$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/05bbbc0b-36fc-4ef2-bea1-e2c46167fbb2.roa File: 05bbbc0b-36fc-4ef2-bea1-e2c46167fbb2.roa (raw, json) Hash identifier: Fcw/Zo6kLDjXfsJY+BU5GsCfF6q73u+0Phr3NNY9Zc4= Subject key identifier: EA:8C:E7:F8:67:2D:16:BB:03:F9:78:81:3C:25:C8:CE:D1:0D:F9:42 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2E675709F58BE4674159B0D61496E7B45C38BDD6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/05bbbc0b-36fc-4ef2-bea1-e2c46167fbb2.roa Signing time: Sun 31 May 2026 00:20:48 +0000 ROA not before: Sun 31 May 2026 00:20:48 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daba:2080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:67:57:09:f5:8b:e4:67:41:59:b0:d6:14:96:e7:b4:5c:38:bd:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:20:48 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=5cf016910e176937979b717359aea93188220da333bb68198c77721ef24c4434, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5b:09:0d:4c:4b:42:e7:ee:43:6f:fb:a8:06: 63:ac:9d:9c:70:c4:6b:08:e7:c9:ae:ac:7d:dc:18: eb:fa:78:38:2c:d5:fe:d6:d8:87:c1:3c:f7:cf:a1: de:44:97:ca:5d:79:a7:c6:29:06:5b:a6:d5:8a:2d: 10:25:10:cc:a0:28:ee:7d:17:5f:71:b4:f7:9e:d8: b6:e2:38:ee:c3:ae:7d:35:c1:01:47:74:2e:4d:72: 29:f7:98:28:3e:a5:80:1f:c1:f3:f9:2e:21:20:87: 44:b6:0c:ab:39:44:98:0d:8b:67:bb:e7:94:c2:49: 8d:0b:9e:81:9a:42:76:cb:5f:c0:12:c5:35:c8:2f: fd:a2:aa:fb:3c:38:31:0e:bf:50:5e:86:03:69:92: 22:eb:ce:38:e0:d3:19:3b:9c:d0:40:95:42:98:f8: a6:6e:0b:95:e1:ea:c7:e1:b5:2b:79:ad:db:4e:af: 2a:73:a8:a2:85:2e:08:66:f8:e5:d4:09:56:10:88: 0c:bb:33:5b:d4:21:29:77:65:88:e8:e0:4d:e2:22: 16:4c:72:fd:74:f2:52:3e:bb:a5:05:83:12:4b:22: 9d:50:1e:58:79:b9:f9:bc:fa:61:28:27:f9:b1:97: 96:68:2c:e5:71:fa:93:9d:61:d5:42:30:8a:e2:1a: bc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8C:E7:F8:67:2D:16:BB:03:F9:78:81:3C:25:C8:CE:D1:0D:F9:42 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/05bbbc0b-36fc-4ef2-bea1-e2c46167fbb2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daba:2080::/48 Signature Algorithm: sha256WithRSAEncryption 05:3a:b0:98:d1:79:18:a3:fd:05:c7:04:50:fc:dd:3f:a9:0c: d3:9e:31:1d:be:1a:f2:9a:e0:43:22:a8:8f:5b:99:d6:fd:ce: fa:33:fd:9b:e3:17:28:d9:82:4c:e4:d5:11:76:6b:67:48:93: 19:fb:25:b0:64:41:e5:a4:d1:c0:3e:a6:e9:e5:8a:02:76:3c: 3c:18:97:24:a1:bd:19:c4:8a:03:3d:ed:d8:49:e4:a4:50:6e: c6:c4:d1:7e:83:04:7d:e2:af:49:39:4b:e9:0f:e7:7a:37:c3: e6:53:ed:ec:6b:54:ed:aa:be:4a:3f:59:e4:8f:9a:da:7d:20: 59:4d:48:04:c2:60:71:73:0f:c4:a2:68:1e:6a:49:03:60:f5: 74:ef:f3:9c:12:48:19:4e:88:07:56:05:de:53:f1:fa:10:7f: de:ec:af:62:d0:82:9a:0b:0f:59:ef:57:e1:66:53:28:48:eb: ae:8a:e2:d4:e1:0e:01:80:85:58:00:30:20:54:53:e8:73:d8: 2e:03:95:e2:fc:01:26:d9:49:35:62:0c:03:3a:13:f5:6f:dc: 03:44:92:cc:32:b9:9a:3e:d6:c4:af:a0:46:f1:d6:32:2b:f0: 9c:18:2a:76:1b:4f:8a:fe:43:2c:b0:34:68:9d:a0:fc:f0:73: e7:c9:38:af -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIULmdXCfWL5GdBWbDWFJbntFw4vdYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMjA0OFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNANWNmMDE2OTEwZTE3NjkzNzk3OWI3 MTczNTlhZWE5MzE4ODIyMGRhMzMzYmI2ODE5OGM3NzcyMWVmMjRjNDQzNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVsJDUxLQufuQ2/7qAZjrJ2ccMRr COfJrqx93Bjr+ng4LNX+1tiHwTz3z6HeRJfKXXmnxikGW6bVii0QJRDMoCjufRdf cbT3nti24jjuw659NcEBR3QuTXIp95goPqWAH8Hz+S4hIIdEtgyrOUSYDYtnu+eU wkmNC56BmkJ2y1/AEsU1yC/9oqr7PDgxDr9QXoYDaZIi68444NMZO5zQQJVCmPim bguV4erH4bUrea3bTq8qc6iihS4IZvjl1AlWEIgMuzNb1CEpd2WI6OBN4iIWTHL9 dPJSPrulBYMSSyKdUB5Yebn5vPphKCf5sZeWaCzlcfqTnWHVQjCK4hq8DQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFOqM5/hnLRa7A/l4gTwlyM7RDflCMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA1YmJiYzBiLTM2ZmMtNGVmMi1iZWExLWUyYzQ2MTY3ZmJiMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbauiCAMA0GCSqGSIb3DQEBCwUAA4IBAQAFOrCY0XkYo/0FxwRQ /N0/qQzTnjEdvhrymuBDIqiPW5nW/c76M/2b4xco2YJM5NURdmtnSJMZ+yWwZEHl pNHAPqbp5YoCdjw8GJckob0ZxIoDPe3YSeSkUG7GxNF+gwR94q9JOUvpD+d6N8Pm U+3sa1Ttqr5KP1nkj5rafSBZTUgEwmBxcw/EomgeakkDYPV07/OcEkgZTogHVgXe U/H6EH/e7K9i0IKaCw9Z71fhZlMoSOuuiuLU4Q4BgIVYADAgVFPoc9guA5Xi/AEm 2Uk1YgwDOhP1b9wDRJLMMrmaPtbEr6BG8dYyK/CcGCp2G0+K/kMssDRonaD88HPn yTiv -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:52 2026 by rpki-client