$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa File: 62639af2-026a-4677-b13e-0aeb266620d5.roa (raw, json) Hash identifier: VAlAznFadTg6ulCXiVPFlMgIv07sNYoyGor/rwJzOpg= Subject key identifier: 7E:54:42:E1:30:B1:BD:90:8C:3C:D5:2E:0F:38:38:43:CB:41:04:D9 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 31D1A07C72CACF45AEBC4C5C78540D7151B00DC7 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa Signing time: Sat 16 May 2026 00:00:39 +0000 ROA not before: Sat 16 May 2026 00:00:39 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:d1:a0:7c:72:ca:cf:45:ae:bc:4c:5c:78:54:0d:71:51:b0:0d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:39 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=f1aae5fa0cf92b9e7a62ee79244e5f972996b1d768c0512a1e739ee535f433be, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6b:4f:64:41:4d:f1:88:9a:70:8e:d1:3f:d8: 18:c6:01:7e:fb:ca:cd:61:2c:99:6d:3e:6d:fe:ef: 77:31:82:52:61:ef:ed:73:25:75:e7:cb:21:9a:1b: 07:31:07:54:19:bd:c9:ea:5f:f8:ba:3d:82:63:76: 51:0c:d0:3c:7f:f4:da:d9:84:4a:2d:f9:79:0c:83: fb:7c:75:37:22:b9:96:21:26:98:86:15:cf:06:04: 43:5b:b5:3a:38:b5:ae:5d:5a:c1:7f:b8:c5:a1:92: 57:91:e6:4b:5c:b1:d4:f4:b4:3c:42:14:60:13:6f: 7c:39:1c:93:c9:c6:da:06:4a:4c:16:03:60:4f:91: e0:df:0c:43:e9:33:7e:ea:98:4b:a7:c0:55:1c:55: d7:78:a6:06:dd:9f:79:ce:98:d1:20:46:dd:a1:fc: 43:51:72:f4:47:99:17:02:fe:94:bf:cb:9f:14:fa: 5c:94:3d:be:de:96:43:46:d9:1a:a8:97:88:d1:ce: 9c:fd:df:19:22:1c:70:28:79:38:e0:aa:84:81:37: 6e:89:c4:dc:aa:8c:1f:08:d9:90:34:74:b2:3a:40: 84:8d:4a:2f:71:5a:25:42:e5:23:8f:7b:5f:76:8e: f8:ba:a2:e7:e5:6c:1f:24:72:7e:be:5c:7c:9c:bf: 3e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:54:42:E1:30:B1:BD:90:8C:3C:D5:2E:0F:38:38:43:CB:41:04:D9 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8040::/48 Signature Algorithm: sha256WithRSAEncryption af:f6:e6:e2:96:94:b8:f5:b8:0e:8a:2b:5c:07:92:5c:af:1d: a4:68:96:20:1d:4f:1e:5b:6f:41:52:c3:6b:8f:e9:f6:22:94: 13:33:0c:6a:65:f3:e0:74:20:9b:f3:33:e4:d5:c5:d4:9e:95: b7:d7:53:33:62:08:68:fc:c4:43:92:ab:d4:3c:b5:84:81:e1: 56:10:c3:e9:12:56:15:03:7e:2b:fb:d2:ce:c2:3a:bc:c0:64: 44:be:4f:df:b5:da:09:2c:f2:dd:d1:a7:ca:15:9d:5c:84:cf: 16:22:6e:49:de:0e:6e:8f:90:b8:fb:2b:03:a6:22:14:3d:33: f5:a3:5a:1e:4a:a8:73:01:f5:0d:41:91:38:48:a8:40:a5:20: fb:3e:e5:50:ea:d7:f4:bb:c3:04:6d:37:db:b1:a5:19:a1:e0: a8:0b:6a:a7:48:6a:34:12:cd:54:2b:a8:96:df:da:99:da:12: 3d:22:26:ef:03:6a:5c:5f:bd:8c:4f:5b:dd:34:09:35:35:b5: d2:89:8a:a5:c3:30:b8:17:cb:ce:17:e0:dc:f7:7e:94:9b:5e: cc:bc:f7:fe:08:2a:7d:96:8b:1b:b6:27:dd:c4:6e:7e:d3:d7: ef:d5:83:68:a1:2b:3b:b9:1c:5e:55:66:8e:95:ce:2c:5d:aa: 7e:6b:70:18 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUMdGgfHLKz0WuvExceFQNcVGwDccwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDAzOVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAZjFhYWU1ZmEwY2Y5MmI5ZTdhNjJl ZTc5MjQ0ZTVmOTcyOTk2YjFkNzY4YzA1MTJhMWU3MzllZTUzNWY0MzNiZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArWtPZEFN8YiacI7RP9gYxgF++8rN YSyZbT5t/u93MYJSYe/tcyV158shmhsHMQdUGb3J6l/4uj2CY3ZRDNA8f/Ta2YRK Lfl5DIP7fHU3IrmWISaYhhXPBgRDW7U6OLWuXVrBf7jFoZJXkeZLXLHU9LQ8QhRg E298ORyTycbaBkpMFgNgT5Hg3wxD6TN+6phLp8BVHFXXeKYG3Z95zpjRIEbdofxD UXL0R5kXAv6Uv8ufFPpclD2+3pZDRtkaqJeI0c6c/d8ZIhxwKHk44KqEgTduicTc qowfCNmQNHSyOkCEjUovcVolQuUjj3tfdo74uqLn5WwfJHJ+vlx8nL8+vwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFH5UQuEwsb2QjDzVLg84OEPLQQTZMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzYyNjM5YWYyLTAyNmEtNDY3Ny1iMTNlLTBhZWIyNjY2MjBkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQCv9ubilpS49bgOiitc B5Jcrx2kaJYgHU8eW29BUsNrj+n2IpQTMwxqZfPgdCCb8zPk1cXUnpW311MzYgho /MRDkqvUPLWEgeFWEMPpElYVA34r+9LOwjq8wGREvk/ftdoJLPLd0afKFZ1chM8W Im5J3g5uj5C4+ysDpiIUPTP1o1oeSqhzAfUNQZE4SKhApSD7PuVQ6tf0u8MEbTfb saUZoeCoC2qnSGo0Es1UK6iW39qZ2hI9IibvA2pcX72MT1vdNAk1NbXSiYqlwzC4 F8vOF+Dc936Um17MvPf+CCp9losbtifdxG5+09fv1YNooSs7uRxeVWaOlc4sXap+ a3AY -----END CERTIFICATE-----Generated at Sat Jun 13 05:41:06 2026 by rpki-client