$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/5484d331-446c-4042-9500-dd3002e6a910.roa File: 5484d331-446c-4042-9500-dd3002e6a910.roa (raw, json) Hash identifier: 98zA4UOzUXiN7z2KCXAAWwp9L5f4c8JIK01F6/kJdmo= Subject key identifier: E1:4D:1F:CC:2B:8D:D4:82:C9:28:95:F1:D2:1B:A8:F5:EF:1D:8D:B0 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 739E1AC53F58AFD539B593E5AE3CD5598A1CD361 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/5484d331-446c-4042-9500-dd3002e6a910.roa Signing time: Sat 16 May 2026 00:00:51 +0000 ROA not before: Sat 16 May 2026 00:00:51 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:9e:1a:c5:3f:58:af:d5:39:b5:93:e5:ae:3c:d5:59:8a:1c:d3:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:51 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=0ba23774ce45170b6697f6ca5f283ee76112aeb7326df7ed9f5d899a993cea02, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:69:1a:a5:79:47:8a:fb:ff:61:51:d4:b3:65: a8:94:ea:b5:4b:12:a8:93:00:dd:0e:d2:70:e0:f2: a6:7e:52:1a:a1:d8:a0:e9:4e:88:08:13:23:4c:da: f2:64:8e:6a:48:ec:6e:4a:60:60:02:0b:9d:f5:eb: 2a:46:f6:97:e9:08:87:82:0a:8e:14:6e:1b:98:34: 3c:58:fc:6d:9a:2e:ac:88:41:cf:3d:0e:58:66:04: 8d:61:3b:16:5c:de:f5:ab:6e:b9:21:1d:32:9e:2e: 09:a9:84:44:e0:b6:cb:0c:c0:ae:db:c1:a9:ab:f3: e8:db:35:fc:1f:cb:a0:12:b2:50:92:ae:2e:f9:9b: 03:bb:3b:36:57:dc:c0:73:52:1a:a0:e7:fa:14:7e: 9c:b5:74:3d:ca:ff:9b:af:6e:4e:a6:5a:c0:2d:02: 69:9f:2b:14:4b:17:26:52:db:8f:a9:b2:80:7d:27: 95:6b:ae:0e:dc:70:0d:79:48:6d:8b:b1:6c:73:fc: 7e:c6:79:a9:9b:d3:9e:5a:3d:34:cc:9b:f4:d2:78: f3:ec:c0:6d:77:97:16:11:44:b8:d5:60:bc:2b:4f: b3:e0:4c:42:ce:04:ad:26:ba:0e:b9:bf:f2:16:85: 73:ee:e9:f3:1a:99:ba:08:aa:96:0f:8b:ab:2b:bc: c2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4D:1F:CC:2B:8D:D4:82:C9:28:95:F1:D2:1B:A8:F5:EF:1D:8D:B0 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/5484d331-446c-4042-9500-dd3002e6a910.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:c00::/38 Signature Algorithm: sha256WithRSAEncryption 39:dc:33:d1:b4:cb:14:cd:6c:93:9e:45:52:68:3e:95:e2:7e: 96:d5:27:b5:f8:44:c8:39:83:18:2e:41:b0:90:59:13:fb:1c: eb:e8:ed:39:d2:d0:4c:ae:2b:9f:ef:de:7e:d7:99:8e:32:fe: 88:d6:1d:75:e3:40:ef:95:92:3d:89:f4:d6:e8:76:b0:c4:b2: b0:fe:a9:3f:14:2d:d6:75:5c:2c:a6:76:a1:66:7f:18:45:51: 0f:03:f1:70:d2:26:fd:bf:72:42:7e:da:9e:04:0e:17:6c:ac: 45:f6:62:d4:49:56:98:b4:55:42:f4:a4:c8:5e:1c:15:35:22: 12:23:97:da:63:c9:4b:79:5a:47:d9:02:59:1f:11:42:f2:ee: b3:25:4d:84:29:f7:31:30:19:2b:e8:43:64:da:f4:a0:5d:22: c9:a2:54:69:08:7f:a1:2e:18:06:e7:8f:b1:cd:2b:fe:59:ee: 9b:0a:22:a3:5e:e5:50:7b:7a:28:31:79:fa:69:bb:00:39:af: ee:ef:ba:7f:00:dc:c4:79:6e:b1:4c:b8:d2:41:eb:3b:e3:bb: 26:91:b9:6c:2b:aa:03:dd:12:70:0d:2a:1d:f4:67:06:cf:5e: 93:3b:34:78:d2:67:e7:49:24:8d:b2:23:d6:2a:c7:a2:06:6e: 01:75:46:ab -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUc54axT9Yr9U5tZPlrjzVWYoc02EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA1MVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAMGJhMjM3NzRjZTQ1MTcwYjY2OTdm NmNhNWYyODNlZTc2MTEyYWViNzMyNmRmN2VkOWY1ZDg5OWE5OTNjZWEwMjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWkapXlHivv/YVHUs2WolOq1SxKo kwDdDtJw4PKmflIaodig6U6ICBMjTNryZI5qSOxuSmBgAgud9esqRvaX6QiHggqO FG4bmDQ8WPxtmi6siEHPPQ5YZgSNYTsWXN71q265IR0yni4JqYRE4LbLDMCu28Gp q/Po2zX8H8ugErJQkq4u+ZsDuzs2V9zAc1IaoOf6FH6ctXQ9yv+br25OplrALQJp nysUSxcmUtuPqbKAfSeVa64O3HANeUhti7Fsc/x+xnmpm9OeWj00zJv00njz7MBt d5cWEUS41WC8K0+z4ExCzgStJroOub/yFoVz7unzGpm6CKqWD4urK7zCnwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOFNH8wrjdSCySiV8dIbqPXvHY2wMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzU0ODRkMzMxLTQ0NmMtNDA0Mi05NTAwLWRkMzAwMmU2YTkxMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAwwDQYJKoZIhvcNAQELBQADggEBADncM9G0yxTNbJOeRVJo PpXifpbVJ7X4RMg5gxguQbCQWRP7HOvo7TnS0EyuK5/v3n7XmY4y/ojWHXXjQO+V kj2J9NbodrDEsrD+qT8ULdZ1XCymdqFmfxhFUQ8D8XDSJv2/ckJ+2p4EDhdsrEX2 YtRJVpi0VUL0pMheHBU1IhIjl9pjyUt5WkfZAlkfEULy7rMlTYQp9zEwGSvoQ2Ta 9KBdIsmiVGkIf6EuGAbnj7HNK/5Z7psKIqNe5VB7eigxefppuwA5r+7vun8A3MR5 brFMuNJB6zvjuyaRuWwrqgPdEnANKh30ZwbPXpM7NHjSZ+dJJI2yI9Yqx6IGbgF1 Rqs= -----END CERTIFICATE-----Generated at Sat Jun 13 07:58:57 2026 by rpki-client