$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa File: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (raw, json) Hash identifier: ICAh72ItVDsjfPO/1ox9zrzy/3GjSdpEeafNEMjTlAs= Subject key identifier: 89:F0:A1:36:E9:74:08:78:2C:DA:17:DF:3E:CC:19:45:CB:CD:CD:A0 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 35F2094D70492A9AF5BDBB721F9EA34A78C75AD4 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa Signing time: Fri 15 May 2026 00:10:08 +0000 ROA not before: Fri 15 May 2026 00:10:08 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f9:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 00:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f2:09:4d:70:49:2a:9a:f5:bd:bb:72:1f:9e:a3:4a:78:c7:5a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 15 00:10:08 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=fdada65080c2dfa14ff7bd761baa156eec200bd2ca9966322f51b09fef8a6430, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:07:e4:7e:55:30:40:2a:e4:f2:91:65:a5:e9: 08:b0:bd:4a:c6:be:41:00:67:ff:9d:2f:fe:da:42: ac:ab:cc:07:0f:c9:8d:a1:bb:b3:44:0e:01:da:8d: e0:ef:63:07:56:77:ca:62:bb:a8:21:ef:60:d5:db: 00:6f:1d:fc:8e:77:51:0b:90:26:19:4e:f1:3c:1b: 0c:b6:bf:6f:05:45:62:8e:49:00:2a:ba:f3:e9:fb: 5d:7d:10:46:c2:27:3c:91:55:b5:6d:c0:8f:61:e8: 93:79:a0:8d:95:e4:56:88:0e:81:7f:44:7d:86:b6: 51:7b:fa:66:85:e4:44:a3:0a:cd:15:dd:5a:11:62: 23:87:57:41:1d:28:27:fb:1c:0a:bb:3a:3f:4a:44: 7f:6c:b6:ad:1a:e3:f5:18:8b:78:2e:57:6c:2d:2e: aa:4d:c8:89:63:57:a4:5d:b1:14:79:04:88:2f:ac: c6:8c:a0:22:9e:a8:56:c5:6c:8c:6a:c4:43:5f:9d: 4d:ed:26:32:58:cb:f1:9b:55:d2:2a:81:da:de:23: 4a:81:78:77:bb:b4:8f:3c:db:65:03:31:68:d4:aa: 16:0d:6b:12:04:26:ce:28:7e:77:2c:74:1b:b4:80: ff:93:eb:00:f7:ac:cc:8b:67:bf:32:cb:3b:fc:74: 3e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F0:A1:36:E9:74:08:78:2C:DA:17:DF:3E:CC:19:45:CB:CD:CD:A0 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f9:8000::/40 Signature Algorithm: sha256WithRSAEncryption 66:f2:3d:25:2c:43:29:fb:83:1a:34:ed:6d:37:80:a3:e4:ac: 06:c0:87:0e:ea:f7:b0:b1:95:56:1e:04:2d:65:72:12:c9:33: 0a:c1:95:00:25:2e:ed:55:dc:42:13:7d:12:d6:da:24:6c:4c: e6:fc:30:4b:f3:94:ea:e1:79:b9:cd:7e:b4:9c:ad:da:73:aa: 7c:d2:fd:bb:8d:cd:15:ab:e7:7f:ec:77:fb:f0:27:31:a3:3f: b5:ec:04:1a:c1:7b:fc:75:9c:c3:88:98:3e:40:c4:cf:2c:3d: 88:6d:fc:e2:04:3c:d0:e4:68:12:76:5a:50:92:b7:3d:23:1e: a9:07:ee:07:5a:5a:9a:51:ec:14:b9:98:2d:b0:a6:43:42:30: 52:78:e3:f8:43:96:eb:4c:09:f3:b9:f8:eb:6b:48:d4:73:0e: 97:3d:b0:dc:dc:13:49:bb:29:1a:97:f4:dd:2d:6a:45:89:83: 34:ce:85:7a:7c:28:21:1e:55:3f:51:3c:71:fb:60:d8:8d:fa: d0:0b:b9:df:e2:4e:33:ad:da:8b:e3:ff:f7:5d:02:73:6e:c4: 1c:0c:87:6d:5b:0a:3e:fb:82:88:e9:71:39:c8:b7:8f:e1:ee: 61:98:3d:1c:9e:54:db:76:56:c8:ab:ee:97:0b:67:b2:e3:0c: 6a:08:80:42 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNfIJTXBJKpr1vbtyH56jSnjHWtQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNTAwMTAwOFoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAZmRhZGE2NTA4MGMyZGZhMTRmZjdi ZDc2MWJhYTE1NmVlYzIwMGJkMmNhOTk2NjMyMmY1MWIwOWZlZjhhNjQzMDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQfkflUwQCrk8pFlpekIsL1Kxr5B AGf/nS/+2kKsq8wHD8mNobuzRA4B2o3g72MHVnfKYruoIe9g1dsAbx38jndRC5Am GU7xPBsMtr9vBUVijkkAKrrz6ftdfRBGwic8kVW1bcCPYeiTeaCNleRWiA6Bf0R9 hrZRe/pmheREowrNFd1aEWIjh1dBHSgn+xwKuzo/SkR/bLatGuP1GIt4LldsLS6q TciJY1ekXbEUeQSIL6zGjKAinqhWxWyMasRDX51N7SYyWMvxm1XSKoHa3iNKgXh3 u7SPPNtlAzFo1KoWDWsSBCbOKH53LHQbtID/k+sA96zMi2e/Mss7/HQ+XQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFInwoTbpdAh4LNoX3z7MGUXLzc2gMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIyNDdmMzRmLWU1YjEtNDIzYy1hYzBmLTcxNDJhZDg2YmQ5Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+YAwDQYJKoZIhvcNAQELBQADggEBAGbyPSUsQyn7gxo07W03 gKPkrAbAhw7q97CxlVYeBC1lchLJMwrBlQAlLu1V3EITfRLW2iRsTOb8MEvzlOrh ebnNfrScrdpzqnzS/buNzRWr53/sd/vwJzGjP7XsBBrBe/x1nMOImD5AxM8sPYht /OIEPNDkaBJ2WlCStz0jHqkH7gdaWppR7BS5mC2wpkNCMFJ44/hDlutMCfO5+Otr SNRzDpc9sNzcE0m7KRqX9N0takWJgzTOhXp8KCEeVT9RPHH7YNiN+tALud/iTjOt 2ovj//ddAnNuxBwMh21bCj77gojpcTnIt4/h7mGYPRyeVNt2Vsir7pcLZ7LjDGoI gEI= -----END CERTIFICATE-----Generated at Sat May 16 01:39:20 2026 by rpki-client