$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa File: 3537691c-1a10-4699-a8a0-4cec50a35534.roa (raw, json) Hash identifier: 4o3mEKe38RTaHd8O/QcDBvPoPLHZkKqn1wLn/spjgBs= Subject key identifier: 1C:2F:D4:EA:5E:BE:3C:80:A6:4F:2A:AA:9C:36:A4:32:DB:D2:58:D0 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 4B4E61075C399A5905EA40243F41713363C3C9E2 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa Signing time: Fri 15 May 2026 00:10:09 +0000 ROA not before: Fri 15 May 2026 00:10:09 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fa:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:4e:61:07:5c:39:9a:59:05:ea:40:24:3f:41:71:33:63:c3:c9:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 15 00:10:09 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=3953bd9b07cc0c01774826a7298d084e731eee5f45c58bc4a6e602d69c386602, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:c3:27:df:b0:6d:a6:e0:a8:5f:b2:ca:67: 71:6e:91:ad:ff:91:3e:ca:d4:d7:3a:33:f8:86:80: 41:26:50:4c:51:99:f2:fd:fd:f2:bb:37:78:cc:b4: 05:96:a9:7e:fa:14:1a:08:14:c0:67:e7:23:cf:e4: 92:b6:38:fc:f1:e0:f8:f8:b1:8e:c9:3c:49:de:b5: 71:fc:a3:1a:81:e5:f0:be:d1:da:ba:a4:a5:b8:75: 80:da:8f:72:2c:f7:a1:57:de:25:d5:0b:64:d2:86: a1:90:c3:65:17:bd:ad:62:ff:29:2a:8a:03:80:d9: 59:39:a9:97:f5:98:53:9a:f5:51:b7:87:cd:c9:6b: 4f:a4:8d:cc:65:f9:27:59:fa:1b:94:39:de:75:a1: 04:dc:08:92:b3:b4:08:1a:0a:9b:04:2e:7f:47:1f: 8a:e1:d7:25:a8:50:c6:93:01:94:b0:93:a7:c7:90: a8:97:5e:10:34:f3:1f:ff:6c:23:2e:2b:ae:e5:30: 2f:2e:bb:a7:a4:7d:4c:c3:bd:93:8d:9c:14:15:2c: 80:90:8e:4c:71:0d:00:0b:e0:d3:ab:a5:63:7f:72: ec:a8:54:38:12:ec:81:a6:c0:a3:c4:e7:29:a4:9e: e0:ad:5d:6a:f4:b6:32:ad:f5:3c:28:ce:d9:57:a0: 24:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:2F:D4:EA:5E:BE:3C:80:A6:4F:2A:AA:9C:36:A4:32:DB:D2:58:D0 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3537691c-1a10-4699-a8a0-4cec50a35534.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fa:8000::/40 Signature Algorithm: sha256WithRSAEncryption 31:63:9c:83:31:32:bf:16:11:9c:b8:ee:96:9c:bd:01:7c:0f: 73:a7:20:f7:65:ed:25:e8:63:ad:31:05:ea:80:5a:2f:90:b8: eb:e6:6d:85:bb:db:52:da:94:c4:49:d8:a9:c9:62:92:da:cc: ae:04:a5:e0:4c:ea:e8:2a:ea:88:cf:ce:e9:b8:e4:06:a7:62: 0d:e2:e3:7f:c8:cc:c7:43:9e:fc:18:9d:5d:47:c2:77:87:a6: 26:9b:53:69:e1:98:3f:10:17:5e:78:2f:75:84:6e:53:76:be: a8:72:23:57:3b:1b:32:55:aa:db:af:f3:41:27:a3:dc:b4:7e: a6:55:3e:2d:98:29:6d:a4:b2:ca:3c:86:05:83:94:ad:1e:4d: 0d:ec:8f:ae:f8:57:f7:7e:79:98:2e:47:3b:57:33:0b:33:1e: a8:51:8f:f6:17:ae:96:1b:db:56:78:75:d7:1a:d5:40:57:06: 19:77:c5:6e:42:c9:f7:9a:de:3f:6f:fb:8c:54:6e:03:bc:e5: c6:3d:85:c2:05:3f:ce:91:87:90:89:ce:eb:e8:ad:c9:b5:56: fd:b1:3a:9c:be:0a:01:f0:92:ee:4d:a7:33:22:ca:a2:a5:96: b9:80:e1:98:50:64:e5:93:f8:d0:33:0a:67:88:bd:e2:86:26: 7d:58:84:bc -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUS05hB1w5mlkF6kAkP0FxM2PDyeIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNTAwMTAwOVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMzk1M2JkOWIwN2NjMGMwMTc3NDgy NmE3Mjk4ZDA4NGU3MzFlZWU1ZjQ1YzU4YmM0YTZlNjAyZDY5YzM4NjYwMjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFLDJ9+wbabgqF+yymdxbpGt/5E+ ytTXOjP4hoBBJlBMUZny/f3yuzd4zLQFlql++hQaCBTAZ+cjz+SStjj88eD4+LGO yTxJ3rVx/KMageXwvtHauqSluHWA2o9yLPehV94l1Qtk0oahkMNlF72tYv8pKooD gNlZOamX9ZhTmvVRt4fNyWtPpI3MZfknWfoblDnedaEE3AiSs7QIGgqbBC5/Rx+K 4dclqFDGkwGUsJOnx5Col14QNPMf/2wjLiuu5TAvLrunpH1Mw72TjZwUFSyAkI5M cQ0AC+DTq6Vjf3LsqFQ4EuyBpsCjxOcppJ7grV1q9LYyrfU8KM7ZV6AkFwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBwv1OpevjyApk8qqpw2pDLb0ljQMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzM1Mzc2OTFjLTFhMTAtNDY5OS1hOGEwLTRjZWM1MGEzNTUzNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+oAwDQYJKoZIhvcNAQELBQADggEBADFjnIMxMr8WEZy47pac vQF8D3OnIPdl7SXoY60xBeqAWi+QuOvmbYW721LalMRJ2KnJYpLazK4EpeBM6ugq 6ojPzum45AanYg3i43/IzMdDnvwYnV1HwneHpiabU2nhmD8QF154L3WEblN2vqhy I1c7GzJVqtuv80Eno9y0fqZVPi2YKW2ksso8hgWDlK0eTQ3sj674V/d+eZguRztX MwszHqhRj/YXrpYb21Z4ddca1UBXBhl3xW5Cyfea3j9v+4xUbgO85cY9hcIFP86R h5CJzuvorcm1Vv2xOpy+CgHwku5NpzMiyqKllrmA4ZhQZOWT+NAzCmeIveKGJn1Y hLw= -----END CERTIFICATE-----Generated at Sat Jun 13 07:59:16 2026 by rpki-client