$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa File: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (raw, json) Hash identifier: BY42jY8m9CnIuDARw32JheNmH2JsVrZ/FgY72atfbec= Subject key identifier: AE:9D:29:C0:C3:67:65:B1:C8:06:33:DC:46:7D:7E:5D:DA:19:C6:1F Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 49069D184448C91AAAD94D1BBF50540E710694CA Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa Signing time: Tue 24 Feb 2026 00:00:25 +0000 ROA not before: Tue 24 Feb 2026 00:00:25 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:06:9d:18:44:48:c9:1a:aa:d9:4d:1b:bf:50:54:0e:71:06:94:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 24 00:00:25 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=7bddf3a8995a64ce98108de502890ead126aafcdba599a71ca357f020e82ed7d, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c3:a2:b4:e4:9d:be:e0:a6:dc:9b:72:15:ad: 6a:a2:b3:0c:aa:37:30:36:79:13:ff:ed:69:92:ed: 74:09:c7:b7:60:58:d1:33:2e:64:18:82:6a:b6:92: 6a:ae:8c:2c:f6:2d:a8:fb:ca:8c:02:bf:2b:92:41: 5e:7f:3e:06:31:04:c8:f3:78:c1:68:4f:5a:69:0f: 3d:83:1e:3e:04:d2:0f:69:25:73:63:11:4c:0f:0e: bd:a3:7d:93:73:1d:4d:5a:46:50:1a:57:ae:dc:e0: 3d:91:2e:e6:1f:11:af:ef:68:e6:28:55:d6:68:e6: 5e:fc:c7:f7:52:3c:74:d8:13:f2:5b:2e:ca:0d:f4: c1:7a:f1:68:3a:dd:32:5d:46:ef:1b:43:f8:64:97: f2:a1:68:49:3e:cd:bd:17:c7:6e:78:f6:01:21:c3: a1:d0:96:14:a5:58:91:7e:67:85:2d:e3:3f:59:0d: 01:17:4a:81:1b:c0:27:18:d6:fc:e7:28:3d:b1:d8: 71:92:c0:1d:8e:02:03:c5:2e:f2:39:aa:51:96:d6: 96:ee:d0:32:99:cc:88:7e:e7:9a:90:2c:7c:46:b7: 68:4d:07:22:3e:c7:89:3e:58:6f:6a:14:58:4c:33: 72:c6:e6:4b:08:e2:97:6c:c4:1a:55:c7:8c:37:e2: c1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:9D:29:C0:C3:67:65:B1:C8:06:33:DC:46:7D:7E:5D:DA:19:C6:1F X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.194.0/23 Signature Algorithm: sha256WithRSAEncryption 30:6f:31:21:bc:39:0f:63:4c:81:bd:41:f0:e5:7b:5f:0e:6b: 1d:2e:6f:4c:09:ef:ad:1d:9c:19:7f:a8:af:9a:08:5b:d4:12: 4c:9b:12:7f:1e:9e:d6:58:29:61:80:28:60:d5:65:1c:61:48: 48:89:af:a0:02:0a:5f:81:2e:bf:b5:a8:8a:f1:76:af:94:ab: f0:d2:3e:a3:b6:c2:ae:72:50:d8:2f:86:06:a7:f7:0c:0d:3f: 5c:79:89:04:3b:b1:2e:86:72:b3:2e:fd:61:fd:73:40:49:88: 62:5b:6d:53:b1:22:ce:b8:2f:dc:4c:b9:c1:d3:87:f9:d5:55: 82:25:92:07:c8:a6:dd:01:57:0b:63:14:d5:11:da:e8:da:1a: 1e:f6:f2:72:80:9c:ee:47:ee:87:e4:91:aa:d0:50:4c:71:26: f1:21:5a:01:23:23:15:3a:0c:68:7d:fb:f3:fe:ad:a8:a2:24: 0c:c9:17:d8:42:9a:05:22:17:f3:4d:26:6c:5f:d3:21:68:6d: a4:b4:a7:62:22:68:b1:a5:bb:1e:aa:8e:57:b6:47:01:7c:3b: 1c:0f:3c:e2:35:b2:7e:4e:e5:e4:ce:0d:16:0c:75:10:90:ed: da:23:0e:21:f0:45:da:b9:4f:0b:aa:86:0d:de:d6:3f:c6:23: 6a:7c:98:a9 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUSQadGERIyRqq2U0bv1BUDnEGlMowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIyNDAwMDAyNVoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAN2JkZGYzYTg5OTVhNjRjZTk4MTA4 ZGU1MDI4OTBlYWQxMjZhYWZjZGJhNTk5YTcxY2EzNTdmMDIwZTgyZWQ3ZDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsOitOSdvuCm3JtyFa1qorMMqjcw NnkT/+1pku10Cce3YFjRMy5kGIJqtpJqrows9i2o+8qMAr8rkkFefz4GMQTI83jB aE9aaQ89gx4+BNIPaSVzYxFMDw69o32Tcx1NWkZQGleu3OA9kS7mHxGv72jmKFXW aOZe/Mf3Ujx02BPyWy7KDfTBevFoOt0yXUbvG0P4ZJfyoWhJPs29F8duePYBIcOh 0JYUpViRfmeFLeM/WQ0BF0qBG8AnGNb85yg9sdhxksAdjgIDxS7yOapRltaW7tAy mcyIfueakCx8RrdoTQciPseJPlhvahRYTDNyxuZLCOKXbMQaVceMN+LBrQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFK6dKcDDZ2WxyAYz3EZ9fl3aGcYfMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzZjZjU3YWE2LTZiYTMtNDNhZi1iYmQ1LTQ0NDg1ZTNiOWY2Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynCMA0GCSqGSIb3DQEBCwUAA4IBAQAwbzEhvDkPY0yBvUHw5Xtf DmsdLm9MCe+tHZwZf6ivmghb1BJMmxJ/Hp7WWClhgChg1WUcYUhIia+gAgpfgS6/ taiK8XavlKvw0j6jtsKuclDYL4YGp/cMDT9ceYkEO7EuhnKzLv1h/XNASYhiW21T sSLOuC/cTLnB04f51VWCJZIHyKbdAVcLYxTVEdro2hoe9vJygJzuR+6H5JGq0FBM cSbxIVoBIyMVOgxoffvz/q2ooiQMyRfYQpoFIhfzTSZsX9MhaG2ktKdiImixpbse qo5XtkcBfDscDzziNbJ+TuXkzg0WDHUQkO3aIw4h8EXauU8LqoYN3tY/xiNqfJip -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:09 2026 by rpki-client