$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa File: 0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa (raw, json) Hash identifier: 5Wvpu1EUFbQ2rRk8l1uTihzhHz3L+QYWLDtPA2URIo4= Subject key identifier: CF:46:85:0A:72:78:3F:A5:B4:17:EE:13:7D:54:0E:07:F5:AC:23:5D Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 6068997DA231BDFA5C680EC084A739D5C96DFD76 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa Signing time: Wed 25 Feb 2026 00:00:51 +0000 ROA not before: Wed 25 Feb 2026 00:00:51 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:68:99:7d:a2:31:bd:fa:5c:68:0e:c0:84:a7:39:d5:c9:6d:fd:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 25 00:00:51 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=9347e8e10929b7509e869a789beb666b48134efb578e10bfca7b942d837554e7, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d2:e5:73:b3:2f:f3:ed:8b:37:4a:ae:14:60: 8c:65:0a:c4:53:92:52:ad:24:ad:aa:a2:b8:01:2d: 02:76:e9:46:88:a6:0d:dc:e4:f0:d1:5d:8b:68:05: 6b:43:9f:2b:a3:01:34:10:a5:f3:f1:e3:62:8a:a0: cc:4c:1d:40:6c:93:d4:49:d6:cc:a6:2a:4a:8b:f2: bb:03:90:0c:f8:80:45:7b:21:3b:fa:f0:17:bc:3a: 85:8f:b9:27:9c:0a:cc:b7:ec:68:0d:77:e1:29:e2: 39:30:60:60:f0:bf:6b:69:87:77:40:f2:85:48:9d: f6:ab:2b:21:5d:6a:33:c1:6f:f8:75:e6:23:93:a7: 8a:03:15:e7:f7:67:2b:9b:1b:a8:4e:00:57:29:5c: 95:0d:9c:b3:52:b0:fb:4b:7d:a0:35:e1:2e:d6:6b: 47:2b:ef:ed:6a:10:a2:23:d9:f3:cf:77:a0:06:4d: c0:04:d3:6b:32:f5:47:66:59:73:b5:05:d2:e8:be: e2:19:98:4c:1c:8f:b7:06:3a:2a:43:73:15:3a:e6: e2:e9:b2:f6:90:31:b1:68:b0:d8:3b:fa:cb:2d:b7: 0a:47:ca:80:ad:c8:d6:86:07:f9:00:0e:9b:e8:b6: 57:f5:d1:9a:d7:c9:a1:58:db:c4:44:26:1c:b2:e4: 2a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:46:85:0A:72:78:3F:A5:B4:17:EE:13:7D:54:0E:07:F5:AC:23:5D X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/36 Signature Algorithm: sha256WithRSAEncryption 11:78:ba:60:eb:c2:d8:62:2d:a8:e4:5d:b5:88:77:b2:ab:d3: 67:50:75:06:78:89:b7:95:1d:0f:88:ab:df:50:75:33:40:97: 97:cc:34:40:bc:7a:c9:49:13:70:30:73:d5:a3:b5:e4:a0:11: 92:44:c7:a7:4a:4c:d5:15:b0:bd:7e:c8:0f:01:23:ce:4c:06: b7:57:d7:77:85:eb:f5:4b:dd:d6:e7:8d:b2:5d:a5:88:77:93: a9:13:69:d8:fb:b0:ab:50:c9:e9:ee:86:a9:10:2e:55:6d:43: 4b:80:69:4d:77:71:71:07:9d:24:d6:b7:b5:be:f8:e8:52:75: d9:ac:1f:d1:06:1c:b6:b0:c7:de:d6:19:e8:09:30:b2:ee:c0: 33:61:77:5a:47:83:4f:1c:02:81:df:37:a0:59:d7:76:2c:68: af:0c:22:32:80:ef:36:33:52:3b:a9:d7:8b:15:d7:71:70:9f: a7:e3:42:8e:4e:b1:3e:fa:79:72:1c:26:50:93:73:dc:35:72: 93:19:dc:4c:d4:b0:3a:d5:47:d9:9d:85:66:f4:1f:f6:ca:c2: 77:86:f3:00:28:d2:ab:60:55:41:d8:0e:a7:2b:1c:e6:dd:12: f1:48:5b:3d:0a:4f:fd:09:47:12:3e:94:45:1b:d7:d7:ac:63: 0f:34:b4:d0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYGiZfaIxvfpcaA7AhKc51clt/XYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNTAwMDA1MVoX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAOTM0N2U4ZTEwOTI5Yjc1MDllODY5 YTc4OWJlYjY2NmI0ODEzNGVmYjU3OGUxMGJmY2E3Yjk0MmQ4Mzc1NTRlNzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dLlc7Mv8+2LN0quFGCMZQrEU5JS rSStqqK4AS0CdulGiKYN3OTw0V2LaAVrQ58rowE0EKXz8eNiiqDMTB1AbJPUSdbM pipKi/K7A5AM+IBFeyE7+vAXvDqFj7knnArMt+xoDXfhKeI5MGBg8L9raYd3QPKF SJ32qyshXWozwW/4deYjk6eKAxXn92crmxuoTgBXKVyVDZyzUrD7S32gNeEu1mtH K+/tahCiI9nzz3egBk3ABNNrMvVHZllztQXS6L7iGZhMHI+3BjoqQ3MVOubi6bL2 kDGxaLDYO/rLLbcKR8qArcjWhgf5AA6b6LZX9dGa18mhWNvERCYcsuQqkQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFM9GhQpyeD+ltBfuE31UDgf1rCNdMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBkNmY1Yzg2LTU3ZDgtNGUwZC04NDQ1LTMwY2IxMjJiYjRkZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJA+AFAAwDQYJKoZIhvcNAQELBQADggEBABF4umDrwthiLajkXbWI d7Kr02dQdQZ4ibeVHQ+Iq99QdTNAl5fMNEC8eslJE3Awc9WjteSgEZJEx6dKTNUV sL1+yA8BI85MBrdX13eF6/VL3dbnjbJdpYh3k6kTadj7sKtQyenuhqkQLlVtQ0uA aU13cXEHnSTWt7W++OhSddmsH9EGHLawx97WGegJMLLuwDNhd1pHg08cAoHfN6BZ 13YsaK8MIjKA7zYzUjup14sV13Fwn6fjQo5OsT76eXIcJlCTc9w1cpMZ3EzUsDrV R9mdhWb0H/bKwneG8wAo0qtgVUHYDqcrHObdEvFIWz0KT/0JRxI+lEUb19esYw80 tNA= -----END CERTIFICATE-----Generated at Sun Mar 1 23:20:35 2026 by rpki-client