$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa File: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (raw, json) Hash identifier: 6iafgtxJna4YOKnfmGGjHe/fUaX3c3vMQNik0yLQ2sY= Subject key identifier: 5B:F0:CA:5A:45:7E:3A:BD:45:2B:6E:8C:74:16:3C:C6:2A:6C:F3:7A Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 5BF76930EAF4F4D3969B07CA8D49632780728D0E Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa Signing time: Tue 24 Feb 2026 00:00:28 +0000 ROA not before: Tue 24 Feb 2026 00:00:28 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f7:69:30:ea:f4:f4:d3:96:9b:07:ca:8d:49:63:27:80:72:8d:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 24 00:00:28 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=e88c54e9cc79103419fe8ee8a8928c2ce644503323cffd3340e450395c1b4e3b, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:5e:66:e1:59:97:91:5a:4f:47:6a:6a:4a:b5: d0:3e:11:43:ea:fc:71:18:7e:a2:4e:2d:2f:19:bc: 89:a6:9e:e0:79:c1:05:00:a8:8f:4f:c8:22:8d:11: 98:e9:ea:dd:a8:ab:50:60:8d:b1:a0:9e:aa:0f:08: 2b:e2:c2:c1:8e:76:c5:8f:85:b4:45:93:8d:16:6e: 60:fd:41:8c:30:98:32:91:2c:93:e6:46:8d:84:c0: 56:bb:d8:15:c2:93:38:da:af:6b:e9:55:13:4f:d8: 8c:40:52:8d:d9:73:98:38:21:fe:12:28:2f:de:4c: f7:6e:ca:10:a1:51:c6:63:c8:0a:93:da:7e:b2:5c: e6:1c:7d:9a:b9:2d:37:c3:db:9a:30:4f:35:84:1c: bf:d4:25:54:08:43:f8:a4:f6:5a:60:b8:51:e6:6c: e6:07:43:57:f8:2d:80:95:a5:67:26:7f:4e:4c:ae: e7:36:fc:7d:a1:56:28:ed:9d:0d:d5:22:75:02:30: 81:6e:15:33:24:8e:48:88:51:8e:78:c0:39:ee:20: 7c:b5:f3:41:2d:8f:46:d0:83:95:ba:82:58:e5:b9: d8:84:dd:b0:62:fc:2b:87:b7:16:6c:6e:e6:43:52: cb:3c:19:55:8a:49:3c:7f:4c:f0:f6:91:3d:b3:76: 23:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F0:CA:5A:45:7E:3A:BD:45:2B:6E:8C:74:16:3C:C6:2A:6C:F3:7A X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.240.0/20 Signature Algorithm: sha256WithRSAEncryption 91:9b:0e:2d:00:c8:51:04:53:b1:57:24:57:aa:13:31:ca:5e: 64:71:75:b8:c1:70:4b:59:c8:3a:9c:3c:7e:7f:d3:28:60:4a: 5c:d6:28:d6:51:6e:57:5d:47:b8:25:c9:72:29:b0:06:6b:c5: 22:d7:97:ed:bb:be:de:c5:c8:86:89:69:7f:12:9c:22:25:e1: 22:e0:0a:55:9b:45:42:76:a6:be:72:33:e6:b4:ff:5a:9f:60: bd:bd:f9:38:bd:67:e4:4a:2d:a1:1e:27:c6:b2:85:3e:b3:71: 35:1d:b5:30:e2:14:a8:ec:da:d2:c1:b0:ec:4b:d6:59:a8:1b: e6:b3:c7:b1:2c:13:ef:ca:bb:82:31:e0:dc:07:98:ca:80:3d: fd:41:c5:e5:f6:b8:a1:cc:15:83:f9:99:3e:03:86:ce:94:d2: d0:eb:87:73:ab:d6:bc:06:3d:68:2b:1d:f9:72:80:a4:fb:00: 02:07:cd:eb:2c:c7:86:a3:d1:46:57:82:06:8d:88:47:8a:04: b3:8c:bf:3e:37:8f:b8:e2:58:bc:51:09:7b:63:dd:d5:4f:20: 5c:dc:45:b1:72:3c:b5:fe:f6:d4:70:76:77:ed:0e:56:37:e6: b7:9c:7e:f3:41:6a:9a:89:2d:b8:09:81:4d:59:ed:b4:cf:1e: 55:fb:b3:d7 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUW/dpMOr09NOWmwfKjUljJ4ByjQ4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIyNDAwMDAyOFoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAZTg4YzU0ZTljYzc5MTAzNDE5ZmU4 ZWU4YTg5MjhjMmNlNjQ0NTAzMzIzY2ZmZDMzNDBlNDUwMzk1YzFiNGUzYjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8V5m4VmXkVpPR2pqSrXQPhFD6vxx GH6iTi0vGbyJpp7gecEFAKiPT8gijRGY6erdqKtQYI2xoJ6qDwgr4sLBjnbFj4W0 RZONFm5g/UGMMJgykSyT5kaNhMBWu9gVwpM42q9r6VUTT9iMQFKN2XOYOCH+Eigv 3kz3bsoQoVHGY8gKk9p+slzmHH2auS03w9uaME81hBy/1CVUCEP4pPZaYLhR5mzm B0NX+C2AlaVnJn9OTK7nNvx9oVYo7Z0N1SJ1AjCBbhUzJI5IiFGOeMA57iB8tfNB LY9G0IOVuoJY5bnYhN2wYvwrh7cWbG7mQ1LLPBlVikk8f0zw9pE9s3YjhwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFFvwylpFfjq9RStujHQWPMYqbPN6MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 Lzc0ZWZlOGIzLWQzOWMtNGE4Yi05YjdiLTU5OTRhYTRjOGQ4Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynwMA0GCSqGSIb3DQEBCwUAA4IBAQCRmw4tAMhRBFOxVyRXqhMx yl5kcXW4wXBLWcg6nDx+f9MoYEpc1ijWUW5XXUe4JclyKbAGa8Ui15ftu77exciG iWl/EpwiJeEi4ApVm0VCdqa+cjPmtP9an2C9vfk4vWfkSi2hHifGsoU+s3E1HbUw 4hSo7NrSwbDsS9ZZqBvms8exLBPvyruCMeDcB5jKgD39QcXl9rihzBWD+Zk+A4bO lNLQ64dzq9a8Bj1oKx35coCk+wACB83rLMeGo9FGV4IGjYhHigSzjL8+N4+44li8 UQl7Y93VTyBc3EWxcjy1/vbUcHZ37Q5WN+a3nH7zQWqaiS24CYFNWe20zx5V+7PX -----END CERTIFICATE-----Generated at Mon Mar 2 01:25:54 2026 by rpki-client