$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa File: 788c3900-e4d5-439b-b231-3a69b5354901.roa (raw, json) Hash identifier: +Vd4GeFgLflmvtu8CpQBsNjifV8tOjci4FF+5xKZ/Fo= Subject key identifier: DA:76:04:E3:EC:88:7D:44:2C:B9:22:6E:34:52:60:CA:75:41:C1:11 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 4009CB29D0C1B94AE6F7B0B32C952466925149C5 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa Signing time: Sat 16 May 2026 00:00:38 +0000 ROA not before: Sat 16 May 2026 00:00:38 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:09:cb:29:d0:c1:b9:4a:e6:f7:b0:b3:2c:95:24:66:92:51:49:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:38 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=8249fc954af0b883f6064eca7b55abcc9c2d755029499202c5ca2fb403cef1f8, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:f2:6b:af:da:1a:06:7c:85:d9:2e:ce:59:2a: 93:94:fa:24:ec:2e:bb:6b:aa:cd:82:d5:d1:d3:bb: 02:a4:64:f6:2e:27:69:0e:d7:c0:5f:24:26:a6:59: 02:1d:ba:92:1d:9a:98:79:6b:23:b9:67:a6:c6:36: db:22:b5:9b:36:3e:ec:e0:67:f8:78:f5:87:6b:ab: 64:ea:dd:8d:eb:5f:7d:d3:48:45:3d:cc:c5:f3:f0: da:78:9a:5c:40:3f:b8:57:95:83:44:ab:8a:70:43: 4f:8f:1e:07:ea:a0:8f:92:68:28:31:8b:15:c1:a5: 7b:f8:b4:04:76:39:76:3f:a3:40:8c:ef:b2:9b:17: e3:9c:71:cc:af:ae:a5:d9:c2:55:99:5f:36:cf:d6: b0:97:4d:a8:48:8f:5b:44:7c:14:39:20:45:46:da: e6:ec:64:4f:9d:4f:36:2b:e5:dc:42:39:4c:39:13: 70:f4:ba:47:b6:72:d5:c5:51:0a:87:1e:0d:9d:9b: c1:af:72:1b:a7:8e:82:da:3e:84:a0:b8:75:e2:fe: 72:06:4d:34:e5:4a:9f:cb:ca:16:5f:b5:60:50:ec: 0d:c9:4c:36:9c:d1:08:c7:52:01:d6:db:73:eb:86: d0:c4:46:63:c8:c9:82:40:6b:1c:d7:98:f8:2c:95: e5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:76:04:E3:EC:88:7D:44:2C:B9:22:6E:34:52:60:CA:75:41:C1:11 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/38 Signature Algorithm: sha256WithRSAEncryption 9a:75:e8:78:99:a9:83:09:25:28:34:fb:7a:76:1b:b4:c3:d5: 24:2c:44:5f:33:16:e5:d1:8c:43:b7:9f:bf:92:f1:55:5d:7e: 92:ca:64:a8:ad:1f:bb:b7:53:07:a8:a3:25:b1:c6:f2:68:4d: 1a:8d:21:49:50:10:6f:e4:ff:e6:ee:ea:60:91:a1:1d:8b:f6: e1:d9:76:df:ec:05:1a:71:71:3e:4b:21:fc:e1:40:cd:4c:a1: 2b:68:b3:b4:9e:ca:29:3d:86:12:03:29:97:ce:cc:de:24:f2: 19:78:3f:d3:37:35:91:42:c8:4e:f8:cd:c0:25:8d:7c:44:f5: 5b:56:aa:5b:f1:25:a3:68:5a:e0:93:4c:07:03:b4:1c:55:ee: 7c:40:96:87:42:ee:1d:1f:0a:9a:e0:c4:d2:4b:87:72:f3:88: bc:1b:a1:9c:a1:de:91:05:2c:d4:2b:1b:83:93:f1:76:f5:43: 8a:39:89:6a:65:73:7f:60:79:55:31:51:52:12:e4:62:10:b0: 2d:f5:a8:48:96:e9:f9:c4:5a:d4:a6:2e:b3:aa:8b:4e:50:92: 85:f3:14:a2:51:63:56:17:3e:11:44:35:a3:43:d1:9a:56:08: c7:17:94:59:f9:08:a5:c6:1d:72:1e:13:3a:bd:e4:26:72:aa: 09:79:37:5e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUQAnLKdDBuUrm97CzLJUkZpJRScUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDAzOFoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAODI0OWZjOTU0YWYwYjg4M2Y2MDY0 ZWNhN2I1NWFiY2M5YzJkNzU1MDI5NDk5MjAyYzVjYTJmYjQwM2NlZjFmODEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhfJrr9oaBnyF2S7OWSqTlPok7C67 a6rNgtXR07sCpGT2LidpDtfAXyQmplkCHbqSHZqYeWsjuWemxjbbIrWbNj7s4Gf4 ePWHa6tk6t2N619900hFPczF8/DaeJpcQD+4V5WDRKuKcENPjx4H6qCPkmgoMYsV waV7+LQEdjl2P6NAjO+ymxfjnHHMr66l2cJVmV82z9awl02oSI9bRHwUOSBFRtrm 7GRPnU82K+XcQjlMORNw9LpHtnLVxVEKhx4NnZvBr3Ibp46C2j6EoLh14v5yBk00 5Uqfy8oWX7VgUOwNyUw2nNEIx1IB1ttz64bQxEZjyMmCQGsc15j4LJXl5wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNp2BOPsiH1ELLkibjRSYMp1QcERMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzc4OGMzOTAwLWU0ZDUtNDM5Yi1iMjMxLTNhNjliNTM1NDkwMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAAwDQYJKoZIhvcNAQELBQADggEBAJp16HiZqYMJJSg0+3p2 G7TD1SQsRF8zFuXRjEO3n7+S8VVdfpLKZKitH7u3UweooyWxxvJoTRqNIUlQEG/k /+bu6mCRoR2L9uHZdt/sBRpxcT5LIfzhQM1MoStos7Seyik9hhIDKZfOzN4k8hl4 P9M3NZFCyE74zcAljXxE9VtWqlvxJaNoWuCTTAcDtBxV7nxAlodC7h0fCprgxNJL h3LziLwboZyh3pEFLNQrG4OT8Xb1Q4o5iWplc39geVUxUVIS5GIQsC31qEiW6fnE WtSmLrOqi05QkoXzFKJRY1YXPhFENaND0ZpWCMcXlFn5CKXGHXIeEzq95CZyqgl5 N14= -----END CERTIFICATE-----Generated at Sat Jun 13 05:39:07 2026 by rpki-client