbyfUzgdouTB3IF1qh5h2CUZxMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzJmNDdkY2RkLWMzODQtNGViMi1hZWZkLWY0YWQ2NGYyNmNjZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArynBMA0GCSqGSIb3DQEBCwUAA4IBAQAw5G5pdms2FixPEA6/tDu9 dF5T/dfT7bsIntZ0Z9tAbgK03hhdqhQKqtd+A6aykgQfsYItvznJ4IBsA/5gbOp/ hj/xHG5Ulq7z114f8gAdzDBkWYrp/Pi2nmDdhz9uKfGzp9P1nb8XC6A3iPZbM6k4 0bsMs2Dfp9hUIV3vdUfKMcjObOvcdqqgt5/RL+KwHThtw5VBQfoU8asHXho2Czrt RgmObEMZ25TdVrHyTt3n2hiCG8YcuSMpJr1iR0DQOLltLmgGApyG2MINevx9EK67 lZEzjhVIFTeCijo4y79WUO8UqdEQWXTuToOTFDQYlYeDQG7z65Fz4Tqo6WKJMLQ8 -----END CERTIFICATE-----Generated at Mon Mar 2 01:27:07 2026 by rpki-client