$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/f54cd21d-ebef-4509-8295-1f7547d0d717.roa File: f54cd21d-ebef-4509-8295-1f7547d0d717.roa (raw, json) Hash identifier: UKHmfGmNYdP+Ue5qgCMktCjXBkL9NYKmKPyVWzMcgZI= Subject key identifier: 84:32:EB:85:AB:E6:D6:E6:2C:DF:D1:C7:78:10:9E:E8:82:5B:DA:D6 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3C1961F15528E60F181851B8086617B5214A9BF3 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/f54cd21d-ebef-4509-8295-1f7547d0d717.roa Signing time: Sat 16 May 2026 00:00:50 +0000 ROA not before: Sat 16 May 2026 00:00:50 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:19:61:f1:55:28:e6:0f:18:18:51:b8:08:66:17:b5:21:4a:9b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:50 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=95d83675cbf40a84cce99bec256aada43c5ecfb1f7d9c18740a30ca89a8def06, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5b:a5:f7:cf:20:d3:e3:d3:6a:f2:9a:7f:ca: a6:a5:01:74:e1:db:2e:77:e6:53:c8:d9:1e:12:8e: 82:9e:2c:15:3f:72:11:c2:0e:f2:64:74:5e:32:26: ee:23:78:e7:12:37:6d:43:81:be:bb:aa:97:68:45: 02:d2:da:4c:9a:88:82:63:02:64:39:48:7c:be:81: 25:ff:19:7f:f4:50:3d:a3:32:7c:e2:9a:06:1c:5c: 1b:b1:b8:fb:e4:16:c6:43:05:70:34:79:6c:d9:c2: 6d:13:28:a3:ce:6e:8d:98:8a:7e:bd:bf:7f:a7:cd: 82:04:e7:94:e3:64:dc:b8:76:a5:3a:21:69:8d:fc: 30:f6:14:6c:a0:2d:75:c6:4d:aa:ee:6e:d3:37:6a: b3:3f:79:26:e9:a5:d9:5a:29:c1:55:b7:15:68:95: 96:91:af:f6:72:ec:10:a8:26:b9:bd:f6:bd:61:89: da:d8:2b:54:a4:6b:e6:1a:70:47:24:76:b9:00:fe: ac:c0:76:3a:23:fe:4b:99:76:b8:68:fe:ce:60:7b: d9:29:41:7d:1e:47:25:82:c8:fc:11:6a:ba:5a:57: 9c:4e:fb:d4:66:af:7c:e2:01:b4:3b:61:27:ae:70: ad:84:2f:5a:52:d1:6f:d5:0b:a7:b6:f5:60:97:68: e4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:32:EB:85:AB:E6:D6:E6:2C:DF:D1:C7:78:10:9E:E8:82:5B:DA:D6 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/f54cd21d-ebef-4509-8295-1f7547d0d717.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018:400::/38 Signature Algorithm: sha256WithRSAEncryption 08:f4:50:3b:27:5b:b8:b6:8e:22:c0:4c:34:5b:fe:a5:0f:04: 1a:ac:f9:0a:93:33:4d:08:8b:a2:0b:ce:c4:fa:b9:ff:4c:d3: d1:a1:c6:a2:16:b1:e2:e9:47:36:5b:d9:64:d3:00:90:d2:ca: 7b:e3:8d:f1:1c:fb:77:c2:37:f0:6c:72:76:16:9d:a4:ee:0d: 83:3d:60:0c:bb:26:0e:62:2a:b3:21:65:cc:56:26:4d:62:bf: 52:94:6e:86:30:57:59:34:e3:e5:d1:1d:db:7a:d2:f7:80:e6: 4e:4e:99:97:ee:6d:7e:51:f9:69:ea:2b:b1:ee:2d:b8:e6:08: 01:be:5f:77:c2:b1:7e:b0:bb:b8:90:f1:ae:f4:95:79:6f:de: 0a:1b:35:ca:62:54:c0:db:e3:5c:27:4f:5f:79:20:81:de:da: 38:d8:12:18:af:d9:0d:5c:bc:4e:24:fc:b7:e8:d8:ba:8c:b4: ad:e3:62:6f:49:8e:6c:43:30:ed:a5:3d:50:0a:0e:b0:ee:ab: b4:4e:53:59:29:d8:0f:4e:db:18:a0:46:53:64:cd:ad:54:ae: f4:f3:22:9a:6a:a8:d6:6c:a3:0b:5d:35:bf:20:64:a9:11:23: 07:76:2d:5a:2a:6c:2a:1b:95:9e:fc:1c:0b:a1:ed:11:35:cc: 72:46:c6:37 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPBlh8VUo5g8YGFG4CGYXtSFKm/MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA1MFoX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNAOTVkODM2NzVjYmY0MGE4NGNjZTk5 YmVjMjU2YWFkYTQzYzVlY2ZiMWY3ZDljMTg3NDBhMzBjYTg5YThkZWYwNjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1ul988g0+PTavKaf8qmpQF04dsu d+ZTyNkeEo6CniwVP3IRwg7yZHReMibuI3jnEjdtQ4G+u6qXaEUC0tpMmoiCYwJk OUh8voEl/xl/9FA9ozJ84poGHFwbsbj75BbGQwVwNHls2cJtEyijzm6NmIp+vb9/ p82CBOeU42TcuHalOiFpjfww9hRsoC11xk2q7m7TN2qzP3km6aXZWinBVbcVaJWW ka/2cuwQqCa5vfa9YYna2CtUpGvmGnBHJHa5AP6swHY6I/5LmXa4aP7OYHvZKUF9 Hkclgsj8EWq6WlecTvvUZq984gG0O2EnrnCthC9aUtFv1QuntvVgl2jkdwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFIQy64Wr5tbmLN/Rx3gQnuiCW9rWMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2Y1NGNkMjFkLWViZWYtNDUwOS04Mjk1LTFmNzU0N2QwZDcxNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAQwDQYJKoZIhvcNAQELBQADggEBAAj0UDsnW7i2jiLATDRb /qUPBBqs+QqTM00Ii6ILzsT6uf9M09GhxqIWseLpRzZb2WTTAJDSynvjjfEc+3fC N/BscnYWnaTuDYM9YAy7Jg5iKrMhZcxWJk1iv1KUboYwV1k04+XRHdt60veA5k5O mZfubX5R+WnqK7HuLbjmCAG+X3fCsX6wu7iQ8a70lXlv3gobNcpiVMDb41wnT195 IIHe2jjYEhiv2Q1cvE4k/Lfo2LqMtK3jYm9JjmxDMO2lPVAKDrDuq7ROU1kp2A9O 2xigRlNkza1UrvTzIppqqNZsowtdNb8gZKkRIwd2LVoqbCoblZ78HAuh7RE1zHJG xjc= -----END CERTIFICATE-----Generated at Sat Jun 13 06:43:05 2026 by rpki-client