$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa File: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (raw, json) Hash identifier: zjpqXMG62mILyCYWLWntVNUXaDpg0TIux3Khv+u9/do= Subject key identifier: 0F:DB:D8:D0:12:2F:43:BB:E1:42:84:B6:42:93:30:A6:05:28:28:D8 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 430DE7321DA5F0A96B8AE6DA1152884343BFB18E Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa Signing time: Fri 15 May 2026 00:10:11 +0000 ROA not before: Fri 15 May 2026 00:10:11 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fe:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:0d:e7:32:1d:a5:f0:a9:6b:8a:e6:da:11:52:88:43:43:bf:b1:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 15 00:10:11 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=28a228b0a42303377d235d422b1497ef4b63e8bbe3b8f78c2174b74b1f8db864, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e7:7c:4d:2f:1f:ee:e5:f4:76:e9:b8:b4:8c: a4:64:b6:bc:56:e1:f2:46:4c:48:f9:0d:b4:c9:73: a0:96:4a:4a:fd:71:52:cd:70:5a:26:78:2e:47:c2: c7:35:18:10:c3:36:aa:fb:ee:86:34:99:66:31:cb: 56:3b:7d:89:64:3e:93:7f:22:9f:60:ca:dc:4d:10: 79:76:df:2d:04:fc:4f:b4:68:06:b8:f3:58:24:f4: 04:64:a7:36:55:8b:22:95:91:53:17:ed:fd:93:e3: f8:44:fb:c4:b5:70:ae:d9:00:8b:f8:22:bb:34:69: 82:4d:aa:b2:3e:6d:93:20:23:cc:55:83:4b:4a:08: 4c:ca:e6:c6:e9:04:40:3c:1b:74:60:80:b0:11:50: 11:f3:86:2d:97:26:ad:4f:23:3e:af:4f:71:8b:87: d4:68:08:dc:a3:44:60:c9:4e:f4:fe:da:d6:0c:05: 98:b3:24:9f:ac:31:b9:a9:c8:be:74:0a:3d:19:68: 74:c4:f1:c2:82:5d:c3:58:84:c4:0c:73:34:71:20: 08:a2:62:08:79:63:c8:bd:a1:c0:99:71:c9:ac:2c: 82:8d:8b:88:70:b0:f1:95:88:fd:9c:96:fb:53:d9: 88:45:4c:70:08:93:b1:a0:ac:b2:ee:3e:de:3c:f1: 39:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:DB:D8:D0:12:2F:43:BB:E1:42:84:B6:42:93:30:A6:05:28:28:D8 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fe:8000::/40 Signature Algorithm: sha256WithRSAEncryption 12:a7:d1:c6:27:34:1f:eb:6a:65:24:b7:26:5c:ae:57:ef:93: 6c:46:a5:4d:fa:44:d1:31:c2:25:11:26:16:7c:ff:33:f7:9f: 75:b0:59:3f:4a:69:95:53:7e:e1:b8:64:de:2b:b9:f8:f6:43: 82:3d:60:f8:7c:49:b7:39:bb:33:19:21:5f:97:04:70:ea:dd: 87:3a:32:88:84:16:da:38:d3:5f:ec:09:99:96:29:94:46:e5: 85:13:9e:42:e5:60:23:85:1b:27:29:b8:8c:ff:da:0f:c4:a6: eb:a2:4f:e9:98:7e:d9:75:dd:a9:94:c0:f5:17:6a:97:6d:ee: b1:f1:91:5a:49:a4:81:b4:df:c2:ae:0f:1f:98:e5:ba:7f:47: 19:5c:3c:8a:75:7c:56:4f:f2:cf:d5:20:01:f0:cc:96:6d:39: 0f:87:c6:86:c8:4c:2c:68:b1:7a:18:39:15:98:2e:d4:9f:70: 98:6c:d7:c7:91:52:82:79:ad:f9:e3:43:c3:7c:6f:84:e7:b1: 7f:a4:a6:89:d9:31:f3:31:06:8c:60:ee:2a:3f:1b:24:13:3f: 7b:c0:24:ae:43:a0:aa:06:b9:c8:a1:a4:b0:88:88:9e:51:41: a7:9b:e7:b1:3b:5d:d8:43:e2:8c:a7:96:08:83:55:a6:d9:76: 64:7c:70:90 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUQw3nMh2l8KlriubaEVKIQ0O/sY4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNTAwMTAxMVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMjhhMjI4YjBhNDIzMDMzNzdkMjM1 ZDQyMmIxNDk3ZWY0YjYzZThiYmUzYjhmNzhjMjE3NGI3NGIxZjhkYjg2NDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOd8TS8f7uX0dum4tIykZLa8VuHy RkxI+Q20yXOglkpK/XFSzXBaJnguR8LHNRgQwzaq++6GNJlmMctWO32JZD6TfyKf YMrcTRB5dt8tBPxPtGgGuPNYJPQEZKc2VYsilZFTF+39k+P4RPvEtXCu2QCL+CK7 NGmCTaqyPm2TICPMVYNLSghMyubG6QRAPBt0YICwEVAR84YtlyatTyM+r09xi4fU aAjco0RgyU70/trWDAWYsySfrDG5qci+dAo9GWh0xPHCgl3DWITEDHM0cSAIomII eWPIvaHAmXHJrCyCjYuIcLDxlYj9nJb7U9mIRUxwCJOxoKyy7j7ePPE5NwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFA/b2NASL0O74UKEtkKTMKYFKCjYMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M2YzhjMmM4LTI2MTAtNGI0Ni05ZTU1LTY3YzEyY2VjY2JiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/oAwDQYJKoZIhvcNAQELBQADggEBABKn0cYnNB/ramUktyZc rlfvk2xGpU36RNExwiURJhZ8/zP3n3WwWT9KaZVTfuG4ZN4rufj2Q4I9YPh8Sbc5 uzMZIV+XBHDq3Yc6MoiEFto401/sCZmWKZRG5YUTnkLlYCOFGycpuIz/2g/Epuui T+mYftl13amUwPUXapdt7rHxkVpJpIG038KuDx+Y5bp/RxlcPIp1fFZP8s/VIAHw zJZtOQ+HxobITCxosXoYORWYLtSfcJhs18eRUoJ5rfnjQ8N8b4TnsX+kponZMfMx Boxg7io/GyQTP3vAJK5DoKoGucihpLCIiJ5RQaeb57E7XdhD4oynlgiDVabZdmR8 cJA= -----END CERTIFICATE-----Generated at Sat Jun 13 14:06:34 2026 by rpki-client