$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa File: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (raw, json) Hash identifier: f4Fl24SB2Oz8neyZRhs4xAWvq57eQY8Tm6Y9abpLvNI= Subject key identifier: EF:82:7C:3F:9A:BC:6C:BA:6E:DA:C9:C6:09:87:FC:2D:9E:BA:D6:9B Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 286DC5A9865BA7125F1052299B4CEBA4EB0568CC Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa Signing time: Tue 24 Feb 2026 00:00:29 +0000 ROA not before: Tue 24 Feb 2026 00:00:29 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:6d:c5:a9:86:5b:a7:12:5f:10:52:29:9b:4c:eb:a4:eb:05:68:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 24 00:00:29 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=ab510310d01e4cd55cb5145c26cb852f05e78ee24cee3a6e12bd04b9a36bafb6, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c3:89:39:a7:04:f8:1b:65:66:30:e1:eb:4f: 36:ae:fb:a8:c7:40:9e:c7:90:de:a8:3f:b8:5f:dd: ad:ab:3c:df:7a:3c:25:38:cf:22:dd:d0:75:48:cf: 45:26:13:48:0b:f2:18:ab:fa:45:55:b9:65:f4:ae: 7e:1e:16:a7:ad:9a:49:2a:4c:09:f8:88:65:f6:23: 38:65:c5:18:63:c5:b4:55:3a:29:ef:71:a9:96:e4: a9:85:7e:ea:8c:b6:64:73:f8:95:96:c5:5b:f6:11: 04:57:c6:cd:7c:e6:b8:cd:1d:42:c6:47:03:78:74: 49:d6:94:de:8f:e1:2a:02:09:1b:d1:a5:06:ad:b6: da:11:d4:1b:e5:24:b4:78:1c:74:8d:21:0e:04:d6: 62:3e:0e:44:b8:b9:e4:63:88:a8:6e:33:9e:e3:65: e5:be:0a:b2:4f:ee:0a:d4:79:1a:fe:a1:10:00:8b: 36:de:4b:95:4f:bf:4b:60:d1:86:1c:37:d2:fa:60: 9c:34:73:15:7f:1c:9b:0b:8a:8d:c4:08:f0:ab:78: f6:84:2d:55:db:46:fe:d1:b0:a3:09:d9:d1:77:38: d5:7b:38:c7:52:9c:00:42:03:ff:97:d1:db:13:01: 67:9a:4c:14:ca:73:0b:34:04:01:5c:fd:be:01:a7: 34:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:82:7C:3F:9A:BC:6C:BA:6E:DA:C9:C6:09:87:FC:2D:9E:BA:D6:9B X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.236.0/23 Signature Algorithm: sha256WithRSAEncryption ad:1d:93:9c:74:03:99:94:bb:e5:56:46:10:39:6b:e3:4c:31: f3:18:43:e8:20:1a:64:60:a7:b6:63:38:f0:d3:b6:67:48:65: 95:f0:6b:7f:d0:84:de:21:38:e5:9b:90:66:2b:f9:17:1f:a5: a0:7b:27:32:c3:63:f6:30:4d:ad:52:76:6f:70:b8:5d:6b:ab: 97:8d:36:7b:02:98:6e:f7:b1:6b:a6:90:1f:01:2f:c5:65:74: a3:2d:07:ac:9e:85:b3:9c:c1:c5:ae:d2:9b:79:78:82:41:fc: 92:ab:ed:80:04:15:8a:91:d4:21:d7:52:70:60:1b:a7:2c:a8: 93:bf:6d:69:9f:37:7f:c1:75:38:17:98:c9:83:fa:e3:81:b7: 0d:04:d0:ad:d2:56:6a:e3:dc:0e:aa:df:f3:f0:7e:96:95:f4: f7:dc:1f:1e:4d:24:c8:30:26:1b:ca:e8:cb:ce:87:4d:08:50: 52:08:b4:79:54:b7:9c:bf:f2:32:19:19:e0:7a:49:62:11:03: 67:c0:c8:36:77:2d:72:80:54:28:15:4a:b5:61:7b:70:ca:f1: d1:ad:39:b6:8c:76:82:54:93:41:f5:03:86:eb:bd:49:a2:13: 93:78:d6:b8:33:5d:30:17:6d:64:a1:75:8b:d9:21:34:d5:71: 7c:76:ba:d5 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUKG3FqYZbpxJfEFIpm0zrpOsFaMwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIyNDAwMDAyOVoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAYWI1MTAzMTBkMDFlNGNkNTVjYjUx NDVjMjZjYjg1MmYwNWU3OGVlMjRjZWUzYTZlMTJiZDA0YjlhMzZiYWZiNjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp8OJOacE+BtlZjDh6082rvuox0Ce x5DeqD+4X92tqzzfejwlOM8i3dB1SM9FJhNIC/IYq/pFVbll9K5+HhanrZpJKkwJ +Ihl9iM4ZcUYY8W0VTop73GpluSphX7qjLZkc/iVlsVb9hEEV8bNfOa4zR1CxkcD eHRJ1pTej+EqAgkb0aUGrbbaEdQb5SS0eBx0jSEOBNZiPg5EuLnkY4iobjOe42Xl vgqyT+4K1Hka/qEQAIs23kuVT79LYNGGHDfS+mCcNHMVfxybC4qNxAjwq3j2hC1V 20b+0bCjCdnRdzjVezjHUpwAQgP/l9HbEwFnmkwUynMLNAQBXP2+Aac0rwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFO+CfD+avGy6btrJxgmH/C2eutabMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2E3OGI5MGRmLTIzM2ItNGVjNi04OWQyLWRlMjdhYzJkYzA0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynsMA0GCSqGSIb3DQEBCwUAA4IBAQCtHZOcdAOZlLvlVkYQOWvj TDHzGEPoIBpkYKe2Yzjw07ZnSGWV8Gt/0ITeITjlm5BmK/kXH6Wgeycyw2P2ME2t UnZvcLhda6uXjTZ7Aphu97FrppAfAS/FZXSjLQesnoWznMHFrtKbeXiCQfySq+2A BBWKkdQh11JwYBunLKiTv21pnzd/wXU4F5jJg/rjgbcNBNCt0lZq49wOqt/z8H6W lfT33B8eTSTIMCYbyujLzodNCFBSCLR5VLecv/IyGRngekliEQNnwMg2dy1ygFQo FUq1YXtwyvHRrTm2jHaCVJNB9QOG671JohOTeNa4M10wF21koXWL2SE01XF8drrV -----END CERTIFICATE-----Generated at Mon Mar 2 01:25:31 2026 by rpki-client