$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa File: 33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa (raw, json) Hash identifier: MHfuOnXqfkSyFmQ9XZIPzObkIorFSudF25sH5i1orM0= Subject key identifier: 76:F2:E9:CA:DC:55:ED:BE:87:A1:2C:B2:D6:AA:C5:61:CF:45:66:E4 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 20CEE33C3517788F5D697CC67ECD019B84188968 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa Signing time: Sat 16 May 2026 00:00:41 +0000 ROA not before: Sat 16 May 2026 00:00:41 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ce:e3:3c:35:17:78:8f:5d:69:7c:c6:7e:cd:01:9b:84:18:89:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:41 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=68b4aa1c446b4bb3088964c6497769669f69285d95903480842450badf0eaeda, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:41:e1:a8:28:6e:1f:ef:f6:26:48:e6:66:b6: 5e:5f:03:db:ab:fd:18:cd:23:4b:c8:cf:91:43:c9: 20:ca:3b:c4:0e:d9:40:6a:8c:9d:63:33:c6:bc:88: 03:30:2a:cc:5c:9d:cc:ee:3a:89:89:5a:db:e7:08: 04:f4:1a:1e:4e:f7:32:35:7b:68:3c:03:d4:2a:c1: 34:0d:f8:91:fd:f7:4f:32:65:70:e7:92:e5:d7:76: d4:64:f2:4f:b8:38:bb:f1:f2:e8:f3:67:bf:08:b5: e2:96:34:e1:55:09:06:d7:94:7a:43:a4:8e:99:f6: 82:88:d6:4a:71:14:c7:8f:82:3d:05:de:12:6e:ea: b8:75:db:48:1d:21:15:96:af:a0:7e:d9:7a:1f:ba: be:8b:f4:42:e6:87:0b:53:a9:39:c0:dd:21:27:f9: ca:40:bf:78:27:36:f7:2f:09:32:10:2e:85:62:ff: 82:2c:5d:42:58:83:f3:e8:fa:a7:75:13:3d:41:11: 1c:53:67:10:8e:be:14:d4:e8:0c:65:20:d2:f9:06: 3c:ee:4a:b4:6a:ab:57:38:99:08:82:9d:77:9a:fc: 29:f2:3b:50:86:ef:6f:e6:99:d0:55:bd:f3:fc:39: 25:e0:c6:8c:e3:fd:f7:f5:17:63:76:a7:2d:52:21: 23:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F2:E9:CA:DC:55:ED:BE:87:A1:2C:B2:D6:AA:C5:61:CF:45:66:E4 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4080::/48 Signature Algorithm: sha256WithRSAEncryption 10:c0:76:40:4a:84:b8:71:06:95:d5:0f:45:cd:9d:41:a0:87: 82:f9:1f:ff:e1:fa:6d:e3:6e:43:24:f3:90:a2:cc:a4:6c:d9: 2b:48:d4:2c:26:d0:59:bd:cd:14:ee:36:af:19:cd:19:84:8b: dc:00:a2:be:f2:91:36:82:7f:9c:cd:99:cc:50:b5:c8:51:b9: 00:9e:99:ba:84:09:da:98:48:03:f9:7b:a4:ab:fb:b9:15:f3: c5:de:e7:a4:61:96:5c:f2:d2:4d:dc:3f:2a:2e:a7:ac:40:bf: 2e:30:8a:94:92:d3:cc:87:25:9a:a6:19:cd:6f:75:ab:44:3b: 7d:a6:70:68:a3:30:d4:42:fb:a3:80:6d:01:52:6e:ab:65:d6: 78:c3:9b:4c:c1:b3:75:f3:59:3c:3b:89:81:68:38:9f:fe:a5: 19:b6:a6:e7:2c:13:d5:0d:01:55:60:99:9d:f9:96:93:49:62: 96:78:15:d7:b9:57:5a:d4:f0:54:7c:03:0f:d7:47:5e:7c:b5: 02:af:a6:d6:fe:76:d3:16:71:7f:3b:32:61:3b:30:01:87:f0: f2:db:20:f1:74:d2:41:3f:b9:14:49:68:7e:af:2e:ad:36:2d: 9d:da:01:f7:1d:ac:c3:9f:b0:19:a2:a7:b2:e8:85:0b:91:87: 5c:5e:4c:92 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUIM7jPDUXeI9daXzGfs0Bm4QYiWgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA0MVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNANjhiNGFhMWM0NDZiNGJiMzA4ODk2 NGM2NDk3NzY5NjY5ZjY5Mjg1ZDk1OTAzNDgwODQyNDUwYmFkZjBlYWVkYTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokHhqChuH+/2JkjmZrZeXwPbq/0Y zSNLyM+RQ8kgyjvEDtlAaoydYzPGvIgDMCrMXJ3M7jqJiVrb5wgE9BoeTvcyNXto PAPUKsE0DfiR/fdPMmVw55Ll13bUZPJPuDi78fLo82e/CLXiljThVQkG15R6Q6SO mfaCiNZKcRTHj4I9Bd4Sbuq4ddtIHSEVlq+gftl6H7q+i/RC5ocLU6k5wN0hJ/nK QL94Jzb3LwkyEC6FYv+CLF1CWIPz6PqndRM9QREcU2cQjr4U1OgMZSDS+QY87kq0 aqtXOJkIgp13mvwp8jtQhu9v5pnQVb3z/Dkl4MaM4/339RdjdqctUiEjWQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHby6crcVe2+h6EsstaqxWHPRWbkMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzMzZGQzMWUwLTcwMzktNGZmOC1hYWZlLTk3ZjdiOTViMDdkMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/0CAMA0GCSqGSIb3DQEBCwUAA4IBAQAQwHZASoS4cQaV1Q9F zZ1BoIeC+R//4fpt425DJPOQosykbNkrSNQsJtBZvc0U7javGc0ZhIvcAKK+8pE2 gn+czZnMULXIUbkAnpm6hAnamEgD+Xukq/u5FfPF3uekYZZc8tJN3D8qLqesQL8u MIqUktPMhyWaphnNb3WrRDt9pnBoozDUQvujgG0BUm6rZdZ4w5tMwbN181k8O4mB aDif/qUZtqbnLBPVDQFVYJmd+ZaTSWKWeBXXuVda1PBUfAMP10defLUCr6bW/nbT FnF/OzJhOzABh/Dy2yDxdNJBP7kUSWh+ry6tNi2d2gH3HazDn7AZoqey6IULkYdc XkyS -----END CERTIFICATE-----Generated at Sat Jun 13 05:40:06 2026 by rpki-client