$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa File: 8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa (raw, json) Hash identifier: +ZuzKW34Pgl/oRT6fNdBUs8wZfWDJGNwmfxXvgHQGzM= Subject key identifier: 93:DA:83:83:F3:7F:35:BA:0C:E1:46:62:29:F0:5C:13:CE:BA:3E:7F Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0B6664054A3F00CD1946245FC5882048CA29869D Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa Signing time: Sat 16 May 2026 00:00:52 +0000 ROA not before: Sat 16 May 2026 00:00:52 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:66:64:05:4a:3f:00:cd:19:46:24:5f:c5:88:20:48:ca:29:86:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:52 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=013af18b196750759b78ad6528be6005de3057e276d8a882bd3bc0e074a6adab, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fb:4a:68:ab:81:ab:4b:c7:b8:e8:99:19:ab: 1a:1f:e6:ad:90:2c:9d:32:1b:42:f2:91:cc:b9:54: 4a:cb:b8:58:69:14:d9:67:77:24:ec:b3:83:0e:2c: 07:a5:2f:b9:5c:47:f7:93:a8:f7:a4:4e:52:44:da: 01:3f:9b:7e:84:e3:eb:6d:fa:47:35:e9:2f:81:f8: 22:91:73:56:2d:24:0d:49:89:f9:12:e0:a6:19:cc: ef:de:8a:85:0a:07:1d:c3:91:9e:51:78:09:ec:85: 56:1e:00:39:ec:d4:6a:ea:7d:eb:f3:a1:9f:4c:d4: 04:c3:e9:75:b6:2a:c5:7a:bf:8f:75:d2:dc:74:df: 7a:21:6e:d7:b2:93:f4:19:82:c6:10:ab:26:b6:14: 3d:b5:6b:ce:85:cd:26:c6:e4:79:e6:af:7c:2b:80: 1e:03:94:9e:0c:99:2d:d2:87:46:eb:85:55:89:57: 01:ae:9c:f8:68:f3:9f:bc:d1:ae:5c:dd:31:82:12: ad:b6:8b:85:3b:8f:c2:49:29:ca:b5:4e:d5:cc:a2: 56:c6:f7:1c:31:d5:37:94:c6:79:82:3a:da:d0:07: 6f:ae:90:5d:02:4a:b0:10:95:57:53:17:bc:00:d4: 1a:7a:d6:ed:57:ce:4e:8a:03:9f:b3:1c:6f:49:2a: e5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:DA:83:83:F3:7F:35:BA:0C:E1:46:62:29:F0:5C:13:CE:BA:3E:7F X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:400::/38 Signature Algorithm: sha256WithRSAEncryption 71:dc:25:de:1b:de:59:a7:7c:fa:c2:55:38:65:57:84:89:6d: 04:36:f2:29:05:29:40:d4:1e:b0:05:d2:0c:f0:bb:d7:a5:d2: ef:cf:6c:78:ae:1e:01:f0:fe:14:35:1d:70:ec:22:dc:d3:4c: ed:ea:ef:4d:37:f8:e5:4d:43:6e:a8:94:30:bd:9c:3f:7c:64: 22:60:ae:59:5c:a9:19:08:32:27:32:cd:c1:28:b8:ef:5b:e7: 92:b7:4b:ce:cb:fa:2c:94:63:18:85:16:68:a1:66:ab:72:97: 36:e5:ad:fc:36:11:6b:19:35:30:97:35:b2:25:79:52:00:d9: 87:65:ae:5d:90:db:32:cb:02:ee:2c:c7:30:7a:9d:96:a1:1b: 18:fe:5f:6f:11:c7:55:2a:ae:1f:a6:db:ef:6c:cd:e3:4f:55: 44:f7:e2:e9:2a:2a:74:5b:21:81:dc:09:39:df:71:5b:d6:13: a5:55:df:fd:e9:b1:60:6c:c8:b4:f4:73:58:c0:d5:97:87:5f: e1:0c:0b:d2:ef:70:33:f3:0c:d8:3a:d5:4b:59:75:af:cf:12: 5e:8c:a0:7c:c6:8d:9b:12:c7:0e:19:e7:dd:57:b7:28:39:b5: 23:00:f8:12:70:81:d2:d0:87:51:26:4b:d7:f0:93:b0:dc:c4: 73:89:7c:1b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUC2ZkBUo/AM0ZRiRfxYggSMophp0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA1MloX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAMDEzYWYxOGIxOTY3NTA3NTliNzhh ZDY1MjhiZTYwMDVkZTMwNTdlMjc2ZDhhODgyYmQzYmMwZTA3NGE2YWRhYjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqftKaKuBq0vHuOiZGasaH+atkCyd MhtC8pHMuVRKy7hYaRTZZ3ck7LODDiwHpS+5XEf3k6j3pE5SRNoBP5t+hOPrbfpH NekvgfgikXNWLSQNSYn5EuCmGczv3oqFCgcdw5GeUXgJ7IVWHgA57NRq6n3r86Gf TNQEw+l1tirFer+PddLcdN96IW7XspP0GYLGEKsmthQ9tWvOhc0mxuR55q98K4Ae A5SeDJkt0odG64VViVcBrpz4aPOfvNGuXN0xghKttouFO4/CSSnKtU7VzKJWxvcc MdU3lMZ5gjra0AdvrpBdAkqwEJVXUxe8ANQaetbtV85OigOfsxxvSSrlGwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJPag4PzfzW6DOFGYinwXBPOuj5/MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzhiZjMxMWU5LWQyN2YtNDZmYS04ZjA1LTJlZDZiMTc2YjViOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAQwDQYJKoZIhvcNAQELBQADggEBAHHcJd4b3lmnfPrCVThl V4SJbQQ28ikFKUDUHrAF0gzwu9el0u/PbHiuHgHw/hQ1HXDsItzTTO3q7003+OVN Q26olDC9nD98ZCJgrllcqRkIMicyzcEouO9b55K3S87L+iyUYxiFFmihZqtylzbl rfw2EWsZNTCXNbIleVIA2Ydlrl2Q2zLLAu4sxzB6nZahGxj+X28Rx1Uqrh+m2+9s zeNPVUT34ukqKnRbIYHcCTnfcVvWE6VV3/3psWBsyLT0c1jA1ZeHX+EMC9LvcDPz DNg61UtZda/PEl6MoHzGjZsSxw4Z591Xtyg5tSMA+BJwgdLQh1EmS9fwk7DcxHOJ fBs= -----END CERTIFICATE-----Generated at Sat Jun 13 05:39:59 2026 by rpki-client