$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa File: 64aa0337-4cf9-42c7-b236-4cd36e69005e.roa (raw, json) Hash identifier: eq2nnJ+Cm96Jv0auvF+VIFRama3wPCkeRgJGSIg4CxM= Subject key identifier: 30:3C:64:98:91:9C:26:81:C6:C8:17:FB:B2:BC:DC:E2:FB:B4:A0:1F Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 6CC4D8B4D900C92B4EE642D74C1488F839514852 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa Signing time: Sat 16 May 2026 00:00:40 +0000 ROA not before: Sat 16 May 2026 00:00:40 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f1::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:c4:d8:b4:d9:00:c9:2b:4e:e6:42:d7:4c:14:88:f8:39:51:48:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:40 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=d68d4dec0aac17047018ab9753cc13562276ea1785c84ed2e9c08d8be3a3be27, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:5b:65:2f:cd:3b:03:d7:d4:7d:45:1d:0b:b7: 8a:e2:a3:8b:0c:3c:35:41:b4:a8:24:07:56:d9:95: 48:44:71:d6:98:11:12:a0:fc:57:41:a1:6e:fa:a9: 4f:65:49:ff:0e:fe:f6:5c:30:64:26:a6:06:d0:55: 7f:3a:b9:a7:64:ce:3f:da:6a:33:fc:ca:e2:a9:ed: 2d:1f:94:04:29:3d:16:61:51:4d:0c:2c:13:b1:38: 63:f3:c2:94:4b:41:72:71:03:c5:66:b3:6b:45:fc: 4d:8f:e9:ca:fd:1f:9a:a8:fd:6f:eb:a0:2a:a9:c7: 4e:46:0b:97:ff:c3:bf:6d:f6:f4:c7:02:81:7c:ab: 4b:f4:cb:ad:71:aa:55:bf:42:51:aa:46:0c:cb:ff: fb:be:03:b5:14:7d:39:33:57:20:d0:09:ea:9e:17: fd:46:f6:d8:06:59:2a:06:bf:3a:41:f0:5c:98:22: a8:e7:f5:6c:7f:c3:fe:bf:ed:f9:31:7e:37:2c:30: 78:ff:71:6c:a7:6d:2a:30:26:85:6a:11:fb:2e:06: 89:9c:81:b0:9d:9f:12:0a:16:be:9e:68:93:6c:77: 72:e0:5d:28:0b:a2:2d:d1:fc:8f:df:4f:b6:90:78: fe:92:a6:68:73:e0:6d:8a:12:96:23:3a:8c:ee:93: e6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3C:64:98:91:9C:26:81:C6:C8:17:FB:B2:BC:DC:E2:FB:B4:A0:1F X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f1::/32 Signature Algorithm: sha256WithRSAEncryption 81:ab:46:b7:e9:1c:65:6f:2c:80:fd:d9:07:b8:b6:92:df:eb: e3:58:45:51:87:78:ca:3a:df:3b:c0:e6:13:30:a1:72:0c:54: 6b:58:93:13:ec:50:bd:2b:20:1e:b7:10:27:6c:56:eb:cd:d0: 6d:94:a3:7e:9f:2b:2a:ce:d0:22:9c:0f:82:31:4c:0b:01:2d: 03:9a:3f:15:ae:33:4a:55:db:62:3e:ef:d3:28:8f:5c:0b:a2: 31:54:67:03:90:73:59:35:89:fa:1a:a5:38:f9:97:1c:4e:7e: 51:da:b5:a8:f0:da:c9:7d:40:6d:de:56:b5:97:64:db:cd:c4: 74:29:56:dd:49:9c:dd:fd:9a:2f:25:e7:1d:e0:10:32:fd:78: 17:61:de:66:47:eb:d8:34:76:67:5d:55:b9:72:d4:f2:41:88: 0e:87:30:4b:38:6b:ff:57:ff:51:56:e4:32:f3:cd:47:84:46: 47:fc:ce:8b:72:f2:6f:6f:32:60:e3:6d:e1:64:02:d3:5a:97: 10:ce:f6:94:b4:7e:c0:28:63:6d:ed:f1:84:f9:cb:59:08:f9: ce:12:ec:83:25:ab:a4:06:e1:3c:5d:67:04:ab:dd:2b:03:ec: 8e:23:f1:4f:bb:30:6e:57:57:1b:ce:b7:e1:d4:73:18:9a:0b: e7:58:39:61 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUbMTYtNkAyStO5kLXTBSI+DlRSFIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA0MFoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAZDY4ZDRkZWMwYWFjMTcwNDcwMThh Yjk3NTNjYzEzNTYyMjc2ZWExNzg1Yzg0ZWQyZTljMDhkOGJlM2EzYmUyNzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9ltlL807A9fUfUUdC7eK4qOLDDw1 QbSoJAdW2ZVIRHHWmBESoPxXQaFu+qlPZUn/Dv72XDBkJqYG0FV/OrmnZM4/2moz /Mriqe0tH5QEKT0WYVFNDCwTsThj88KUS0FycQPFZrNrRfxNj+nK/R+aqP1v66Aq qcdORguX/8O/bfb0xwKBfKtL9MutcapVv0JRqkYMy//7vgO1FH05M1cg0Anqnhf9 RvbYBlkqBr86QfBcmCKo5/Vsf8P+v+35MX43LDB4/3Fsp20qMCaFahH7LgaJnIGw nZ8SCha+nmiTbHdy4F0oC6It0fyP30+2kHj+kqZoc+BtihKWIzqM7pPmVQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFDA8ZJiRnCaBxsgX+7K83OL7tKAfMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzY0YWEwMzM3LTRjZjktNDJjNy1iMjM2LTRjZDM2ZTY5MDA1ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJA+A8TANBgkqhkiG9w0BAQsFAAOCAQEAgatGt+kcZW8sgP3ZB7i2 kt/r41hFUYd4yjrfO8DmEzChcgxUa1iTE+xQvSsgHrcQJ2xW683QbZSjfp8rKs7Q IpwPgjFMCwEtA5o/Fa4zSlXbYj7v0yiPXAuiMVRnA5BzWTWJ+hqlOPmXHE5+Udq1 qPDayX1Abd5WtZdk283EdClW3Umc3f2aLyXnHeAQMv14F2HeZkfr2DR2Z11VuXLU 8kGIDocwSzhr/1f/UVbkMvPNR4RGR/zOi3Lyb28yYONt4WQC01qXEM72lLR+wChj be3xhPnLWQj5zhLsgyWrpAbhPF1nBKvdKwPsjiPxT7swbldXG8634dRzGJoL51g5 YQ== -----END CERTIFICATE-----Generated at Sat Jun 13 05:38:42 2026 by rpki-client