$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa File: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (raw, json) Hash identifier: 0B3l9Xay6gxTU2+2IFo805mCCbbk2AolCgkE+VadgcI= Subject key identifier: 30:8B:F7:42:D4:7A:6F:11:4D:EC:D9:BC:92:29:B2:EE:05:A2:5B:ED Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 5361668398086340E06BCD2E4C30CE6F069D7C56 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa Signing time: Sat 16 May 2026 00:00:53 +0000 ROA not before: Sat 16 May 2026 00:00:53 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:61:66:83:98:08:63:40:e0:6b:cd:2e:4c:30:ce:6f:06:9d:7c:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:53 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=73b064fa1bb1486173eb4f8ee2afc5aa084dab138ea1bc9fb672e32dfd90f5f6, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:84:56:d9:73:c5:c3:01:fc:e7:a9:40:54:8f: 8a:cc:55:c8:bd:77:19:46:77:c0:25:93:d4:8a:54: 82:d4:29:b3:5a:ba:9b:49:a9:b0:0c:25:fa:e9:74: 1d:9f:9c:5c:23:67:d9:5e:75:bd:55:87:a3:58:53: 20:57:b3:c4:ec:c2:7f:98:11:a1:6e:2b:b1:d6:92: 28:64:14:69:51:6d:7f:d1:0d:dd:df:97:cf:3e:60: 76:2a:e9:a9:14:b9:ca:07:85:f2:e6:0f:18:a7:49: fc:74:85:38:09:1a:f0:55:2e:49:60:2c:fb:f5:ef: 29:bc:29:4f:4d:f4:2c:65:ab:21:31:e6:f1:3f:e9: 03:2c:34:b7:c5:90:a0:1f:2f:29:f3:b8:4e:f0:1f: 3c:2a:fd:7c:a8:47:f9:4d:f7:5a:d3:5a:44:a4:1a: 87:f4:eb:90:81:dc:c4:28:cd:29:c3:70:f0:cd:80: 80:c3:9a:c1:b9:cc:d9:8a:95:14:4a:93:69:5b:df: fb:5f:fd:38:50:f1:e7:0e:8f:f6:02:2e:b0:45:12: bb:38:58:2d:b9:6f:bc:7e:8a:de:37:14:ef:ec:4e: 60:a9:b9:0f:68:eb:1e:41:b8:3c:43:83:9f:e2:e6: b4:43:16:af:90:37:a7:b4:78:e3:aa:5c:6e:66:a3: b7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:8B:F7:42:D4:7A:6F:11:4D:EC:D9:BC:92:29:B2:EE:05:A2:5B:ED X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:800::/38 Signature Algorithm: sha256WithRSAEncryption 55:bc:3e:f1:7a:6a:7f:28:62:ce:d0:c2:fd:8e:c1:32:34:b6: 75:f1:53:79:8d:d0:ba:e5:f0:39:d6:f9:c4:39:0d:f3:88:3a: 98:da:38:1a:f0:d9:79:73:eb:24:36:6e:ac:87:2c:7a:9a:b8: 4e:70:ae:42:70:dd:09:88:10:1f:be:c5:fd:38:71:a1:0c:ed: 3b:54:62:7f:9f:6e:f0:4c:7f:d4:61:07:50:ca:40:b6:69:58: 96:e5:3c:d1:17:23:43:24:26:98:93:18:78:84:6c:54:89:68: a8:19:08:93:ad:8e:72:44:5b:2d:16:67:65:c4:d8:c5:16:b6: 2b:fa:e0:e3:7b:ab:74:cc:6c:55:87:8f:4f:d2:17:c9:02:65: 22:4d:f8:1b:90:e7:37:20:5a:0b:b6:89:fa:9b:62:e3:50:9e: 33:c2:04:55:09:64:19:27:6c:4a:2a:09:1a:a2:17:bd:cf:92: 54:6f:7f:22:e3:15:f2:6b:fb:e9:be:44:85:3c:8d:12:e3:3b: e4:90:31:dc:12:1a:fd:6e:4e:f7:c7:19:22:78:12:5d:c6:9e: 78:5f:5d:5c:c4:66:15:f9:e9:b0:ce:cc:34:2e:c8:ab:f7:5f: 4c:12:7e:4d:67:cc:54:e6:4a:4e:0b:98:e0:ef:e6:85:72:bd: eb:55:c6:1d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUU2Fmg5gIY0Dga80uTDDObwadfFYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA1M1oX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNANzNiMDY0ZmExYmIxNDg2MTczZWI0 ZjhlZTJhZmM1YWEwODRkYWIxMzhlYTFiYzlmYjY3MmUzMmRmZDkwZjVmNjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4RW2XPFwwH856lAVI+KzFXIvXcZ RnfAJZPUilSC1CmzWrqbSamwDCX66XQdn5xcI2fZXnW9VYejWFMgV7PE7MJ/mBGh biux1pIoZBRpUW1/0Q3d35fPPmB2KumpFLnKB4Xy5g8Yp0n8dIU4CRrwVS5JYCz7 9e8pvClPTfQsZashMebxP+kDLDS3xZCgHy8p87hO8B88Kv18qEf5Tfda01pEpBqH 9OuQgdzEKM0pw3DwzYCAw5rBuczZipUUSpNpW9/7X/04UPHnDo/2Ai6wRRK7OFgt uW+8foreNxTv7E5gqbkPaOseQbg8Q4Of4ua0QxavkDentHjjqlxuZqO3HQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDCL90LUem8RTezZvJIpsu4FolvtMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBmZWVkZDE4LTJiNzEtNDhkNS1hMmVlLTA3Y2E5MGI0ZDIwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAgwDQYJKoZIhvcNAQELBQADggEBAFW8PvF6an8oYs7Qwv2O wTI0tnXxU3mN0Lrl8DnW+cQ5DfOIOpjaOBrw2Xlz6yQ2bqyHLHqauE5wrkJw3QmI EB++xf04caEM7TtUYn+fbvBMf9RhB1DKQLZpWJblPNEXI0MkJpiTGHiEbFSJaKgZ CJOtjnJEWy0WZ2XE2MUWtiv64ON7q3TMbFWHj0/SF8kCZSJN+BuQ5zcgWgu2ifqb YuNQnjPCBFUJZBknbEoqCRqiF73PklRvfyLjFfJr++m+RIU8jRLjO+SQMdwSGv1u TvfHGSJ4El3GnnhfXVzEZhX56bDOzDQuyKv3X0wSfk1nzFTmSk4LmODv5oVyvetV xh0= -----END CERTIFICATE-----Generated at Sat Jun 13 06:42:20 2026 by rpki-client