$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa File: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (raw, json) Hash identifier: IE/QQxiERKhi3QbfE3eOEseq4RILf1okL7GJghbd8cE= Subject key identifier: B5:D8:03:FC:22:D0:B5:1D:7A:0E:CF:CE:32:72:5C:E8:F9:2A:64:F3 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 576FD96DE2FD0A4D976C1E531C821E24A0876D5F Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa Signing time: Fri 06 Feb 2026 00:00:38 +0000 ROA not before: Fri 06 Feb 2026 00:00:38 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 103.8.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:6f:d9:6d:e2:fd:0a:4d:97:6c:1e:53:1c:82:1e:24:a0:87:6d:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Feb 6 00:00:38 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=108dc9604f09eb6966888c93d88dc54e0b9a40d67dc7cdc3cbed3f72e7a5041b, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:52:f1:04:c0:0c:7f:33:1d:2e:74:c3:c8:83: cc:39:62:80:cf:76:54:60:ee:bc:9e:3e:bb:32:7b: 15:5e:8f:1f:db:ac:4c:c2:1b:59:cc:fb:05:92:43: b0:3e:66:d5:15:34:7b:f7:f3:82:81:e6:88:92:ef: d2:1f:1d:da:dc:82:e7:2e:89:c7:62:99:22:ed:c9: 6d:82:84:b4:b9:b2:37:ec:78:2d:d8:b1:c9:e5:6f: ef:ca:2b:e6:44:2c:17:ca:55:c5:bd:0d:89:21:31: 67:76:72:f6:c8:11:52:51:be:29:7f:7f:e6:41:a9: 1f:89:65:33:cd:76:b2:5c:99:e6:29:8b:bc:13:91: a1:b5:7a:2c:75:26:09:1c:2b:91:ae:77:a1:16:30: 3d:b7:c4:69:19:2a:d0:1a:74:4e:86:ef:5c:fc:c6: 1f:4b:86:07:96:56:77:4b:cb:39:59:de:47:7b:cd: de:49:ad:05:e0:f8:3d:14:b9:2b:19:dc:13:50:99: 2c:2a:45:f4:6c:05:af:2e:be:19:44:0f:88:1a:a1: 1c:84:3a:46:5e:e8:3b:7e:de:df:64:25:9f:80:33: ef:56:7d:31:6e:ac:50:c9:11:0e:4f:a8:8f:c3:54: 69:60:60:04:c7:91:5a:03:91:25:44:89:c2:e6:38: bf:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D8:03:FC:22:D0:B5:1D:7A:0E:CF:CE:32:72:5C:E8:F9:2A:64:F3 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.172.0/22 Signature Algorithm: sha256WithRSAEncryption 07:1f:1b:e3:42:e0:93:42:3b:44:3f:ec:d7:d9:43:c7:dd:c5: 06:29:b6:1c:cc:13:43:8c:9d:1f:f3:bd:d1:29:2e:1b:3c:27: ef:9c:01:fc:66:3d:b8:7f:2a:85:bd:2a:62:61:86:0f:dd:0f: 18:1e:78:ce:15:3b:3f:ea:98:bd:35:a9:5e:26:46:a1:2b:a1: e0:6c:b2:3d:fc:af:28:2e:8e:a0:df:74:a3:71:c7:25:11:45: b8:56:e1:de:87:af:01:d4:d5:85:30:d0:92:0c:e7:78:7f:4e: 17:c9:b1:83:b9:2a:08:56:55:57:d8:ef:62:91:85:f9:ca:1f: 4c:43:93:de:5a:8e:b1:a6:05:f0:bb:ce:2f:d4:7f:15:ea:d6: 18:33:7a:78:11:b8:50:96:96:cc:6d:c7:a7:64:1a:dc:c1:17: 64:52:18:60:55:5b:d7:f1:ba:63:86:15:29:d8:5e:d9:69:cf: 8f:03:eb:90:6e:c2:40:f0:67:14:2e:1f:13:d4:f0:f2:a3:93: 87:f0:b9:36:f9:0a:47:da:8a:fd:bf:e4:d1:83:45:5d:2a:85: 49:fb:d3:d6:7c:8f:04:01:ba:ec:1f:fe:7e:5f:0d:f4:4d:30: 4a:3b:7f:64:89:e1:fd:11:d2:6c:e5:a9:42:27:43:24:8b:84: 28:75:bd:ae -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUV2/ZbeL9Ck2XbB5THIIeJKCHbV8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDIwNjAwMDAzOFoX DTI2MDUwNzIzNTk1OVowejFJMEcGA1UEBRNAMTA4ZGM5NjA0ZjA5ZWI2OTY2ODg4 YzkzZDg4ZGM1NGUwYjlhNDBkNjdkYzdjZGMzY2JlZDNmNzJlN2E1MDQxYjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVLxBMAMfzMdLnTDyIPMOWKAz3ZU YO68nj67MnsVXo8f26xMwhtZzPsFkkOwPmbVFTR79/OCgeaIku/SHx3a3ILnLonH Ypki7cltgoS0ubI37Hgt2LHJ5W/vyivmRCwXylXFvQ2JITFndnL2yBFSUb4pf3/m QakfiWUzzXayXJnmKYu8E5GhtXosdSYJHCuRrnehFjA9t8RpGSrQGnROhu9c/MYf S4YHllZ3S8s5Wd5He83eSa0F4Pg9FLkrGdwTUJksKkX0bAWvLr4ZRA+IGqEchDpG Xug7ft7fZCWfgDPvVn0xbqxQyREOT6iPw1RpYGAEx5FaA5ElRInC5ji/BQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLXYA/wi0LUdeg7PzjJyXOj5KmTzMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2VhMWQwMmFhLTZkMjUtNGIzNi1iNDJlLWJhODM3ZDQ5ZTI2MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZwisMA0GCSqGSIb3DQEBCwUAA4IBAQAHHxvjQuCTQjtEP+zX2UPH 3cUGKbYczBNDjJ0f873RKS4bPCfvnAH8Zj24fyqFvSpiYYYP3Q8YHnjOFTs/6pi9 NaleJkahK6HgbLI9/K8oLo6g33SjccclEUW4VuHeh68B1NWFMNCSDOd4f04XybGD uSoIVlVX2O9ikYX5yh9MQ5PeWo6xpgXwu84v1H8V6tYYM3p4EbhQlpbMbcenZBrc wRdkUhhgVVvX8bpjhhUp2F7Zac+PA+uQbsJA8GcULh8T1PDyo5OH8Lk2+QpH2or9 v+TRg0VdKoVJ+9PWfI8EAbrsH/5+Xw30TTBKO39kieH9EdJs5alCJ0Mki4Qodb2u -----END CERTIFICATE-----Generated at Mon Mar 2 04:50:11 2026 by rpki-client