$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa File: c7b491e4-76ae-4305-8132-a670b41c66fd.roa (raw, json) Hash identifier: VNm8BO5G4UpCqlTPLOKRN7+G7VVLHsbqSItK1D2s/ug= Subject key identifier: 08:A3:B1:DD:CE:BB:1B:33:7D:FD:1B:0A:40:DF:F9:88:D4:88:AA:BC Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 4B8ED34BC32AD162B618EAFD0AFA44C9A318DB4B Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa Signing time: Wed 25 Feb 2026 00:00:49 +0000 ROA not before: Wed 25 Feb 2026 00:00:49 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:8e:d3:4b:c3:2a:d1:62:b6:18:ea:fd:0a:fa:44:c9:a3:18:db:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 25 00:00:49 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=53fdcd328bb1ff6802b2ebc8524b6edf2b4020a7673f40e323e790924ed6c76c, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:05:54:0c:23:b9:9b:69:b3:e6:9b:46:18:da: 10:1b:60:8a:7e:42:e1:87:b0:0c:64:73:86:db:20: c2:4b:f8:da:b2:c3:e7:38:bd:9e:81:3b:e2:8c:bc: e4:6f:e2:71:ef:c4:d2:c0:ea:c9:24:60:73:be:a5: d3:45:90:29:2a:fc:1d:11:ed:c9:30:fb:83:a1:85: 8b:38:9e:be:09:33:9b:a8:9d:8d:76:b8:c0:8d:5a: 53:b9:e0:b6:54:28:c2:11:bd:66:06:4a:83:37:39: 8d:e3:d9:ae:7d:a3:52:62:61:35:5c:b1:bd:99:01: 76:fa:f5:fc:3c:f0:59:39:fb:d3:1b:e2:09:a8:48: f4:50:5c:3a:c0:58:54:37:c8:1b:f2:d3:1c:22:85: 46:5e:9c:58:9d:20:22:01:2b:f1:64:df:e0:e2:31: 71:99:06:4f:90:6f:60:99:fd:a8:18:9f:36:92:42: 05:a0:d1:93:ec:c9:68:44:9b:02:25:99:7c:55:e0: 81:06:12:48:b8:23:96:b8:47:2e:9b:86:d9:e3:da: 6c:6a:14:11:75:bf:ca:de:8c:b1:0a:91:b8:15:c5: ba:07:68:71:c5:12:e2:43:46:08:4b:92:36:e7:00: 60:f2:8a:e8:ee:24:3a:52:c0:38:98:00:12:9d:dc: 8a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A3:B1:DD:CE:BB:1B:33:7D:FD:1B:0A:40:DF:F9:88:D4:88:AA:BC X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4000::/40 Signature Algorithm: sha256WithRSAEncryption 4d:be:ba:d0:67:41:2d:07:e1:2f:80:5b:8c:3e:e7:53:c7:f9: cd:b3:05:35:17:7c:68:26:b5:03:f5:20:59:87:fc:19:6a:80: 5c:90:6c:c9:84:da:b9:53:3b:98:4a:ea:44:08:0c:73:ee:31: 78:00:86:66:19:be:8a:84:2f:0e:20:32:7b:b6:e7:ef:d3:1c: d8:57:5b:d9:60:63:1b:6f:cd:3e:6f:4f:0f:4f:2d:1b:46:f2: c8:51:57:05:08:5c:56:53:0b:d0:a6:33:4a:93:f9:fc:4c:83: 40:54:90:e5:99:11:5c:19:63:35:a6:90:ab:4d:78:ba:23:0e: f9:60:34:64:ac:43:e6:a5:58:34:61:7b:e8:00:ca:82:f8:1c: 90:f4:6b:82:1d:94:ed:f2:dc:44:ca:8a:28:38:3e:ca:5b:2a: db:d3:00:7e:3a:de:a9:8a:b9:c8:35:00:10:86:34:bd:d6:2d: 88:42:ce:e8:a8:23:c8:d8:0c:ff:e3:d1:7e:53:ae:0f:a0:41: be:ac:ca:77:9d:ce:b1:72:99:95:ec:59:90:68:dd:a4:ec:dc: 65:d3:99:85:cf:fa:df:53:4b:a8:52:b3:8c:c6:4e:4f:60:5b: 47:cd:99:89:73:7f:7c:ab:8d:14:70:0a:af:be:ff:87:68:d6: 6f:e4:67:f3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUS47TS8Mq0WK2GOr9CvpEyaMY20swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIyNTAwMDA0OVoX DTI2MDUyNjIzNTk1OVowejFJMEcGA1UEBRNANTNmZGNkMzI4YmIxZmY2ODAyYjJl YmM4NTI0YjZlZGYyYjQwMjBhNzY3M2Y0MGUzMjNlNzkwOTI0ZWQ2Yzc2YzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQVUDCO5m2mz5ptGGNoQG2CKfkLh h7AMZHOG2yDCS/jassPnOL2egTvijLzkb+Jx78TSwOrJJGBzvqXTRZApKvwdEe3J MPuDoYWLOJ6+CTObqJ2NdrjAjVpTueC2VCjCEb1mBkqDNzmN49mufaNSYmE1XLG9 mQF2+vX8PPBZOfvTG+IJqEj0UFw6wFhUN8gb8tMcIoVGXpxYnSAiASvxZN/g4jFx mQZPkG9gmf2oGJ82kkIFoNGT7MloRJsCJZl8VeCBBhJIuCOWuEcum4bZ49psahQR db/K3oyxCpG4FcW6B2hxxRLiQ0YIS5I25wBg8oro7iQ6UsA4mAASndyK5QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAijsd3Ouxszff0bCkDf+YjUiKq8MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M3YjQ5MWU0LTc2YWUtNDMwNS04MTMyLWE2NzBiNDFjNjZmZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/0AwDQYJKoZIhvcNAQELBQADggEBAE2+utBnQS0H4S+AW4w+ 51PH+c2zBTUXfGgmtQP1IFmH/BlqgFyQbMmE2rlTO5hK6kQIDHPuMXgAhmYZvoqE Lw4gMnu25+/THNhXW9lgYxtvzT5vTw9PLRtG8shRVwUIXFZTC9CmM0qT+fxMg0BU kOWZEVwZYzWmkKtNeLojDvlgNGSsQ+alWDRhe+gAyoL4HJD0a4IdlO3y3ETKiig4 PspbKtvTAH463qmKucg1ABCGNL3WLYhCzuioI8jYDP/j0X5Trg+gQb6synedzrFy mZXsWZBo3aTs3GXTmYXP+t9TS6hSs4zGTk9gW0fNmYlzf3yrjRRwCq++/4do1m/k Z/M= -----END CERTIFICATE-----Generated at Sun Mar 1 21:44:31 2026 by rpki-client