$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa File: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (raw, json) Hash identifier: 1uP3FKWkPE64DzLoC/zN+FUFAyE7osVEBX2K8XosX10= Subject key identifier: 45:EC:8D:1D:D2:3F:21:7C:CE:A6:AA:13:1E:00:E9:CF:F9:E4:78:DC Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 77937DE224997E7EC8CEF987EB859CAA28821A47 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa Signing time: Tue 24 Feb 2026 00:10:40 +0000 ROA not before: Tue 24 Feb 2026 00:10:40 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fe:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:93:7d:e2:24:99:7e:7e:c8:ce:f9:87:eb:85:9c:aa:28:82:1a:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 24 00:10:40 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=3af33f071dc1bf647b385757e2b46128cec7a298b356657f28413afa3748dbf3, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0b:2e:46:63:ca:04:8d:c1:58:9b:e7:9a:f0: aa:60:a6:ff:87:47:8b:02:fb:fd:ba:99:72:d9:bb: db:57:71:bf:20:09:a4:b9:27:4f:e4:40:63:11:1d: 3a:34:2f:9f:70:b3:d1:b6:18:eb:46:8f:3a:64:25: 60:77:8b:2e:a5:46:e1:7e:dd:43:5b:97:37:60:73: 11:93:68:40:ec:a9:0b:3b:0b:05:2b:3e:51:d4:44: be:ae:b4:58:cc:8c:5e:87:41:2e:2b:62:e9:09:a0: c5:1a:8a:b9:cd:1a:a4:75:26:45:11:79:fb:f2:50: 7c:06:42:d8:76:56:8d:e3:e5:5d:5e:b5:f6:a2:67: 2f:3c:96:63:a6:dd:2d:dc:4e:81:aa:b3:e4:74:3c: 7d:dc:3f:64:7c:c2:71:be:da:9b:d2:ed:1d:11:1f: b6:c8:0f:9c:02:b6:66:af:d7:a1:7d:7c:c0:1c:7b: 8b:46:72:2a:ca:3c:79:eb:da:27:cf:5d:ea:a7:54: 92:a4:8d:db:83:e4:95:35:2d:af:dd:33:f1:d0:93: 05:7f:18:78:15:ba:62:32:63:6c:37:cf:06:3d:10: 17:45:c2:f9:df:a8:ed:85:8e:47:0d:5b:96:62:7c: f4:65:7b:3e:c1:80:ec:13:2b:0d:cd:af:c0:64:52: be:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EC:8D:1D:D2:3F:21:7C:CE:A6:AA:13:1E:00:E9:CF:F9:E4:78:DC X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fe:8000::/40 Signature Algorithm: sha256WithRSAEncryption 87:7c:34:b2:d0:c1:b2:07:0b:ab:5d:de:34:43:fa:0c:3f:c0: 80:c6:b3:14:0f:1a:09:0b:3e:4c:40:09:77:85:9c:ad:c1:d1: 54:ff:b5:65:87:06:e8:72:8e:4c:fb:c9:b6:95:b0:63:a2:e8: c4:90:5d:bd:cd:0f:24:6d:27:85:d5:cd:1e:b4:11:70:11:90: 3c:17:b6:c6:56:6d:35:64:26:a7:93:00:2e:e0:d8:94:f0:d4: 6d:4d:d7:f4:b1:47:d8:43:c9:ad:60:db:00:7a:3b:4d:c1:6a: c3:f1:b4:7a:c9:de:fe:b5:f8:0c:30:b8:c4:41:bf:1e:28:fc: 7d:68:a4:5c:0f:37:ee:bf:e1:03:ed:c9:bf:bb:e1:64:5d:be: 59:21:f0:1c:ef:5f:35:41:b9:26:cb:01:4b:42:40:fe:e4:27: 93:79:8b:60:8d:5d:84:c1:59:02:8d:f5:9f:a7:24:86:dc:55: 22:9c:3d:ad:63:2d:c5:7e:3c:f4:ff:71:c3:6b:99:4b:58:5e: ba:28:b0:d2:6e:29:c4:d1:45:0c:46:c6:d5:78:0f:fc:e7:8a: b0:1b:b4:28:5f:f7:43:30:c8:b3:47:17:f5:bb:a2:c0:52:8f: 2e:ac:6e:81:b0:82:11:8d:da:b9:d1:ea:25:ee:db:3e:1a:49: e4:57:58:63 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUd5N94iSZfn7IzvmH64WcqiiCGkcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNDAwMTA0MFoX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAM2FmMzNmMDcxZGMxYmY2NDdiMzg1 NzU3ZTJiNDYxMjhjZWM3YTI5OGIzNTY2NTdmMjg0MTNhZmEzNzQ4ZGJmMzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAsuRmPKBI3BWJvnmvCqYKb/h0eL Avv9uply2bvbV3G/IAmkuSdP5EBjER06NC+fcLPRthjrRo86ZCVgd4supUbhft1D W5c3YHMRk2hA7KkLOwsFKz5R1ES+rrRYzIxeh0EuK2LpCaDFGoq5zRqkdSZFEXn7 8lB8BkLYdlaN4+VdXrX2omcvPJZjpt0t3E6BqrPkdDx93D9kfMJxvtqb0u0dER+2 yA+cArZmr9ehfXzAHHuLRnIqyjx569onz13qp1SSpI3bg+SVNS2v3TPx0JMFfxh4 FbpiMmNsN88GPRAXRcL536jthY5HDVuWYnz0ZXs+wYDsEysNza/AZFK+awIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEXsjR3SPyF8zqaqEx4A6c/55HjcMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M2YzhjMmM4LTI2MTAtNGI0Ni05ZTU1LTY3YzEyY2VjY2JiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/oAwDQYJKoZIhvcNAQELBQADggEBAId8NLLQwbIHC6td3jRD +gw/wIDGsxQPGgkLPkxACXeFnK3B0VT/tWWHBuhyjkz7ybaVsGOi6MSQXb3NDyRt J4XVzR60EXARkDwXtsZWbTVkJqeTAC7g2JTw1G1N1/SxR9hDya1g2wB6O03BasPx tHrJ3v61+AwwuMRBvx4o/H1opFwPN+6/4QPtyb+74WRdvlkh8BzvXzVBuSbLAUtC QP7kJ5N5i2CNXYTBWQKN9Z+nJIbcVSKcPa1jLcV+PPT/ccNrmUtYXroosNJuKcTR RQxGxtV4D/znirAbtChf90MwyLNHF/W7osBSjy6sboGwghGN2rnR6iXu2z4aSeRX WGM= -----END CERTIFICATE-----Generated at Mon Mar 2 01:01:11 2026 by rpki-client