$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa File: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (raw, json) Hash identifier: PBJqDWFN+HylSPqXi/37A0gU1V9ejp8qvLgo6Ar+OPo= Subject key identifier: 56:4A:36:69:04:5D:C7:52:DD:6F:0C:F6:B0:A6:D3:66:74:5E:B4:C2 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 70CAD2B357E10189131F750956A3032C82F173A7 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa Signing time: Fri 15 May 2026 00:10:11 +0000 ROA not before: Fri 15 May 2026 00:10:11 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 00:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ca:d2:b3:57:e1:01:89:13:1f:75:09:56:a3:03:2c:82:f1:73:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 15 00:10:11 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=e3c2cfd543c69ce879fb24246e153ce6e84e3ddb19e073cd427d47f022cb422b, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:32:36:5c:c5:ba:2a:3c:61:24:57:de:96:01: 9e:5a:55:5d:67:df:6c:64:4e:6b:c4:8f:d7:36:1d: 09:69:8a:7a:f1:6b:9e:4e:7a:50:f2:97:72:e3:4f: 37:4d:61:43:72:0c:f0:ec:57:65:88:d2:9a:f7:5f: 04:5f:b1:b7:aa:c5:8f:d9:c8:82:37:2f:6a:6a:de: 6f:f8:d3:53:4c:5a:68:88:bd:38:57:fd:4f:77:6d: 24:88:78:e8:7a:62:cd:a4:74:cc:ae:15:43:88:0a: e8:1f:20:0b:8d:06:a7:e8:b1:fd:23:2d:9d:fa:93: 70:e9:1e:94:7c:9f:41:24:91:e3:fa:2a:a4:cf:64: 9a:1e:16:d7:43:5d:c2:a8:d5:ab:1f:bb:17:68:fe: eb:87:40:a9:70:51:35:44:84:51:ef:c2:0f:59:e3: 38:c1:ba:41:30:36:06:2e:e4:0f:ad:70:42:dc:bf: dd:9f:fc:76:cc:99:8b:ad:7f:c4:1c:c9:b4:49:2e: b0:22:16:3d:68:ea:7a:82:a2:fb:26:d8:ae:f2:64: 03:a6:14:66:e1:90:08:39:36:b3:18:f3:da:d6:ab: 90:bc:80:f5:17:bd:70:00:6c:9c:09:8e:5f:75:04: 70:1a:83:4f:d4:83:c8:a0:46:83:e7:be:53:42:a0: 31:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:4A:36:69:04:5D:C7:52:DD:6F:0C:F6:B0:A6:D3:66:74:5E:B4:C2 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000::/24 Signature Algorithm: sha256WithRSAEncryption 12:4c:b6:df:d7:ef:05:15:fe:a8:9e:b2:dc:e1:68:6b:8c:2c: d9:5b:cf:bb:64:60:3b:29:bb:40:b6:2e:1f:66:be:ec:a9:a2: c9:f0:ad:82:f6:60:58:93:5d:2c:25:c5:3a:ef:8d:b1:ab:66: 1c:f0:15:f3:2f:d7:cc:a2:93:e5:a1:84:30:11:2c:2f:e1:09: 72:11:9b:5f:0f:6e:e0:1a:7a:21:89:b4:c1:94:77:3a:8e:d0: fb:ec:48:f6:c9:f0:46:3e:be:76:97:27:4b:cb:30:bf:3c:c8: 81:ea:ab:af:87:fd:74:23:d8:0c:77:d4:a4:8b:6e:05:78:1d: 09:a1:33:85:26:1d:19:75:d6:9d:d4:a0:b3:3e:db:ab:98:92: 07:db:ca:31:2d:c3:81:2b:06:0e:73:4a:ed:2c:92:45:63:13: e8:bf:25:25:77:32:71:8d:b9:a0:d7:a0:b1:a3:4c:06:89:d8: 66:5a:32:24:fa:3c:bd:d8:e3:d9:61:6d:a6:d9:5a:dc:84:03: 75:a3:ec:43:e2:29:b7:a1:1b:69:e1:cd:97:eb:3c:bc:58:62: 5e:f1:2c:fa:bd:c4:9e:09:32:2f:7e:19:2b:c6:0d:01:47:4c: c5:3c:fc:c9:9c:4c:ba:a4:fe:39:90:0d:7e:86:77:4d:45:7b: fc:ee:e6:d0 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUcMrSs1fhAYkTH3UJVqMDLILxc6cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNTAwMTAxMVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAZTNjMmNmZDU0M2M2OWNlODc5ZmIy NDI0NmUxNTNjZTZlODRlM2RkYjE5ZTA3M2NkNDI3ZDQ3ZjAyMmNiNDIyYjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5DI2XMW6KjxhJFfelgGeWlVdZ99s ZE5rxI/XNh0JaYp68WueTnpQ8pdy4083TWFDcgzw7FdliNKa918EX7G3qsWP2ciC Ny9qat5v+NNTTFpoiL04V/1Pd20kiHjoemLNpHTMrhVDiAroHyALjQan6LH9Iy2d +pNw6R6UfJ9BJJHj+iqkz2SaHhbXQ13CqNWrH7sXaP7rh0CpcFE1RIRR78IPWeM4 wbpBMDYGLuQPrXBC3L/dn/x2zJmLrX/EHMm0SS6wIhY9aOp6gqL7Jtiu8mQDphRm 4ZAIOTazGPPa1quQvID1F71wAGycCY5fdQRwGoNP1IPIoEaD575TQqAxSwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFFZKNmkEXcdS3W8M9rCm02Z0XrTCMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzk3N2Y5MGUyLWQyNTctNGRkZS05NzQwLWIwMzkxNDU4ZDhlZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJA+AMA0GCSqGSIb3DQEBCwUAA4IBAQASTLbf1+8FFf6onrLc4Whr jCzZW8+7ZGA7KbtAti4fZr7sqaLJ8K2C9mBYk10sJcU6742xq2Yc8BXzL9fMopPl oYQwESwv4QlyEZtfD27gGnohibTBlHc6jtD77Ej2yfBGPr52lydLyzC/PMiB6quv h/10I9gMd9Ski24FeB0JoTOFJh0Zddad1KCzPturmJIH28oxLcOBKwYOc0rtLJJF YxPovyUldzJxjbmg16Cxo0wGidhmWjIk+jy92OPZYW2m2VrchAN1o+xD4im3oRtp 4c2X6zy8WGJe8Sz6vcSeCTIvfhkrxg0BR0zFPPzJnEy6pP45kA1+hndNRXv87ubQ -----END CERTIFICATE-----Generated at Sat May 16 01:41:02 2026 by rpki-client