$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/453c01e0-c333-4283-987c-be2c8b71798c.roa File: 453c01e0-c333-4283-987c-be2c8b71798c.roa (raw, json) Hash identifier: 5M2D+DELmZjZoY/81fKF6kdFlo0opBNC5sw+0HIN0iM= Subject key identifier: 7E:96:C9:10:3E:BA:49:1C:6D:FE:B5:6C:13:A8:A8:AF:7D:A5:45:D6 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 258D309A4D4734382A30EDDAE7BFE0AF13026019 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/453c01e0-c333-4283-987c-be2c8b71798c.roa Signing time: Wed 25 Feb 2026 00:00:49 +0000 ROA not before: Wed 25 Feb 2026 00:00:49 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:8d:30:9a:4d:47:34:38:2a:30:ed:da:e7:bf:e0:af:13:02:60:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 25 00:00:49 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=a67ef0a1b7783308069cc947087c4448bf1c63a98e9562ac7e380658359a7adc, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f8:11:9f:2c:c7:4d:55:7b:8f:76:26:06:3f: 90:41:f2:6c:51:7b:19:16:82:ef:e0:04:54:8c:e7: 19:5f:19:68:d1:cf:d8:b0:19:46:7c:0f:52:82:5d: 86:5c:65:d8:82:0a:06:8e:d6:54:bf:c5:ce:7a:94: 7e:e2:63:9c:e0:97:09:4e:97:ef:81:e9:53:52:ec: 1a:ad:22:ac:7f:9f:cb:54:50:c3:90:3e:86:a2:de: 6c:05:16:a6:05:6d:36:0d:ca:db:21:af:8e:54:44: f9:65:d5:fe:d1:fd:a4:00:45:4a:33:25:8f:92:74: 99:71:74:be:72:bc:bf:d4:31:e3:b0:1a:b6:15:a0: 66:94:dc:2b:d1:bd:24:69:78:4e:c8:c5:f6:b6:20: a3:79:ab:99:53:7b:6a:c0:e9:5a:03:0f:f7:33:67: a0:d7:54:36:9f:13:93:fe:b2:b9:e0:1a:6a:7e:8a: cd:69:73:ca:bd:8e:53:7c:e3:e5:3b:22:6d:2c:d2: 9e:bb:66:4b:71:a4:27:a3:92:b0:cf:8c:fe:31:b2: cd:de:64:46:e0:0c:04:99:3c:b5:fd:e3:0d:bf:48: ca:32:b9:e5:da:49:d9:d6:90:6d:13:4f:03:e5:0b: ac:ea:4c:ce:3a:50:85:b5:6a:d8:29:98:10:be:d1: 3f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:96:C9:10:3E:BA:49:1C:6D:FE:B5:6C:13:A8:A8:AF:7D:A5:45:D6 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/453c01e0-c333-4283-987c-be2c8b71798c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 86:76:3f:f6:1e:e2:40:17:c9:ec:ff:88:99:5b:0c:6f:61:3d: 6a:b8:3e:cf:9f:1f:1a:46:12:88:31:e0:ac:f6:a6:46:53:cc: 46:49:42:12:77:bd:c3:aa:e8:3c:be:91:df:6b:c3:a9:1d:69: a2:fb:bb:b7:ae:de:e9:ce:01:a3:f9:d8:5d:cf:bb:3e:51:88: 32:bc:ed:82:e2:55:a2:ef:c6:96:30:23:92:0e:61:f3:1d:91: 26:e4:14:86:cb:45:c7:e3:46:c2:f4:44:40:26:83:a3:e5:4b: 44:d6:aa:5d:06:6d:bf:f4:99:95:c6:74:8d:8c:c4:92:12:b0: d0:9d:b9:80:fe:ee:2a:a2:b1:57:ab:45:fd:50:aa:4e:20:e8: 5c:d7:90:54:87:51:97:4b:25:1f:01:be:80:01:ae:3d:0a:0c: ba:da:97:8b:ba:52:82:5e:27:02:14:bf:04:21:7f:a5:b6:b2: e4:c0:08:e3:ef:86:50:85:05:d0:5d:1c:d6:82:9d:03:98:87: 2e:27:c6:56:ed:62:1c:62:60:b7:67:2a:f0:f4:e8:71:ee:30: 5a:ed:7f:e6:10:3f:62:6b:19:71:d5:04:a6:db:b8:8b:f0:f7: ea:fa:79:23:33:71:c6:e7:79:e3:ab:72:64:5a:3f:12:44:8c: 38:2f:34:df -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUJY0wmk1HNDgqMO3a57/grxMCYBkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNTAwMDA0OVoX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAYTY3ZWYwYTFiNzc4MzMwODA2OWNj OTQ3MDg3YzQ0NDhiZjFjNjNhOThlOTU2MmFjN2UzODA2NTgzNTlhN2FkYzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPgRnyzHTVV7j3YmBj+QQfJsUXsZ FoLv4ARUjOcZXxlo0c/YsBlGfA9Sgl2GXGXYggoGjtZUv8XOepR+4mOc4JcJTpfv gelTUuwarSKsf5/LVFDDkD6Got5sBRamBW02DcrbIa+OVET5ZdX+0f2kAEVKMyWP knSZcXS+cry/1DHjsBq2FaBmlNwr0b0kaXhOyMX2tiCjeauZU3tqwOlaAw/3M2eg 11Q2nxOT/rK54BpqforNaXPKvY5TfOPlOyJtLNKeu2ZLcaQno5Kwz4z+MbLN3mRG 4AwEmTy1/eMNv0jKMrnl2knZ1pBtE08D5Qus6kzOOlCFtWrYKZgQvtE/JQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFH6WyRA+ukkcbf61bBOoqK99pUXWMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzQ1M2MwMWUwLWMzMzMtNDI4My05ODdjLWJlMmM4YjcxNzk4Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4DAMA0GCSqGSIb3DQEBCwUAA4IBAQCGdj/2HuJAF8ns/4iZ WwxvYT1quD7Pnx8aRhKIMeCs9qZGU8xGSUISd73Dqug8vpHfa8OpHWmi+7u3rt7p zgGj+dhdz7s+UYgyvO2C4lWi78aWMCOSDmHzHZEm5BSGy0XH40bC9ERAJoOj5UtE 1qpdBm2/9JmVxnSNjMSSErDQnbmA/u4qorFXq0X9UKpOIOhc15BUh1GXSyUfAb6A Aa49Cgy62peLulKCXicCFL8EIX+ltrLkwAjj74ZQhQXQXRzWgp0DmIcuJ8ZW7WIc YmC3Zyrw9Ohx7jBa7X/mED9iaxlx1QSm27iL8Pfq+nkjM3HG53njq3JkWj8SRIw4 LzTf -----END CERTIFICATE-----Generated at Mon Mar 2 04:50:11 2026 by rpki-client