$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa File: 205af9d8-3799-4d38-b1fb-da840e362ff1.roa (raw, json) Hash identifier: Mb3Bo5tEIGpk3RrWV/UIHa6zO28sCM7675b9ww639sg= Subject key identifier: 09:FB:FC:EF:FE:A6:5C:1B:80:7D:B1:89:00:21:B6:51:10:A5:66:69 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 77E7CF0D78767309B1A52522AF7699B7ADFE61EE Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa Signing time: Sat 16 May 2026 00:00:39 +0000 ROA not before: Sat 16 May 2026 00:00:39 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e7:cf:0d:78:76:73:09:b1:a5:25:22:af:76:99:b7:ad:fe:61:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:39 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=458705ba50b266b59f83137301630c3a0e4a93fef6289648a8e489751c798b7b, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:42:aa:92:9c:5e:3c:1d:1c:69:4a:02:40:ab: 95:21:d4:6c:63:f5:4d:11:48:92:ad:e1:db:fb:b4: 98:7d:60:d4:04:93:da:ae:a1:37:9d:66:fc:2a:36: 57:a2:cd:ae:9d:dc:54:b0:15:b9:b3:09:d5:5a:66: 8d:45:2e:41:a2:9d:a8:0d:1e:7b:4b:db:64:14:f2: f7:ad:7b:70:89:68:46:d3:c5:2e:51:74:62:51:76: 8f:96:a9:08:25:4e:36:ff:ba:6a:02:f3:f0:c0:e1: ff:14:a4:f3:0c:ec:71:8d:07:9f:bd:40:7e:0b:8f: e6:ee:88:83:ed:25:8b:61:72:5a:1f:d1:c2:42:72: 84:e6:93:d2:73:71:67:16:4a:59:2e:88:aa:50:f2: 2b:8f:b9:4f:62:b9:d2:30:3f:17:34:36:77:01:cf: e6:04:80:54:d4:3b:4f:77:5f:f6:31:df:56:26:3a: 35:16:49:ed:6b:6e:5b:1e:3a:1c:b7:fe:3e:c1:b1: 27:f2:ed:7b:52:b8:6e:d6:51:d3:7b:ed:61:8f:9b: df:9e:45:f4:f9:a9:34:bf:84:fa:dc:18:98:35:10: 77:81:fe:18:26:5b:82:4f:5f:9e:37:0c:5d:16:c4: aa:53:a2:13:bd:e1:c8:ac:0f:98:6b:4f:01:d8:1b: 28:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:FB:FC:EF:FE:A6:5C:1B:80:7D:B1:89:00:21:B6:51:10:A5:66:69 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018::/36 Signature Algorithm: sha256WithRSAEncryption 11:8d:9a:9d:d7:da:95:09:91:06:3d:94:86:b3:c5:0e:58:b9: 4d:b3:9c:c5:9e:74:d0:13:2d:a2:2c:22:d2:71:37:76:07:64: e0:c9:c3:8c:57:83:f9:a1:ff:60:11:c7:40:46:f0:30:9f:14: e7:60:82:fc:bf:32:d0:ab:f6:d9:22:61:b3:13:21:e3:ac:c6: a7:fe:9c:63:d7:76:59:2b:53:f2:ef:ce:8c:f1:e1:bb:1d:54: 34:40:2e:f2:48:db:78:4d:06:64:94:09:e8:49:e5:4c:76:c4: 20:84:c7:27:bd:db:1c:0b:a5:e4:d3:d1:80:b8:8d:00:13:77: 0b:b8:13:ba:0d:8d:77:e6:3f:6d:9f:68:4f:ad:9c:5b:7a:ec: e2:3a:4d:0d:42:6c:26:f0:fa:44:a8:15:1a:b9:32:24:e2:64: 93:2f:78:d7:74:c9:68:1d:e5:21:aa:b6:b3:0a:80:d1:3d:d4: 0a:5a:8a:e7:61:87:c3:a8:ff:8d:c8:27:4d:30:70:e8:bb:ca: fd:37:cf:2a:78:87:fd:fc:dc:10:af:8c:bd:6e:d4:f9:be:9b: c1:ca:a5:22:68:c9:d8:99:18:da:94:75:ad:03:11:7f:e2:0f: 00:e6:69:69:1a:45:18:fa:74:30:b0:b8:9f:7c:b9:ad:ba:04: 1a:7c:58:38 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUd+fPDXh2cwmxpSUir3aZt63+Ye4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDAzOVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNANDU4NzA1YmE1MGIyNjZiNTlmODMx MzczMDE2MzBjM2EwZTRhOTNmZWY2Mjg5NjQ4YThlNDg5NzUxYzc5OGI3YjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUKqkpxePB0caUoCQKuVIdRsY/VN EUiSreHb+7SYfWDUBJParqE3nWb8KjZXos2undxUsBW5swnVWmaNRS5Bop2oDR57 S9tkFPL3rXtwiWhG08UuUXRiUXaPlqkIJU42/7pqAvPwwOH/FKTzDOxxjQefvUB+ C4/m7oiD7SWLYXJaH9HCQnKE5pPSc3FnFkpZLoiqUPIrj7lPYrnSMD8XNDZ3Ac/m BIBU1DtPd1/2Md9WJjo1Fknta25bHjoct/4+wbEn8u17Urhu1lHTe+1hj5vfnkX0 +ak0v4T63BiYNRB3gf4YJluCT1+eNwxdFsSqU6ITveHIrA+Ya08B2Bso6QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAn7/O/+plwbgH2xiQAhtlEQpWZpMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIwNWFmOWQ4LTM3OTktNGQzOC1iMWZiLWRhODQwZTM2MmZmMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJA+AGAAwDQYJKoZIhvcNAQELBQADggEBABGNmp3X2pUJkQY9lIaz xQ5YuU2znMWedNATLaIsItJxN3YHZODJw4xXg/mh/2ARx0BG8DCfFOdggvy/MtCr 9tkiYbMTIeOsxqf+nGPXdlkrU/Lvzozx4bsdVDRALvJI23hNBmSUCehJ5Ux2xCCE xye92xwLpeTT0YC4jQATdwu4E7oNjXfmP22faE+tnFt67OI6TQ1CbCbw+kSoFRq5 MiTiZJMveNd0yWgd5SGqtrMKgNE91Apaiudhh8Oo/43IJ00wcOi7yv03zyp4h/38 3BCvjL1u1Pm+m8HKpSJoydiZGNqUda0DEX/iDwDmaWkaRRj6dDCwuJ98ua26BBp8 WDg= -----END CERTIFICATE-----Generated at Sat Jun 13 05:40:09 2026 by rpki-client