$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3080b31-8684-4ce8-b4e6-33db63d13627.roa File: a3080b31-8684-4ce8-b4e6-33db63d13627.roa (raw, json) Hash identifier: W1sQ4LIriRjTIQmtOJrJiJPb2b2HUs+/5b786m7aFcA= Subject key identifier: 26:E4:43:0E:DD:EA:51:FE:00:01:13:2F:A4:D9:DA:44:6D:9F:3D:DF Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 665827DF970BAF66C5B14E9EBD2905975C4D5E68 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3080b31-8684-4ce8-b4e6-33db63d13627.roa Signing time: Sat 16 May 2026 00:00:47 +0000 ROA not before: Sat 16 May 2026 00:00:47 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8060::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:58:27:df:97:0b:af:66:c5:b1:4e:9e:bd:29:05:97:5c:4d:5e:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:47 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=a8d655ec042565edefce0d85a49e4abd7c3d66a7d1790e3b1627276f7f5cfe4a, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d0:52:b7:5b:11:e6:0b:bd:42:47:87:05:b7: 23:73:1e:33:12:38:eb:e6:97:7a:15:bc:55:53:b8: f2:a1:9a:44:58:0f:e7:91:2e:1d:c6:33:3e:61:ad: be:ba:b2:fb:55:2e:3b:34:df:c9:18:60:bd:a8:17: 7d:c3:47:d4:f4:a9:7f:3e:77:a2:5f:96:9a:11:2a: 92:b6:b7:3a:27:d6:ea:26:41:e4:0e:b1:db:46:e0: 13:a3:62:ee:10:3c:40:6f:b1:4f:48:3f:d5:8e:b0: c0:a5:84:00:01:ce:84:96:f7:a8:2f:2e:3a:b0:2c: c0:97:00:20:20:7a:8e:67:f1:52:fe:f1:70:f8:5a: 80:c0:a6:39:0b:d6:ad:bd:81:5f:1e:37:1f:34:3b: 73:07:96:75:22:e7:70:b6:18:45:f7:05:cd:dd:f7: 9d:aa:12:a1:a8:39:ef:37:0e:34:c7:46:c2:0b:c3: 56:c5:03:b4:f6:89:c6:8d:f3:2d:b6:80:7c:f6:63: 96:ec:72:9a:89:e8:e4:c2:8f:e8:7d:55:fe:55:fa: 59:9c:39:8a:35:e2:e0:03:b7:a6:d8:8a:0a:07:a8: 8f:1f:a8:a6:fd:04:22:9c:06:6f:63:e5:cd:d0:d0: d8:0c:b0:cd:3b:7a:0a:67:88:2f:bf:fa:56:a9:cc: 68:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:E4:43:0E:DD:EA:51:FE:00:01:13:2F:A4:D9:DA:44:6D:9F:3D:DF X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3080b31-8684-4ce8-b4e6-33db63d13627.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8060::/32 Signature Algorithm: sha256WithRSAEncryption 6f:7c:17:5c:15:81:4b:f1:fe:a6:d6:f3:f8:ea:57:48:8e:b7: 1e:fc:d2:8f:65:91:b1:59:f6:f6:8a:14:70:8c:51:fb:b6:2f: 93:fa:6e:7d:12:66:2c:c2:c3:ab:6b:b3:ee:cd:cb:06:cd:dd: 05:ea:84:22:15:6c:1d:95:d9:39:e3:b5:18:8f:2f:95:cf:86: ae:59:23:9e:0b:f3:0b:a3:2c:de:55:bf:c7:b6:cd:8b:93:6c: 2d:b5:60:e6:02:58:c2:0e:fd:c8:e9:b1:23:ef:dc:2d:78:c9: dc:ab:80:a7:f7:a6:fa:23:e3:3a:39:1d:3c:e4:1f:9b:21:ea: 81:3a:e9:94:e2:ac:21:9e:55:a5:fe:ca:bf:52:54:f9:5a:6e: 9b:f8:f7:d5:9c:f1:1e:b7:fc:6b:29:46:83:85:50:6e:82:36: 2f:ce:8e:37:e0:bb:9d:69:34:a2:92:fd:6a:4c:5f:52:2e:e5: 69:71:b6:91:01:74:e6:4a:2a:8d:32:18:31:a6:41:aa:34:a5: ab:fa:cb:db:54:d2:ef:dd:ff:1c:12:1a:e9:9e:45:dc:46:23: d7:e8:af:67:b0:bc:1e:2d:57:5d:9e:0d:09:8a:e8:fb:a3:ea: 3f:51:f6:56:3b:3d:df:0f:b0:5b:b3:16:e6:37:29:c2:9c:9f: 1e:94:4c:8d -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUZlgn35cLr2bFsU6evSkFl1xNXmgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA0N1oX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAYThkNjU1ZWMwNDI1NjVlZGVmY2Uw ZDg1YTQ5ZTRhYmQ3YzNkNjZhN2QxNzkwZTNiMTYyNzI3NmY3ZjVjZmU0YTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9BSt1sR5gu9QkeHBbcjcx4zEjjr 5pd6FbxVU7jyoZpEWA/nkS4dxjM+Ya2+urL7VS47NN/JGGC9qBd9w0fU9Kl/Pnei X5aaESqStrc6J9bqJkHkDrHbRuATo2LuEDxAb7FPSD/VjrDApYQAAc6ElveoLy46 sCzAlwAgIHqOZ/FS/vFw+FqAwKY5C9atvYFfHjcfNDtzB5Z1IudwthhF9wXN3fed qhKhqDnvNw40x0bCC8NWxQO09onGjfMttoB89mOW7HKaiejkwo/ofVX+VfpZnDmK NeLgA7em2IoKB6iPH6im/QQinAZvY+XN0NDYDLDNO3oKZ4gvv/pWqcxoSQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFCbkQw7d6lH+AAETL6TZ2kRtnz3fMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2EzMDgwYjMxLTg2ODQtNGNlOC1iNGU2LTMzZGI2M2QxMzYyNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJA+AYDANBgkqhkiG9w0BAQsFAAOCAQEAb3wXXBWBS/H+ptbz+OpX SI63HvzSj2WRsVn29ooUcIxR+7Yvk/pufRJmLMLDq2uz7s3LBs3dBeqEIhVsHZXZ OeO1GI8vlc+GrlkjngvzC6Ms3lW/x7bNi5NsLbVg5gJYwg79yOmxI+/cLXjJ3KuA p/em+iPjOjkdPOQfmyHqgTrplOKsIZ5Vpf7Kv1JU+Vpum/j31ZzxHrf8aylGg4VQ boI2L86ON+C7nWk0opL9akxfUi7laXG2kQF05koqjTIYMaZBqjSlq/rL21TS793/ HBIa6Z5F3EYj1+ivZ7C8Hi1XXZ4NCYro+6PqP1H2Vjs93w+wW7MW5jcpwpyfHpRM jQ== -----END CERTIFICATE-----Generated at Sat Jun 13 06:42:28 2026 by rpki-client