$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa File: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (raw, json) Hash identifier: RN3gq0d5l8UO2f8dM2+nDB2TFpurV3xuSYqwS3edWWI= Subject key identifier: EA:C2:7F:67:7F:DE:66:7F:2D:37:87:BA:6F:77:8F:B3:82:E8:76:17 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0332FD69A265D34B7A277F6F3429998E8C412097 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa Signing time: Fri 15 May 2026 00:10:08 +0000 ROA not before: Fri 15 May 2026 00:10:08 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f8:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:32:fd:69:a2:65:d3:4b:7a:27:7f:6f:34:29:99:8e:8c:41:20:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 15 00:10:08 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=02ccbd959144d344162fc8dc6d2fad8418eb8a924c170c15886c862c83182054, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a0:b2:94:16:a8:99:01:e5:05:37:81:28:45: 4e:45:83:31:2f:e9:ce:7a:07:33:31:65:d9:cf:b3: 9f:2c:c9:e5:61:04:eb:b6:d2:a0:c1:01:93:97:11: 41:30:32:fd:09:8c:6e:65:87:5c:57:9c:66:d0:a1: 22:84:9e:65:2a:b2:74:04:df:27:68:d7:52:92:1b: d6:2f:c9:f5:b1:1d:d2:8a:65:8f:8c:b7:db:02:85: 73:16:19:d9:b7:e3:e2:9c:08:90:11:52:d9:54:ff: 94:67:86:f3:88:b0:ac:d5:db:41:6a:0b:f2:c4:14: fe:45:f1:f5:2c:cd:01:81:ed:2e:89:c2:d8:01:02: f5:91:df:17:e9:c0:3e:4c:0a:13:f9:57:3f:27:6a: 7f:11:94:f1:09:6b:06:36:71:76:9a:e6:45:ef:5f: d1:78:91:f9:c5:41:2a:cd:ab:ca:8a:68:8b:c7:96: 3a:12:ea:75:e0:2a:5a:3c:e8:9d:6f:57:81:1b:4b: 57:7f:19:a3:b6:12:db:96:b0:34:bc:22:a3:69:8b: 10:33:8b:0b:68:11:87:91:6c:fe:29:c7:d9:35:0d: ca:7d:c6:f3:ac:da:9d:d1:35:08:a6:c4:a5:b6:dd: 38:db:82:bb:b9:1f:6b:9a:1e:2e:ac:2e:09:0d:88: 7c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C2:7F:67:7F:DE:66:7F:2D:37:87:BA:6F:77:8F:B3:82:E8:76:17 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f8:4000::/40 Signature Algorithm: sha256WithRSAEncryption 89:19:cb:e5:da:41:b3:11:70:92:d4:b0:1a:d6:26:27:53:f4: b0:1a:fa:86:11:0d:9d:61:ba:cd:85:e8:0b:75:f0:c3:60:42: 5b:44:fd:3d:8b:5b:a1:52:92:98:3e:ad:b3:fd:65:4f:b3:ec: 4f:42:e2:f9:e1:9b:c9:40:37:19:79:e4:3d:40:46:86:bc:51: fc:68:9b:71:96:5f:af:c9:4b:45:93:1d:30:d7:eb:9d:ee:e0: 99:6f:11:9e:ab:db:1a:75:0b:69:4f:fc:dc:e1:02:49:61:0a: 99:af:4b:41:99:dd:fb:53:9d:a0:0f:3d:2d:b4:8b:f9:d8:16: ea:9b:e1:8a:64:87:cc:40:0c:1a:2e:da:03:89:87:03:03:00: 36:79:9c:b4:8f:0f:91:40:a8:92:ee:86:66:59:da:b9:35:4f: 0c:8c:2c:09:91:59:7e:47:24:de:87:f8:f3:15:14:97:bc:15: 51:26:72:17:7a:f6:5f:97:2f:ba:78:05:12:c6:c7:eb:82:e8: 8b:a3:d2:0b:41:c9:14:56:bb:cb:65:4c:81:d2:55:82:1d:b2: b7:69:ce:1e:68:57:92:80:48:8a:53:4d:09:96:1e:26:fb:19: de:ee:35:8f:57:1e:35:10:37:0f:7b:1a:f9:0b:99:da:f6:0b: b5:93:19:63 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUAzL9aaJl00t6J39vNCmZjoxBIJcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNTAwMTAwOFoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMDJjY2JkOTU5MTQ0ZDM0NDE2MmZj OGRjNmQyZmFkODQxOGViOGE5MjRjMTcwYzE1ODg2Yzg2MmM4MzE4MjA1NDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqCylBaomQHlBTeBKEVORYMxL+nO egczMWXZz7OfLMnlYQTrttKgwQGTlxFBMDL9CYxuZYdcV5xm0KEihJ5lKrJ0BN8n aNdSkhvWL8n1sR3SimWPjLfbAoVzFhnZt+PinAiQEVLZVP+UZ4bziLCs1dtBagvy xBT+RfH1LM0Bge0uicLYAQL1kd8X6cA+TAoT+Vc/J2p/EZTxCWsGNnF2muZF71/R eJH5xUEqzavKimiLx5Y6Eup14CpaPOidb1eBG0tXfxmjthLblrA0vCKjaYsQM4sL aBGHkWz+KcfZNQ3KfcbzrNqd0TUIpsSltt0424K7uR9rmh4urC4JDYh8MwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOrCf2d/3mZ/LTeHum93j7OC6HYXMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzJjN2RjOTllLTE2YzUtNDMxMi1iNjEzLWFjNDJlOGI1MmYxZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+EAwDQYJKoZIhvcNAQELBQADggEBAIkZy+XaQbMRcJLUsBrW JidT9LAa+oYRDZ1hus2F6At18MNgQltE/T2LW6FSkpg+rbP9ZU+z7E9C4vnhm8lA Nxl55D1ARoa8Ufxom3GWX6/JS0WTHTDX653u4JlvEZ6r2xp1C2lP/NzhAklhCpmv S0GZ3ftTnaAPPS20i/nYFuqb4Ypkh8xADBou2gOJhwMDADZ5nLSPD5FAqJLuhmZZ 2rk1TwyMLAmRWX5HJN6H+PMVFJe8FVEmchd69l+XL7p4BRLGx+uC6Iuj0gtByRRW u8tlTIHSVYIdsrdpzh5oV5KASIpTTQmWHib7Gd7uNY9XHjUQNw97GvkLmdr2C7WT GWM= -----END CERTIFICATE-----Generated at Sat Jun 13 05:38:36 2026 by rpki-client