$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3f80673-8b1b-4af1-ae60-e74663f3df69.roa File: a3f80673-8b1b-4af1-ae60-e74663f3df69.roa (raw, json) Hash identifier: ZIdLonqGtREsWpmc/YKycfyLm9gBDbtl8teHAE1KtPY= Subject key identifier: A7:58:A4:E0:5C:FA:24:A9:03:A6:40:6B:01:5D:49:75:30:36:56:66 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 6F43E6EFA94F6B062D1F5264CA7DBB08C0BA119A Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3f80673-8b1b-4af1-ae60-e74663f3df69.roa Signing time: Sat 16 May 2026 00:00:51 +0000 ROA not before: Sat 16 May 2026 00:00:51 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:43:e6:ef:a9:4f:6b:06:2d:1f:52:64:ca:7d:bb:08:c0:ba:11:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:51 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=93e7fb00199b6b2fd8f2cbd8a144f9e970f230a5d78a7b0f09bd156b0b78e10e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:52:95:3c:04:cc:75:09:7f:48:eb:e3:fe:89: 48:ce:c7:e5:c7:f3:00:e6:b0:4d:97:e8:a1:0d:a4: 02:ba:ec:d5:87:6c:78:4d:40:1e:fd:49:e6:56:d1: 3c:48:d3:cb:84:dc:a7:3d:05:e8:a2:de:7f:1a:fb: 6d:e3:43:f7:6b:ba:49:df:91:ab:75:07:f0:30:e5: dd:2f:0c:7a:72:87:f8:6c:11:45:7d:1e:8e:91:04: 86:6f:57:8a:62:33:7d:1e:58:73:e2:d5:0d:e5:67: e2:64:8a:34:23:6d:da:de:8d:02:ef:d6:cd:20:38: 46:40:e8:69:0b:4d:36:ae:1b:69:76:f3:01:e3:f4: 64:07:2b:25:92:08:85:72:95:cc:09:97:15:6c:78: d0:f3:86:04:56:1d:29:7d:4a:f2:0b:cc:e6:aa:ac: 49:45:ed:35:74:68:82:9d:3f:82:57:c3:f0:8b:ca: 79:e3:5f:6c:cd:11:55:37:11:0c:17:02:60:04:00: ac:72:e7:86:2c:ce:f8:23:05:8d:76:ff:6d:73:25: 39:62:f4:83:cf:f4:84:61:8e:01:16:fa:e6:49:20: 06:53:99:36:1b:24:c4:a0:05:b2:cf:a9:65:46:27: 31:43:f3:3b:a9:3b:c2:ab:93:4a:e4:0e:c1:eb:d2: d3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:58:A4:E0:5C:FA:24:A9:03:A6:40:6B:01:5D:49:75:30:36:56:66 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3f80673-8b1b-4af1-ae60-e74663f3df69.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000:4000::/40 Signature Algorithm: sha256WithRSAEncryption 8c:02:db:d9:5f:7a:fb:c0:39:fd:80:4d:64:03:fd:42:b3:20: e3:50:22:29:31:15:73:0a:96:d7:75:b5:aa:8e:24:c3:ee:2a: 04:41:99:be:05:08:05:1a:bd:86:14:33:cd:66:e8:02:df:85: c2:d0:ca:90:2d:34:20:e6:1d:01:d2:66:e0:bf:5e:fc:d1:fe: f6:72:27:95:b8:58:e4:4d:08:f2:53:bf:be:ad:13:5d:94:f0: 2c:1a:b3:14:cc:5a:23:51:42:5a:ec:ad:10:02:82:4c:f5:e2: 0f:c5:da:e9:f8:60:d3:01:08:7d:c1:3b:21:2e:17:df:00:2e: 44:a5:bb:43:44:a5:3f:94:b6:8a:e3:64:08:6b:61:32:b8:60: e2:b4:90:ac:74:4c:e0:b0:f3:ec:99:71:1f:86:45:c4:ae:6d: c7:49:2f:0d:9a:40:74:c2:1a:c5:8d:cc:19:73:34:8f:7c:c8: 7e:a2:4e:dc:89:d1:0e:79:91:73:14:43:1a:a5:7c:00:7a:22: d8:22:02:17:48:e5:17:d0:f6:91:8f:1e:2c:bc:62:c5:b1:bf: 94:9c:b5:3a:3d:27:15:1f:e5:df:d3:ba:ba:d3:60:99:62:ad: 44:d1:39:6c:5c:65:69:5f:24:97:ef:4e:e9:af:37:71:9b:fd: f8:eb:f3:74 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUb0Pm76lPawYtH1Jkyn27CMC6EZowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA1MVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAOTNlN2ZiMDAxOTliNmIyZmQ4ZjJj YmQ4YTE0NGY5ZTk3MGYyMzBhNWQ3OGE3YjBmMDliZDE1NmIwYjc4ZTEwZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1KVPATMdQl/SOvj/olIzsflx/MA 5rBNl+ihDaQCuuzVh2x4TUAe/UnmVtE8SNPLhNynPQXoot5/Gvtt40P3a7pJ35Gr dQfwMOXdLwx6cof4bBFFfR6OkQSGb1eKYjN9Hlhz4tUN5WfiZIo0I23a3o0C79bN IDhGQOhpC002rhtpdvMB4/RkByslkgiFcpXMCZcVbHjQ84YEVh0pfUryC8zmqqxJ Re01dGiCnT+CV8Pwi8p5419szRFVNxEMFwJgBACscueGLM74IwWNdv9tcyU5YvSD z/SEYY4BFvrmSSAGU5k2GyTEoAWyz6llRicxQ/M7qTvCq5NK5A7B69LTrwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKdYpOBc+iSpA6ZAawFdSXUwNlZmMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2EzZjgwNjczLThiMWItNGFmMS1hZTYwLWU3NDY2M2YzZGY2OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+AAEAwDQYJKoZIhvcNAQELBQADggEBAIwC29lfevvAOf2ATWQD /UKzIONQIikxFXMKltd1taqOJMPuKgRBmb4FCAUavYYUM81m6ALfhcLQypAtNCDm HQHSZuC/XvzR/vZyJ5W4WORNCPJTv76tE12U8CwasxTMWiNRQlrsrRACgkz14g/F 2un4YNMBCH3BOyEuF98ALkSlu0NEpT+UtorjZAhrYTK4YOK0kKx0TOCw8+yZcR+G RcSubcdJLw2aQHTCGsWNzBlzNI98yH6iTtyJ0Q55kXMUQxqlfAB6ItgiAhdI5RfQ 9pGPHiy8YsWxv5SctTo9JxUf5d/TurrTYJlirUTROWxcZWlfJJfvTumvN3Gb/fjr 83Q= -----END CERTIFICATE-----Generated at Sat Jun 13 05:40:32 2026 by rpki-client