$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa File: 7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa (raw, json) Hash identifier: bfNillqvK2udLXDKs9sbjZoPIJn6YvmbfLmIsgVIfPA= Subject key identifier: 15:1D:8E:C2:30:9F:F2:F1:1B:19:1B:71:0B:C9:13:A3:AE:25:E9:99 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2894DE6BD3AA7C4874729A1C6A83115A44A684FC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa Signing time: Wed 13 May 2026 00:30:33 +0000 ROA not before: Wed 13 May 2026 00:30:33 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da17:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:94:de:6b:d3:aa:7c:48:74:72:9a:1c:6a:83:11:5a:44:a6:84:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:30:33 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=d5745b846917d8e1bf5cd5dd56b44b002eb2901a75d390e50e32261dcaf60f6a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b1:66:e4:db:20:de:c3:5f:ac:9f:9a:97:87: d9:7b:86:51:21:22:6f:89:e3:55:4c:c5:b1:9b:b9: 02:69:ec:5f:9b:8c:27:b4:8e:f3:ab:74:3f:66:ac: f7:2e:f9:10:22:9d:40:a7:53:8f:18:dd:c3:27:dd: b7:f9:32:bb:99:a9:87:2d:38:e7:d3:37:49:16:00: a1:6f:c4:04:40:70:7c:2e:46:97:b6:db:98:62:a9: 77:49:d8:91:07:23:88:a3:fd:73:13:1e:44:23:09: 4a:b6:bc:72:48:90:be:be:fd:48:0e:bc:8b:28:5d: 0c:2a:f8:b8:1f:4c:9a:b5:ee:17:e9:1a:d3:2a:dd: 8e:06:1b:1f:51:2d:c4:95:31:6e:04:da:29:d0:17: 0f:67:91:87:3d:d9:e5:a8:5d:68:2c:c8:da:be:49: 33:7b:b1:5e:2f:7f:2c:da:4d:9b:ca:a7:d1:82:d8: f5:e3:ff:d4:96:19:c5:56:e3:f2:7a:7a:04:bc:8f: 8e:37:0c:58:e6:f5:4b:a5:53:75:dc:11:27:f7:d5: da:0f:0a:f5:1b:07:dc:f6:9e:5e:83:95:2f:10:a4: 97:cf:9b:c3:85:e4:b1:69:d9:ca:86:1b:58:a2:cb: 28:ff:a2:f4:bb:33:9b:6a:e1:7c:29:03:ed:5d:a2: bd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:1D:8E:C2:30:9F:F2:F1:1B:19:1B:71:0B:C9:13:A3:AE:25:E9:99 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da17:400::/38 Signature Algorithm: sha256WithRSAEncryption 62:46:5a:31:d2:78:db:7b:26:04:ce:28:90:2e:3b:93:f2:f2: 61:3c:56:6e:49:62:34:25:5e:b6:17:29:ca:e1:d8:33:6b:5f: e9:f2:6a:cf:eb:51:b0:63:ce:27:ff:ca:5c:67:ff:ba:cd:bd: b2:8d:34:d1:d8:b7:fc:ce:0f:20:51:83:4f:26:58:fe:b3:6f: 63:89:55:de:49:11:d3:a8:97:05:37:a3:d7:e6:96:d2:cc:97: a1:04:96:5e:88:35:3e:ed:b3:52:55:de:8c:a5:94:e5:40:3f: a2:2b:1e:93:f3:4d:cf:02:6d:03:f3:2b:e6:5a:92:84:25:6c: 8e:92:ac:7a:92:2b:63:d8:5d:a0:15:fa:51:ce:6f:57:91:34: 13:d6:c9:b8:fb:4a:4b:34:5e:aa:2d:7e:c9:58:0d:db:9c:af: 19:4e:3b:84:3f:f7:18:fd:b3:38:d9:87:8d:22:62:1b:1e:46: 4a:cb:ce:d0:9b:4c:d9:6e:5d:46:17:44:69:95:b0:d5:d4:8a: 3d:b9:be:41:fc:5f:68:44:23:a9:47:db:61:6f:5c:ba:fc:84: 68:4f:61:72:e4:79:3d:60:91:c8:69:98:c2:2c:5c:69:14:5f: 2b:0f:7d:36:d0:5d:ce:98:aa:25:55:9b:51:34:77:a6:14:2b: ee:49:7e:f7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUKJTea9OqfEh0cpocaoMRWkSmhPwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMzAzM1oX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAZDU3NDViODQ2OTE3ZDhlMWJmNWNk NWRkNTZiNDRiMDAyZWIyOTAxYTc1ZDM5MGU1MGUzMjI2MWRjYWY2MGY2YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7Fm5Nsg3sNfrJ+al4fZe4ZRISJv ieNVTMWxm7kCaexfm4wntI7zq3Q/Zqz3LvkQIp1Ap1OPGN3DJ923+TK7mamHLTjn 0zdJFgChb8QEQHB8LkaXttuYYql3SdiRByOIo/1zEx5EIwlKtrxySJC+vv1IDryL KF0MKvi4H0yate4X6RrTKt2OBhsfUS3ElTFuBNop0BcPZ5GHPdnlqF1oLMjavkkz e7FeL38s2k2byqfRgtj14//UlhnFVuPyenoEvI+ONwxY5vVLpVN13BEn99XaDwr1 Gwfc9p5eg5UvEKSXz5vDheSxadnKhhtYosso/6L0uzObauF8KQPtXaK9TwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBUdjsIwn/LxGxkbcQvJE6OuJemZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdhZWE5YTlmLTEzZWQtNDBmOS05YzJkLTcyYzAwYTNiMTdjOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaFwQwDQYJKoZIhvcNAQELBQADggEBAGJGWjHSeNt7JgTOKJAu O5Py8mE8Vm5JYjQlXrYXKcrh2DNrX+nyas/rUbBjzif/ylxn/7rNvbKNNNHYt/zO DyBRg08mWP6zb2OJVd5JEdOolwU3o9fmltLMl6EEll6INT7ts1JV3oyllOVAP6Ir HpPzTc8CbQPzK+ZakoQlbI6SrHqSK2PYXaAV+lHOb1eRNBPWybj7Sks0XqotfslY DducrxlOO4Q/9xj9szjZh40iYhseRkrLztCbTNluXUYXRGmVsNXUij25vkH8X2hE I6lH22FvXLr8hGhPYXLkeT1gkchpmMIsXGkUXysPfTbQXc6YqiVVm1E0d6YUK+5J fvc= -----END CERTIFICATE-----Generated at Sat Jun 13 11:34:05 2026 by rpki-client