$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa File: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (raw, json) Hash identifier: ZgXif8S6dFgOk8pXaBB5oQDqoSRbzkHSYpNTMkKHvaw= Subject key identifier: B8:4D:A4:54:DD:4A:4B:A8:2F:AB:50:F8:4B:7F:49:B8:21:AD:91:73 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 715FE2D1A28E8541761F8C16DD075DB1FEF58C74 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa Signing time: Wed 25 Feb 2026 00:00:32 +0000 ROA not before: Wed 25 Feb 2026 00:00:32 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:5f:e2:d1:a2:8e:85:41:76:1f:8c:16:dd:07:5d:b1:fe:f5:8c:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Feb 25 00:00:32 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=e28148e7499ced6f9ccfb8f68dc5b7b4bd65600224863a75b09debedfb17917f, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:55:08:81:3e:a5:08:c6:44:f6:05:93:4d:70: a8:ab:fa:83:06:d7:49:f6:ae:18:45:89:43:68:82: 45:f6:8d:14:38:d9:7f:88:ac:76:3e:93:d4:cc:d5: 67:49:77:23:41:b2:8a:e4:a1:a4:9b:4e:81:6a:f6: 1c:03:ca:12:29:b4:28:b8:1e:31:9a:02:cb:02:15: 54:ef:23:fe:c4:77:39:d2:a1:5d:c5:96:85:45:48: 99:49:58:f8:2b:46:66:d6:30:fe:05:9b:13:7c:c1: 51:d1:32:aa:ec:ae:06:ba:eb:4c:41:1d:4a:f7:ce: 9b:42:2d:17:80:bc:64:ba:73:52:b6:21:b7:b9:b3: 2e:d7:41:fa:4e:8b:07:d9:22:56:d2:60:86:e1:d5: bc:05:cf:32:af:89:e3:dd:46:79:4e:ef:c4:05:9d: f5:ba:98:41:b2:2b:ec:07:be:de:29:30:32:e3:1f: 87:34:8c:f0:3f:79:d7:f8:fe:03:8a:a7:28:7d:41: ea:80:9d:86:98:61:18:72:29:6f:ee:b1:e4:36:25: 17:4f:95:fe:2f:08:47:7a:79:f7:e1:0c:4b:f9:e6: 53:02:72:de:b4:71:b3:20:f7:7f:21:36:f0:c6:d7: f2:5a:b9:f1:b8:be:43:0c:22:1e:9e:9f:8f:50:02: dd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4D:A4:54:DD:4A:4B:A8:2F:AB:50:F8:4B:7F:49:B8:21:AD:91:73 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/48 Signature Algorithm: sha256WithRSAEncryption 21:c2:c1:16:96:64:d6:5e:30:12:8a:7e:58:85:f6:ec:69:5a: 7b:9a:ad:2d:05:38:a0:64:7f:d0:01:f7:7e:9b:13:ef:a9:c7: e0:73:a4:a7:8c:3d:b0:26:29:05:86:9d:82:2e:7c:d0:9d:54: 2b:aa:be:92:3b:79:2d:18:76:2d:ac:36:cc:5d:9e:e2:33:2e: 8a:0a:72:2c:67:c5:ca:1e:6e:8e:26:c9:e5:6a:e7:f0:97:a1: 87:ff:2e:31:cd:8a:8b:03:95:35:16:81:4b:8d:bf:64:07:0c: 5b:57:14:a7:02:cc:fa:9a:8a:9f:02:28:45:66:63:18:46:bd: 70:ad:f8:be:6f:68:84:12:52:3b:2b:a8:63:48:48:e1:8d:71: fb:2e:2c:f8:8a:02:af:ff:86:d0:bb:72:da:6f:ad:c2:cc:66: a2:2a:7b:c1:96:19:d3:b9:f2:38:76:ce:d4:25:46:12:ca:13: 3b:73:b1:2e:47:1b:b6:4d:42:ec:54:f1:56:b3:24:59:50:4e: 17:25:0e:88:d2:26:17:b8:65:83:40:74:d4:0d:c3:12:07:25: ac:77:e6:a9:9e:41:c8:0f:64:d7:38:de:07:32:47:fb:92:9a: 16:a8:b0:06:9c:44:1c:47:8a:d5:fe:97:76:0d:65:aa:ca:12: ca:01:e1:ee -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUcV/i0aKOhUF2H4wW3Qddsf71jHQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDIyNTAwMDAzMloX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAZTI4MTQ4ZTc0OTljZWQ2ZjljY2Zi OGY2OGRjNWI3YjRiZDY1NjAwMjI0ODYzYTc1YjA5ZGViZWRmYjE3OTE3ZjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFUIgT6lCMZE9gWTTXCoq/qDBtdJ 9q4YRYlDaIJF9o0UONl/iKx2PpPUzNVnSXcjQbKK5KGkm06BavYcA8oSKbQouB4x mgLLAhVU7yP+xHc50qFdxZaFRUiZSVj4K0Zm1jD+BZsTfMFR0TKq7K4GuutMQR1K 986bQi0XgLxkunNStiG3ubMu10H6TosH2SJW0mCG4dW8Bc8yr4nj3UZ5Tu/EBZ31 uphBsivsB77eKTAy4x+HNIzwP3nX+P4DiqcofUHqgJ2GmGEYcilv7rHkNiUXT5X+ LwhHenn34QxL+eZTAnLetHGzIPd/ITbwxtfyWrnxuL5DDCIenp+PUALdpwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLhNpFTdSkuoL6tQ+Et/SbghrZFzMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzM4MWZjNmU2LTVkNDktNDFiYy1iNTg0LWQ5NDM3YzY4ZTNjZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQAhwsEWlmTWXjASin5Y hfbsaVp7mq0tBTigZH/QAfd+mxPvqcfgc6SnjD2wJikFhp2CLnzQnVQrqr6SO3kt GHYtrDbMXZ7iMy6KCnIsZ8XKHm6OJsnlaufwl6GH/y4xzYqLA5U1FoFLjb9kBwxb VxSnAsz6moqfAihFZmMYRr1wrfi+b2iEElI7K6hjSEjhjXH7Liz4igKv/4bQu3La b63CzGaiKnvBlhnTufI4ds7UJUYSyhM7c7EuRxu2TULsVPFWsyRZUE4XJQ6I0iYX uGWDQHTUDcMSByWsd+apnkHID2TXON4HMkf7kpoWqLAGnEQcR4rV/pd2DWWqyhLK AeHu -----END CERTIFICATE-----Generated at Mon Mar 2 13:15:36 2026 by rpki-client