$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa File: fcc4293c-b24f-4fac-9395-546f748b3b13.roa (raw, json) Hash identifier: 3YP/58D4NOdzhWRXbC9vAJOsievECq/irINvg3eRq08= Subject key identifier: D1:0D:F4:F5:EE:43:C7:59:EF:F8:28:3B:48:09:2B:A6:AE:70:79:B4 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 38C108E8A6E4D35D8CCF1802A97135759243F758 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa Signing time: Sat 16 May 2026 00:00:53 +0000 ROA not before: Sat 16 May 2026 00:00:53 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c1:08:e8:a6:e4:d3:5d:8c:cf:18:02:a9:71:35:75:92:43:f7:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 16 00:00:53 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=6e787719c9f2ec1461ff6276fc9645964f6e4a2360edd4ddbf7cb00f98ec7583, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fe:95:b2:d8:0b:0c:c2:ed:7b:48:7a:a3:78: 53:07:0f:38:97:e5:90:7c:46:b2:aa:aa:0a:8b:a5: cd:2f:e0:17:46:74:2a:16:3f:24:43:dd:84:b6:96: 0b:1c:d8:22:f7:ef:f6:04:6d:8d:03:0c:03:d0:12: c3:11:08:15:26:dd:67:22:06:8d:61:13:7a:2f:f8: 84:67:67:e4:04:f4:51:e7:5f:af:67:e1:7c:db:c1: 0a:f5:85:48:d8:2d:ea:c2:3f:49:ae:35:24:88:0e: 5f:23:fc:4b:8a:ad:a0:2b:e4:8d:b4:c0:9d:2f:a1: 78:fb:a8:1f:3f:68:04:06:95:64:f8:6e:e4:c7:4a: 9f:6e:0e:75:4f:9f:98:65:9a:7a:e7:06:84:d8:de: ea:20:57:77:de:81:ab:0c:b2:61:e3:12:f4:ad:27: 26:e3:6b:1a:79:29:4a:41:57:6c:f3:b8:29:d8:73: 1e:e4:68:c4:38:f7:92:24:01:73:6f:ef:e9:38:44: 52:6d:da:c3:68:74:f8:63:9b:68:fb:fc:36:c7:e0: 22:74:60:64:8a:49:98:54:d0:0b:ff:41:3b:da:c1: 6c:ce:e5:6a:42:6c:bc:dd:b9:81:03:c1:3a:01:ff: 33:fd:82:fa:f1:b2:7d:2f:f7:d2:57:21:74:af:cd: 24:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:0D:F4:F5:EE:43:C7:59:EF:F8:28:3B:48:09:2B:A6:AE:70:79:B4 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018::/38 Signature Algorithm: sha256WithRSAEncryption 18:3d:b2:09:a6:dd:3f:b0:79:b5:ac:f6:63:94:d6:77:56:3e: 96:f1:83:79:2a:75:2e:c1:3b:2a:92:f7:bc:bb:1e:28:af:60: 8f:b4:15:98:3a:11:0a:ba:2c:3c:bf:d8:39:e6:04:5c:da:15: 10:d7:d0:28:dc:f5:42:06:c3:c7:b6:f6:cd:fc:64:8b:de:7f: 40:df:ac:85:89:16:68:4e:52:c3:56:90:92:41:d1:74:bb:68: 9f:4b:31:a3:26:c6:1f:9f:a7:6c:09:10:8d:1c:7c:a5:cd:75: b0:30:81:94:c1:6a:4f:ac:93:d8:5d:1b:e1:18:4a:97:32:9f: 7a:99:38:17:2c:80:52:9f:b5:64:24:08:29:55:88:e2:a9:36: 22:16:34:42:5d:66:98:8e:27:93:46:b9:12:0a:d6:d9:68:21: e9:9d:46:74:42:c0:6e:5f:d4:65:84:62:dc:ea:96:9f:a3:cd: d3:e8:23:e2:fc:65:8b:cb:db:f1:60:cc:87:d8:2f:ca:8a:11: 08:98:ef:9a:0b:fb:8a:eb:f6:c2:e9:44:17:90:d4:77:bf:f9: 50:cb:1f:82:28:3d:55:a2:a4:45:1f:a2:6f:ba:54:0f:ef:65: d0:5f:7a:38:25:c0:84:24:0c:ba:8a:f8:c9:71:09:b0:08:61: 94:ad:c7:74 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUOMEI6Kbk012MzxgCqXE1dZJD91gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNjAwMDA1M1oX DTI2MDgxNDIzNTk1OVowejFJMEcGA1UEBRNANmU3ODc3MTljOWYyZWMxNDYxZmY2 Mjc2ZmM5NjQ1OTY0ZjZlNGEyMzYwZWRkNGRkYmY3Y2IwMGY5OGVjNzU4MzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsP6VstgLDMLte0h6o3hTBw84l+WQ fEayqqoKi6XNL+AXRnQqFj8kQ92EtpYLHNgi9+/2BG2NAwwD0BLDEQgVJt1nIgaN YRN6L/iEZ2fkBPRR51+vZ+F828EK9YVI2C3qwj9JrjUkiA5fI/xLiq2gK+SNtMCd L6F4+6gfP2gEBpVk+G7kx0qfbg51T5+YZZp65waE2N7qIFd33oGrDLJh4xL0rScm 42saeSlKQVds87gp2HMe5GjEOPeSJAFzb+/pOERSbdrDaHT4Y5to+/w2x+AidGBk ikmYVNAL/0E72sFszuVqQmy83bmBA8E6Af8z/YL68bJ9L/fSVyF0r80k8wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNEN9PXuQ8dZ7/goO0gJK6aucHm0MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2ZjYzQyOTNjLWIyNGYtNGZhYy05Mzk1LTU0NmY3NDhiM2IxMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAAwDQYJKoZIhvcNAQELBQADggEBABg9sgmm3T+webWs9mOU 1ndWPpbxg3kqdS7BOyqS97y7HiivYI+0FZg6EQq6LDy/2DnmBFzaFRDX0Cjc9UIG w8e29s38ZIvef0DfrIWJFmhOUsNWkJJB0XS7aJ9LMaMmxh+fp2wJEI0cfKXNdbAw gZTBak+sk9hdG+EYSpcyn3qZOBcsgFKftWQkCClViOKpNiIWNEJdZpiOJ5NGuRIK 1tloIemdRnRCwG5f1GWEYtzqlp+jzdPoI+L8ZYvL2/FgzIfYL8qKEQiY75oL+4rr 9sLpRBeQ1He/+VDLH4IoPVWipEUfom+6VA/vZdBfejglwIQkDLqK+MlxCbAIYZSt x3Q= -----END CERTIFICATE-----Generated at Sat Jun 13 05:40:47 2026 by rpki-client