$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d8399a4-56d7-47cd-a300-df287b4c76c9.roa File: 4d8399a4-56d7-47cd-a300-df287b4c76c9.roa (raw, json) Hash identifier: zxMhDsoSR4nE8z/mShF2usYWuzKgOS/yMzNNsZd//Lg= Subject key identifier: 98:D2:EB:B9:B5:B3:70:11:B2:7A:D1:30:6B:AF:B0:B2:2A:12:2D:73 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 12760DB0A51B7E40A66DA6922EEB7817443AF603 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d8399a4-56d7-47cd-a300-df287b4c76c9.roa Signing time: Wed 13 May 2026 00:01:25 +0000 ROA not before: Wed 13 May 2026 00:01:25 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da36:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:76:0d:b0:a5:1b:7e:40:a6:6d:a6:92:2e:eb:78:17:44:3a:f6:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:01:25 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=b0d45bced86014486627a5f9be9679da0dcd482b598282b0a045a0e6dc73095c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:58:90:90:e4:36:f9:02:6d:4f:1c:9c:22:40: 68:f4:d0:47:de:08:95:06:76:12:6c:c1:68:28:3a: e8:12:e7:e3:2c:9a:ef:76:b0:8a:0d:4c:ff:cc:9c: a2:74:89:7c:3e:72:79:1e:e6:80:c5:ca:2b:52:ae: ed:4f:07:49:c5:f4:73:1d:cc:66:99:71:65:33:52: d6:72:3b:9c:58:39:16:0c:d3:14:1a:de:9b:e4:ca: ad:b4:35:c8:7c:05:9a:8c:c8:f0:b0:fc:24:fd:9e: 65:fa:10:df:c2:e2:17:ff:e3:6d:b7:d2:6a:b7:9a: ed:fe:fe:c9:1b:f5:8d:2b:a2:1f:09:76:90:e7:60: 39:6f:b9:89:18:ee:15:de:b9:87:51:47:ee:e7:4b: fe:ce:8e:86:e0:fa:35:c0:03:4b:4d:2f:89:ee:31: fa:24:db:de:c5:85:8e:dd:9d:5a:fa:a3:02:f8:37: 4a:96:6f:6e:cd:8e:5d:78:21:e0:78:6b:72:65:aa: 3b:71:79:1f:93:bd:44:6c:3d:85:0c:58:3a:40:d6: 3a:85:af:dc:f0:78:01:72:fc:ba:73:ec:5e:d2:da: 95:4f:a9:2f:70:14:be:53:04:4e:d8:60:14:f6:ba: 98:f7:98:0f:51:92:4d:53:a6:75:1f:bc:dc:48:3a: e6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D2:EB:B9:B5:B3:70:11:B2:7A:D1:30:6B:AF:B0:B2:2A:12:2D:73 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d8399a4-56d7-47cd-a300-df287b4c76c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da36:e000::/40 Signature Algorithm: sha256WithRSAEncryption 1a:85:21:41:35:de:a4:2a:2f:b9:7c:04:97:77:cb:94:61:02: 64:5f:11:e4:27:3b:20:b9:32:ee:5b:eb:b2:91:5f:73:2e:13: a5:b8:b4:f8:0c:7f:90:02:71:a2:b8:b8:dd:a9:e8:67:07:71: 6f:24:9d:7d:6b:48:c7:6b:50:d6:f7:25:4f:3d:5f:45:94:88: 5f:5c:94:8d:f3:d5:8a:23:b4:99:65:9a:d5:7c:97:60:16:3c: 2c:2d:0b:e7:8b:91:20:8b:99:6a:49:77:2e:45:37:cb:13:1d: 31:19:ec:c9:99:e6:9c:7b:4c:dc:64:6f:65:b2:12:77:69:86: eb:ab:a4:3b:63:bc:c0:75:41:f1:66:91:43:c3:ba:98:cc:ab: ed:b3:c0:ad:d3:9d:1b:f5:16:55:eb:8e:18:8c:c4:1b:18:92: 46:73:e6:a5:4d:18:b1:48:02:06:ea:71:58:cf:56:08:cf:8d: 02:74:fc:45:00:c5:46:28:48:46:59:b5:52:ae:b9:73:53:94: 84:8f:84:98:19:90:61:86:8b:4f:62:6d:a1:ef:cc:8e:be:a7: ee:51:3a:c2:be:9f:ab:2d:19:c4:1f:cb:a5:63:0a:69:3e:6c: c5:ea:e1:28:82:cf:7d:50:65:0f:61:d4:06:28:1c:ca:eb:39: 55:e9:90:48 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUEnYNsKUbfkCmbaaSLut4F0Q69gMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMDEyNVoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAYjBkNDViY2VkODYwMTQ0ODY2Mjdh NWY5YmU5Njc5ZGEwZGNkNDgyYjU5ODI4MmIwYTA0NWEwZTZkYzczMDk1YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFiQkOQ2+QJtTxycIkBo9NBH3giV BnYSbMFoKDroEufjLJrvdrCKDUz/zJyidIl8PnJ5HuaAxcorUq7tTwdJxfRzHcxm mXFlM1LWcjucWDkWDNMUGt6b5MqttDXIfAWajMjwsPwk/Z5l+hDfwuIX/+Ntt9Jq t5rt/v7JG/WNK6IfCXaQ52A5b7mJGO4V3rmHUUfu50v+zo6G4Po1wANLTS+J7jH6 JNvexYWO3Z1a+qMC+DdKlm9uzY5deCHgeGtyZao7cXkfk71EbD2FDFg6QNY6ha/c 8HgBcvy6c+xe0tqVT6kvcBS+UwRO2GAU9rqY95gPUZJNU6Z1H7zcSDrmmwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJjS67m1s3ARsnrRMGuvsLIqEi1zMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRkODM5OWE0LTU2ZDctNDdjZC1hMzAwLWRmMjg3YjRjNzZjOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaNuAwDQYJKoZIhvcNAQELBQADggEBABqFIUE13qQqL7l8BJd3 y5RhAmRfEeQnOyC5Mu5b67KRX3MuE6W4tPgMf5ACcaK4uN2p6GcHcW8knX1rSMdr UNb3JU89X0WUiF9clI3z1YojtJllmtV8l2AWPCwtC+eLkSCLmWpJdy5FN8sTHTEZ 7MmZ5px7TNxkb2WyEndphuurpDtjvMB1QfFmkUPDupjMq+2zwK3TnRv1FlXrjhiM xBsYkkZz5qVNGLFIAgbqcVjPVgjPjQJ0/EUAxUYoSEZZtVKuuXNTlISPhJgZkGGG i09ibaHvzI6+p+5ROsK+n6stGcQfy6VjCmk+bMXq4SiCz31QZQ9h1AYoHMrrOVXp kEg= -----END CERTIFICATE-----Generated at Sat Jun 13 08:03:49 2026 by rpki-client