$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa File: 0ae05889-eb6d-414c-88e9-bc293171f532.roa (raw, json) Hash identifier: O7xERBWmKGXiU3+Lu63ccz7zcgN006rbbs19IE8sqqE= Subject key identifier: 35:83:6A:6E:66:31:79:90:F5:E9:72:E2:88:AC:7C:10:68:2E:80:21 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 284166C9C1512548F72F54000B0D8F8A2EA17E96 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa Signing time: Fri 15 May 2026 00:10:10 +0000 ROA not before: Fri 15 May 2026 00:10:10 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f9:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 00:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:41:66:c9:c1:51:25:48:f7:2f:54:00:0b:0d:8f:8a:2e:a1:7e:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 15 00:10:10 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=f70613dc5cb4251841ef3d015657d6fb2ffdeb5044668b157a8da508533bfe59, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:47:98:36:ef:76:bf:e0:c9:af:9e:01:70:64: cc:5b:c9:f4:5a:9c:27:e2:83:47:ad:ca:b4:24:df: df:a4:3d:ac:b2:eb:08:01:3c:d0:1f:b9:31:e8:5c: b5:e1:dd:df:d2:7d:97:0f:15:83:a9:06:36:0e:47: df:48:8b:ca:fa:d9:0e:6e:7f:08:7f:39:48:e7:c3: b7:ef:cb:27:2d:09:d2:68:88:0d:a5:cf:3e:6f:b6: c5:19:0c:4b:e1:57:10:9a:9f:2d:b4:29:d5:33:ca: 3f:a6:77:6b:9c:2d:ee:69:96:95:cc:5a:63:50:75: 98:49:31:bf:75:c6:44:b8:24:ce:56:70:06:8c:c6: 1e:1b:a2:e3:7d:5f:b3:20:09:14:f1:d9:f2:db:a9: 11:12:13:e0:aa:42:a2:07:21:41:ca:bc:b3:2a:f6: d9:cb:24:07:ce:5e:77:20:4f:d5:a0:29:03:20:10: e5:18:d7:e5:a4:db:2b:23:13:61:a9:1b:80:a0:82: 6a:66:c6:6a:11:e8:25:d7:59:a4:0d:f1:7b:a7:d2: 3f:80:cb:92:18:57:ae:e3:3f:8f:1a:81:ca:e0:10: ff:89:20:07:82:0e:52:27:0a:eb:05:85:ce:a4:5f: 31:6d:42:ac:e0:03:5a:e4:61:49:c6:e5:1f:44:97: 67:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:83:6A:6E:66:31:79:90:F5:E9:72:E2:88:AC:7C:10:68:2E:80:21 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0ae05889-eb6d-414c-88e9-bc293171f532.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f9:4000::/40 Signature Algorithm: sha256WithRSAEncryption 05:50:cf:3e:f0:77:e3:70:08:b0:64:a7:ae:be:25:2f:ad:c2: 71:e1:d8:53:c0:09:ae:70:0b:aa:fb:71:c4:dc:20:79:63:19: 71:ad:b2:e9:5f:90:48:e2:c4:00:14:fa:d6:47:60:f4:99:13: 4e:84:fd:f4:3d:32:ec:e2:f1:80:bf:7f:9c:2a:88:41:78:e7: a6:d8:45:1d:be:98:b7:5a:37:a3:51:99:34:08:e4:fb:93:fa: 6b:46:40:2d:e9:31:cd:e1:aa:91:ae:8c:04:6e:e2:3a:28:4a: 8d:df:03:fa:06:95:57:55:5d:fb:75:3b:10:f0:63:20:da:cf: 16:00:e3:77:6a:c2:cf:46:f0:0e:8a:7a:b3:55:d7:19:4a:17: bd:30:27:03:3c:35:40:53:42:93:f8:a9:38:25:91:e8:40:13: 9a:e5:9d:01:42:d8:66:39:03:99:b2:97:25:10:9b:ed:8f:4a: 26:74:a7:7b:33:75:aa:02:1e:70:18:08:03:f5:22:bc:f4:0d: b9:95:1c:76:c2:7c:e1:e4:57:21:83:46:b8:93:67:2a:b8:f9: c2:e6:ed:f1:a6:78:6e:2b:29:07:7c:4b:f6:bf:ae:2a:32:36: 54:39:41:81:31:c8:f2:58:68:25:c8:cc:45:0a:d1:c7:3d:d5: ac:d3:49:1f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUKEFmycFRJUj3L1QACw2Pii6hfpYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNTAwMTAxMFoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAZjcwNjEzZGM1Y2I0MjUxODQxZWYz ZDAxNTY1N2Q2ZmIyZmZkZWI1MDQ0NjY4YjE1N2E4ZGE1MDg1MzNiZmU1OTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEeYNu92v+DJr54BcGTMW8n0Wpwn 4oNHrcq0JN/fpD2ssusIATzQH7kx6Fy14d3f0n2XDxWDqQY2DkffSIvK+tkObn8I fzlI58O378snLQnSaIgNpc8+b7bFGQxL4VcQmp8ttCnVM8o/pndrnC3uaZaVzFpj UHWYSTG/dcZEuCTOVnAGjMYeG6LjfV+zIAkU8dny26kREhPgqkKiByFByryzKvbZ yyQHzl53IE/VoCkDIBDlGNflpNsrIxNhqRuAoIJqZsZqEegl11mkDfF7p9I/gMuS GFeu4z+PGoHK4BD/iSAHgg5SJwrrBYXOpF8xbUKs4ANa5GFJxuUfRJdnWQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDWDam5mMXmQ9ely4oisfBBoLoAhMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBhZTA1ODg5LWViNmQtNDE0Yy04OGU5LWJjMjkzMTcxZjUzMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+UAwDQYJKoZIhvcNAQELBQADggEBAAVQzz7wd+NwCLBkp66+ JS+twnHh2FPACa5wC6r7ccTcIHljGXGtsulfkEjixAAU+tZHYPSZE06E/fQ9Muzi 8YC/f5wqiEF456bYRR2+mLdaN6NRmTQI5PuT+mtGQC3pMc3hqpGujARu4jooSo3f A/oGlVdVXft1OxDwYyDazxYA43dqws9G8A6KerNV1xlKF70wJwM8NUBTQpP4qTgl kehAE5rlnQFC2GY5A5mylyUQm+2PSiZ0p3szdaoCHnAYCAP1Irz0DbmVHHbCfOHk VyGDRriTZyq4+cLm7fGmeG4rKQd8S/a/rioyNlQ5QYExyPJYaCXIzEUK0cc91azT SR8= -----END CERTIFICATE-----Generated at Sat May 16 01:41:42 2026 by rpki-client