$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0384c943-d0ac-4d4c-b5c3-a670c7e33c51.roa File: 0384c943-d0ac-4d4c-b5c3-a670c7e33c51.roa (raw, json) Hash identifier: YBVVuR2sdnyGi3jsOD1IZseEuPHjjduFFdjMVDOuNUk= Subject key identifier: 2F:B1:C2:17:F1:17:91:CF:29:4F:AA:C7:67:75:72:FC:35:38:66:50 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 76E5DDC26B0E8873A8A9431CEDEE645613855F94 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0384c943-d0ac-4d4c-b5c3-a670c7e33c51.roa Signing time: Tue 24 Feb 2026 00:00:29 +0000 ROA not before: Tue 24 Feb 2026 00:00:29 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.216.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:e5:dd:c2:6b:0e:88:73:a8:a9:43:1c:ed:ee:64:56:13:85:5f:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 24 00:00:29 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=5fecb428b9f4a57ec077d39f8d001435fef50d204259220faba8e35e32b42381, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:02:bc:5f:86:65:03:3b:e8:76:a8:c6:70:ee: 98:69:7b:32:f4:13:2f:32:ca:95:9b:45:72:4e:a0: 21:0c:43:2e:62:1c:57:39:e0:e8:c5:fc:bf:9f:7b: 4f:37:67:78:85:32:08:ad:ac:1c:6a:0b:c1:0d:17: 37:ed:24:50:4b:f2:0e:fe:0a:47:ae:37:94:e2:22: 5c:eb:68:3c:83:69:c9:62:0c:56:3c:6f:e7:54:0f: 45:28:ce:f5:d0:66:cb:2c:d1:17:77:87:40:02:95: 08:ba:1a:b1:67:c7:2c:e1:b5:6a:48:2b:7d:3c:75: 05:17:e7:73:4f:cb:2b:d2:55:5f:25:29:c6:79:7b: ec:e6:8b:26:f7:97:2c:96:12:7f:ab:5b:5a:50:96: 29:02:cb:ac:3e:2f:4c:de:59:9c:d2:d7:67:99:27: f9:bd:76:16:da:80:78:77:f9:a4:0a:18:6b:44:3f: 7e:a3:34:66:ce:93:3c:df:e6:31:1a:67:8c:dc:96: 53:2a:77:7d:6b:49:8c:ac:60:f5:23:6b:bd:a9:7e: c5:6f:50:2e:40:6d:47:f5:01:d8:ae:86:13:3c:36: fd:d1:17:55:da:5a:af:c7:9b:f0:b6:89:30:e1:39: cf:3b:7a:f0:90:d8:af:1a:5c:05:0c:36:10:18:f0: b1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B1:C2:17:F1:17:91:CF:29:4F:AA:C7:67:75:72:FC:35:38:66:50 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0384c943-d0ac-4d4c-b5c3-a670c7e33c51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.216.0.0/15 Signature Algorithm: sha256WithRSAEncryption 27:1e:3d:8a:6d:82:9d:9c:5c:9d:52:20:81:ce:45:24:53:5c: 30:35:df:24:d9:9a:47:53:f7:7e:23:c5:d3:63:6e:3e:03:52: 2e:7d:53:c7:2c:9c:c3:01:c1:27:fd:3c:fe:23:c2:20:a7:2f: 49:9f:79:8f:77:6a:d5:ad:10:b0:20:2b:97:5e:16:e8:27:05: db:c5:63:f3:41:9c:0a:19:52:1d:7b:a0:42:55:8c:9c:b9:a6: 60:36:f6:fc:ac:63:92:ea:6b:c2:dc:8b:79:eb:6c:23:24:b9: 10:08:46:83:8f:3b:34:30:4e:ac:d9:78:f1:0b:ab:0e:fc:fb: d7:79:d9:83:02:0d:6f:42:db:ce:cc:a5:06:78:e0:86:49:98: 06:3c:54:7e:7d:6d:fa:a0:e7:5d:fc:69:ab:78:c2:57:29:c3: 07:89:44:69:63:97:ac:ea:c0:5f:4f:63:35:f6:48:aa:5e:b6: bc:1f:ca:e1:52:f4:6e:d9:b3:57:a6:56:fb:10:43:6b:b1:7d: bd:20:2b:2e:cf:f8:e7:18:c6:5c:30:8b:4f:d7:a8:38:81:b1: 56:20:28:e4:67:83:f4:e5:6d:ad:63:d3:78:0b:82:9e:fd:dd: 93:99:61:ab:cf:47:00:6b:cc:43:f7:54:c4:83:47:e9:22:66: 91:49:1a:ce -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUduXdwmsOiHOoqUMc7e5kVhOFX5QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyNDAwMDAyOVoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNANWZlY2I0MjhiOWY0YTU3ZWMwNzdk MzlmOGQwMDE0MzVmZWY1MGQyMDQyNTkyMjBmYWJhOGUzNWUzMmI0MjM4MTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4AK8X4ZlAzvodqjGcO6YaXsy9BMv MsqVm0VyTqAhDEMuYhxXOeDoxfy/n3tPN2d4hTIIrawcagvBDRc37SRQS/IO/gpH rjeU4iJc62g8g2nJYgxWPG/nVA9FKM710GbLLNEXd4dAApUIuhqxZ8cs4bVqSCt9 PHUFF+dzT8sr0lVfJSnGeXvs5osm95cslhJ/q1taUJYpAsusPi9M3lmc0tdnmSf5 vXYW2oB4d/mkChhrRD9+ozRmzpM83+YxGmeM3JZTKnd9a0mMrGD1I2u9qX7Fb1Au QG1H9QHYroYTPDb90RdV2lqvx5vwtokw4TnPO3rwkNivGlwFDDYQGPCxUQIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFC+xwhfxF5HPKU+qx2d1cvw1OGZQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzAzODRjOTQzLWQwYWMtNGQ0Yy1iNWMzLWE2NzBjN2UzM2M1MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMBK9gwDQYJKoZIhvcNAQELBQADggEBACcePYptgp2cXJ1SIIHORSRT XDA13yTZmkdT934jxdNjbj4DUi59U8csnMMBwSf9PP4jwiCnL0mfeY93atWtELAg K5deFugnBdvFY/NBnAoZUh17oEJVjJy5pmA29vysY5Lqa8Lci3nrbCMkuRAIRoOP OzQwTqzZePELqw78+9d52YMCDW9C287MpQZ44IZJmAY8VH59bfqg5138aat4wlcp wweJRGljl6zqwF9PYzX2SKpetrwfyuFS9G7Zs1emVvsQQ2uxfb0gKy7P+OcYxlww i0/XqDiBsVYgKORng/Tlba1j03gLgp793ZOZYavPRwBrzEP3VMSDR+kiZpFJGs4= -----END CERTIFICATE-----Generated at Sun Mar 1 23:53:53 2026 by rpki-client