$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa File: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (raw, json) Hash identifier: qZkqbKiNgx8ucra+8F91Z+iqMAPhmhI0ZuWkZkNBdNU= Subject key identifier: D7:56:A4:7C:37:2F:88:49:34:6C:AD:65:5C:E1:C2:4B:BB:7D:34:73 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 11C3391B878D9758B6C3C62350FA19CF68907213 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa Signing time: Tue 24 Feb 2026 00:00:28 +0000 ROA not before: Tue 24 Feb 2026 00:00:28 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:c3:39:1b:87:8d:97:58:b6:c3:c6:23:50:fa:19:cf:68:90:72:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 24 00:00:28 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=f2112345b9139bffc9cc65e7ad39a3227c0e8458dc6e5176d0c375360edf394a, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e6:9a:80:ed:a0:a2:9c:f8:c4:c3:16:d4:75: 53:3a:79:d9:67:1e:d4:7a:f8:aa:96:c1:57:3c:27: e8:66:76:36:eb:a7:b9:48:61:56:c3:b4:f4:ca:06: 80:72:e0:54:fe:42:75:42:1f:e0:48:15:7c:ea:5c: 03:16:a1:51:0d:75:7b:0a:0e:86:49:31:e4:b0:d8: 00:07:48:6d:ba:76:16:bf:16:c7:c0:69:17:fa:36: 67:64:19:f3:87:03:e5:00:5d:03:8d:5f:34:c2:4c: 1c:87:0d:b9:3a:e6:a9:15:16:ba:a7:07:70:25:d3: 68:8f:fd:c3:2c:70:67:c9:32:53:d0:45:90:f4:46: 1c:22:55:ed:36:71:8a:f0:d6:a6:eb:bb:c0:18:85: b0:6c:46:11:f8:1c:4b:4c:d4:c0:55:60:d0:00:ec: 69:78:e4:3a:a9:43:b3:0b:62:53:ea:c9:06:96:22: a3:87:c8:cb:2e:40:ed:ef:db:78:f0:7e:09:f1:4b: cb:5e:09:58:fc:1d:21:c1:10:51:a3:85:ed:01:dd: 8c:8c:36:ed:7f:13:65:d8:40:3b:87:55:9c:38:77: d9:7e:34:0e:78:64:75:c1:8c:f5:31:65:c6:f0:fb: b5:3c:47:ba:8d:de:67:5c:8e:20:97:d4:fe:42:f4: f0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:56:A4:7C:37:2F:88:49:34:6C:AD:65:5C:E1:C2:4B:BB:7D:34:73 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 14:95:e4:22:fb:dc:ba:1b:83:11:6e:b2:1b:f4:57:c8:fd:c1: 75:ff:c4:71:b5:77:ef:f1:a8:37:24:27:fc:12:dd:a3:24:ea: 70:03:67:7b:cc:50:d7:21:d8:e7:7e:c2:33:1d:33:bc:ec:08: 8e:8d:7b:93:0a:7e:8d:66:a5:ae:5b:1d:ac:43:c2:4f:0b:f4: 0c:ea:8f:47:c0:47:57:21:e8:c4:46:d1:c3:75:08:44:52:a7: 7e:76:6d:01:7b:a0:81:41:db:70:fb:ec:a4:34:10:50:71:ec: 71:8a:7d:2f:3b:5d:71:95:fd:75:45:9a:02:5f:19:87:33:fe: 52:46:ed:c0:fb:52:63:77:f2:cd:59:78:a4:45:22:f2:0b:fc: 2e:e2:c8:ff:b5:ba:5e:8a:86:f7:aa:d0:79:36:bc:4f:a2:bb: 2d:3a:29:e4:f4:c6:bd:bf:74:bd:7d:95:62:25:61:00:4d:32: 97:32:26:95:7e:e1:25:63:b7:4e:c4:9e:a1:9f:62:0b:b9:6e: 6a:1c:70:1d:5a:bf:3b:0b:bc:78:8f:c7:a8:3a:bf:c1:94:ee: 7e:31:f5:8b:46:ba:7a:88:29:3a:38:64:33:3a:9b:51:49:1a: 45:4d:35:ab:3c:6a:48:ef:bc:12:c0:b2:47:61:72:c5:f6:14: 26:85:d0:49 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUEcM5G4eNl1i2w8YjUPoZz2iQchMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIyNDAwMDAyOFoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAZjIxMTIzNDViOTEzOWJmZmM5Y2M2 NWU3YWQzOWEzMjI3YzBlODQ1OGRjNmU1MTc2ZDBjMzc1MzYwZWRmMzk0YTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApuaagO2gopz4xMMW1HVTOnnZZx7U eviqlsFXPCfoZnY266e5SGFWw7T0ygaAcuBU/kJ1Qh/gSBV86lwDFqFRDXV7Cg6G STHksNgAB0htunYWvxbHwGkX+jZnZBnzhwPlAF0DjV80wkwchw25OuapFRa6pwdw JdNoj/3DLHBnyTJT0EWQ9EYcIlXtNnGK8Nam67vAGIWwbEYR+BxLTNTAVWDQAOxp eOQ6qUOzC2JT6skGliKjh8jLLkDt79t48H4J8UvLXglY/B0hwRBRo4XtAd2MjDbt fxNl2EA7h1WcOHfZfjQOeGR1wYz1MWXG8Pu1PEe6jd5nXI4gl9T+QvTwlwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFNdWpHw3L4hJNGytZVzhwku7fTRzMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzdhNjQ2ZWMzLWZjMGUtNDBlNy1hZGI0LTgyZDVmZDgzZjAyOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQAUleQi+9y6G4MRbrIb9FfI /cF1/8RxtXfv8ag3JCf8Et2jJOpwA2d7zFDXIdjnfsIzHTO87AiOjXuTCn6NZqWu Wx2sQ8JPC/QM6o9HwEdXIejERtHDdQhEUqd+dm0Be6CBQdtw++ykNBBQcexxin0v O11xlf11RZoCXxmHM/5SRu3A+1Jjd/LNWXikRSLyC/wu4sj/tbpeiob3qtB5NrxP orstOink9Ma9v3S9fZViJWEATTKXMiaVfuElY7dOxJ6hn2ILuW5qHHAdWr87C7x4 j8eoOr/BlO5+MfWLRrp6iCk6OGQzOptRSRpFTTWrPGpI77wSwLJHYXLF9hQmhdBJ -----END CERTIFICATE-----Generated at Mon Mar 2 05:30:21 2026 by rpki-client