$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa File: ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa (raw, json) Hash identifier: ZpxX4uxdJxBRqoXrMr+4TjfM6a61MegoEvwGJaS8fgI= Subject key identifier: 30:D0:AD:62:8A:A0:3A:BB:53:92:64:5D:5C:8B:12:8E:01:CB:E2:48 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2F12615F6D896CDB7DE18CF49A335C8C3800CB6E Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa Signing time: Mon 27 Apr 2026 00:00:08 +0000 ROA not before: Mon 27 Apr 2026 00:00:08 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 103.8.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 00:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:12:61:5f:6d:89:6c:db:7d:e1:8c:f4:9a:33:5c:8c:38:00:cb:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 27 00:00:08 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=95b0f23238f8e659da7f6c5dd765e1b1ba26cd6eb02825f7e1bc1f360b815f0e, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fe:33:94:b2:67:09:26:00:ef:55:1c:a9:e3: 4b:0b:7e:88:20:91:59:f9:be:58:d5:22:d8:de:df: c2:15:56:1c:13:7a:2f:a1:e7:cf:ff:25:cc:7d:55: 9c:2c:85:0f:1e:1d:87:0b:34:c7:25:aa:2b:b2:63: a9:e1:b1:ca:c2:b9:1a:6e:d6:da:07:d1:b6:af:17: 15:a2:87:65:8b:7c:fe:a8:88:7d:9a:8f:4a:4d:c1: 70:6c:09:82:f0:c7:36:4f:4e:e2:e3:e0:f1:44:30: 81:7f:87:3e:88:8b:22:6c:15:e9:a3:a7:c2:8a:09: a4:4c:e6:e7:13:03:76:05:5b:1d:23:ff:36:be:76: 83:0b:a1:22:26:ec:e2:fa:39:85:c4:70:c8:1d:cd: 4f:56:c4:30:1f:df:a5:49:e8:7f:57:92:59:b6:fa: 63:1b:9d:d6:da:1e:50:64:38:5a:1d:d5:5e:16:33: 9d:fa:83:d2:fe:24:02:05:bd:cf:04:ac:a8:0e:a9: ec:53:b2:0f:e4:bc:e9:41:cf:b6:24:01:4a:dc:4e: e8:e0:2c:8a:7b:f9:4a:05:75:87:26:b8:67:a1:12: 6d:cc:cc:4b:6a:39:f0:cc:cb:21:1e:4f:e4:9a:d5: a1:f2:3c:9a:3f:d1:6d:5a:61:32:2c:84:34:61:0c: 52:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D0:AD:62:8A:A0:3A:BB:53:92:64:5D:5C:8B:12:8E:01:CB:E2:48 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/ea1d02aa-6d25-4b36-b42e-ba837d49e261.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.172.0/22 Signature Algorithm: sha256WithRSAEncryption 09:73:ae:f9:b6:e5:18:39:84:cd:a9:6b:35:33:6e:99:4a:88: 3d:86:6a:28:c3:b9:b8:af:b4:41:3d:f1:4c:f7:2d:f2:57:b4: 7a:92:07:6c:a9:c2:ee:90:ab:5c:6e:42:d1:57:4f:07:e2:fe: 84:4f:a8:db:ee:0d:3d:eb:79:e5:49:62:d2:ae:ff:bf:c4:ba: cc:18:79:04:b2:7a:e6:4b:8a:9d:22:91:6b:01:10:04:a2:cc: 90:72:51:46:83:53:88:32:5a:9a:6e:0c:ff:de:19:c9:d7:b8: 1c:37:ec:78:2c:b0:98:38:94:b9:0f:47:32:96:d3:01:0a:00: 62:ae:63:a5:4f:15:5f:47:8b:27:12:f2:0e:73:57:e4:78:db: 03:8f:25:f0:a4:f2:f2:b3:ad:17:80:06:ed:e5:3f:f6:d5:9c: 2b:a6:48:b2:a1:9a:13:e5:fc:45:c3:bf:23:d4:2e:19:da:9e: eb:4b:d8:69:b9:38:62:eb:b5:27:dc:ee:8e:49:14:1a:58:64: b7:35:82:4e:d7:d4:d6:1a:1c:4c:0c:e7:cc:8c:bc:da:25:e3: 07:cf:fc:ff:86:b2:21:9d:b6:da:ee:a2:1c:20:c9:c4:dd:4a: f0:06:b0:5e:0c:1f:0e:7c:a9:35:63:cb:d0:69:f2:4c:71:bc: e5:16:93:89 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIULxJhX22JbNt94Yz0mjNcjDgAy24wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQyNzAwMDAwOFoX DTI2MDcyNjIzNTk1OVowejFJMEcGA1UEBRNAOTViMGYyMzIzOGY4ZTY1OWRhN2Y2 YzVkZDc2NWUxYjFiYTI2Y2Q2ZWIwMjgyNWY3ZTFiYzFmMzYwYjgxNWYwZTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArf4zlLJnCSYA71UcqeNLC36IIJFZ +b5Y1SLY3t/CFVYcE3ovoefP/yXMfVWcLIUPHh2HCzTHJaorsmOp4bHKwrkabtba B9G2rxcVoodli3z+qIh9mo9KTcFwbAmC8Mc2T07i4+DxRDCBf4c+iIsibBXpo6fC igmkTObnEwN2BVsdI/82vnaDC6EiJuzi+jmFxHDIHc1PVsQwH9+lSeh/V5JZtvpj G53W2h5QZDhaHdVeFjOd+oPS/iQCBb3PBKyoDqnsU7IP5LzpQc+2JAFK3E7o4CyK e/lKBXWHJrhnoRJtzMxLajnwzMshHk/kmtWh8jyaP9FtWmEyLIQ0YQxSfwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFDDQrWKKoDq7U5JkXVyLEo4By+JIMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2VhMWQwMmFhLTZkMjUtNGIzNi1iNDJlLWJhODM3ZDQ5ZTI2MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZwisMA0GCSqGSIb3DQEBCwUAA4IBAQAJc675tuUYOYTNqWs1M26Z Sog9hmoow7m4r7RBPfFM9y3yV7R6kgdsqcLukKtcbkLRV08H4v6ET6jb7g0963nl SWLSrv+/xLrMGHkEsnrmS4qdIpFrARAEosyQclFGg1OIMlqabgz/3hnJ17gcN+x4 LLCYOJS5D0cyltMBCgBirmOlTxVfR4snEvIOc1fkeNsDjyXwpPLys60XgAbt5T/2 1ZwrpkiyoZoT5fxFw78j1C4Z2p7rS9hpuThi67Un3O6OSRQaWGS3NYJO19TWGhxM DOfMjLzaJeMHz/z/hrIhnbba7qIcIMnE3UrwBrBeDB8OfKk1Y8vQafJMcbzlFpOJ -----END CERTIFICATE-----Generated at Mon May 4 19:17:00 2026 by rpki-client