$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa File: 205af9d8-3799-4d38-b1fb-da840e362ff1.roa (raw, json) Hash identifier: sIki4J1mWY0ASOQHnBVnzUT+fhdfbcaTzmfYz+bTL5I= Subject key identifier: C8:E6:37:78:91:EA:C8:C8:58:5D:01:B9:9B:8D:59:C1:22:F0:5A:81 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 713F603F59003019E5DD07651AD2524315A09DBF Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa Signing time: Wed 25 Feb 2026 00:00:34 +0000 ROA not before: Wed 25 Feb 2026 00:00:34 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:3f:60:3f:59:00:30:19:e5:dd:07:65:1a:d2:52:43:15:a0:9d:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 25 00:00:34 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=4d84158a1f0ffd60afce6f1f9802a9acbe8f5357b113189c3d1eb8d9215f4243, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:54:d1:d8:ed:77:ec:7e:0b:ab:7c:ec:91:b1: da:a8:70:97:ea:a8:7a:cb:9a:6b:96:f6:1c:d6:93: 2b:f6:e5:c6:9c:db:0a:da:1b:86:38:8b:c2:b9:b4: e0:67:fd:a2:0b:e7:f7:cf:4c:06:d7:14:a7:5e:f7: 9d:0a:14:e3:3b:be:57:60:52:da:b1:0a:09:46:4b: a3:e9:7f:91:b8:b5:2f:c8:11:a0:dd:47:ef:c7:57: c3:f6:a9:58:79:aa:52:da:f9:ff:3c:8f:29:23:e9: 1b:62:ac:27:bd:1c:c7:ce:77:29:3e:1f:fc:34:03: 50:13:4a:3b:b0:9a:13:f3:fa:65:73:8d:95:77:48: c9:db:fd:33:69:fb:86:eb:58:f8:80:cf:7a:aa:27: 86:d5:66:7f:5d:64:15:c5:7a:76:0e:93:79:7f:ed: 1b:50:e0:65:6f:dc:64:8a:14:12:fd:0f:b2:76:89: d3:90:f2:fd:df:d1:ac:4d:9b:40:45:10:63:93:37: 4f:9b:49:5a:c6:20:a0:0f:a2:49:3e:ad:bc:02:57: dd:8a:68:11:74:43:2c:07:48:d4:ee:bc:8c:2c:46: 91:59:89:27:2e:50:d2:66:02:ef:a1:64:f1:d9:db: a2:a9:06:6f:12:18:d0:f9:8e:75:32:9e:7f:fc:44: 65:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E6:37:78:91:EA:C8:C8:58:5D:01:B9:9B:8D:59:C1:22:F0:5A:81 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/205af9d8-3799-4d38-b1fb-da840e362ff1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018::/36 Signature Algorithm: sha256WithRSAEncryption 5f:b4:85:b8:5d:90:cc:7c:0f:26:e0:f5:fd:6a:ae:fa:6c:f4: 82:21:7f:5c:fd:e7:5c:e3:3c:b4:5a:bb:23:d1:d6:5f:ae:a1: 8e:e0:1e:88:95:66:2b:d4:e3:cd:b6:9d:ba:7e:7d:64:59:72: fd:eb:2d:31:56:ec:f7:ee:37:5d:6c:4b:33:52:20:ab:3e:cc: e1:1e:68:87:a3:da:6f:6f:04:9e:ed:a7:d2:c7:13:73:a3:ef: 8b:13:a9:f7:84:ad:57:f0:fd:68:2d:5f:d6:ff:43:35:80:cc: 77:ef:0f:8f:d3:ab:10:26:14:d8:86:1b:15:88:1e:fc:eb:5e: 3f:f5:24:bc:c7:3c:fc:be:1c:b7:f6:b5:10:5d:71:f5:f3:e7: 16:12:88:44:34:89:a1:db:a6:b7:e4:d3:e7:dd:7a:02:91:c8: 02:97:33:ae:ca:bc:f8:ea:74:a0:9e:96:cd:76:72:ff:d5:79: 44:e5:d0:ae:06:50:b5:0a:78:48:0b:2d:1e:0e:2e:11:d0:44: e9:6b:e8:c9:39:83:67:03:56:3a:fb:67:f3:2c:ce:5b:a5:35: 20:31:2a:d7:08:01:e7:e8:bf:30:36:49:11:0b:86:25:e8:c5: ff:75:76:a9:1d:1b:4a:ad:dc:a0:d6:cd:fe:cc:a9:0a:d9:d6: fb:4b:a7:8d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUcT9gP1kAMBnl3QdlGtJSQxWgnb8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNTAwMDAzNFoX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNANGQ4NDE1OGExZjBmZmQ2MGFmY2U2 ZjFmOTgwMmE5YWNiZThmNTM1N2IxMTMxODljM2QxZWI4ZDkyMTVmNDI0MzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVTR2O137H4Lq3zskbHaqHCX6qh6 y5prlvYc1pMr9uXGnNsK2huGOIvCubTgZ/2iC+f3z0wG1xSnXvedChTjO75XYFLa sQoJRkuj6X+RuLUvyBGg3Ufvx1fD9qlYeapS2vn/PI8pI+kbYqwnvRzHzncpPh/8 NANQE0o7sJoT8/plc42Vd0jJ2/0zafuG61j4gM96qieG1WZ/XWQVxXp2DpN5f+0b UOBlb9xkihQS/Q+ydonTkPL939GsTZtARRBjkzdPm0laxiCgD6JJPq28AlfdimgR dEMsB0jU7ryMLEaRWYknLlDSZgLvoWTx2duiqQZvEhjQ+Y51Mp5//ERlOwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMjmN3iR6sjIWF0BuZuNWcEi8FqBMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIwNWFmOWQ4LTM3OTktNGQzOC1iMWZiLWRhODQwZTM2MmZmMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJA+AGAAwDQYJKoZIhvcNAQELBQADggEBAF+0hbhdkMx8Dybg9f1q rvps9IIhf1z951zjPLRauyPR1l+uoY7gHoiVZivU4822nbp+fWRZcv3rLTFW7Pfu N11sSzNSIKs+zOEeaIej2m9vBJ7tp9LHE3Oj74sTqfeErVfw/WgtX9b/QzWAzHfv D4/TqxAmFNiGGxWIHvzrXj/1JLzHPPy+HLf2tRBdcfXz5xYSiEQ0iaHbprfk0+fd egKRyAKXM67KvPjqdKCels12cv/VeUTl0K4GULUKeEgLLR4OLhHQROlr6Mk5g2cD Vjr7Z/MszlulNSAxKtcIAefovzA2SRELhiXoxf91dqkdG0qt3KDWzf7MqQrZ1vtL p40= -----END CERTIFICATE-----Generated at Sun Mar 1 23:21:37 2026 by rpki-client