$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa File: 018dea0d-42eb-4d58-8914-636d25ca3b3c.roa (raw, json) Hash identifier: zn6GS3tpGK8t9xsZPmz1Hb01Ff9Eiva2e/Won/sOYG0= Subject key identifier: 6B:D9:A1:E2:4D:F9:10:0F:F7:51:EC:0E:C2:CB:99:59:9E:18:7C:3D Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 65EECF919307D2EC3113F764C1D1200140C7D71D Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa Signing time: Sat 16 May 2026 00:00:49 +0000 ROA not before: Sat 16 May 2026 00:00:49 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ee:cf:91:93:07:d2:ec:31:13:f7:64:c1:d1:20:01:40:c7:d7:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:49 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=4cae11abf712622200b7570ec1821ab79ba95968ec113d3eeafefab8c4257985, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:25:e8:9b:62:7a:7f:81:25:e7:e5:ef:4c:7c: 01:b8:21:14:03:ed:5b:a3:11:e5:13:b6:75:6a:70: 19:bb:65:47:7d:0f:84:c9:91:fa:90:a5:6d:b3:27: 05:88:87:c1:05:f5:9b:38:5f:99:31:50:31:30:61: 19:e4:70:d6:6b:8f:39:9a:39:c4:86:17:b6:6e:ff: 99:62:ab:ec:5e:76:a1:46:11:af:9b:27:1a:3c:3f: a9:12:af:2c:03:a4:4a:b6:1e:f7:16:ea:a1:8e:0f: e9:2f:b2:43:c6:5a:62:06:ca:72:69:ef:a4:3f:c7: 08:64:1d:1d:99:1f:c9:69:ce:8a:76:29:5a:26:de: a1:57:5d:51:00:94:74:f7:d0:67:56:33:5b:4c:99: f6:f7:b2:93:d4:ac:05:c3:3a:3c:b8:f6:4a:e1:cf: 65:40:f1:06:e2:54:31:ad:2a:28:dc:0f:07:1d:39: 56:f9:66:c8:f8:e6:f6:48:60:f3:0b:4a:13:51:a5: b6:17:74:a7:af:43:ff:f0:eb:fc:54:d7:5a:96:43: 27:58:15:7c:d2:b6:49:5f:eb:37:09:68:4d:ff:38: c6:cb:fe:e4:24:84:32:5f:cf:65:13:1a:06:5c:ca: 33:e1:6f:15:d5:b5:46:f6:48:74:fa:39:87:2b:87: 9a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D9:A1:E2:4D:F9:10:0F:F7:51:EC:0E:C2:CB:99:59:9E:18:7C:3D X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018:800::/38 Signature Algorithm: sha256WithRSAEncryption 6e:00:8b:75:22:4c:23:aa:cf:08:23:a0:23:cb:d2:8f:b3:30: 2d:a1:e1:7d:91:7a:32:48:14:d5:fe:c0:9c:95:84:62:d0:80: 4a:24:20:c4:bd:34:70:fd:93:75:50:82:86:2b:e6:81:e1:e4: be:5a:10:ce:91:23:08:95:a2:03:20:1d:f8:82:75:9f:23:81: 8e:13:fa:a0:07:99:be:9e:b5:69:b9:2d:55:8e:75:3d:13:03: 20:73:23:17:d7:e3:47:d3:3e:f7:e5:37:8c:7d:18:f3:23:13: eb:51:07:bc:82:7c:ff:38:2c:92:e2:fc:35:ee:4c:86:e5:b3: fe:18:ae:ec:c0:55:f6:8d:7c:03:6f:4c:b6:2f:bb:11:04:ce: 05:29:1b:d0:87:a1:f7:51:e6:0a:a9:db:6b:3b:fd:ac:44:26: aa:83:8d:57:39:72:40:a4:ae:03:33:8e:4d:31:75:cd:66:98: af:5a:96:fd:f8:0f:cd:93:94:ab:7b:59:c7:c7:a1:af:92:88: 68:9f:24:1e:d6:2c:13:09:df:2a:74:06:ba:a7:20:b1:da:9f: f1:98:4a:ec:28:07:ba:8b:0e:d5:14:d9:dc:7a:11:28:02:ca: 81:b8:5a:b0:f3:6d:a7:f6:b9:d1:aa:3b:b6:03:81:68:db:73: f2:7d:05:5e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUZe7PkZMH0uwxE/dkwdEgAUDH1x0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA0OVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNANGNhZTExYWJmNzEyNjIyMjAwYjc1 NzBlYzE4MjFhYjc5YmE5NTk2OGVjMTEzZDNlZWFmZWZhYjhjNDI1Nzk4NTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5iXom2J6f4El5+XvTHwBuCEUA+1b oxHlE7Z1anAZu2VHfQ+EyZH6kKVtsycFiIfBBfWbOF+ZMVAxMGEZ5HDWa485mjnE hhe2bv+ZYqvsXnahRhGvmycaPD+pEq8sA6RKth73Fuqhjg/pL7JDxlpiBspyae+k P8cIZB0dmR/Jac6KdilaJt6hV11RAJR099BnVjNbTJn297KT1KwFwzo8uPZK4c9l QPEG4lQxrSoo3A8HHTlW+WbI+Ob2SGDzC0oTUaW2F3Snr0P/8Ov8VNdalkMnWBV8 0rZJX+s3CWhN/zjGy/7kJIQyX89lExoGXMoz4W8V1bVG9kh0+jmHK4ealwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGvZoeJN+RAP91HsDsLLmVmeGHw9MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzAxOGRlYTBkLTQyZWItNGQ1OC04OTE0LTYzNmQyNWNhM2IzYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAgwDQYJKoZIhvcNAQELBQADggEBAG4Ai3UiTCOqzwgjoCPL 0o+zMC2h4X2RejJIFNX+wJyVhGLQgEokIMS9NHD9k3VQgoYr5oHh5L5aEM6RIwiV ogMgHfiCdZ8jgY4T+qAHmb6etWm5LVWOdT0TAyBzIxfX40fTPvflN4x9GPMjE+tR B7yCfP84LJLi/DXuTIbls/4YruzAVfaNfANvTLYvuxEEzgUpG9CHofdR5gqp22s7 /axEJqqDjVc5ckCkrgMzjk0xdc1mmK9alv34D82TlKt7WcfHoa+SiGifJB7WLBMJ 3yp0BrqnILHan/GYSuwoB7qLDtUU2dx6ESgCyoG4WrDzbaf2udGqO7YDgWjbc/J9 BV4= -----END CERTIFICATE-----Generated at Sat Jun 13 05:40:01 2026 by rpki-client