$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/404b1f09-58ed-4d8b-8b95-8dfe3d833427.roa File: 404b1f09-58ed-4d8b-8b95-8dfe3d833427.roa (raw, json) Hash identifier: FqtZP8Tl2fbfXA7+q00rAMJlC37Fzbp5kAFLdpSq8tg= Subject key identifier: E3:FB:8B:7B:D4:38:45:16:7A:99:09:36:B2:FC:13:8E:C6:83:BA:A3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 32EF0B1112F142E1503525A65B28E01677E87C3E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/404b1f09-58ed-4d8b-8b95-8dfe3d833427.roa Signing time: Fri 15 May 2026 00:00:51 +0000 ROA not before: Fri 15 May 2026 00:00:51 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ef:0b:11:12:f1:42:e1:50:35:25:a6:5b:28:e0:16:77:e8:7c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 15 00:00:51 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=f029d2bba931d8e7c61a39dcbf8a96c83cf673d171f458e2a622dd3da6c051b8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b0:27:1b:a1:32:97:aa:c1:24:8f:cf:5a:a2: a5:1a:29:76:eb:57:a7:92:44:cb:5c:f6:ca:31:c0: 7f:5b:16:44:40:49:01:73:8e:b7:16:18:49:3d:31: db:04:ee:19:12:20:9a:d1:55:9b:67:bd:d9:58:47: 03:72:05:cf:35:8f:9d:f2:3b:f5:9a:06:59:90:ad: 8a:67:55:dc:6f:39:ec:f1:bd:9c:99:8a:d2:25:64: 26:d3:fc:86:cc:9c:78:9e:83:88:62:4f:e7:b7:dc: e7:54:81:9b:38:8a:c3:d1:e8:c3:40:a1:10:a8:78: 09:ac:d6:41:b2:7e:88:ad:24:5d:fa:d0:3b:af:91: 93:f0:1b:8f:1b:17:eb:ac:d3:a0:47:ef:75:d2:a7: 36:5f:6f:31:af:3f:1a:97:bc:2f:8f:27:aa:c6:9f: ed:f9:61:5b:15:54:01:c1:eb:10:25:11:35:60:15: 8d:17:3e:e1:56:5b:0e:27:c8:23:a4:92:ef:fe:08: d3:e5:c8:1e:80:7b:f9:1d:88:7a:d3:95:c2:ed:1a: d6:4c:a0:1d:5f:e2:4a:09:92:01:40:85:fe:15:90: e9:05:33:e4:ab:9d:c7:1d:a8:2b:dc:46:7e:78:5e: 15:67:d0:81:fb:56:cf:12:ea:97:d5:86:20:a4:31: 9a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:FB:8B:7B:D4:38:45:16:7A:99:09:36:B2:FC:13:8E:C6:83:BA:A3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/404b1f09-58ed-4d8b-8b95-8dfe3d833427.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5::/32 Signature Algorithm: sha256WithRSAEncryption 87:d8:c7:b3:9e:99:7a:b1:6d:41:31:f1:e5:90:47:08:54:a4: 49:51:76:a2:76:ee:25:93:63:58:88:d8:46:26:5d:cf:6b:32: c3:5a:0a:94:19:1d:06:6b:c3:ef:43:79:e6:dd:7d:0b:04:b3: fe:11:45:ab:c6:b6:4f:fe:bc:9a:c1:fd:3a:bf:ee:d9:6d:c8: 34:de:8d:b5:8b:8b:15:d6:8d:24:ac:4e:76:ab:de:75:76:c2: 40:60:94:40:13:cc:1d:c5:c4:90:e0:87:91:f7:2f:88:c3:63: 8a:07:32:a8:dd:14:d6:59:fc:04:d2:d2:c7:26:74:aa:36:1d: ff:1c:77:21:df:ba:d8:ff:5d:81:6a:81:88:3a:d4:8b:01:fa: bf:75:c8:34:16:29:95:5e:db:f1:54:80:5a:82:c3:82:8e:9f: 36:40:2e:fa:66:a2:f9:32:08:34:4a:78:9b:20:a3:1f:fe:b3: 7e:24:40:49:d9:e9:28:03:ea:6b:d5:e8:69:4f:8a:a0:56:66: 68:6c:a2:d0:3c:63:6d:10:95:c1:f8:f1:ce:47:92:a7:aa:be: 58:ad:d7:c4:da:68:53:22:36:fc:6c:91:2b:a0:ec:92:08:10: ac:10:9c:9e:13:5c:23:db:12:be:ef:a1:36:1e:bc:34:f6:ac: 5c:73:70:7b -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUMu8LERLxQuFQNSWmWyjgFnfofD4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNTAwMDA1MVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAZjAyOWQyYmJhOTMxZDhlN2M2MWEz OWRjYmY4YTk2YzgzY2Y2NzNkMTcxZjQ1OGUyYTYyMmRkM2RhNmMwNTFiODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7AnG6Eyl6rBJI/PWqKlGil261en kkTLXPbKMcB/WxZEQEkBc463FhhJPTHbBO4ZEiCa0VWbZ73ZWEcDcgXPNY+d8jv1 mgZZkK2KZ1Xcbzns8b2cmYrSJWQm0/yGzJx4noOIYk/nt9znVIGbOIrD0ejDQKEQ qHgJrNZBsn6IrSRd+tA7r5GT8BuPGxfrrNOgR+910qc2X28xrz8al7wvjyeqxp/t +WFbFVQBwesQJRE1YBWNFz7hVlsOJ8gjpJLv/gjT5cgegHv5HYh605XC7RrWTKAd X+JKCZIBQIX+FZDpBTPkq53HHagr3EZ+eF4VZ9CB+1bPEuqX1YYgpDGa7wIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFOP7i3vUOEUWepkJNrL8E47Gg7qjMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzQwNGIxZjA5LTU4ZWQtNGQ4Yi04Yjk1LThkZmUzZDgzMzQyNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAba9TANBgkqhkiG9w0BAQsFAAOCAQEAh9jHs56ZerFtQTHx5ZBH CFSkSVF2onbuJZNjWIjYRiZdz2syw1oKlBkdBmvD70N55t19CwSz/hFFq8a2T/68 msH9Or/u2W3INN6NtYuLFdaNJKxOdqvedXbCQGCUQBPMHcXEkOCHkfcviMNjigcy qN0U1ln8BNLSxyZ0qjYd/xx3Id+62P9dgWqBiDrUiwH6v3XINBYplV7b8VSAWoLD go6fNkAu+mai+TIINEp4myCjH/6zfiRASdnpKAPqa9XoaU+KoFZmaGyi0DxjbRCV wfjxzkeSp6q+WK3XxNpoUyI2/GyRK6DskggQrBCcnhNcI9sSvu+hNh68NPasXHNw ew== -----END CERTIFICATE-----Generated at Sat Jun 13 09:13:38 2026 by rpki-client