$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa File: 29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa (raw, json) Hash identifier: N8pWFbURiPQly1H8nJTYYtgbVQ+zSNSnrHLvoVci+1c= Subject key identifier: C5:1D:2A:CA:05:70:0F:8C:EA:14:68:11:10:B5:41:68:D7:5D:B5:D0 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3F9954B63DD76C8F779C12AAA8DC96042D3EF3B0 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa Signing time: Sat 16 May 2026 00:00:47 +0000 ROA not before: Sat 16 May 2026 00:00:47 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:99:54:b6:3d:d7:6c:8f:77:9c:12:aa:a8:dc:96:04:2d:3e:f3:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:47 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=252a9119adb3fe73038519ade46ba5766e94a34e446bde6728a8b0b5d1e63149, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:52:aa:aa:dd:06:6b:50:4e:e5:8d:1f:0c:84: 88:50:c6:2c:4d:ea:fe:82:af:74:e8:33:b5:72:99: 76:be:e3:04:60:91:6c:db:2a:a3:39:37:62:e8:09: 8e:ee:07:fd:11:6d:39:b6:20:fa:9b:c5:be:10:a5: f4:81:c9:3c:58:99:8d:a0:e3:c1:17:88:68:86:34: f1:e4:f5:27:31:a1:9b:8c:7f:22:87:09:a0:5a:ed: 8f:56:cf:71:5f:94:33:f4:d0:4b:5e:b1:d8:44:ea: d8:c2:15:ab:a7:f5:ac:0a:1c:9f:94:6d:72:3f:01: 6e:69:71:f4:f1:17:21:20:fd:8b:57:d2:3f:1b:5f: 0a:4b:15:2a:bb:a3:17:47:bd:ac:65:01:8f:53:6f: 28:65:33:6a:83:66:1c:8d:06:65:ef:04:a4:aa:f1: ed:48:fc:4d:54:58:7c:14:0d:90:22:54:7f:35:95: 41:aa:83:71:7c:fe:41:a0:6b:b7:fc:85:f3:d5:51: 23:f8:32:54:ce:2a:5b:1a:22:67:48:8a:8d:2b:21: 13:c1:54:54:a9:a4:ee:6d:aa:d7:e8:2d:db:24:5c: 0c:81:fb:03:51:29:40:b0:36:32:22:8f:ea:93:7a: 91:f2:71:a5:9d:ae:4d:50:c8:9f:6a:de:d0:3e:16: 38:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:1D:2A:CA:05:70:0F:8C:EA:14:68:11:10:B5:41:68:D7:5D:B5:D0 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/29fe4454-f7a8-42fd-8c35-77a6d6f8e60f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018:c00::/38 Signature Algorithm: sha256WithRSAEncryption a1:e3:2b:98:9c:cd:24:a7:a9:aa:f3:0c:56:28:8e:70:af:d3: 52:eb:a6:f7:af:f0:7a:b1:cf:cc:25:38:d5:bf:cd:17:32:15: 6f:78:7d:d5:df:27:f4:04:4b:48:d6:0f:18:d7:dd:b3:e6:15: 3b:1a:61:42:79:e3:5a:1c:f9:0c:22:29:7b:51:54:ce:d7:7b: 84:39:95:80:a8:80:9d:91:5b:87:ef:44:a8:2c:37:dd:a7:4d: 95:cd:c9:36:4a:aa:d4:0c:08:66:07:48:c6:93:30:11:d0:ef: c3:f6:d0:86:f1:19:8d:da:a3:a4:6a:43:3e:89:89:93:1a:58: d4:0b:a7:eb:12:33:fd:cf:7f:84:46:51:6b:59:46:37:bc:d2: 6a:03:72:ca:4c:5a:1b:97:65:ff:5d:da:e5:c4:8c:a4:77:62: fb:98:cd:8c:d4:9c:2c:a8:2f:68:bc:70:7b:57:c1:1a:33:69: 01:79:dd:56:f3:db:9d:82:d1:f3:ab:d6:8f:b4:43:f6:58:0f: ab:62:91:44:96:a9:b8:30:74:73:5b:17:99:5f:12:94:db:d0: 8c:fb:0a:c8:57:98:49:e1:bd:5a:5a:a2:7f:0c:34:42:d3:19: 13:0d:50:9f:c1:2a:1d:61:df:e1:48:1d:fb:2a:72:4c:7d:70: 9c:12:5e:e2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUP5lUtj3XbI93nBKqqNyWBC0+87AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA0N1oX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAMjUyYTkxMTlhZGIzZmU3MzAzODUx OWFkZTQ2YmE1NzY2ZTk0YTM0ZTQ0NmJkZTY3MjhhOGIwYjVkMWU2MzE0OTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1Kqqt0Ga1BO5Y0fDISIUMYsTer+ gq906DO1cpl2vuMEYJFs2yqjOTdi6AmO7gf9EW05tiD6m8W+EKX0gck8WJmNoOPB F4hohjTx5PUnMaGbjH8ihwmgWu2PVs9xX5Qz9NBLXrHYROrYwhWrp/WsChyflG1y PwFuaXH08RchIP2LV9I/G18KSxUqu6MXR72sZQGPU28oZTNqg2YcjQZl7wSkqvHt SPxNVFh8FA2QIlR/NZVBqoNxfP5BoGu3/IXz1VEj+DJUzipbGiJnSIqNKyETwVRU qaTubarX6C3bJFwMgfsDUSlAsDYyIo/qk3qR8nGlna5NUMifat7QPhY4JQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMUdKsoFcA+M6hRoERC1QWjXXbXQMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzI5ZmU0NDU0LWY3YTgtNDJmZC04YzM1LTc3YTZkNmY4ZTYwZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAwwDQYJKoZIhvcNAQELBQADggEBAKHjK5iczSSnqarzDFYo jnCv01Lrpvev8Hqxz8wlONW/zRcyFW94fdXfJ/QES0jWDxjX3bPmFTsaYUJ541oc +QwiKXtRVM7Xe4Q5lYCogJ2RW4fvRKgsN92nTZXNyTZKqtQMCGYHSMaTMBHQ78P2 0IbxGY3ao6RqQz6JiZMaWNQLp+sSM/3Pf4RGUWtZRje80moDcspMWhuXZf9d2uXE jKR3YvuYzYzUnCyoL2i8cHtXwRozaQF53Vbz252C0fOr1o+0Q/ZYD6tikUSWqbgw dHNbF5lfEpTb0Iz7CshXmEnhvVpaon8MNELTGRMNUJ/BKh1h3+FIHfsqckx9cJwS XuI= -----END CERTIFICATE-----Generated at Sat Jun 13 11:34:31 2026 by rpki-client