$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75cbf2ba-8573-4944-8cfe-e279d426a979.roa File: 75cbf2ba-8573-4944-8cfe-e279d426a979.roa (raw, json) Hash identifier: hFhUPs8EywCwht95zIkE6as7KaAgzKkxd0npZqEXKU4= Subject key identifier: 88:F2:DE:12:D1:2F:A0:07:8A:A6:1A:7F:19:42:09:20:C5:1B:BE:6C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4E6F5B15526CB11F88FE850D2508C650727AC8B1 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75cbf2ba-8573-4944-8cfe-e279d426a979.roa Signing time: Sun 31 May 2026 00:10:26 +0000 ROA not before: Sun 31 May 2026 00:10:26 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daba:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:6f:5b:15:52:6c:b1:1f:88:fe:85:0d:25:08:c6:50:72:7a:c8:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:10:26 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=0a246e7bcf2a4daf6adc2e809186dfadf76d8d4885f1918ecaca004a3815e146, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b0:8c:cb:0e:13:4a:94:cb:6a:91:36:88:9e: 53:cb:75:28:35:fd:49:04:d4:5c:4b:e0:d2:a8:5d: d5:40:20:cb:e3:0f:18:aa:1f:1f:f5:0b:3d:ae:b5: 5f:74:1c:04:0f:d1:e3:3d:8f:1b:80:41:2c:2d:2a: 85:73:61:56:71:72:ab:3f:91:52:21:f5:07:24:86: 7a:54:1f:8b:68:4c:c9:9c:e7:6a:e1:2c:20:4b:3e: fd:78:c4:a1:15:c5:cf:fb:0c:07:c1:f8:d1:e4:bb: 8b:52:16:7c:31:cd:10:74:61:86:16:5a:e4:bd:0e: 01:5f:9e:46:c2:2e:b0:95:d5:7b:31:f2:f7:aa:f0: 70:19:03:81:45:6b:38:e8:b9:aa:a1:79:40:4a:2c: 15:70:14:5d:ff:24:bd:60:27:98:7e:68:9b:33:2f: d6:1a:d2:8e:e8:3b:8a:cb:d8:be:5f:71:f9:8d:d7: c5:0b:3e:41:f0:2c:40:05:b7:29:84:25:b4:4b:54: d4:6a:a4:3d:5b:45:14:7f:e2:62:b0:f1:ef:8a:94: 57:0c:8c:5c:3f:43:cb:f1:6f:24:3c:98:7e:3b:c3: cd:b7:22:b8:07:27:41:2b:6c:a5:18:4a:5b:e0:1e: 5b:8f:88:7c:f2:e9:8a:e1:86:95:29:1d:0e:71:84: 5f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F2:DE:12:D1:2F:A0:07:8A:A6:1A:7F:19:42:09:20:C5:1B:BE:6C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75cbf2ba-8573-4944-8cfe-e279d426a979.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daba:a080::/48 Signature Algorithm: sha256WithRSAEncryption 29:2f:de:24:df:f9:ff:3b:21:2e:fd:ad:32:58:90:b6:a9:91: fa:07:e1:de:43:66:77:83:4d:f2:f2:61:70:a0:10:65:0f:8a: b0:e5:17:c4:c0:91:0f:88:a4:08:4d:c2:ea:83:57:1c:99:47: 6f:29:5e:8e:96:5f:f2:5f:06:7f:ac:1d:d1:fe:42:78:23:ff: a7:85:f8:86:c7:d4:6e:b1:71:a6:83:62:01:74:e0:74:d6:ee: 06:0e:17:ce:c5:49:02:38:06:f8:b6:fd:5c:70:9a:f1:ef:56: 03:e2:b4:6a:e5:c3:9f:ee:a7:be:1b:fb:f7:bf:c7:03:b2:cd: ce:58:b0:b5:26:55:7d:83:32:0d:8e:02:04:26:73:47:ab:4e: fe:62:36:45:84:e6:b4:27:89:89:6d:20:42:e6:4f:e2:71:fb: 06:94:82:12:43:c4:e8:19:14:03:43:bf:26:b9:e8:11:a2:b5: 33:0d:45:62:08:6d:bd:65:b1:f1:d7:a2:db:e2:d3:ae:b4:57: 6b:01:dd:79:dc:14:3d:9d:74:f6:3e:b2:42:62:4f:af:7d:cf: 89:b6:62:8f:21:a5:eb:ab:09:fd:9b:28:58:72:19:cb:39:8e: 87:e9:1f:db:a1:6a:62:10:be:b5:43:f0:13:bc:39:1d:ae:3d: 07:b8:90:47 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUTm9bFVJssR+I/oUNJQjGUHJ6yLEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMTAyNloX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAMGEyNDZlN2JjZjJhNGRhZjZhZGMy ZTgwOTE4NmRmYWRmNzZkOGQ0ODg1ZjE5MThlY2FjYTAwNGEzODE1ZTE0NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7CMyw4TSpTLapE2iJ5Ty3UoNf1J BNRcS+DSqF3VQCDL4w8Yqh8f9Qs9rrVfdBwED9HjPY8bgEEsLSqFc2FWcXKrP5FS IfUHJIZ6VB+LaEzJnOdq4SwgSz79eMShFcXP+wwHwfjR5LuLUhZ8Mc0QdGGGFlrk vQ4BX55Gwi6wldV7MfL3qvBwGQOBRWs46LmqoXlASiwVcBRd/yS9YCeYfmibMy/W GtKO6DuKy9i+X3H5jdfFCz5B8CxABbcphCW0S1TUaqQ9W0UUf+JisPHvipRXDIxc P0PL8W8kPJh+O8PNtyK4BydBK2ylGEpb4B5bj4h88umK4YaVKR0OcYRfTwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFIjy3hLRL6AHiqYafxlCCSDFG75sMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc1Y2JmMmJhLTg1NzMtNDk0NC04Y2ZlLWUyNzlkNDI2YTk3OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbauqCAMA0GCSqGSIb3DQEBCwUAA4IBAQApL94k3/n/OyEu/a0y WJC2qZH6B+HeQ2Z3g03y8mFwoBBlD4qw5RfEwJEPiKQITcLqg1ccmUdvKV6Oll/y XwZ/rB3R/kJ4I/+nhfiGx9RusXGmg2IBdOB01u4GDhfOxUkCOAb4tv1ccJrx71YD 4rRq5cOf7qe+G/v3v8cDss3OWLC1JlV9gzINjgIEJnNHq07+YjZFhOa0J4mJbSBC 5k/icfsGlIISQ8ToGRQDQ78muegRorUzDUViCG29ZbHx16Lb4tOutFdrAd153BQ9 nXT2PrJCYk+vfc+JtmKPIaXrqwn9myhYchnLOY6H6R/boWpiEL61Q/ATvDkdrj0H uJBH -----END CERTIFICATE-----Generated at Sat Jun 13 08:02:11 2026 by rpki-client