$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa File: 0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa (raw, json) Hash identifier: MYMWnZHcSyBQFvPmaCu+Nbe5VqiKpVOfSFAh3Pc1hEw= Subject key identifier: 54:53:33:50:49:47:CA:B7:EE:B3:BA:53:EF:64:F5:B4:B5:31:94:20 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 44591C7457B7B6A2DA8E44AAD73753C37F4A1DAA Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa Signing time: Sat 16 May 2026 00:00:50 +0000 ROA not before: Sat 16 May 2026 00:00:50 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:59:1c:74:57:b7:b6:a2:da:8e:44:aa:d7:37:53:c3:7f:4a:1d:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:50 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=47d56d887190f64d1c0f3938987e31fbf30beebad6312cb42fdd4e533c7f722f, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ba:c3:aa:9f:f8:47:8c:a4:8e:d1:cb:e2:20: 54:62:fc:2e:ce:91:b8:2e:bc:52:c7:a7:0f:b6:53: 4e:e0:8b:d4:95:36:5f:fa:62:d1:96:b9:ee:85:70: 4e:3d:6c:cb:7e:e5:59:a6:39:06:df:ff:cb:04:bb: e4:37:25:cc:5d:cc:a4:01:6a:c1:f6:1e:4f:bc:44: 45:96:9c:85:17:c8:25:b6:73:a5:13:d6:04:1c:6b: fc:18:0f:10:6f:28:7b:79:a0:01:ab:5f:a4:76:d1: 6f:86:09:d1:8c:40:03:ad:67:a4:79:c7:e5:de:76: 0e:ab:24:06:37:db:d3:9b:80:52:bf:6e:59:40:c1: ca:95:90:0f:88:93:80:3c:b9:52:49:e6:66:f4:b9: 4d:db:12:23:8c:73:90:f5:44:43:ec:6d:04:3c:85: b6:ad:59:29:87:0e:1b:b0:83:6b:b3:18:36:b7:1f: 4e:21:0f:21:6c:81:6b:a8:39:ef:71:38:30:9b:e7: a7:6b:b2:17:9f:77:87:4b:7b:14:cf:e5:7a:47:ef: cf:f1:fd:fd:4d:74:9d:68:40:30:d9:4a:0d:d4:ac: 7b:a9:29:2c:41:b4:43:51:3b:99:6f:44:f2:1e:42: fa:cd:2d:07:56:0a:4d:e1:82:fc:3f:7b:11:ef:ff: 00:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:53:33:50:49:47:CA:B7:EE:B3:BA:53:EF:64:F5:B4:B5:31:94:20 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/36 Signature Algorithm: sha256WithRSAEncryption 94:dd:c2:23:70:f4:33:52:19:7a:bb:6e:7f:a6:cc:91:c1:23: 36:72:7d:4a:db:0c:48:b8:5c:d2:04:e9:14:b6:d1:ed:0d:e4: ce:5f:4e:6e:6c:66:bc:36:65:63:79:44:95:5e:4c:5c:76:bf: 7c:db:0e:2d:64:5d:2b:70:ae:7c:a2:4d:c1:30:a4:a5:9d:82: f3:93:81:4e:51:87:2a:64:b1:1f:3c:09:7d:dd:40:ce:81:5d: 7f:98:38:a2:2d:19:88:b1:19:7c:63:d5:b1:ae:9d:87:9e:c3: 4f:6a:c0:25:64:bf:6a:21:9e:24:fb:fa:b2:61:8a:0f:21:7e: 0f:e7:29:86:80:58:ed:68:09:19:9c:23:d8:df:83:a2:5b:ce: a9:80:72:5d:ba:0f:0d:5c:18:08:ab:25:b3:b6:bb:b6:73:08: a1:2a:8f:ff:92:43:1e:be:29:5a:31:81:20:3d:52:1e:31:41: 79:b0:94:ba:37:11:53:6c:7c:45:cd:c0:ce:83:64:4b:e9:0a: 2d:14:eb:a1:9d:94:d9:14:6d:e1:d7:1c:ae:86:8d:63:5c:89: eb:9f:7f:3f:e0:a5:58:2b:c8:3d:72:23:c3:37:93:79:0c:41: 98:d1:98:58:bb:9c:fa:5b:1e:bc:f2:e1:94:87:4f:ab:70:cf: d5:fd:0e:85 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIURFkcdFe3tqLajkSq1zdTw39KHaowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA1MFoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNANDdkNTZkODg3MTkwZjY0ZDFjMGYz OTM4OTg3ZTMxZmJmMzBiZWViYWQ2MzEyY2I0MmZkZDRlNTMzYzdmNzIyZjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0rrDqp/4R4ykjtHL4iBUYvwuzpG4 LrxSx6cPtlNO4IvUlTZf+mLRlrnuhXBOPWzLfuVZpjkG3//LBLvkNyXMXcykAWrB 9h5PvERFlpyFF8gltnOlE9YEHGv8GA8Qbyh7eaABq1+kdtFvhgnRjEADrWekecfl 3nYOqyQGN9vTm4BSv25ZQMHKlZAPiJOAPLlSSeZm9LlN2xIjjHOQ9URD7G0EPIW2 rVkphw4bsINrsxg2tx9OIQ8hbIFrqDnvcTgwm+ena7IXn3eHS3sUz+V6R+/P8f39 TXSdaEAw2UoN1Kx7qSksQbRDUTuZb0TyHkL6zS0HVgpN4YL8P3sR7/8AjQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFRTM1BJR8q37rO6U+9k9bS1MZQgMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBkNmY1Yzg2LTU3ZDgtNGUwZC04NDQ1LTMwY2IxMjJiYjRkZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJA+AFAAwDQYJKoZIhvcNAQELBQADggEBAJTdwiNw9DNSGXq7bn+m zJHBIzZyfUrbDEi4XNIE6RS20e0N5M5fTm5sZrw2ZWN5RJVeTFx2v3zbDi1kXStw rnyiTcEwpKWdgvOTgU5RhypksR88CX3dQM6BXX+YOKItGYixGXxj1bGunYeew09q wCVkv2ohniT7+rJhig8hfg/nKYaAWO1oCRmcI9jfg6JbzqmAcl26Dw1cGAirJbO2 u7ZzCKEqj/+SQx6+KVoxgSA9Uh4xQXmwlLo3EVNsfEXNwM6DZEvpCi0U66GdlNkU beHXHK6GjWNcieuffz/gpVgryD1yI8M3k3kMQZjRmFi7nPpbHrzy4ZSHT6twz9X9 DoU= -----END CERTIFICATE-----Generated at Sat Jun 13 05:39:34 2026 by rpki-client