$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0664f42a-f6ce-418d-8061-7cf7cf9a3637.roa File: 0664f42a-f6ce-418d-8061-7cf7cf9a3637.roa (raw, json) Hash identifier: hUj8e6BhYDVJA/dlNxGwG+PbD7ZNnAlxmTb42m9vc3U= Subject key identifier: 09:87:83:C0:74:A9:6C:88:90:81:E3:35:B5:52:2F:A9:68:D9:37:92 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4B9C3F53BDAB34E20805E13C86580A281BE3A0F7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0664f42a-f6ce-418d-8061-7cf7cf9a3637.roa Signing time: Wed 13 May 2026 00:30:10 +0000 ROA not before: Wed 13 May 2026 00:30:10 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:2800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:9c:3f:53:bd:ab:34:e2:08:05:e1:3c:86:58:0a:28:1b:e3:a0:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:30:10 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=a1743473fbcb6a38e35bd19ccf91ba609286599cecebae4ac532e3d8d95b5095, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:56:68:ea:52:11:d0:00:07:5e:7e:ea:8e:01: ce:a7:81:df:0e:0c:0a:89:0b:1b:0f:ec:03:6a:09: 46:36:73:7c:6c:49:10:88:bb:0e:18:13:7b:d0:1c: 88:53:d9:6d:ba:7b:01:c7:6e:46:a2:50:54:06:72: b0:51:06:30:e0:31:46:99:4d:da:86:5c:a4:0f:fb: b2:e5:bb:cd:49:57:2d:60:27:17:a4:ed:fd:48:15: db:d7:c5:91:4d:dc:a7:3b:e5:5e:40:6a:89:57:4e: dc:15:77:46:bb:c8:60:79:8a:7c:44:df:3a:52:a9: b0:aa:09:d0:11:f8:04:90:07:ac:85:eb:23:e3:e8: 5c:83:11:5f:8f:6f:18:10:aa:b6:8a:33:68:e4:3c: 64:17:33:8d:a6:c5:e6:54:69:77:ec:3d:3c:bb:fb: ef:fe:2f:a9:dc:2b:af:3e:e2:8a:76:e1:f9:dc:46: 34:29:00:0d:a1:a2:aa:5f:a0:80:52:82:d9:b7:77: 7d:b8:2c:8e:56:88:44:86:e8:bc:ab:57:40:97:d2: d0:10:8f:a1:a4:7d:66:3d:41:5b:76:d3:7b:ed:c0: ef:9d:05:cb:8f:94:71:b7:00:2b:a7:86:71:e0:0c: 00:e3:44:0e:83:19:83:34:a0:6d:a1:76:35:87:c8: 8f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:87:83:C0:74:A9:6C:88:90:81:E3:35:B5:52:2F:A9:68:D9:37:92 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0664f42a-f6ce-418d-8061-7cf7cf9a3637.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:2800::/40 Signature Algorithm: sha256WithRSAEncryption 28:b5:f0:cf:8e:47:cc:98:83:47:a7:31:79:c1:6c:dc:e7:4d: c8:5d:12:c5:d0:a0:ea:ee:e2:74:4e:11:54:cb:42:b1:0a:59: 54:63:e5:21:8d:93:dd:ff:4b:1d:d8:c5:da:e3:2a:02:92:8c: 12:80:6d:0d:3b:c1:f4:ba:b6:8d:09:fe:f7:51:ca:06:46:e7: 70:ef:7b:fe:7a:56:59:e1:1b:5c:b3:95:e3:14:08:0b:aa:24: 29:a7:51:1e:28:0e:87:a4:2d:18:d0:2e:eb:2a:7b:9f:93:34: 17:b0:69:5d:80:10:73:cf:3c:2f:78:7d:88:51:3f:79:27:b3: 73:05:49:bc:a0:13:49:22:ef:5d:45:b7:1b:c7:58:44:b4:56: 03:27:38:02:6c:ea:7e:50:5f:0b:6c:9f:26:53:c0:f0:a2:84: 4c:01:12:59:e7:4f:fa:ac:ba:e5:cd:0a:ef:4c:d4:a3:85:db: 1f:f7:52:e5:03:21:dd:d8:84:eb:e5:96:f7:34:f0:a9:2d:d7: ef:92:98:dc:27:88:da:05:76:4c:50:b5:3f:b6:1d:c8:52:c5: 9d:87:04:45:90:f3:e1:bb:79:65:67:b1:5e:f7:c0:98:13:d7: 0a:83:5a:b6:f5:86:81:38:45:0f:47:2c:a5:b6:b4:07:ae:50: a3:cc:7c:18 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUS5w/U72rNOIIBeE8hlgKKBvjoPcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMzAxMFoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAYTE3NDM0NzNmYmNiNmEzOGUzNWJk MTljY2Y5MWJhNjA5Mjg2NTk5Y2VjZWJhZTRhYzUzMmUzZDhkOTViNTA5NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3VZo6lIR0AAHXn7qjgHOp4HfDgwK iQsbD+wDaglGNnN8bEkQiLsOGBN70ByIU9ltunsBx25GolBUBnKwUQYw4DFGmU3a hlykD/uy5bvNSVctYCcXpO39SBXb18WRTdynO+VeQGqJV07cFXdGu8hgeYp8RN86 UqmwqgnQEfgEkAeshesj4+hcgxFfj28YEKq2ijNo5DxkFzONpsXmVGl37D08u/vv /i+p3CuvPuKKduH53EY0KQANoaKqX6CAUoLZt3d9uCyOVohEhui8q1dAl9LQEI+h pH1mPUFbdtN77cDvnQXLj5RxtwArp4Zx4AwA40QOgxmDNKBtoXY1h8iP6QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAmHg8B0qWyIkIHjNbVSL6lo2TeSMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA2NjRmNDJhLWY2Y2UtNDE4ZC04MDYxLTdjZjdjZjlhMzYzNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9igwDQYJKoZIhvcNAQELBQADggEBACi18M+OR8yYg0enMXnB bNznTchdEsXQoOru4nROEVTLQrEKWVRj5SGNk93/Sx3YxdrjKgKSjBKAbQ07wfS6 to0J/vdRygZG53Dve/56VlnhG1yzleMUCAuqJCmnUR4oDoekLRjQLusqe5+TNBew aV2AEHPPPC94fYhRP3kns3MFSbygE0ki711FtxvHWES0VgMnOAJs6n5QXwtsnyZT wPCihEwBElnnT/qsuuXNCu9M1KOF2x/3UuUDId3YhOvllvc08Kkt1++SmNwniNoF dkxQtT+2HchSxZ2HBEWQ8+G7eWVnsV73wJgT1wqDWrb1hoE4RQ9HLKW2tAeuUKPM fBg= -----END CERTIFICATE-----Generated at Sat Jun 13 08:07:36 2026 by rpki-client