$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa File: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (raw, json) Hash identifier: qFkqpuay3U75h1O1Yl1Z8EfngEyMcBhqskzcvMxVNbA= Subject key identifier: 92:AD:09:00:33:03:00:01:AF:0D:5A:D6:88:AC:8F:6D:39:BB:59:BB Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 16BF206A14BF515F4F1BF9E25E558F72626C99BE Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa Signing time: Fri 15 May 2026 00:10:09 +0000 ROA not before: Fri 15 May 2026 00:10:09 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fe:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 00:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:bf:20:6a:14:bf:51:5f:4f:1b:f9:e2:5e:55:8f:72:62:6c:99:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: May 15 00:10:09 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=85273a0b54355fcadb9c12743f9e953aa2c3c66a9007c0d9548f7d41bc6d5c3b, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:52:bb:c2:36:f7:9c:8d:ef:08:b0:5b:dc:c7: 13:dd:4b:7b:8d:39:c3:f8:91:01:8d:5d:55:05:14: 18:58:4b:f7:89:dc:fa:09:c0:ee:04:06:d5:06:34: 5b:19:5a:32:b2:cf:e2:50:cb:10:80:25:04:8d:b5: 11:95:45:ab:80:75:c5:77:5b:54:a4:d6:ce:f3:a8: 85:f1:40:23:43:a8:23:4c:ec:c5:e4:a9:4a:10:ba: 55:1b:1a:f5:9e:43:2e:7c:a7:86:b8:84:9b:52:db: 6c:99:0c:65:d5:d8:f4:1b:02:e1:ac:55:f1:af:f5: db:38:a9:9c:a0:7f:0d:fd:d9:13:6c:32:4e:4e:42: cb:40:9b:da:e2:b2:0a:d4:0a:51:1c:46:77:d5:61: fd:79:fc:24:a4:ac:bb:37:d8:8e:d0:7e:28:46:ea: 64:56:b7:f2:9c:0b:df:78:a9:7e:37:4d:d0:0d:de: a2:37:ea:10:9b:6f:98:32:9f:ba:b5:3c:98:df:37: 0e:fe:02:50:51:64:66:87:e1:8d:da:99:cc:3c:b2: 2d:e2:76:df:5b:46:25:e1:8f:c3:41:79:4a:9e:f6: 61:5c:38:60:e1:38:bc:fa:58:51:7d:36:5e:e0:24: 11:0b:ee:8e:60:1d:d7:bd:fe:f8:3b:f7:59:ec:b9: 84:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AD:09:00:33:03:00:01:AF:0D:5A:D6:88:AC:8F:6D:39:BB:59:BB X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fe:4000::/40 Signature Algorithm: sha256WithRSAEncryption aa:a5:73:99:c2:70:4c:bc:89:c3:d8:a8:2d:66:9d:d2:2f:e1: 07:7a:24:7b:ca:54:af:b3:73:58:e4:ca:68:86:b0:59:6c:d1: 17:c2:e7:46:fa:ad:b7:8c:eb:c7:76:4c:9c:c9:7b:44:2b:03: 65:3f:51:57:a5:9b:5a:ae:4d:e2:9f:d0:d1:9a:de:92:f9:d2: 6c:c4:bf:08:a2:15:06:c1:a9:a0:a2:f3:c1:26:91:62:8f:82: f2:17:71:c6:df:84:32:b4:d8:ef:c0:d4:e7:34:98:43:5f:d8: 5f:5f:ad:5a:47:a4:cd:7d:4c:85:f3:bf:a3:af:d4:16:db:e6: af:90:38:95:c6:00:f9:38:ca:fd:f6:b9:ac:15:12:38:b6:3a: 36:57:77:54:1f:2d:71:79:1d:82:16:8f:82:55:fe:85:a1:d1: da:83:b7:72:f4:63:69:d1:86:3f:01:d8:d7:b2:3c:f0:e2:80: fd:a6:56:d5:d1:e7:53:92:a3:cc:85:00:5e:9c:64:c7:e0:59: 63:3f:16:50:f9:ba:9b:b7:62:9b:05:77:0b:8b:9b:e7:69:d0: a2:7c:d6:03:1f:94:f4:c1:49:db:93:b5:c9:d1:2e:77:3b:4d: 6b:1c:7e:c7:d2:2e:6b:fb:c7:0a:b9:74:98:f1:c6:17:51:b2: 1b:3b:5f:cc -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFr8gahS/UV9PG/niXlWPcmJsmb4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDUxNTAwMTAwOVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAODUyNzNhMGI1NDM1NWZjYWRiOWMx Mjc0M2Y5ZTk1M2FhMmMzYzY2YTkwMDdjMGQ5NTQ4ZjdkNDFiYzZkNWMzYjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqlK7wjb3nI3vCLBb3McT3Ut7jTnD +JEBjV1VBRQYWEv3idz6CcDuBAbVBjRbGVoyss/iUMsQgCUEjbURlUWrgHXFd1tU pNbO86iF8UAjQ6gjTOzF5KlKELpVGxr1nkMufKeGuISbUttsmQxl1dj0GwLhrFXx r/XbOKmcoH8N/dkTbDJOTkLLQJva4rIK1ApRHEZ31WH9efwkpKy7N9iO0H4oRupk VrfynAvfeKl+N03QDd6iN+oQm2+YMp+6tTyY3zcO/gJQUWRmh+GN2pnMPLIt4nbf W0Yl4Y/DQXlKnvZhXDhg4Ti8+lhRfTZe4CQRC+6OYB3Xvf74O/dZ7LmEsQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJKtCQAzAwABrw1a1oisj205u1m7MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M4ODZmZGNjLWQ5YzQtNDg1YS1hOTQxLTdhYTJjN2QwOTNlMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/kAwDQYJKoZIhvcNAQELBQADggEBAKqlc5nCcEy8icPYqC1m ndIv4Qd6JHvKVK+zc1jkymiGsFls0RfC50b6rbeM68d2TJzJe0QrA2U/UVelm1qu TeKf0NGa3pL50mzEvwiiFQbBqaCi88EmkWKPgvIXccbfhDK02O/A1Oc0mENf2F9f rVpHpM19TIXzv6Ov1Bbb5q+QOJXGAPk4yv32uawVEji2OjZXd1QfLXF5HYIWj4JV /oWh0dqDt3L0Y2nRhj8B2NeyPPDigP2mVtXR51OSo8yFAF6cZMfgWWM/FlD5upu3 YpsFdwuLm+dp0KJ81gMflPTBSduTtcnRLnc7TWscfsfSLmv7xwq5dJjxxhdRshs7 X8w= -----END CERTIFICATE-----Generated at Sat May 16 01:39:48 2026 by rpki-client