$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2e7ffe27-bb9f-402e-8f90-08945a4d91ee.roa File: 2e7ffe27-bb9f-402e-8f90-08945a4d91ee.roa (raw, json) Hash identifier: puIn4JEOTUJu8tiBwazFyOuXhwvKWfElvgjs6jT0PCk= Subject key identifier: AB:52:F7:F3:15:16:E8:E0:AE:47:54:BD:E1:8F:ED:50:89:1B:A5:B6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 295C278FECFA64BF990215A8C406C991D83EA2C5 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2e7ffe27-bb9f-402e-8f90-08945a4d91ee.roa Signing time: Wed 13 May 2026 00:21:31 +0000 ROA not before: Wed 13 May 2026 00:21:31 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da36:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:5c:27:8f:ec:fa:64:bf:99:02:15:a8:c4:06:c9:91:d8:3e:a2:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:21:31 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=e4bd8d8350022180999a202fa0e634ccd800a8d454427368311308ca702a62fe, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:18:36:83:24:a7:4b:c3:cc:db:71:33:a2:07: cd:dc:61:ce:bd:f1:b5:a1:bd:88:1f:d2:ce:d6:08: 38:39:5f:3e:72:30:f7:43:23:10:14:69:c5:fa:35: e3:cd:c0:a0:f1:97:a3:fa:52:4b:51:26:79:cd:47: 2c:2c:6f:c4:a5:f5:bc:81:fa:70:66:64:66:7d:e6: 90:d8:b0:79:bf:11:e7:94:8f:1a:3a:40:cf:f4:18: 4f:ec:47:9b:d7:e2:1c:29:88:9e:bc:91:5a:4a:31: 89:7b:b6:80:9a:6e:1f:5d:6c:2a:63:c0:e3:9c:3c: 1b:c2:ce:c3:cb:b5:cd:03:25:4c:ce:82:ad:e7:ae: 3a:25:3e:b9:4b:1d:9a:14:de:16:bd:a3:f3:81:31: 12:b8:48:87:2a:18:19:89:40:22:4e:2c:aa:fc:b0: b9:f7:92:15:76:08:42:91:4c:00:a6:f3:1f:e8:20: 90:17:7a:88:be:58:b4:30:a5:a8:6d:0a:4f:34:b7: c4:79:eb:bf:aa:de:3f:94:09:c2:98:f2:87:49:1d: 65:4c:a6:28:60:99:4a:e1:6f:58:39:a3:12:89:bd: f6:ec:33:f2:fc:88:9a:a7:e6:47:26:85:03:b5:94: e8:37:11:b5:58:ac:34:dc:80:42:c6:e1:2a:e7:6b: 27:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:52:F7:F3:15:16:E8:E0:AE:47:54:BD:E1:8F:ED:50:89:1B:A5:B6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2e7ffe27-bb9f-402e-8f90-08945a4d91ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da36:6000::/40 Signature Algorithm: sha256WithRSAEncryption a3:a7:64:ee:f4:fc:cb:39:21:4b:38:22:86:56:b4:14:df:63: db:79:e0:1c:2c:5d:2b:36:17:af:1a:f8:23:f2:34:b6:37:3f: ee:56:7b:dc:49:97:8e:1f:95:3d:82:9e:e1:a7:c1:40:c6:cb: a7:fa:39:ec:5a:0c:b6:1f:6a:99:a9:a2:05:27:6b:d3:2a:be: 13:50:73:4d:1a:aa:ce:c1:a2:c6:e3:4e:15:84:12:7d:bf:d8: 41:28:6b:28:25:93:c0:ee:b2:6c:26:be:18:bc:c2:e0:c0:38: fc:9e:5f:90:02:2c:89:43:fd:3d:89:ca:b1:cf:34:13:47:bf: 18:11:bc:f8:54:aa:05:56:e2:57:0f:fb:0f:1b:d8:84:23:2e: 9f:f7:dc:8c:4b:29:1f:9a:c0:c4:10:80:51:2e:0b:35:c9:d6: 02:46:f2:ff:72:92:dc:7d:12:2d:a8:e9:ff:18:7e:0e:11:af: 13:76:94:06:6f:5d:2f:4e:88:02:ee:97:09:56:ee:f3:6b:95: b6:38:27:eb:1c:a6:f4:31:68:5f:36:c3:21:55:c2:b5:d8:8a: 37:81:3c:a9:a4:69:88:98:ed:54:39:36:c7:f1:15:8d:1f:5d: 83:81:94:dd:9f:d4:0f:ab:13:59:78:1a:f7:10:4b:f5:b8:39: 59:b8:9b:a1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUKVwnj+z6ZL+ZAhWoxAbJkdg+osUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMjEzMVoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAZTRiZDhkODM1MDAyMjE4MDk5OWEy MDJmYTBlNjM0Y2NkODAwYThkNDU0NDI3MzY4MzExMzA4Y2E3MDJhNjJmZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshg2gySnS8PM23EzogfN3GHOvfG1 ob2IH9LO1gg4OV8+cjD3QyMQFGnF+jXjzcCg8Zej+lJLUSZ5zUcsLG/EpfW8gfpw ZmRmfeaQ2LB5vxHnlI8aOkDP9BhP7Eeb1+IcKYievJFaSjGJe7aAmm4fXWwqY8Dj nDwbws7Dy7XNAyVMzoKt5646JT65Sx2aFN4WvaPzgTESuEiHKhgZiUAiTiyq/LC5 95IVdghCkUwApvMf6CCQF3qIvli0MKWobQpPNLfEeeu/qt4/lAnCmPKHSR1lTKYo YJlK4W9YOaMSib327DPy/Iiap+ZHJoUDtZToNxG1WKw03IBCxuEq52snowIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKtS9/MVFujgrkdUveGP7VCJG6W2MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJlN2ZmZTI3LWJiOWYtNDAyZS04ZjkwLTA4OTQ1YTRkOTFlZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaNmAwDQYJKoZIhvcNAQELBQADggEBAKOnZO70/Ms5IUs4IoZW tBTfY9t54BwsXSs2F68a+CPyNLY3P+5We9xJl44flT2CnuGnwUDGy6f6OexaDLYf apmpogUna9MqvhNQc00aqs7BosbjThWEEn2/2EEoayglk8Dusmwmvhi8wuDAOPye X5ACLIlD/T2JyrHPNBNHvxgRvPhUqgVW4lcP+w8b2IQjLp/33IxLKR+awMQQgFEu CzXJ1gJG8v9yktx9Ei2o6f8Yfg4RrxN2lAZvXS9OiALulwlW7vNrlbY4J+scpvQx aF82wyFVwrXYijeBPKmkaYiY7VQ5NsfxFY0fXYOBlN2f1A+rE1l4GvcQS/W4OVm4 m6E= -----END CERTIFICATE-----Generated at Sat Jun 13 08:01:51 2026 by rpki-client