$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/31d36ece-9039-43a2-82a2-03e7d8e7f563.roa File: 31d36ece-9039-43a2-82a2-03e7d8e7f563.roa (raw, json) Hash identifier: Yp8wVL94ej6AwYCuCvP+aOw3JMLFwpWAHsjszuICrIs= Subject key identifier: B5:27:34:09:89:14:3F:67:0A:62:71:50:66:75:F5:1F:C1:CC:F2:51 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 62E2EC9B8D6B671CE7926ED0B0927B025B0EAEAA Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/31d36ece-9039-43a2-82a2-03e7d8e7f563.roa Signing time: Sat 16 May 2026 00:00:39 +0000 ROA not before: Sat 16 May 2026 00:00:39 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fc::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:e2:ec:9b:8d:6b:67:1c:e7:92:6e:d0:b0:92:7b:02:5b:0e:ae:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:39 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=b802d00b55e761bcbea47d2de31be27263181e0cd7f028a98251d604a4194133, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:35:25:bf:19:10:d3:9c:e6:c6:a5:0b:a5:a3: b0:2f:6b:37:4f:04:51:58:fb:eb:fe:27:ee:de:20: 7f:4b:e0:c1:26:72:73:0b:2a:a8:bd:28:ba:9e:9b: 1c:53:a3:e9:65:b5:19:ba:08:1e:2d:f1:51:81:7f: 35:33:ff:62:42:76:eb:79:63:f9:6a:d5:01:bf:c0: b1:26:31:4f:bf:0e:58:85:56:c5:df:25:69:73:55: 3a:2d:f5:4f:7a:a6:9d:0e:5a:19:6c:d7:66:53:c8: 3e:7e:d3:52:9b:68:c5:cf:90:4a:bc:5b:25:b5:86: b1:65:fe:76:ad:ad:75:6c:ee:0a:f6:93:ae:10:a8: 25:01:2b:dc:f1:82:ae:3a:d4:04:35:3a:3d:c1:7a: a4:16:3f:99:75:2f:a4:f7:f8:67:0b:05:1d:20:e2: 7d:8e:ed:b4:c9:36:0d:3f:7b:fe:e3:b2:28:df:a6: 8b:0f:2f:69:3c:ab:9b:cf:96:f2:11:0b:92:98:73: 50:32:af:2b:84:05:3b:ae:f3:6f:6c:9a:0e:65:26: b9:63:d0:38:ce:4b:0c:77:f7:70:81:43:9a:3d:68: a4:0e:1d:ed:69:19:9e:78:4d:e2:ac:75:f3:0c:65: 40:2d:53:f3:46:d4:12:7b:7a:08:6c:6b:83:79:9e: 41:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:27:34:09:89:14:3F:67:0A:62:71:50:66:75:F5:1F:C1:CC:F2:51 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/31d36ece-9039-43a2-82a2-03e7d8e7f563.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fc::/32 Signature Algorithm: sha256WithRSAEncryption 85:6e:7d:52:67:36:88:4a:23:b0:ee:83:41:cb:2b:69:6a:15: 26:ca:9a:32:eb:df:53:ea:55:c7:f5:13:5b:db:c1:57:7e:ce: 65:e3:66:d3:f3:f7:bc:1e:ff:6c:b1:aa:92:3b:eb:8e:01:ab: 47:c7:b1:c8:59:54:2a:47:a6:50:bf:68:64:ea:f9:9c:1d:96: 8d:42:e9:5c:37:65:ca:8a:b4:a5:b8:21:85:46:9c:1c:de:c4: 53:a8:b2:d8:39:7e:97:9d:1a:26:a1:44:c7:b5:54:1f:13:b7: db:ec:3d:b4:35:92:42:a0:7a:fb:cf:38:66:ae:8f:56:bd:f8: cd:a7:c1:5c:53:53:5d:6d:a3:0f:bd:6b:ff:9f:43:04:f2:eb: 3f:5c:a4:be:8d:78:ea:e1:c5:4a:29:fa:fe:57:0a:41:c9:21: 02:27:aa:9d:55:c5:73:92:0c:ab:a4:3b:e9:f6:2b:b0:e3:9b: 11:24:15:60:69:4a:eb:29:cb:44:56:67:59:ca:3a:b8:02:00: 23:a2:06:f5:ec:d5:a8:7e:8b:6c:bf:e2:9f:c4:e9:f5:13:bc: 97:a3:de:a4:69:8e:f5:ae:f5:32:3f:91:b9:23:84:26:f0:10: aa:e2:18:97:af:8f:f2:b6:b6:65:f3:14:4f:b4:da:11:89:6d: 64:fc:7f:f0 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUYuLsm41rZxznkm7QsJJ7AlsOrqowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDAzOVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAYjgwMmQwMGI1NWU3NjFiY2JlYTQ3 ZDJkZTMxYmUyNzI2MzE4MWUwY2Q3ZjAyOGE5ODI1MWQ2MDRhNDE5NDEzMzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTUlvxkQ05zmxqULpaOwL2s3TwRR WPvr/ifu3iB/S+DBJnJzCyqovSi6npscU6PpZbUZuggeLfFRgX81M/9iQnbreWP5 atUBv8CxJjFPvw5YhVbF3yVpc1U6LfVPeqadDloZbNdmU8g+ftNSm2jFz5BKvFsl tYaxZf52ra11bO4K9pOuEKglASvc8YKuOtQENTo9wXqkFj+ZdS+k9/hnCwUdIOJ9 ju20yTYNP3v+47Io36aLDy9pPKubz5byEQuSmHNQMq8rhAU7rvNvbJoOZSa5Y9A4 zksMd/dwgUOaPWikDh3taRmeeE3irHXzDGVALVPzRtQSe3oIbGuDeZ5BvQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFLUnNAmJFD9nCmJxUGZ19R/BzPJRMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzMxZDM2ZWNlLTkwMzktNDNhMi04MmEyLTAzZTdkOGU3ZjU2My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJA+A/DANBgkqhkiG9w0BAQsFAAOCAQEAhW59Umc2iEojsO6DQcsr aWoVJsqaMuvfU+pVx/UTW9vBV37OZeNm0/P3vB7/bLGqkjvrjgGrR8exyFlUKkem UL9oZOr5nB2WjULpXDdlyoq0pbghhUacHN7EU6iy2Dl+l50aJqFEx7VUHxO32+w9 tDWSQqB6+884Zq6PVr34zafBXFNTXW2jD71r/59DBPLrP1ykvo146uHFSin6/lcK QckhAieqnVXFc5IMq6Q76fYrsOObESQVYGlK6ynLRFZnWco6uAIAI6IG9ezVqH6L bL/in8Tp9RO8l6PepGmO9a71Mj+RuSOEJvAQquIYl6+P8ra2ZfMUT7TaEYltZPx/ 8A== -----END CERTIFICATE-----Generated at Sat Jun 13 05:39:39 2026 by rpki-client