$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa File: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (raw, json) Hash identifier: urVEpMmPnRH8mzYmKVCJs66kbpn4arXE5I9XFifO8go= Subject key identifier: D8:A4:63:93:F1:4F:3B:E3:80:45:E7:75:BD:8C:D5:98:81:B5:56:90 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 584879296B08BB3FC540809DAC06561CF082CB78 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa Signing time: Tue 24 Feb 2026 00:10:38 +0000 ROA not before: Tue 24 Feb 2026 00:10:38 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f9:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:48:79:29:6b:08:bb:3f:c5:40:80:9d:ac:06:56:1c:f0:82:cb:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 24 00:10:38 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=d404ec72ebf780cc6095f42ebdc760863c4297b2d34bc9f7888e5943a19f3f04, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2f:d6:bb:a3:f8:0b:3a:02:14:19:3c:54:0f: a6:8c:24:f3:bb:7e:4c:df:53:e5:5c:93:3b:da:d0: 73:7e:c6:5e:77:5d:3a:a3:e4:a0:52:d0:06:c4:4f: f8:cc:51:34:e6:b3:5d:26:a5:e9:8e:12:b3:d1:c3: a0:c5:15:fb:fe:16:23:bf:d0:df:d5:91:61:98:c9: 76:78:17:91:3a:47:32:7c:99:7e:8e:3e:39:a5:18: b7:fb:38:d2:d8:90:c2:00:ca:2b:c0:36:53:1d:66: 24:b4:ff:c0:87:35:74:2a:3f:4b:4a:a1:f2:1a:fb: d1:1b:19:0e:68:b8:e9:b9:c9:fe:21:16:51:c9:c0: 00:79:7d:c1:5f:15:1e:07:2c:40:2a:19:51:de:aa: 37:53:9e:31:b1:7d:bb:59:f8:78:52:7f:91:5f:40: e6:12:dd:c0:32:65:e8:1b:21:f4:14:dc:d3:70:af: c0:ed:68:1c:7b:44:95:44:02:75:dd:c7:ab:0a:82: a7:f4:c2:95:c5:16:be:c2:03:6e:e9:f7:58:c9:76: c7:fd:05:dd:fe:bb:3b:db:83:6f:e2:a8:e0:8f:58: ca:e1:28:82:27:01:20:65:45:8c:0b:5b:e5:ab:89: d4:d2:c6:74:f7:b5:9e:46:14:9a:a8:df:ce:e0:d6: cd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A4:63:93:F1:4F:3B:E3:80:45:E7:75:BD:8C:D5:98:81:B5:56:90 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f9:4000::/40 Signature Algorithm: sha256WithRSAEncryption 3b:0d:e4:d0:07:3c:e8:5d:16:25:da:4e:72:ee:26:a0:71:db: d0:58:9e:9a:6a:a3:e8:99:7f:89:08:5b:c4:39:54:b8:5a:0e: 5a:d7:4d:63:46:f2:09:f9:1f:10:3e:1f:5d:39:7d:ed:f5:ba: f7:7b:a5:c0:62:3d:5c:e6:36:ba:09:be:9e:9c:5f:59:bd:4e: 93:a2:d1:0b:86:62:d7:19:9f:a4:3c:15:e5:d6:85:bd:6e:4e: 25:2e:5b:d4:26:07:26:45:42:e8:35:ff:3a:bf:2e:be:51:09: dc:f0:0c:8f:04:2e:1a:68:19:7f:0b:0c:26:db:12:9a:5b:8c: 5f:aa:c0:f9:f7:6b:14:da:32:a7:20:8e:fe:16:55:0c:81:78: fb:12:7e:fe:3b:25:2b:be:a6:72:13:0c:94:ef:d7:3d:11:c2: 9d:a7:01:69:d9:c2:fc:f5:16:e7:b9:bb:ec:15:21:2b:08:f2: 52:0d:21:6d:1b:99:9a:8d:4b:7e:4a:a0:82:f0:62:90:8a:37: b2:d4:64:94:23:29:80:2f:0b:be:04:b2:3c:c6:b9:50:62:36: c9:44:0b:2b:8e:e5:55:1b:cf:a3:34:23:88:6c:70:98:1c:e8: 61:79:d2:79:c1:3f:d6:16:9b:29:44:6e:3e:c5:2d:b9:95:75: b1:87:cf:7d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWEh5KWsIuz/FQICdrAZWHPCCy3gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNDAwMTAzOFoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAZDQwNGVjNzJlYmY3ODBjYzYwOTVm NDJlYmRjNzYwODYzYzQyOTdiMmQzNGJjOWY3ODg4ZTU5NDNhMTlmM2YwNDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoi/Wu6P4CzoCFBk8VA+mjCTzu35M 31PlXJM72tBzfsZed106o+SgUtAGxE/4zFE05rNdJqXpjhKz0cOgxRX7/hYjv9Df 1ZFhmMl2eBeROkcyfJl+jj45pRi3+zjS2JDCAMorwDZTHWYktP/AhzV0Kj9LSqHy GvvRGxkOaLjpucn+IRZRycAAeX3BXxUeByxAKhlR3qo3U54xsX27Wfh4Un+RX0Dm Et3AMmXoGyH0FNzTcK/A7Wgce0SVRAJ13cerCoKn9MKVxRa+wgNu6fdYyXbH/QXd /rs724Nv4qjgj1jK4SiCJwEgZUWMC1vlq4nU0sZ097WeRhSaqN/O4NbNtwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNikY5PxTzvjgEXndb2M1ZiBtVaQMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBhZTA1ODg5LWViNmQtNDE0Yy04OGU5LWJjMjkzMTcxZjUzMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+UAwDQYJKoZIhvcNAQELBQADggEBADsN5NAHPOhdFiXaTnLu JqBx29BYnppqo+iZf4kIW8Q5VLhaDlrXTWNG8gn5HxA+H105fe31uvd7pcBiPVzm NroJvp6cX1m9TpOi0QuGYtcZn6Q8FeXWhb1uTiUuW9QmByZFQug1/zq/Lr5RCdzw DI8ELhpoGX8LDCbbEppbjF+qwPn3axTaMqcgjv4WVQyBePsSfv47JSu+pnITDJTv 1z0Rwp2nAWnZwvz1Fue5u+wVISsI8lINIW0bmZqNS35KoILwYpCKN7LUZJQjKYAv C74EsjzGuVBiNslECyuO5VUbz6M0I4hscJgc6GF50nnBP9YWmylEbj7FLbmVdbGH z30= -----END CERTIFICATE-----Generated at Sun Mar 1 21:45:12 2026 by rpki-client