$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa File: 788c3900-e4d5-439b-b231-3a69b5354901.roa (raw, json) Hash identifier: hKYOMeBR7eyZkehSw9qPfGnomgSrxeyvGlKnaUJywVI= Subject key identifier: D3:80:52:2C:4C:DE:F7:80:3E:74:2A:DC:36:8E:80:C5:85:F4:FD:BE Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 4F5B3DB116A40D5FA13B3ED4237E27E975A51589 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa Signing time: Wed 25 Feb 2026 00:00:33 +0000 ROA not before: Wed 25 Feb 2026 00:00:33 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:5b:3d:b1:16:a4:0d:5f:a1:3b:3e:d4:23:7e:27:e9:75:a5:15:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 25 00:00:33 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=a89340fb928f2ed887a370fb2d2c72dadb76862ac66d5b28d628be52a0fd8bd0, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:75:fa:60:33:32:ed:39:f5:2d:dc:2f:31:04: f0:59:c3:22:c7:91:81:54:c8:de:63:87:f4:5e:8b: b2:50:41:49:44:23:25:60:bf:f4:35:40:85:15:12: 04:26:86:d9:4b:40:13:36:fa:78:3f:e1:1b:84:dc: d3:6e:b0:89:fe:5a:a0:15:b9:f0:1d:71:b1:a8:29: 54:a0:f0:4e:a5:a0:e1:d2:be:0f:08:e6:ba:3b:52: 4e:0f:06:89:b9:e7:81:4b:eb:6d:23:38:9a:83:82: 21:a4:f1:87:1d:34:c3:07:6a:b9:48:c9:ea:43:77: 8c:7e:54:33:a5:d9:3a:ba:c4:ea:ed:df:1d:36:6c: f1:db:48:fd:d0:18:78:02:26:09:1a:5a:e0:2c:d4: 2c:33:4e:4f:8f:ce:81:4e:77:89:11:74:c2:c8:7e: 9a:c9:37:30:47:75:50:88:95:0d:a7:e3:52:37:36: a6:47:18:38:c8:a0:3d:d4:d2:27:a7:ab:d6:fa:c9: 45:6e:f7:02:d9:59:8c:f8:cd:43:cf:b9:b0:4e:aa: b2:aa:22:ec:e9:53:a8:0f:a8:e7:a2:6d:02:ee:19: 67:ca:9f:36:fd:7f:05:3e:1f:34:6f:49:09:43:85: cb:63:68:5a:7b:81:c6:f2:22:fd:55:95:d4:85:aa: 16:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:80:52:2C:4C:DE:F7:80:3E:74:2A:DC:36:8E:80:C5:85:F4:FD:BE X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/38 Signature Algorithm: sha256WithRSAEncryption 3e:82:20:ab:ac:5c:48:ed:1f:93:40:17:46:15:4a:2a:cf:41: 53:67:27:c5:9b:6c:8f:3d:61:f8:dc:f2:96:e2:cf:19:f8:21: fd:8a:c1:8d:00:fe:dd:69:04:bf:b3:34:d2:dd:31:de:b4:72: b9:05:17:9f:1c:13:44:88:90:f9:5a:6c:fe:91:6d:13:5f:2b: 64:3d:68:67:e6:cb:c7:e9:ae:02:9d:32:7f:f3:9f:c5:5f:9e: 2a:ca:90:43:d0:dc:c6:94:53:58:6b:6c:4d:68:ac:44:d1:19: a5:ad:2d:d1:09:3c:cb:d8:7f:62:c7:b9:f0:07:cc:2e:cf:12: 5b:d5:c2:e3:d7:ef:ac:6a:1c:39:3b:48:d1:78:81:aa:36:02: c7:fa:0e:dc:1b:9f:e1:5a:74:4b:0d:6f:3c:46:3d:c6:49:dd: c7:ef:95:8e:f4:c2:d8:07:1f:08:c1:71:ea:40:54:f3:b2:a6: 78:4f:48:0c:02:0d:5d:0a:c4:c9:67:ca:e7:11:90:fb:65:c1: ed:ed:ea:67:6a:95:99:3f:f8:fd:36:23:e7:2c:f5:7b:99:50: 16:44:d5:89:4e:4c:13:2f:90:fc:f3:a8:b0:8a:e3:0d:48:c0: 80:c1:80:b6:52:65:d6:b4:50:30:cc:08:a2:03:8b:10:f0:9f: 4d:ef:3d:ce -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUT1s9sRakDV+hOz7UI34n6XWlFYkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNTAwMDAzM1oX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAYTg5MzQwZmI5MjhmMmVkODg3YTM3 MGZiMmQyYzcyZGFkYjc2ODYyYWM2NmQ1YjI4ZDYyOGJlNTJhMGZkOGJkMDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3X6YDMy7Tn1LdwvMQTwWcMix5GB VMjeY4f0XouyUEFJRCMlYL/0NUCFFRIEJobZS0ATNvp4P+EbhNzTbrCJ/lqgFbnw HXGxqClUoPBOpaDh0r4PCOa6O1JODwaJueeBS+ttIziag4IhpPGHHTTDB2q5SMnq Q3eMflQzpdk6usTq7d8dNmzx20j90Bh4AiYJGlrgLNQsM05Pj86BTneJEXTCyH6a yTcwR3VQiJUNp+NSNzamRxg4yKA91NInp6vW+slFbvcC2VmM+M1Dz7mwTqqyqiLs 6VOoD6jnom0C7hlnyp82/X8FPh80b0kJQ4XLY2hae4HG8iL9VZXUhaoWOwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNOAUixM3veAPnQq3DaOgMWF9P2+MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzc4OGMzOTAwLWU0ZDUtNDM5Yi1iMjMxLTNhNjliNTM1NDkwMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAAwDQYJKoZIhvcNAQELBQADggEBAD6CIKusXEjtH5NAF0YV SirPQVNnJ8WbbI89Yfjc8pbizxn4If2KwY0A/t1pBL+zNNLdMd60crkFF58cE0SI kPlabP6RbRNfK2Q9aGfmy8fprgKdMn/zn8VfnirKkEPQ3MaUU1hrbE1orETRGaWt LdEJPMvYf2LHufAHzC7PElvVwuPX76xqHDk7SNF4gao2Asf6Dtwbn+FadEsNbzxG PcZJ3cfvlY70wtgHHwjBcepAVPOypnhPSAwCDV0KxMlnyucRkPtlwe3t6mdqlZk/ +P02I+cs9XuZUBZE1YlOTBMvkPzzqLCK4w1IwIDBgLZSZda0UDDMCKIDixDwn03v Pc4= -----END CERTIFICATE-----Generated at Sun Mar 1 21:42:31 2026 by rpki-client