$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/48a67156-122e-41d4-a2a8-8046cc5ecc41.roa File: 48a67156-122e-41d4-a2a8-8046cc5ecc41.roa (raw, json) Hash identifier: ROZb7Tv2KD3NnpptYibXOH4yrtmutDpNrPPgjX6j8aE= Subject key identifier: 01:25:D2:31:5C:7F:0A:AC:61:DD:61:94:E6:AA:07:FA:B6:9C:3F:21 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 438937C6EED6F46A7CA2F2E0C7E7869D75972FAE Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/48a67156-122e-41d4-a2a8-8046cc5ecc41.roa Signing time: Tue 24 Feb 2026 00:00:27 +0000 ROA not before: Tue 24 Feb 2026 00:00:27 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:89:37:c6:ee:d6:f4:6a:7c:a2:f2:e0:c7:e7:86:9d:75:97:2f:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 24 00:00:27 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=53e408f4df1e25e4d5f3e424bfa697821c5b05a2ef72a2dc842581706affa5e8, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9e:3a:08:c9:16:62:55:66:45:89:ed:fe:e3: e9:3b:8d:4e:e6:7f:fb:d7:37:60:e3:63:57:28:43: 37:bc:32:e6:b6:58:73:ce:f8:a7:37:fe:e4:36:62: 6d:39:20:c2:33:12:9c:3c:14:1f:67:94:db:d9:1b: 64:7a:6c:19:da:eb:f4:11:12:b9:fe:53:eb:58:a6: 45:48:96:55:ea:43:cb:0b:b1:a2:b6:1d:c1:ba:c6: 74:88:d9:d4:fd:65:7e:1b:d9:1e:e4:e0:92:38:00: 8a:bb:9a:ea:5d:75:51:c2:4e:ef:6b:a5:41:00:78: 5f:0a:3f:9f:cb:0b:48:f9:82:09:ef:fd:d7:c2:a7: 26:f2:76:05:2c:3e:12:cd:e4:c4:a2:4a:ce:e9:fc: 5a:4a:b1:a3:78:95:a6:a4:ab:68:50:cf:79:00:1c: 1a:6e:11:88:41:04:d3:c3:1c:c9:1b:55:f8:91:a9: a5:4e:2b:d6:52:2d:da:cf:be:96:1f:61:e0:52:fc: 6f:23:08:e6:f5:37:14:45:55:7e:1b:13:ff:53:23: df:8c:71:c5:7f:67:c8:96:b2:9f:08:a5:e0:c4:77: 71:7d:4d:a6:a7:e0:9e:1e:13:99:49:d4:05:35:92: 23:c7:bf:c7:a0:64:a7:6e:c5:92:a0:bd:85:bb:cf: d1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:25:D2:31:5C:7F:0A:AC:61:DD:61:94:E6:AA:07:FA:B6:9C:3F:21 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/48a67156-122e-41d4-a2a8-8046cc5ecc41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.238.0/23 Signature Algorithm: sha256WithRSAEncryption 47:e5:a8:3b:73:8b:fb:15:e0:98:61:db:65:7e:15:01:0a:72: 21:4b:e4:c8:91:01:e0:be:ba:43:93:ca:f7:39:38:53:74:55: d4:9f:3c:63:20:91:6e:68:27:25:6c:44:d1:f4:86:fd:b6:c7: 81:45:91:75:78:f6:fe:13:24:49:0b:42:c8:3d:77:93:7b:6c: 79:3d:41:65:f2:b9:d8:ad:cb:db:5b:85:d9:e8:24:a8:89:f1: cc:7b:04:c7:08:bc:98:ba:e9:2d:18:f8:c1:3e:7d:cb:62:0c: d9:51:29:3f:ab:09:4e:87:e7:0e:9d:69:5d:46:c7:c5:e2:12: 9d:ce:f9:6e:96:2f:0e:10:90:89:1b:d6:9f:2b:ab:b0:35:94: d2:52:f3:a5:82:be:e5:14:66:e2:f5:b3:5b:d2:4f:45:98:cf: ee:c4:83:cc:d8:c8:bc:0e:ef:c1:27:4c:99:ac:69:a1:ef:6c: c4:ff:63:94:7c:f6:d4:80:4d:61:d1:0f:ae:10:3c:6c:9f:22: 9b:1f:42:83:b3:54:63:79:08:e6:ed:a1:ba:c5:10:03:d5:d0: 3e:2f:1c:57:ff:c9:7d:a0:61:2a:a2:9e:71:87:a3:42:c2:e8: ea:1f:0d:be:90:ad:7f:11:44:a7:7a:83:b7:62:70:20:cb:ba: 34:99:ee:77 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUQ4k3xu7W9Gp8ovLgx+eGnXWXL64wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIyNDAwMDAyN1oX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNANTNlNDA4ZjRkZjFlMjVlNGQ1ZjNl NDI0YmZhNjk3ODIxYzViMDVhMmVmNzJhMmRjODQyNTgxNzA2YWZmYTVlODEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu546CMkWYlVmRYnt/uPpO41O5n/7 1zdg42NXKEM3vDLmtlhzzvinN/7kNmJtOSDCMxKcPBQfZ5Tb2RtkemwZ2uv0ERK5 /lPrWKZFSJZV6kPLC7Gith3BusZ0iNnU/WV+G9ke5OCSOACKu5rqXXVRwk7va6VB AHhfCj+fywtI+YIJ7/3Xwqcm8nYFLD4SzeTEokrO6fxaSrGjeJWmpKtoUM95ABwa bhGIQQTTwxzJG1X4kamlTivWUi3az76WH2HgUvxvIwjm9TcURVV+GxP/UyPfjHHF f2fIlrKfCKXgxHdxfU2mp+CeHhOZSdQFNZIjx7/HoGSnbsWSoL2Fu8/RPQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAEl0jFcfwqsYd1hlOaqB/q2nD8hMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzQ4YTY3MTU2LTEyMmUtNDFkNC1hMmE4LTgwNDZjYzVlY2M0MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynuMA0GCSqGSIb3DQEBCwUAA4IBAQBH5ag7c4v7FeCYYdtlfhUB CnIhS+TIkQHgvrpDk8r3OThTdFXUnzxjIJFuaCclbETR9Ib9tseBRZF1ePb+EyRJ C0LIPXeTe2x5PUFl8rnYrcvbW4XZ6CSoifHMewTHCLyYuuktGPjBPn3LYgzZUSk/ qwlOh+cOnWldRsfF4hKdzvluli8OEJCJG9afK6uwNZTSUvOlgr7lFGbi9bNb0k9F mM/uxIPM2Mi8Du/BJ0yZrGmh72zE/2OUfPbUgE1h0Q+uEDxsnyKbH0KDs1RjeQjm 7aG6xRAD1dA+LxxX/8l9oGEqop5xh6NCwujqHw2+kK1/EUSneoO3YnAgy7o0me53 -----END CERTIFICATE-----Generated at Mon Mar 2 10:10:37 2026 by rpki-client