$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa File: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (raw, json) Hash identifier: UoL3zwbF9QY2vlzWzTeWZt6XlkaFwRbReavcyJ+a3GY= Subject key identifier: B6:41:3E:CE:ED:6F:5C:C8:DC:E8:E3:04:3E:13:C9:98:A3:64:C8:CE Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 60003D50D0834CB8F927DA92180DEC2137489B1C Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa Signing time: Tue 24 Feb 2026 00:10:37 +0000 ROA not before: Tue 24 Feb 2026 00:10:37 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fa:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:00:3d:50:d0:83:4c:b8:f9:27:da:92:18:0d:ec:21:37:48:9b:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 24 00:10:37 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=f31cd4e2bb86ca362eeeefa27234c4dd0891d24a7a5abe0638f4bf4a5892beef, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ed:4e:e5:9a:c2:21:b6:a0:f9:0f:d8:19:9a: 4f:84:b3:8c:24:4f:1d:0e:05:66:29:5d:42:d8:bb: eb:31:11:42:dd:b9:63:89:e7:20:44:68:90:b6:64: ef:57:49:cc:42:c2:36:73:6d:0d:9c:fd:86:e9:e7: db:ba:34:c7:0e:ac:11:e3:32:87:89:74:cd:8d:72: e0:0e:fc:b2:1d:e1:34:48:60:98:d8:ec:99:09:8e: cb:83:3b:2e:a6:af:da:ba:56:76:f2:2e:6f:b3:7a: a5:18:29:00:c5:3b:50:4b:3b:43:52:e9:c8:ca:de: 5a:97:ee:f1:2f:d6:b0:7a:58:ab:7d:24:ad:05:e3: 21:30:fc:cc:b4:18:6a:2e:b7:81:69:d5:a4:89:a4: 28:35:1a:4e:cd:89:9a:2c:58:d0:e9:65:30:c9:97: f4:6a:51:33:5c:2d:95:ab:6b:7e:9e:89:fb:78:0a: 88:5c:88:97:d7:bc:91:10:2a:a8:d7:b6:88:5f:19: 7c:5c:cc:0b:01:41:46:e2:7e:05:2c:c7:e1:1a:11: d8:c1:cb:f4:07:a2:61:6d:f7:a4:1c:23:f0:1f:1b: b9:e3:60:d5:e0:73:5f:d6:16:71:8c:29:ff:01:0c: cf:b4:a2:dd:1b:af:68:58:6e:b1:2f:32:30:23:a7: 1a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:41:3E:CE:ED:6F:5C:C8:DC:E8:E3:04:3E:13:C9:98:A3:64:C8:CE X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fa:8000::/40 Signature Algorithm: sha256WithRSAEncryption 7a:0b:3b:08:5a:9e:c7:a2:6a:df:e3:c5:32:92:9c:b7:7b:0e: 77:85:4c:a0:6e:94:dd:7d:2e:99:b0:78:57:66:50:fc:08:08: ae:63:a0:b7:d7:68:4e:ab:6b:1e:e2:45:33:20:fe:22:59:03: 3c:1c:23:ed:83:ac:2f:87:a3:c2:2f:f8:84:79:2d:8c:7a:b6: ce:f0:c3:f7:d1:d8:b0:07:06:6c:a7:58:de:f2:99:9e:48:8a: cc:c7:2c:99:11:37:f4:e1:d8:29:ac:6f:36:13:e5:12:67:d8: 2d:03:0b:8f:98:00:d5:8d:31:de:7a:35:71:bf:c1:c3:de:52: e4:9c:4b:c9:7b:1b:67:b9:18:79:a9:64:d2:5d:3d:46:be:8f: 1d:1d:d4:a1:ca:aa:f0:ae:bb:33:31:8f:f3:60:27:a6:0f:0d: e4:33:e1:ed:1f:07:71:d5:60:09:ee:63:f0:e6:17:5f:b5:4b: cc:49:bb:3a:29:5b:be:b1:0b:12:fc:8d:8c:57:c7:24:03:f1: 60:0c:f0:1e:3f:fd:c0:d6:98:cc:04:ac:17:7f:3a:76:41:e2: 76:02:08:4a:34:87:8d:bd:5a:0f:f2:c4:e0:4e:57:86:46:5b: 96:74:88:6a:e3:55:e2:94:1d:3a:4d:c9:97:c3:67:7f:ef:5a: da:aa:5c:e1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYAA9UNCDTLj5J9qSGA3sITdImxwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNDAwMTAzN1oX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAZjMxY2Q0ZTJiYjg2Y2EzNjJlZWVl ZmEyNzIzNGM0ZGQwODkxZDI0YTdhNWFiZTA2MzhmNGJmNGE1ODkyYmVlZjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqe1O5ZrCIbag+Q/YGZpPhLOMJE8d DgVmKV1C2LvrMRFC3bljiecgRGiQtmTvV0nMQsI2c20NnP2G6efbujTHDqwR4zKH iXTNjXLgDvyyHeE0SGCY2OyZCY7Lgzsupq/aulZ28i5vs3qlGCkAxTtQSztDUunI yt5al+7xL9awelirfSStBeMhMPzMtBhqLreBadWkiaQoNRpOzYmaLFjQ6WUwyZf0 alEzXC2Vq2t+non7eAqIXIiX17yRECqo17aIXxl8XMwLAUFG4n4FLMfhGhHYwcv0 B6JhbfekHCPwHxu542DV4HNf1hZxjCn/AQzPtKLdG69oWG6xLzIwI6caEQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLZBPs7tb1zI3OjjBD4TyZijZMjOMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzM1Mzc2OTFjLTFhMTAtNDY5OS1hOGEwLTRjZWM1MGEzNTUzNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+oAwDQYJKoZIhvcNAQELBQADggEBAHoLOwhanseiat/jxTKS nLd7DneFTKBulN19LpmweFdmUPwICK5joLfXaE6rax7iRTMg/iJZAzwcI+2DrC+H o8Iv+IR5LYx6ts7ww/fR2LAHBmynWN7ymZ5IiszHLJkRN/Th2CmsbzYT5RJn2C0D C4+YANWNMd56NXG/wcPeUuScS8l7G2e5GHmpZNJdPUa+jx0d1KHKqvCuuzMxj/Ng J6YPDeQz4e0fB3HVYAnuY/DmF1+1S8xJuzopW76xCxL8jYxXxyQD8WAM8B4//cDW mMwErBd/OnZB4nYCCEo0h429Wg/yxOBOV4ZGW5Z0iGrjVeKUHTpNyZfDZ3/vWtqq XOE= -----END CERTIFICATE-----Generated at Mon Mar 2 07:56:11 2026 by rpki-client