$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/baa1273d-7883-4b5d-8e1c-23ebac490846.roa File: baa1273d-7883-4b5d-8e1c-23ebac490846.roa (raw, json) Hash identifier: nDuzOluVy8LvQSrfMojqgcTxqQ7tEac+1uaXDnEa0e0= Subject key identifier: 76:34:66:D0:FE:1F:3D:0D:D1:4E:AF:A4:30:F2:AC:B2:FB:3E:9B:0C Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 61065C53062828A3772ECD64B61ABC864761AA79 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/baa1273d-7883-4b5d-8e1c-23ebac490846.roa Signing time: Sat 16 May 2026 00:00:51 +0000 ROA not before: Sat 16 May 2026 00:00:51 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:06:5c:53:06:28:28:a3:77:2e:cd:64:b6:1a:bc:86:47:61:aa:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:51 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=a73d3ae7bd6bb015597334e4dc8771410ce836b0e4b1dbcb65f8ec2fb3d18f95, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6c:d1:07:90:27:c9:34:c2:4c:d8:33:fe:71: d8:72:89:7b:89:0f:89:eb:28:60:aa:dd:86:7c:1a: b2:e2:5b:f0:c1:19:9b:64:bd:c0:91:02:82:75:04: 64:af:23:05:f5:ba:90:89:be:62:6b:ff:94:0e:ce: 56:3d:61:b1:69:ec:87:a8:7c:44:fa:8d:74:20:a7: 1a:ad:bb:bc:3b:a4:8d:0d:3a:54:55:a6:2e:7c:9e: 52:e9:c3:b3:14:e7:0b:00:29:5f:b2:16:da:41:cf: bd:f8:05:0e:b3:d8:76:21:48:cf:9f:b7:4f:9a:0a: e1:71:80:05:97:f2:33:f7:cb:97:ba:bd:bd:e4:19: 9e:41:e8:d8:2d:7c:2a:e1:5d:ec:2a:ec:63:82:58: f4:f6:14:cc:15:8a:4a:c4:27:76:bd:b1:be:c3:31: 80:92:a7:95:70:81:fe:05:49:8a:72:26:aa:f9:5a: e2:50:fa:dc:71:87:09:10:01:63:c0:a1:df:2f:5a: 34:1f:7d:d8:59:4f:41:53:ad:c6:67:51:0d:b9:b5: fa:b1:b6:d7:df:eb:b3:15:7f:b3:52:df:83:f1:0c: b7:be:a8:f4:4d:2c:30:86:a8:20:e4:da:04:d1:bc: 82:5e:6f:b0:52:f4:91:5d:fc:4f:2c:3c:7d:4a:3c: d8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:34:66:D0:FE:1F:3D:0D:D1:4E:AF:A4:30:F2:AC:B2:FB:3E:9B:0C X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/baa1273d-7883-4b5d-8e1c-23ebac490846.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4040::/48 Signature Algorithm: sha256WithRSAEncryption 50:7f:c2:81:f2:92:a1:ed:8b:5b:13:ea:15:69:81:91:b2:d4: ec:ac:96:0d:4e:eb:ca:e2:06:87:89:f1:a4:98:60:49:5f:2f: 5e:a4:91:d0:d4:95:0f:8d:41:5a:87:b0:e0:48:03:33:5b:93: 1f:8d:d1:6c:62:5f:d5:73:00:52:0c:2d:d2:51:a6:1a:37:db: 43:0d:e7:96:df:cc:fd:03:a2:a8:b2:c2:4d:d3:0d:6b:19:ec: 69:c4:bc:c7:a1:c6:0b:6a:96:f7:de:04:46:64:38:61:87:b7: 3a:44:57:cd:ba:31:a4:c2:cf:82:77:ce:54:f8:90:c9:9f:d2: 08:c9:45:fd:a0:fe:fb:9d:f2:dc:4f:79:9a:4a:04:4b:33:b4: 03:19:a4:24:38:2e:38:84:30:62:ab:3f:4e:2c:af:72:5c:23: 0a:7d:e4:47:39:aa:af:82:06:69:53:96:d3:11:12:b4:e2:d1: 5b:ec:e4:08:51:b6:50:1f:63:74:fe:99:4c:dd:1f:c0:ce:06: 6f:48:47:db:1b:6c:76:4c:26:81:45:51:16:4b:fb:44:02:ce: ef:1a:57:ac:9e:d3:bd:b8:a7:ad:21:f6:f2:93:b6:57:d3:ec: c4:7f:4c:22:84:cf:23:d4:e7:16:1e:75:02:e9:0e:f0:fe:d5: 74:af:d9:93 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYQZcUwYoKKN3Ls1kthq8hkdhqnkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA1MVoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAYTczZDNhZTdiZDZiYjAxNTU5NzMz NGU0ZGM4NzcxNDEwY2U4MzZiMGU0YjFkYmNiNjVmOGVjMmZiM2QxOGY5NTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2zRB5AnyTTCTNgz/nHYcol7iQ+J 6yhgqt2GfBqy4lvwwRmbZL3AkQKCdQRkryMF9bqQib5ia/+UDs5WPWGxaeyHqHxE +o10IKcarbu8O6SNDTpUVaYufJ5S6cOzFOcLAClfshbaQc+9+AUOs9h2IUjPn7dP mgrhcYAFl/Iz98uXur295BmeQejYLXwq4V3sKuxjglj09hTMFYpKxCd2vbG+wzGA kqeVcIH+BUmKciaq+VriUPrccYcJEAFjwKHfL1o0H33YWU9BU63GZ1ENubX6sbbX 3+uzFX+zUt+D8Qy3vqj0TSwwhqgg5NoE0byCXm+wUvSRXfxPLDx9SjzYiQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHY0ZtD+Hz0N0U6vpDDyrLL7PpsMMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2JhYTEyNzNkLTc4ODMtNGI1ZC04ZTFjLTIzZWJhYzQ5MDg0Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/0BAMA0GCSqGSIb3DQEBCwUAA4IBAQBQf8KB8pKh7YtbE+oV aYGRstTsrJYNTuvK4gaHifGkmGBJXy9epJHQ1JUPjUFah7DgSAMzW5MfjdFsYl/V cwBSDC3SUaYaN9tDDeeW38z9A6KossJN0w1rGexpxLzHocYLapb33gRGZDhhh7c6 RFfNujGkws+Cd85U+JDJn9IIyUX9oP77nfLcT3maSgRLM7QDGaQkOC44hDBiqz9O LK9yXCMKfeRHOaqvggZpU5bTERK04tFb7OQIUbZQH2N0/plM3R/AzgZvSEfbG2x2 TCaBRVEWS/tEAs7vGlesntO9uKetIfbyk7ZX0+zEf0wihM8j1OcWHnUC6Q7w/tV0 r9mT -----END CERTIFICATE-----Generated at Sat Jun 13 05:40:04 2026 by rpki-client