$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa File: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (raw, json) Hash identifier: guHHuI2vnqS3d6vB/GO54qKXZ5BSJtgPw1d2F9vcg+o= Subject key identifier: 4E:1B:3A:4C:FB:F5:32:F2:34:11:60:15:E7:7C:E1:82:20:99:74:18 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 4CD808D6B18D5363618A71C1BF5F246E7D5EA1B3 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa Signing time: Tue 24 Feb 2026 00:10:41 +0000 ROA not before: Tue 24 Feb 2026 00:10:41 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d8:08:d6:b1:8d:53:63:61:8a:71:c1:bf:5f:24:6e:7d:5e:a1:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 24 00:10:41 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=e39ad11e048f72f38b3cd1e687d658dad7224fd5a358f1d64bd7c93d8b879e0e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:86:11:82:bd:fe:3a:46:30:4f:e5:44:f7:bf: b6:c9:2e:10:8f:80:02:01:76:e9:32:fd:03:a2:b9: a3:fa:1d:b4:8a:08:8e:ef:ac:31:b4:89:3f:b9:67: 8a:0f:3f:4f:f2:77:ad:c8:22:80:e1:f6:c8:34:94: f8:db:9f:0c:6c:48:2a:ac:38:df:15:a0:29:44:15: 80:9f:70:5d:8e:ee:ff:6f:c2:15:f4:b8:f1:27:27: c8:ee:b1:56:a1:7d:e4:ba:b6:81:e7:ba:60:83:13: 70:16:a1:61:b9:f5:eb:e2:b8:7e:ee:1f:aa:be:9e: ea:94:58:94:b2:85:2b:9f:7b:88:71:60:9d:ba:89: 62:26:4b:41:38:73:f3:30:cc:e8:24:0b:e6:fb:30: c1:80:37:42:d1:a5:a3:6d:c7:4a:15:3f:80:ae:39: 69:ee:4e:b1:1b:4f:45:93:ae:b4:85:7b:7a:5d:ab: e3:ca:2a:b9:73:5a:83:5c:45:99:0f:9c:31:e2:54: 16:f3:c4:59:27:8d:de:07:e2:49:c3:08:67:46:0c: e4:2f:25:7e:60:d6:d2:0e:8d:81:de:2d:9e:60:9f: 6e:c1:a8:15:d8:85:f0:85:7b:06:f9:79:36:32:50: 88:51:9b:21:de:73:e4:f2:6e:21:1f:b6:28:59:91: 4d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1B:3A:4C:FB:F5:32:F2:34:11:60:15:E7:7C:E1:82:20:99:74:18 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000::/24 Signature Algorithm: sha256WithRSAEncryption 10:81:40:1c:af:bc:e4:1a:2e:f0:b8:84:2d:55:96:b5:c3:e4: 22:5b:66:3d:f6:94:d7:03:4f:14:cc:55:e5:c3:f0:b5:a3:e0: a3:56:61:0a:a2:6d:a2:c6:45:19:0a:1a:84:95:e9:4b:76:a4: 4d:00:c4:81:b3:39:bd:d7:46:61:ed:b7:19:93:ee:e8:29:fd: 8f:88:e0:28:d9:1c:d6:20:0c:49:ca:ac:0d:ab:d3:05:9c:14: 23:cd:74:fe:7b:9b:91:fa:97:bf:68:b3:e6:a1:bf:45:23:97: 1b:23:76:06:2a:0d:73:cb:17:67:63:79:8e:4e:c7:fc:b3:d0: 78:2e:2f:5d:74:0f:d6:67:12:60:7d:a4:cc:e5:96:3d:12:44: f8:e4:59:78:92:6d:75:ec:6e:13:34:e6:f5:38:8a:a3:36:c8: 10:b9:3d:11:15:21:dd:f9:a1:93:6a:04:7b:1f:7b:59:c0:8a: 5b:ad:73:e1:ae:24:1b:0a:5f:b4:ca:11:99:a3:5c:40:f3:1a: 8e:0b:c3:d5:c7:25:88:9b:a5:26:96:2b:cc:ec:6c:6e:18:e2: 7e:e8:e6:68:9b:50:a9:70:a8:97:0a:04:14:d5:42:ea:89:7c: 75:2d:d1:34:4c:d0:09:6a:cd:b7:2a:d6:4d:23:61:dc:3e:da: 7d:d6:14:ce -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUTNgI1rGNU2NhinHBv18kbn1eobMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNDAwMTA0MVoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAZTM5YWQxMWUwNDhmNzJmMzhiM2Nk MWU2ODdkNjU4ZGFkNzIyNGZkNWEzNThmMWQ2NGJkN2M5M2Q4Yjg3OWUwZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8IYRgr3+OkYwT+VE97+2yS4Qj4AC AXbpMv0Dormj+h20igiO76wxtIk/uWeKDz9P8netyCKA4fbINJT4258MbEgqrDjf FaApRBWAn3Bdju7/b8IV9LjxJyfI7rFWoX3kuraB57pggxNwFqFhufXr4rh+7h+q vp7qlFiUsoUrn3uIcWCduoliJktBOHPzMMzoJAvm+zDBgDdC0aWjbcdKFT+Arjlp 7k6xG09Fk660hXt6Xavjyiq5c1qDXEWZD5wx4lQW88RZJ43eB+JJwwhnRgzkLyV+ YNbSDo2B3i2eYJ9uwagV2IXwhXsG+Xk2MlCIUZsh3nPk8m4hH7YoWZFN6wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFE4bOkz79TLyNBFgFed84YIgmXQYMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzk3N2Y5MGUyLWQyNTctNGRkZS05NzQwLWIwMzkxNDU4ZDhlZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJA+AMA0GCSqGSIb3DQEBCwUAA4IBAQAQgUAcr7zkGi7wuIQtVZa1 w+QiW2Y99pTXA08UzFXlw/C1o+CjVmEKom2ixkUZChqElelLdqRNAMSBszm910Zh 7bcZk+7oKf2PiOAo2RzWIAxJyqwNq9MFnBQjzXT+e5uR+pe/aLPmob9FI5cbI3YG Kg1zyxdnY3mOTsf8s9B4Li9ddA/WZxJgfaTM5ZY9EkT45Fl4km117G4TNOb1OIqj NsgQuT0RFSHd+aGTagR7H3tZwIpbrXPhriQbCl+0yhGZo1xA8xqOC8PVxyWIm6Um livM7GxuGOJ+6OZom1CpcKiXCgQU1ULqiXx1LdE0TNAJas23KtZNI2HcPtp91hTO -----END CERTIFICATE-----Generated at Sun Mar 1 21:43:40 2026 by rpki-client