$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa File: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (raw, json) Hash identifier: wU6FqTipFk14DMRQxkaFJeYVNpYPMgNHMmeQNtgK7iU= Subject key identifier: 55:49:7B:F2:48:42:44:C8:63:22:DF:D5:D2:50:BA:E8:60:6A:64:C4 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0FB2397613119CF04992DF257EBC3BBAA16F3728 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa Signing time: Wed 25 Feb 2026 00:00:56 +0000 ROA not before: Wed 25 Feb 2026 00:00:56 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b2:39:76:13:11:9c:f0:49:92:df:25:7e:bc:3b:ba:a1:6f:37:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 25 00:00:56 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=fa5a80317c1a5e80596f4da0b99e0298ed5b9b9054afb65c98149a0e55ce5d54, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:08:c0:37:f4:f3:f2:28:11:3a:97:96:f7:26: dc:60:21:0c:ce:d1:77:ee:4b:c1:a2:58:dc:06:23: 0e:d5:14:36:b3:33:1c:0d:3b:19:23:ea:81:b7:04: 4e:21:54:58:27:3a:e6:4f:73:e1:d5:ed:23:13:96: b6:4d:10:29:a4:4a:d0:04:9a:ee:20:55:7e:c6:75: 02:63:55:d1:6e:f0:7a:fb:9e:d4:7a:91:b4:20:41: b6:35:09:27:a4:55:0b:f8:9c:14:93:19:fd:a1:f8: 46:a1:87:31:45:06:e5:61:5f:eb:ec:4e:1f:7d:92: bf:b9:7e:33:22:b8:89:e8:f9:0e:b5:97:4c:d1:3e: f6:6c:31:7a:60:de:9e:27:1b:1d:c9:62:c9:e5:b6: a1:0c:69:2c:5b:d0:b0:78:c8:ac:a6:f2:a2:72:54: d1:f6:02:80:01:49:c1:51:96:e4:d7:77:8d:45:a5: bf:4d:b8:54:46:3e:ba:a1:47:78:ca:4e:57:22:15: 1a:04:0a:d3:24:de:f8:bc:43:12:90:82:2a:72:0c: 81:a5:55:96:fa:71:ed:a1:3a:ec:96:c1:03:ea:b2: ca:9e:b9:87:0c:c5:79:50:57:f1:bb:00:54:1d:b1: 9a:e0:60:3f:9c:91:98:66:bc:c6:d8:57:ca:2e:e2: c6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:49:7B:F2:48:42:44:C8:63:22:DF:D5:D2:50:BA:E8:60:6A:64:C4 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:800::/38 Signature Algorithm: sha256WithRSAEncryption 0d:af:1e:12:11:88:44:f3:e8:e9:42:45:79:ba:f2:e4:1a:5c: 1f:a0:ad:f1:29:15:ab:da:a6:85:82:1d:4f:2b:b1:21:42:df: 84:43:79:4e:b1:ac:ef:41:af:13:18:8d:95:cd:2d:3b:99:e0: f7:c7:e7:f5:d9:1d:51:fd:3f:33:c2:6b:0e:ec:74:e6:e2:44: a1:12:13:0d:13:f0:a4:95:b3:33:ab:12:8b:ac:a1:cb:34:12: 85:07:06:55:44:63:c7:da:9e:68:29:75:0a:ef:24:2e:49:cf: 49:31:d2:77:07:3a:19:e8:37:3f:dd:e4:75:72:c8:8d:84:74: 81:f5:4a:50:40:c8:cd:44:47:3b:58:22:db:f8:ca:db:aa:1e: 3e:44:cc:17:3e:cf:94:6b:64:61:64:a4:a4:ee:57:26:f3:a8: 53:6c:f8:89:24:84:09:7b:67:c4:6a:a7:0a:94:bb:c3:2d:11: b8:6b:4f:11:3e:96:06:3d:b9:cd:7c:86:f6:8d:42:14:ba:45: 3f:05:cb:ed:e7:6a:51:0b:60:ec:5b:42:ef:25:64:24:91:c0: e8:f4:6e:8a:30:4c:17:24:57:6e:3e:3e:ea:78:52:2b:25:11: e7:c4:e2:b4:59:47:ec:a0:f7:d5:71:3e:5a:22:cc:2c:4e:75: 16:e9:66:1d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUD7I5dhMRnPBJkt8lfrw7uqFvNygwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNTAwMDA1NloX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAZmE1YTgwMzE3YzFhNWU4MDU5NmY0 ZGEwYjk5ZTAyOThlZDViOWI5MDU0YWZiNjVjOTgxNDlhMGU1NWNlNWQ1NDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwjAN/Tz8igROpeW9ybcYCEMztF3 7kvBoljcBiMO1RQ2szMcDTsZI+qBtwROIVRYJzrmT3Ph1e0jE5a2TRAppErQBJru IFV+xnUCY1XRbvB6+57UepG0IEG2NQknpFUL+JwUkxn9ofhGoYcxRQblYV/r7E4f fZK/uX4zIriJ6PkOtZdM0T72bDF6YN6eJxsdyWLJ5bahDGksW9CweMispvKiclTR 9gKAAUnBUZbk13eNRaW/TbhURj66oUd4yk5XIhUaBArTJN74vEMSkIIqcgyBpVWW +nHtoTrslsED6rLKnrmHDMV5UFfxuwBUHbGa4GA/nJGYZrzG2FfKLuLGxwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFVJe/JIQkTIYyLf1dJQuuhgamTEMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBmZWVkZDE4LTJiNzEtNDhkNS1hMmVlLTA3Y2E5MGI0ZDIwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAgwDQYJKoZIhvcNAQELBQADggEBAA2vHhIRiETz6OlCRXm6 8uQaXB+grfEpFavapoWCHU8rsSFC34RDeU6xrO9BrxMYjZXNLTuZ4PfH5/XZHVH9 PzPCaw7sdObiRKESEw0T8KSVszOrEousocs0EoUHBlVEY8fanmgpdQrvJC5Jz0kx 0ncHOhnoNz/d5HVyyI2EdIH1SlBAyM1ERztYItv4ytuqHj5EzBc+z5RrZGFkpKTu VybzqFNs+IkkhAl7Z8RqpwqUu8MtEbhrTxE+lgY9uc18hvaNQhS6RT8Fy+3nalEL YOxbQu8lZCSRwOj0boowTBckV24+Pup4UislEefE4rRZR+yg99VxPloizCxOdRbp Zh0= -----END CERTIFICATE-----Generated at Sun Mar 1 21:40:51 2026 by rpki-client