$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa File: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (raw, json) Hash identifier: /viX8+pzxtBqPVItYbjRQ8va9EDiRwR/Zgb8KuMClDo= Subject key identifier: A3:18:8A:1F:DA:FF:6C:99:DB:63:E3:E2:57:B1:CC:46:6F:C7:C8:39 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 6914132310AE0785116D0B8CFE7B1AE64C393B23 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa Signing time: Fri 06 Feb 2026 00:00:39 +0000 ROA not before: Fri 06 Feb 2026 00:00:39 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:14:13:23:10:ae:07:85:11:6d:0b:8c:fe:7b:1a:e6:4c:39:3b:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Feb 6 00:00:39 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=07b6523e709fa85f78a6b3b280e3222594ae28f9cc560d4ecad38d2175e9f8a3, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cf:00:fc:4d:4e:cd:47:bd:ca:7d:11:ea:17: 48:39:3f:b2:97:7c:9b:ee:7d:22:2b:97:43:e5:b3: c3:40:1b:e8:81:54:3f:ec:7b:20:30:8e:9d:0c:de: 88:3c:9c:4a:52:55:49:ff:17:5e:f9:94:c0:ac:c4: 42:d8:6e:65:04:ab:ec:54:7f:d5:89:7a:98:08:2f: 24:5c:e5:34:3f:2a:6e:8d:1c:af:c1:c6:6c:98:1e: 6f:94:0c:44:eb:66:04:f4:aa:be:03:c1:0f:6c:13: 50:29:ae:f6:63:2c:af:97:22:ab:ca:dd:f6:26:cc: 28:ea:62:fa:4c:c4:1d:8d:34:90:57:91:51:30:1a: 28:2d:eb:b5:6a:ca:9c:a9:c5:86:c8:ec:3e:73:dd: c6:e6:6b:7e:b2:bd:da:92:04:ea:38:88:b7:01:c8: e7:ff:16:fa:55:73:a6:e0:df:17:0b:26:fc:7c:8c: 79:fa:b6:91:e2:79:f1:fa:cc:38:1e:4b:0f:41:3e: ca:6c:d9:4d:a4:48:0f:59:e8:47:69:e1:d7:50:be: be:c4:9a:2d:29:bc:22:0a:1b:08:77:cb:52:57:ae: ce:76:23:e2:8a:c3:2e:ed:89:4d:d6:e3:a6:2b:76: 04:ef:e3:54:bc:9b:1a:5b:7b:99:e8:b6:91:44:91: ce:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:18:8A:1F:DA:FF:6C:99:DB:63:E3:E2:57:B1:CC:46:6F:C7:C8:39 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/32 Signature Algorithm: sha256WithRSAEncryption 64:74:1a:82:84:cf:8e:ce:b4:86:ad:fb:de:d9:75:f1:c1:05: 90:d5:f0:7f:87:d9:ae:f3:b0:bd:d2:71:80:69:f2:f5:92:e4: c6:06:a0:81:b0:06:b0:a3:62:62:50:0c:f7:b4:f7:bd:0c:28: c3:07:b5:66:31:15:1e:62:e5:5b:b1:e2:29:93:c8:51:e6:30: a8:02:29:a2:d7:a7:35:6d:2e:4a:94:4c:09:3e:dc:e2:e9:f1: 0e:51:f9:e3:5b:8e:84:7d:7d:49:ef:ee:a1:d7:62:3a:f2:a9: b1:0c:45:5e:87:bb:fd:4d:d5:22:1f:e5:73:06:c5:32:87:9b: 5b:9d:67:5d:bf:67:39:8f:49:b3:d6:c1:32:8f:0e:0c:e7:42: e7:1a:8e:96:fd:dc:5f:93:98:84:bd:8c:68:13:3f:cb:ab:ab: be:2f:2e:68:b3:53:dd:a2:37:4a:ba:03:47:45:28:d6:6c:4c: 40:48:b2:d2:0a:b2:24:3d:bc:d5:2c:83:c4:b5:c0:ec:0b:e7: 5b:ff:01:85:61:ce:91:9f:23:a4:8b:d0:f1:b8:f9:f1:c7:cd: 75:3b:35:97:a8:62:e9:14:b7:08:3a:a7:18:a8:2c:27:ff:78: 2f:4f:d5:dc:ec:b1:4f:5d:14:09:37:c0:16:1a:e3:1a:d7:d6: a5:77:f8:3b -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUaRQTIxCuB4URbQuM/nsa5kw5OyMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDIwNjAwMDAzOVoX DTI2MDUwNzIzNTk1OVowejFJMEcGA1UEBRNAMDdiNjUyM2U3MDlmYTg1Zjc4YTZi M2IyODBlMzIyMjU5NGFlMjhmOWNjNTYwZDRlY2FkMzhkMjE3NWU5ZjhhMzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA088A/E1OzUe9yn0R6hdIOT+yl3yb 7n0iK5dD5bPDQBvogVQ/7HsgMI6dDN6IPJxKUlVJ/xde+ZTArMRC2G5lBKvsVH/V iXqYCC8kXOU0PypujRyvwcZsmB5vlAxE62YE9Kq+A8EPbBNQKa72YyyvlyKryt32 Jswo6mL6TMQdjTSQV5FRMBooLeu1asqcqcWGyOw+c93G5mt+sr3akgTqOIi3Acjn /xb6VXOm4N8XCyb8fIx5+raR4nnx+sw4HksPQT7KbNlNpEgPWehHaeHXUL6+xJot KbwiChsId8tSV67OdiPiisMu7YlN1uOmK3YE7+NUvJsaW3uZ6LaRRJHOtwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFKMYih/a/2yZ22Pj4lexzEZvx8g5MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2NjMmY3MDkzLTIxYTYtNDAwZi05ZGIxLTkzYzJmZTAyYmMxYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAOzADANBgkqhkiG9w0BAQsFAAOCAQEAZHQagoTPjs60hq373tl1 8cEFkNXwf4fZrvOwvdJxgGny9ZLkxgaggbAGsKNiYlAM97T3vQwowwe1ZjEVHmLl W7HiKZPIUeYwqAIpotenNW0uSpRMCT7c4unxDlH541uOhH19Se/uoddiOvKpsQxF Xoe7/U3VIh/lcwbFMoebW51nXb9nOY9Js9bBMo8ODOdC5xqOlv3cX5OYhL2MaBM/ y6urvi8uaLNT3aI3SroDR0Uo1mxMQEiy0gqyJD281SyDxLXA7AvnW/8BhWHOkZ8j pIvQ8bj58cfNdTs1l6hi6RS3CDqnGKgsJ/94L0/V3OyxT10UCTfAFhrjGtfWpXf4 Ow== -----END CERTIFICATE-----Generated at Sun Mar 1 21:53:07 2026 by rpki-client