$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3a83c627-c680-48f0-badd-3de339913fb9.roa File: 3a83c627-c680-48f0-badd-3de339913fb9.roa (raw, json) Hash identifier: Ej3V3g4K/59+JXHfgMoMRGz/SigApNal9X9jwCVVR14= Subject key identifier: 59:1B:CF:5C:AE:04:CB:E6:B5:16:8A:F4:32:D1:2B:D0:77:D5:C8:2B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6A5CFB7E5C5F91CEE3A7B39105734F73A2402C96 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3a83c627-c680-48f0-badd-3de339913fb9.roa Signing time: Sun 31 May 2026 00:00:36 +0000 ROA not before: Sun 31 May 2026 00:00:36 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daba:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:5c:fb:7e:5c:5f:91:ce:e3:a7:b3:91:05:73:4f:73:a2:40:2c:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:00:36 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=428d14511d098dedd08905c4079bb357a25ed7739e68ef8011e0480331c32140, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a0:73:08:d2:d4:0c:02:39:72:82:61:63:95: 08:dd:a1:a6:2e:9f:f4:8a:4d:77:fd:b0:c0:ba:8b: c9:c4:0c:c5:10:33:16:d0:ec:9e:5f:ba:cb:3e:f9: cb:07:0e:f4:40:79:5d:db:77:3d:18:d8:23:8b:2d: 7b:af:87:34:6c:b2:f3:6d:6a:37:d0:56:e3:dd:65: 2d:54:65:2e:1a:17:86:48:dc:19:4f:b4:6b:22:03: 4a:17:b0:98:90:07:a2:7f:57:d2:45:57:49:ac:2b: ad:5e:c0:b5:89:b7:f6:4c:70:57:d5:6c:9c:1e:d9: c4:bf:c5:b7:21:79:fc:70:07:65:64:8f:50:b8:57: e1:c6:1f:fe:74:19:cb:d6:28:16:15:34:2d:85:72: 76:f3:00:fb:4d:0d:b2:5c:b7:ab:ba:d8:f5:b1:48: 5e:0b:d3:03:1a:2c:71:94:03:b1:fe:d3:f2:58:5d: 64:18:53:84:3b:8d:2e:de:d7:07:a4:d1:14:91:55: 36:04:71:61:af:71:54:56:83:ad:68:86:08:8a:ec: 37:4b:9b:cd:5b:7d:7f:81:a9:df:7d:13:af:87:2a: 43:19:d5:bb:5d:68:8f:31:f9:d0:96:dd:2d:40:a4: 58:34:8e:86:49:a2:b5:9a:44:11:ea:bc:56:0b:73: 3d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:1B:CF:5C:AE:04:CB:E6:B5:16:8A:F4:32:D1:2B:D0:77:D5:C8:2B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3a83c627-c680-48f0-badd-3de339913fb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daba:8040::/48 Signature Algorithm: sha256WithRSAEncryption 71:35:2e:58:2f:69:a7:35:1e:80:d9:d2:fc:48:d3:6c:97:b1: 19:98:13:c4:b7:81:6d:44:ef:fe:80:6b:8a:dc:32:3c:05:3d: 3f:51:a4:c6:ed:a8:5d:54:66:47:f7:1d:ba:80:f9:88:05:6c: 32:01:20:6c:a3:2c:44:e0:69:f4:1b:77:b4:9d:8d:98:ee:da: 41:ab:1c:af:54:ca:f0:6a:63:a1:96:b0:96:5f:b8:46:63:c1: a9:84:34:f9:f5:ce:56:f2:82:d5:07:88:21:a3:21:18:7d:c1: 37:43:97:e3:a1:cc:b8:6a:93:31:ca:00:48:20:ff:bd:1d:c1: b1:63:aa:63:17:04:0e:ea:c7:8e:52:b0:25:5e:c5:df:6d:c8: df:39:5f:3b:4e:68:ea:ce:ba:04:7f:e1:0b:be:ea:02:9d:b8: 40:09:20:c9:1e:4e:a5:f2:b2:0d:20:f7:cd:41:03:de:8a:76: 8e:b0:53:b0:c0:a6:13:63:16:62:71:02:8c:d2:4b:9a:9b:d8: 9e:e7:3e:e2:58:da:7b:f2:47:e8:7f:e1:c1:9d:3a:e1:51:50: cc:91:7b:be:eb:fe:51:97:4e:04:f4:2c:7e:a6:5a:8a:c2:cd: ad:20:fd:af:b7:60:28:e1:05:89:1a:7e:6a:26:39:1e:7d:c6: e0:b8:3a:ed -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUalz7flxfkc7jp7ORBXNPc6JALJYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMDAzNloX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNANDI4ZDE0NTExZDA5OGRlZGQwODkw NWM0MDc5YmIzNTdhMjVlZDc3MzllNjhlZjgwMTFlMDQ4MDMzMWMzMjE0MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqBzCNLUDAI5coJhY5UI3aGmLp/0 ik13/bDAuovJxAzFEDMW0OyeX7rLPvnLBw70QHld23c9GNgjiy17r4c0bLLzbWo3 0Fbj3WUtVGUuGheGSNwZT7RrIgNKF7CYkAeif1fSRVdJrCutXsC1ibf2THBX1Wyc HtnEv8W3IXn8cAdlZI9QuFfhxh/+dBnL1igWFTQthXJ28wD7TQ2yXLerutj1sUhe C9MDGixxlAOx/tPyWF1kGFOEO40u3tcHpNEUkVU2BHFhr3FUVoOtaIYIiuw3S5vN W31/ganffROvhypDGdW7XWiPMfnQlt0tQKRYNI6GSaK1mkQR6rxWC3M9UwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFkbz1yuBMvmtRaK9DLRK9B31cgrMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzNhODNjNjI3LWM2ODAtNDhmMC1iYWRkLTNkZTMzOTkxM2ZiOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbauoBAMA0GCSqGSIb3DQEBCwUAA4IBAQBxNS5YL2mnNR6A2dL8 SNNsl7EZmBPEt4FtRO/+gGuK3DI8BT0/UaTG7ahdVGZH9x26gPmIBWwyASBsoyxE 4Gn0G3e0nY2Y7tpBqxyvVMrwamOhlrCWX7hGY8GphDT59c5W8oLVB4ghoyEYfcE3 Q5fjocy4apMxygBIIP+9HcGxY6pjFwQO6seOUrAlXsXfbcjfOV87TmjqzroEf+EL vuoCnbhACSDJHk6l8rINIPfNQQPeinaOsFOwwKYTYxZicQKM0kuam9ie5z7iWNp7 8kfof+HBnTrhUVDMkXu+6/5Rl04E9Cx+plqKws2tIP2vt2Ao4QWJGn5qJjkefcbg uDrt -----END CERTIFICATE-----Generated at Sat Jun 13 08:07:43 2026 by rpki-client