$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa File: c7b491e4-76ae-4305-8132-a670b41c66fd.roa (raw, json) Hash identifier: qpdxOV6ItKd2QxUp3mnqw7kb5w/qXFoRJMq9eMIZoeg= Subject key identifier: 3C:A2:DF:D0:CA:C2:1E:15:D9:02:BF:D8:EB:46:C3:D2:6E:3B:AF:F8 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 12EF7292BED8F40D554FDB55B8FA89367C1B6DAA Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa Signing time: Sat 16 May 2026 00:00:48 +0000 ROA not before: Sat 16 May 2026 00:00:48 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:ef:72:92:be:d8:f4:0d:55:4f:db:55:b8:fa:89:36:7c:1b:6d:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:48 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=a120e938097e9feb6fca9e3b33862c07ee872c13c3979cf114ff2167a8b84b53, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f6:d0:dd:64:38:d0:ef:b1:83:ab:42:07:12: 16:a8:21:fe:1a:31:7b:ea:51:9e:d8:ac:03:a3:16: 52:1e:24:28:bf:b9:1b:ec:ec:c2:0e:5a:7b:8f:71: 30:e3:ab:37:6b:03:89:98:f8:70:89:bc:86:03:e7: fa:03:1d:01:c8:b9:da:61:e3:b6:c6:f9:46:04:35: ee:c0:57:3e:76:9f:db:e4:ef:15:87:36:ce:0d:54: aa:42:3e:58:3a:df:2d:c9:98:6f:de:7f:5d:75:15: 1c:42:42:4f:59:40:3d:fb:ce:4c:dd:ab:17:8d:66: 2d:e0:ca:cb:e3:3c:4b:71:c9:fc:64:cb:82:6a:cb: c5:6e:c9:40:2d:fe:f5:55:f2:b4:53:ca:68:e5:cf: fa:b9:26:23:f5:ab:7e:d3:a2:a9:9c:32:72:e4:7d: 9d:1f:77:66:39:37:2e:07:ae:76:42:a5:18:ed:37: a1:67:6e:19:30:7d:5b:58:41:fc:65:9c:80:a9:06: b8:e8:92:22:39:1a:47:ce:d9:3d:63:d3:f5:12:00: 47:97:e4:4f:0f:4e:f6:85:c6:c7:9e:1a:eb:45:c7: 4a:13:c0:71:2d:c9:35:a9:2f:3c:2f:45:f7:4d:a8: 95:1d:60:9f:f7:31:10:10:9b:1a:b5:c8:38:be:c9: 45:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A2:DF:D0:CA:C2:1E:15:D9:02:BF:D8:EB:46:C3:D2:6E:3B:AF:F8 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4000::/40 Signature Algorithm: sha256WithRSAEncryption 3b:99:b1:b0:ac:19:ed:d6:f6:20:34:ec:5e:da:d7:d8:a9:4e: 00:10:33:44:02:d9:76:39:ab:4b:b3:09:d8:c0:36:19:a0:b0: 30:8f:82:54:01:b9:cd:e0:60:0f:66:d0:15:06:99:ab:7e:af: e9:be:7a:b4:41:55:69:1b:c2:76:3b:e3:95:dd:ff:e0:1b:4b: 9c:9a:e3:fc:92:20:27:d4:52:e5:15:96:da:0f:83:2f:21:ba: c7:97:92:64:7c:78:d5:d8:d4:f0:d2:a5:37:ef:6e:00:b5:7b: 67:2b:d1:51:99:3e:3e:b4:5e:87:9b:13:a1:8f:4f:f5:3f:fe: c0:6c:ad:54:3f:bc:b7:a5:97:d4:d6:d0:cc:d9:06:9d:fb:44: 24:5c:24:d9:d1:65:09:a6:d0:f7:79:87:55:2b:40:07:22:bc: d6:ec:a5:cc:18:1c:eb:eb:c7:75:c4:19:6a:ec:91:ab:42:f8: cf:47:47:3e:6c:a6:6b:74:2e:f7:e5:d1:6f:34:88:b9:76:db: e6:9e:0c:15:d9:1b:49:3d:e3:73:f2:6b:5c:64:07:51:55:6f: 21:19:c4:1f:36:10:cb:f3:4f:7b:4d:07:18:8f:33:fa:2e:8d: 33:7f:9f:bb:f5:af:c1:29:6c:ff:22:46:9b:07:28:05:a4:5d: 81:83:5f:cc -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUEu9ykr7Y9A1VT9tVuPqJNnwbbaowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA0OFoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAYTEyMGU5MzgwOTdlOWZlYjZmY2E5 ZTNiMzM4NjJjMDdlZTg3MmMxM2MzOTc5Y2YxMTRmZjIxNjdhOGI4NGI1MzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfbQ3WQ40O+xg6tCBxIWqCH+GjF7 6lGe2KwDoxZSHiQov7kb7OzCDlp7j3Ew46s3awOJmPhwibyGA+f6Ax0ByLnaYeO2 xvlGBDXuwFc+dp/b5O8VhzbODVSqQj5YOt8tyZhv3n9ddRUcQkJPWUA9+85M3asX jWYt4MrL4zxLccn8ZMuCasvFbslALf71VfK0U8po5c/6uSYj9at+06KpnDJy5H2d H3dmOTcuB652QqUY7TehZ24ZMH1bWEH8ZZyAqQa46JIiORpHztk9Y9P1EgBHl+RP D072hcbHnhrrRcdKE8BxLck1qS88L0X3TaiVHWCf9zEQEJsatcg4vslFBwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDyi39DKwh4V2QK/2OtGw9JuO6/4MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M3YjQ5MWU0LTc2YWUtNDMwNS04MTMyLWE2NzBiNDFjNjZmZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/0AwDQYJKoZIhvcNAQELBQADggEBADuZsbCsGe3W9iA07F7a 19ipTgAQM0QC2XY5q0uzCdjANhmgsDCPglQBuc3gYA9m0BUGmat+r+m+erRBVWkb wnY745Xd/+AbS5ya4/ySICfUUuUVltoPgy8huseXkmR8eNXY1PDSpTfvbgC1e2cr 0VGZPj60XoebE6GPT/U//sBsrVQ/vLell9TW0MzZBp37RCRcJNnRZQmm0Pd5h1Ur QAcivNbspcwYHOvrx3XEGWrskatC+M9HRz5spmt0Lvfl0W80iLl22+aeDBXZG0k9 43Pya1xkB1FVbyEZxB82EMvzT3tNBxiPM/oujTN/n7v1r8EpbP8iRpsHKAWkXYGD X8w= -----END CERTIFICATE-----Generated at Sat Jun 13 07:59:35 2026 by rpki-client