$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/52a051f0-2e55-4ef3-a7e4-248c5fa4291d.roa File: 52a051f0-2e55-4ef3-a7e4-248c5fa4291d.roa (raw, json) Hash identifier: YiCq0XAHtTfV/kQcGNCnEJhgckl9wmz2/5s6XTUuqvM= Subject key identifier: 9E:54:34:5B:7C:A3:AD:8F:B4:05:22:6B:03:2D:C3:6C:11:9C:F3:CE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3F9E77F798A5A2ADB8F97CECD7BC76A875500FAF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/52a051f0-2e55-4ef3-a7e4-248c5fa4291d.roa Signing time: Wed 13 May 2026 00:01:23 +0000 ROA not before: Wed 13 May 2026 00:01:23 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da14:8c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:9e:77:f7:98:a5:a2:ad:b8:f9:7c:ec:d7:bc:76:a8:75:50:0f:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:01:23 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=7c2c7fc4492565c2d018f9a624dc4632d37bc8cf7c030164c0fc13a80d065838, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7c:e1:59:4f:3e:7a:9c:dd:55:25:b1:91:70: 7a:8e:cd:6c:4c:d7:58:6f:7b:51:db:cc:89:5b:18: 49:32:d5:1e:cc:22:e9:b5:51:f9:2d:ac:a8:9c:01: 0c:d2:ee:c3:15:04:0c:6a:83:d3:5c:64:12:40:65: 2e:49:35:08:e9:6f:66:50:7f:83:83:5b:2e:2c:ae: 30:df:91:e9:43:5d:64:d8:4c:17:8d:f6:8d:aa:5a: 0c:0f:94:69:77:83:00:1e:82:2c:7b:9a:fd:d3:4c: 88:71:eb:5d:46:91:81:f2:1d:25:11:d5:f6:56:ce: fa:f6:cb:6b:ac:c2:e0:97:33:66:b9:9e:8b:14:2f: 34:f8:ce:4a:e5:c1:21:25:8c:54:73:35:e5:27:1f: 2e:54:1a:6d:95:8c:14:87:dc:56:6b:9a:a5:8d:82: 78:46:34:cb:c2:d3:18:7e:76:ad:9a:35:fe:2c:6d: cb:6c:a3:9c:d2:f7:67:6e:3a:38:f8:db:d0:78:1f: f0:25:22:50:88:4f:f8:8c:09:a1:34:7f:7d:67:c9: 7c:b3:92:ea:2e:44:fb:e9:ad:5b:d5:8a:34:f4:e6: 62:f8:d0:1c:39:93:a6:80:98:27:f1:ca:80:b5:cf: e3:bf:02:e9:2c:3f:b7:99:96:9d:ff:38:47:e5:e9: 7f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:54:34:5B:7C:A3:AD:8F:B4:05:22:6B:03:2D:C3:6C:11:9C:F3:CE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/52a051f0-2e55-4ef3-a7e4-248c5fa4291d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da14:8c00::/38 Signature Algorithm: sha256WithRSAEncryption 2b:f3:74:81:a5:5f:d8:94:aa:d6:26:86:a3:96:15:f0:b9:d2: a7:ed:5f:f9:f9:f6:45:57:65:ee:e7:9f:ec:7b:17:9c:2f:36: 45:cc:52:5d:2b:d7:fd:74:8c:76:00:d6:26:0a:fc:55:c9:85: b0:97:23:47:94:4f:b4:47:8b:59:b9:98:cf:84:13:a2:37:ec: ce:bb:bc:17:11:cc:f8:3b:48:85:bd:ad:dd:64:8b:e2:c2:24: cc:5b:9d:74:93:b0:f4:6c:33:c2:84:79:f8:2e:28:bd:f1:7c: c0:16:3f:06:3f:78:15:6b:c5:c3:6e:10:cf:bc:19:46:7e:b8: 7f:8d:43:39:8a:57:6d:bd:cb:ad:84:ee:e5:ee:64:a9:64:a8: d4:51:f6:6a:18:10:ad:b9:18:0d:c9:54:f0:da:fd:c1:ce:8c: 08:84:0f:76:a1:99:3a:49:b1:e6:30:13:c7:b7:69:e7:89:fa: 2b:39:a3:a9:4c:f4:22:85:d3:38:50:79:32:39:3c:b5:95:f5: d7:16:9a:86:da:a3:9b:33:cb:11:97:4e:d9:9f:05:a0:3b:21: 46:7f:0c:93:23:1f:77:ac:e2:e6:bf:9a:a6:86:f1:9f:93:77: 79:c3:5b:11:4e:c2:a8:21:3f:c8:27:98:3b:8d:2e:d0:f2:6e: 3a:a9:58:aa -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUP55395iloq24+Xzs17x2qHVQD68wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMDEyM1oX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAN2MyYzdmYzQ0OTI1NjVjMmQwMThm OWE2MjRkYzQ2MzJkMzdiYzhjZjdjMDMwMTY0YzBmYzEzYTgwZDA2NTgzODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3zhWU8+epzdVSWxkXB6js1sTNdY b3tR28yJWxhJMtUezCLptVH5LayonAEM0u7DFQQMaoPTXGQSQGUuSTUI6W9mUH+D g1suLK4w35HpQ11k2EwXjfaNqloMD5Rpd4MAHoIse5r900yIcetdRpGB8h0lEdX2 Vs769strrMLglzNmuZ6LFC80+M5K5cEhJYxUczXlJx8uVBptlYwUh9xWa5qljYJ4 RjTLwtMYfnatmjX+LG3LbKOc0vdnbjo4+NvQeB/wJSJQiE/4jAmhNH99Z8l8s5Lq LkT76a1b1Yo09OZi+NAcOZOmgJgn8cqAtc/jvwLpLD+3mZad/zhH5el/5wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJ5UNFt8o62PtAUiawMtw2wRnPPOMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzUyYTA1MWYwLTJlNTUtNGVmMy1hN2U0LTI0OGM1ZmE0MjkxZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaFIwwDQYJKoZIhvcNAQELBQADggEBACvzdIGlX9iUqtYmhqOW FfC50qftX/n59kVXZe7nn+x7F5wvNkXMUl0r1/10jHYA1iYK/FXJhbCXI0eUT7RH i1m5mM+EE6I37M67vBcRzPg7SIW9rd1ki+LCJMxbnXSTsPRsM8KEefguKL3xfMAW PwY/eBVrxcNuEM+8GUZ+uH+NQzmKV229y62E7uXuZKlkqNRR9moYEK25GA3JVPDa /cHOjAiED3ahmTpJseYwE8e3aeeJ+is5o6lM9CKF0zhQeTI5PLWV9dcWmobao5sz yxGXTtmfBaA7IUZ/DJMjH3es4ua/mqaG8Z+Td3nDWxFOwqghP8gnmDuNLtDybjqp WKo= -----END CERTIFICATE-----Generated at Sat Jun 13 10:27:57 2026 by rpki-client