$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa File: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (raw, json) Hash identifier: 1MembfXo4C5517htGigZMQmGzirdM2MgND3eHm6b9jc= Subject key identifier: FB:13:A5:FE:E6:6F:2B:A1:5E:6B:00:3C:BA:8A:A9:BA:2C:5A:19:3A Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 79661678675167B9EF36FC9A424F0FD28BA8EB08 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa Signing time: Wed 25 Feb 2026 00:00:50 +0000 ROA not before: Wed 25 Feb 2026 00:00:50 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:66:16:78:67:51:67:b9:ef:36:fc:9a:42:4f:0f:d2:8b:a8:eb:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 25 00:00:50 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=ab92895018fe9a74faa5bcf2193293be57be084c5443d5ae89d6559b89f0dd95, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:97:e9:51:02:1e:cb:cb:41:81:be:2c:99:98: c7:b9:34:dd:10:52:6d:13:99:02:47:96:c7:0b:23: 60:6e:17:1e:44:7a:20:f6:98:0c:58:db:2c:25:47: 44:1b:c4:45:c3:dc:72:d0:b2:d9:2a:6e:83:43:19: 81:b1:30:b2:fc:49:7a:02:8a:05:f2:b7:f4:29:46: 67:3c:b2:ab:94:36:1b:01:db:05:f1:fc:e2:e1:ff: 18:ac:8f:82:50:a6:b5:0f:39:b3:e0:34:a3:c9:55: 4c:41:68:04:db:b0:a9:97:57:94:76:79:7e:17:0e: d3:b3:9b:34:62:b4:dc:75:59:6b:a0:a3:0b:b0:d4: c4:09:8a:e4:51:77:ad:01:27:d1:96:97:94:4c:a9: 00:ed:75:02:f4:48:fe:f5:06:20:0f:e9:59:20:f2: 96:d8:42:78:fb:09:6e:38:2c:de:fd:c0:62:91:76: c1:7b:5f:8c:c2:91:f4:be:a0:08:85:44:63:40:50: c5:40:64:3c:0e:a9:7a:d5:b3:23:e6:e8:93:9e:4d: ea:e4:f0:23:05:9d:74:95:89:5b:6d:07:80:bd:9e: 15:ae:57:48:0f:bd:90:79:2a:b5:d1:34:b6:31:f2: c7:b7:d0:39:df:48:16:58:8c:5f:1c:f0:35:68:8d: 58:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:13:A5:FE:E6:6F:2B:A1:5E:6B:00:3C:BA:8A:A9:BA:2C:5A:19:3A X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8020::/48 Signature Algorithm: sha256WithRSAEncryption 88:66:3c:9e:41:11:9e:89:bc:e7:43:17:a8:ab:eb:66:ee:65: 6b:22:07:0a:7d:e0:65:ec:7d:64:b6:f9:b1:66:be:2b:a2:3b: 0b:73:3e:18:a8:7b:ee:6e:13:59:c0:26:61:dc:ab:b7:12:40: 7d:7a:02:c0:f7:72:57:62:26:47:2e:d9:84:72:cf:2e:fa:43: d9:d6:24:f8:d3:70:0b:aa:94:e0:14:3a:dd:4a:2b:1c:c9:16: 8f:e7:18:a6:e8:4d:34:d9:19:50:fc:95:d1:8d:99:5c:fe:58: 37:ec:da:62:58:1b:56:75:10:a1:76:9d:81:26:83:73:e9:fd: 0a:77:fa:15:95:ff:44:ec:2d:a7:77:1a:b9:fa:d5:f4:19:42: a8:46:32:63:2b:80:72:27:ca:a6:8c:87:48:76:94:0f:29:98: 15:b1:1e:f3:2a:16:eb:27:2c:6d:6f:77:46:bc:80:61:35:67: 0d:28:8f:ed:1b:ea:e7:f0:71:f4:b1:11:b8:d4:5b:fc:87:8d: ca:b6:10:28:65:e0:04:c7:31:c1:2f:74:84:55:c9:84:24:26: 33:7b:5d:08:ae:d6:69:80:ac:66:dc:08:2c:29:27:db:33:ca: 4b:f2:08:ce:c3:7c:93:d8:fe:d9:1b:c3:28:61:9e:75:62:f3: 73:03:22:c5 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUeWYWeGdRZ7nvNvyaQk8P0ouo6wgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNTAwMDA1MFoX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAYWI5Mjg5NTAxOGZlOWE3NGZhYTVi Y2YyMTkzMjkzYmU1N2JlMDg0YzU0NDNkNWFlODlkNjU1OWI4OWYwZGQ5NTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJfpUQIey8tBgb4smZjHuTTdEFJt E5kCR5bHCyNgbhceRHog9pgMWNssJUdEG8RFw9xy0LLZKm6DQxmBsTCy/El6AooF 8rf0KUZnPLKrlDYbAdsF8fzi4f8YrI+CUKa1Dzmz4DSjyVVMQWgE27Cpl1eUdnl+ Fw7Ts5s0YrTcdVlroKMLsNTECYrkUXetASfRlpeUTKkA7XUC9Ej+9QYgD+lZIPKW 2EJ4+wluOCze/cBikXbBe1+MwpH0vqAIhURjQFDFQGQ8Dql61bMj5uiTnk3q5PAj BZ10lYlbbQeAvZ4VrldID72QeSq10TS2MfLHt9A530gWWIxfHPA1aI1YgQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPsTpf7mbyuhXmsAPLqKqbosWhk6MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2FiNGFkMTg1LTJiZmItNDI4MS05ZTIzLTAwYTJhYjRiNmU4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4AgMA0GCSqGSIb3DQEBCwUAA4IBAQCIZjyeQRGeibznQxeo q+tm7mVrIgcKfeBl7H1ktvmxZr4rojsLcz4YqHvubhNZwCZh3Ku3EkB9egLA93JX YiZHLtmEcs8u+kPZ1iT403ALqpTgFDrdSiscyRaP5xim6E002RlQ/JXRjZlc/lg3 7NpiWBtWdRChdp2BJoNz6f0Kd/oVlf9E7C2ndxq5+tX0GUKoRjJjK4ByJ8qmjIdI dpQPKZgVsR7zKhbrJyxtb3dGvIBhNWcNKI/tG+rn8HH0sRG41Fv8h43KthAoZeAE xzHBL3SEVcmEJCYze10IrtZpgKxm3AgsKSfbM8pL8gjOw3yT2P7ZG8MoYZ51YvNz AyLF -----END CERTIFICATE-----Generated at Mon Mar 2 04:25:50 2026 by rpki-client