$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa File: 62639af2-026a-4677-b13e-0aeb266620d5.roa (raw, json) Hash identifier: vYdJbJqhk/2BzPm/MqESN90hJOlaxoSPWa/pPGUw8G4= Subject key identifier: F5:39:E4:BD:68:E8:1A:26:E2:27:44:AA:01:A1:9E:D8:62:25:BC:48 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3355276B07B80A45B2A7B1667B12C555C18147A1 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa Signing time: Wed 25 Feb 2026 00:00:35 +0000 ROA not before: Wed 25 Feb 2026 00:00:35 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:55:27:6b:07:b8:0a:45:b2:a7:b1:66:7b:12:c5:55:c1:81:47:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 25 00:00:35 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=a176a973f6906dc23939e46b1ce78f4d185ad92545dc0bac00aee2f0ca8f322b, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:83:98:26:5a:13:19:da:c3:95:37:36:27:5e: 4e:c7:fe:98:8f:8e:1f:34:be:09:a2:ec:2e:ff:c2: 35:fc:1e:22:86:a2:39:ad:93:c9:11:48:8c:be:52: 3b:bc:d8:30:15:34:01:e8:55:6e:a9:3d:c1:a0:77: 64:37:71:e3:71:fd:75:7d:b3:bc:15:f6:19:99:2d: 23:58:88:09:fe:c8:27:e3:70:15:24:40:d2:5a:ba: 6d:84:8c:e4:47:84:97:d8:86:ab:a9:8d:22:42:5e: 74:e9:9f:8c:8b:72:8c:b9:69:94:e5:b0:d4:a4:99: 4b:5a:b3:a3:12:d2:5b:76:a0:2b:8e:a8:d7:92:2f: ab:4b:93:a4:47:fd:9b:e5:78:ff:ef:70:a7:13:e7: 54:85:d6:24:ae:ec:78:a0:6d:77:c8:3a:11:d4:41: cb:9a:18:97:f5:e8:d1:35:7c:f2:26:e8:63:41:76: 45:d5:15:f1:af:dd:a0:40:36:17:c3:c1:24:05:cf: a2:c6:d7:24:a7:59:f5:23:2c:66:5d:d1:41:88:2d: c8:a7:22:5a:40:bb:89:d3:e2:ea:b9:ae:c7:57:b1: 86:16:e2:b5:9e:a1:14:fc:9c:ac:86:6a:8a:81:41: 68:6e:d4:37:68:78:20:04:a1:40:4b:35:86:d1:fa: c1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:39:E4:BD:68:E8:1A:26:E2:27:44:AA:01:A1:9E:D8:62:25:BC:48 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8040::/48 Signature Algorithm: sha256WithRSAEncryption 21:0d:3a:3b:c6:20:0a:0a:ba:81:2a:51:5b:b7:93:79:64:13: bb:44:a0:24:e7:b5:ea:cb:9b:55:8e:cf:94:57:19:5d:d7:c3: b4:67:24:ca:1f:53:20:03:28:d7:a5:33:5b:8d:42:78:30:99: e3:41:e4:63:5e:9a:05:a5:70:de:19:ca:e1:3a:7b:94:b2:78: 0a:22:03:16:3f:e1:a8:66:7a:b4:c4:12:6f:67:2d:48:66:4e: e0:cd:1f:e7:95:24:bd:e9:b0:82:2f:22:7e:c1:8b:8c:dd:af: 28:d0:9c:e4:45:0d:1a:cb:dc:8a:0b:cd:b6:0e:7b:bd:44:e6: 02:96:b4:22:5f:fb:93:a7:5e:79:3e:29:64:1c:1b:a1:80:56: fd:ec:ed:be:0c:35:62:05:72:e3:db:0c:1b:e4:0b:9c:0e:7e: da:75:2e:55:54:28:10:14:e8:69:93:50:f0:cd:de:ca:bf:d7: 29:0c:19:6c:d7:76:ea:13:b9:c8:a9:41:03:59:9e:92:f0:76: 0b:10:60:27:8d:62:0d:54:ea:93:6c:bf:2f:a8:a6:ea:5b:1f: 4a:1e:32:24:49:36:7e:95:c1:8a:c9:52:17:ff:f2:59:66:79: 38:6f:e2:b1:15:ee:cd:53:4f:0f:61:6f:14:4e:d9:f6:1b:73: 7a:7a:12:42 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUM1Unawe4CkWyp7FmexLFVcGBR6EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNTAwMDAzNVoX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAYTE3NmE5NzNmNjkwNmRjMjM5Mzll NDZiMWNlNzhmNGQxODVhZDkyNTQ1ZGMwYmFjMDBhZWUyZjBjYThmMzIyYjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4OYJloTGdrDlTc2J15Ox/6Yj44f NL4Jouwu/8I1/B4ihqI5rZPJEUiMvlI7vNgwFTQB6FVuqT3BoHdkN3Hjcf11fbO8 FfYZmS0jWIgJ/sgn43AVJEDSWrpthIzkR4SX2IarqY0iQl506Z+Mi3KMuWmU5bDU pJlLWrOjEtJbdqArjqjXki+rS5OkR/2b5Xj/73CnE+dUhdYkrux4oG13yDoR1EHL mhiX9ejRNXzyJuhjQXZF1RXxr92gQDYXw8EkBc+ixtckp1n1IyxmXdFBiC3IpyJa QLuJ0+Lqua7HV7GGFuK1nqEU/JyshmqKgUFobtQ3aHggBKFASzWG0frBbQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPU55L1o6Bom4idEqgGhnthiJbxIMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzYyNjM5YWYyLTAyNmEtNDY3Ny1iMTNlLTBhZWIyNjY2MjBkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQAhDTo7xiAKCrqBKlFb t5N5ZBO7RKAk57Xqy5tVjs+UVxld18O0ZyTKH1MgAyjXpTNbjUJ4MJnjQeRjXpoF pXDeGcrhOnuUsngKIgMWP+GoZnq0xBJvZy1IZk7gzR/nlSS96bCCLyJ+wYuM3a8o 0JzkRQ0ay9yKC822Dnu9ROYClrQiX/uTp155PilkHBuhgFb97O2+DDViBXLj2wwb 5AucDn7adS5VVCgQFOhpk1Dwzd7Kv9cpDBls13bqE7nIqUEDWZ6S8HYLEGAnjWIN VOqTbL8vqKbqWx9KHjIkSTZ+lcGKyVIX//JZZnk4b+KxFe7NU08PYW8UTtn2G3N6 ehJC -----END CERTIFICATE-----Generated at Sun Mar 1 23:35:19 2026 by rpki-client