$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa File: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (raw, json) Hash identifier: wAZ2xLfBS0TNfgTxdfGt4+TvDAZi/RAJVlGyotQ9It0= Subject key identifier: D5:8B:69:3C:94:E4:2C:6E:27:C2:7A:0E:17:D3:41:CB:18:67:CA:B3 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 435B0E4B80C7C0325820AC80A170F6D7267EF017 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa Signing time: Sat 16 May 2026 00:00:49 +0000 ROA not before: Sat 16 May 2026 00:00:49 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5b:0e:4b:80:c7:c0:32:58:20:ac:80:a1:70:f6:d7:26:7e:f0:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:49 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=a7bc228d39a95bacf8e87dabef535bd1c91dd6077c060dc555c857e580759d5d, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:54:72:8e:2e:1b:ca:b1:87:8e:6e:65:47:f7: f5:54:49:7a:55:d1:26:d5:fb:79:8a:22:dd:ed:d8: 63:0f:49:3b:b4:b5:fb:a2:70:71:eb:18:c2:7c:d5: 6a:98:48:52:44:cd:f5:21:a4:c7:b8:a3:a4:0f:2b: 62:f8:4c:fe:a6:3c:09:28:7b:85:ef:cf:74:0f:b7: 47:ec:0d:19:cc:8c:17:cd:3d:87:43:56:ba:d9:49: d3:4a:9a:1b:5b:65:8e:ac:9f:f4:d8:48:be:8a:a5: 3d:98:c0:d8:7e:d6:36:b6:8c:f5:09:47:f3:a7:3f: 9d:e2:71:5b:a9:25:63:b2:02:3a:e9:80:65:9f:71: e5:e7:8a:a8:5f:15:ce:d5:f7:20:7e:71:1d:e0:32: c1:34:a6:6a:29:03:6e:9b:f2:f1:ca:bc:34:e7:56: 4d:d7:76:8c:ee:d3:90:74:a7:8a:2d:ff:4f:7e:ec: 16:e9:f2:b1:51:10:6a:ad:01:99:f6:e1:ee:4c:96: a1:86:fc:dd:f6:92:de:69:d6:2e:50:d8:e8:8e:0f: 72:e5:eb:3a:48:1d:73:1d:e4:4d:b3:4b:27:74:a2: 71:a3:46:11:7a:0d:5e:c5:e2:86:73:f7:a5:12:96: e6:a3:b2:4f:f3:30:c3:04:75:c4:cb:c2:e1:8e:ff: 00:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:8B:69:3C:94:E4:2C:6E:27:C2:7A:0E:17:D3:41:CB:18:67:CA:B3 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8020::/48 Signature Algorithm: sha256WithRSAEncryption 76:11:6a:0c:b3:d6:3b:c3:21:90:48:a4:ab:7b:d6:54:45:f4: 24:e4:e3:20:c1:24:8f:02:1b:eb:4b:94:38:a8:a0:39:3e:72: fd:12:cb:b1:0a:6e:52:bc:c1:f0:7e:4a:4e:ee:2e:e0:84:00: e1:83:f1:73:dd:46:75:28:86:98:60:9a:35:7a:7c:e3:e4:ab: d2:44:2c:b2:9c:5e:68:5c:77:84:7b:18:0e:2c:43:07:47:3c: e9:23:e7:00:7d:88:49:80:08:49:aa:6c:a8:f6:84:7c:19:28: df:3a:65:32:8d:1e:60:04:55:07:3a:51:70:57:62:93:39:b1: 75:fc:21:aa:6c:14:e9:8a:e8:91:2a:69:8e:24:a5:18:ac:3f: 94:e5:f4:7a:55:b5:68:6c:bb:e7:e2:3f:7f:5b:53:9b:6f:dc: 62:45:fa:2e:4c:f9:01:53:21:df:4c:34:d2:8c:85:cf:ad:fb: 39:98:94:ba:95:8f:b8:58:5a:9a:53:e0:56:07:d9:e4:5f:d3: 35:94:cf:6c:71:1c:05:e9:f8:f3:87:13:f8:97:d4:ed:63:dd: 4a:a3:77:ff:f4:96:bf:e1:33:cb:6a:24:3c:7b:1a:a6:5c:c2: d1:fd:96:98:e1:ae:9f:54:35:52:c9:ce:de:f2:e8:b3:20:f6: c2:12:9a:74 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUQ1sOS4DHwDJYIKyAoXD21yZ+8BcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA0OVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAYTdiYzIyOGQzOWE5NWJhY2Y4ZTg3 ZGFiZWY1MzViZDFjOTFkZDYwNzdjMDYwZGM1NTVjODU3ZTU4MDc1OWQ1ZDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1Ryji4byrGHjm5lR/f1VEl6VdEm 1ft5iiLd7dhjD0k7tLX7onBx6xjCfNVqmEhSRM31IaTHuKOkDyti+Ez+pjwJKHuF 7890D7dH7A0ZzIwXzT2HQ1a62UnTSpobW2WOrJ/02Ei+iqU9mMDYftY2toz1CUfz pz+d4nFbqSVjsgI66YBln3Hl54qoXxXO1fcgfnEd4DLBNKZqKQNum/Lxyrw051ZN 13aM7tOQdKeKLf9PfuwW6fKxURBqrQGZ9uHuTJahhvzd9pLeadYuUNjojg9y5es6 SB1zHeRNs0sndKJxo0YReg1exeKGc/elEpbmo7JP8zDDBHXEy8Lhjv8AiwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNWLaTyU5CxuJ8J6DhfTQcsYZ8qzMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2FiNGFkMTg1LTJiZmItNDI4MS05ZTIzLTAwYTJhYjRiNmU4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4AgMA0GCSqGSIb3DQEBCwUAA4IBAQB2EWoMs9Y7wyGQSKSr e9ZURfQk5OMgwSSPAhvrS5Q4qKA5PnL9EsuxCm5SvMHwfkpO7i7ghADhg/Fz3UZ1 KIaYYJo1enzj5KvSRCyynF5oXHeEexgOLEMHRzzpI+cAfYhJgAhJqmyo9oR8GSjf OmUyjR5gBFUHOlFwV2KTObF1/CGqbBTpiuiRKmmOJKUYrD+U5fR6VbVobLvn4j9/ W1Obb9xiRfouTPkBUyHfTDTSjIXPrfs5mJS6lY+4WFqaU+BWB9nkX9M1lM9scRwF 6fjzhxP4l9TtY91Ko3f/9Ja/4TPLaiQ8exqmXMLR/ZaY4a6fVDVSyc7e8uizIPbC Epp0 -----END CERTIFICATE-----Generated at Sat Jun 13 05:37:56 2026 by rpki-client