$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa File: 2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa (raw, json) Hash identifier: 3kOKuCSjuTMEfbgbUrwk4Xv+N+bW4tX1lejnljxryFk= Subject key identifier: 49:A4:21:49:F1:B4:7C:AB:E7:50:38:CF:99:47:A8:7E:DD:DB:CC:C8 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 5AC492E847C10335F40981399595E941D97C42D4 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa Signing time: Tue 24 Feb 2026 00:10:36 +0000 ROA not before: Tue 24 Feb 2026 00:10:36 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f8:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:c4:92:e8:47:c1:03:35:f4:09:81:39:95:95:e9:41:d9:7c:42:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 24 00:10:36 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=e29c73873d6f84b64c9cbae0d646d2baa727589c6adcf05b028b77702d3f3009, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ff:2b:53:67:8f:00:1a:a0:b7:2f:fb:a7:58: 86:b4:7a:08:db:e2:dd:ca:47:8d:14:9f:ce:95:27: ea:a1:0d:e6:ad:b1:10:a8:f4:71:3f:29:c5:22:38: e8:87:a0:1d:a4:00:d9:e7:0a:79:cf:ce:ab:cc:69: 66:49:50:2b:93:ab:8e:eb:60:09:f0:f2:a5:99:f7: 69:6c:2a:36:e1:fc:5b:b3:3e:8c:cc:a2:47:c7:f9: c3:cd:bf:c0:5b:6b:06:f9:28:26:f7:f2:70:eb:5d: ef:82:06:94:f0:0d:bd:74:a3:37:d0:ce:57:6c:27: 9e:54:fb:be:49:d8:04:c2:7a:90:b2:8a:2c:62:1e: e8:a5:ad:71:9a:83:d1:76:75:34:b4:77:fa:79:48: 18:0b:b8:39:ee:fe:20:a7:b5:84:fe:c1:83:ae:6f: 22:bd:cd:1f:bb:1b:10:36:9f:38:93:fb:a3:71:c7: 41:8a:33:59:df:7e:cf:ae:f6:6d:25:23:91:fd:4a: 88:c0:65:fc:52:c5:12:8f:1e:3b:19:2a:40:95:12: 8c:0d:e9:de:c7:dc:c3:a0:8f:ee:99:da:59:3d:2c: aa:6e:8f:8d:29:be:38:e3:65:de:2c:f6:bc:bf:d0: ea:77:6b:b0:14:6b:ab:bf:95:cc:a0:0a:cb:80:51: 4c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A4:21:49:F1:B4:7C:AB:E7:50:38:CF:99:47:A8:7E:DD:DB:CC:C8 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2c7dc99e-16c5-4312-b613-ac42e8b52f1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f8:4000::/40 Signature Algorithm: sha256WithRSAEncryption 76:c9:88:bd:07:45:95:83:05:f7:69:7b:14:b1:9b:ee:c1:cd: 96:a0:67:f1:c4:53:dc:67:ae:80:4e:b6:a9:2c:31:30:92:58: 00:94:fe:c7:9a:ce:53:3b:6e:00:d0:d0:a4:d6:d6:98:4f:a8: 62:a6:98:50:68:db:34:7c:2d:64:9a:69:a9:4e:fe:1b:2a:e9: 69:2c:ae:14:fa:4c:b3:a9:2d:07:e9:ba:6e:b2:3e:6a:89:77: 2e:58:ed:d2:4f:f1:95:23:05:04:58:b7:bf:32:b1:59:22:11: 50:bd:f0:d8:af:f9:c3:85:27:43:5e:80:6b:a6:52:7c:6b:09: bb:42:ea:85:79:c6:f3:4f:61:10:7e:c5:38:ea:6c:bb:cb:cb: 48:fe:5e:ba:dd:3d:fe:0c:a0:b3:6a:30:5c:ab:92:20:47:e4: 1d:07:27:29:33:f4:51:52:1b:92:a2:9e:4a:46:18:ec:09:0e: 77:f9:0c:ff:6a:0a:9e:a9:7c:a1:36:33:33:ae:5a:85:3d:7d: d1:d5:d2:94:22:e4:6e:86:db:6a:00:b9:88:7b:51:22:bf:51: bc:13:b2:d1:07:64:4b:22:fe:e6:f4:62:08:40:5b:b9:b7:95: 4c:2f:40:6f:92:7f:55:10:06:16:30:4b:7a:b3:a0:88:65:97: f9:8b:e8:41 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWsSS6EfBAzX0CYE5lZXpQdl8QtQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNDAwMTAzNloX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAZTI5YzczODczZDZmODRiNjRjOWNi YWUwZDY0NmQyYmFhNzI3NTg5YzZhZGNmMDViMDI4Yjc3NzAyZDNmMzAwOTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3P8rU2ePABqgty/7p1iGtHoI2+Ld ykeNFJ/OlSfqoQ3mrbEQqPRxPynFIjjoh6AdpADZ5wp5z86rzGlmSVArk6uO62AJ 8PKlmfdpbCo24fxbsz6MzKJHx/nDzb/AW2sG+Sgm9/Jw613vggaU8A29dKM30M5X bCeeVPu+SdgEwnqQsoosYh7opa1xmoPRdnU0tHf6eUgYC7g57v4gp7WE/sGDrm8i vc0fuxsQNp84k/ujccdBijNZ337PrvZtJSOR/UqIwGX8UsUSjx47GSpAlRKMDene x9zDoI/umdpZPSyqbo+NKb4442XeLPa8v9Dqd2uwFGurv5XMoArLgFFMQwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEmkIUnxtHyr51A4z5lHqH7d28zIMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzJjN2RjOTllLTE2YzUtNDMxMi1iNjEzLWFjNDJlOGI1MmYxZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+EAwDQYJKoZIhvcNAQELBQADggEBAHbJiL0HRZWDBfdpexSx m+7BzZagZ/HEU9xnroBOtqksMTCSWACU/seazlM7bgDQ0KTW1phPqGKmmFBo2zR8 LWSaaalO/hsq6WksrhT6TLOpLQfpum6yPmqJdy5Y7dJP8ZUjBQRYt78ysVkiEVC9 8Niv+cOFJ0NegGumUnxrCbtC6oV5xvNPYRB+xTjqbLvLy0j+XrrdPf4MoLNqMFyr kiBH5B0HJykz9FFSG5KinkpGGOwJDnf5DP9qCp6pfKE2MzOuWoU9fdHV0pQi5G6G 22oAuYh7USK/UbwTstEHZEsi/ub0YghAW7m3lUwvQG+Sf1UQBhYwS3qzoIhll/mL 6EE= -----END CERTIFICATE-----Generated at Mon Mar 2 01:00:45 2026 by rpki-client