$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/87ba4a57-b2b9-43cc-9a6f-a0d705c2a0d4.roa File: 87ba4a57-b2b9-43cc-9a6f-a0d705c2a0d4.roa (raw, json) Hash identifier: SX1v0kd+rEV0RcW2vdU5x366D/LMsjkHRWY0NfMLM7E= Subject key identifier: D1:89:72:3E:96:E5:A0:AF:5B:B1:9A:F5:09:80:07:E1:2E:9D:3D:EB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 114286143A4DE6B3DBE49AFCA31661A5F0CDA8F0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/87ba4a57-b2b9-43cc-9a6f-a0d705c2a0d4.roa Signing time: Wed 13 May 2026 00:20:13 +0000 ROA not before: Wed 13 May 2026 00:20:13 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:42:86:14:3a:4d:e6:b3:db:e4:9a:fc:a3:16:61:a5:f0:cd:a8:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:20:13 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=513103d63c1d2c1eec61d350eca406e6790bf9bcd456310caacf3a769634741a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:62:17:43:00:0b:8b:70:71:c2:a5:ec:48:c0: b8:7e:00:13:6e:ff:b5:51:65:47:d6:fe:ac:ca:53: 87:58:9c:e9:c9:09:4b:a4:ce:ec:0e:7a:bc:f2:ee: 9c:53:e3:c9:f4:f1:86:cf:c1:10:7f:bb:82:fa:49: d3:13:ef:14:25:1c:b5:22:eb:11:52:cd:ef:4e:64: 2e:eb:8e:b1:41:bd:92:26:e5:60:e5:a4:da:ff:12: ea:6c:22:9b:3e:5c:97:39:3f:0c:15:2f:ac:5c:74: 1e:bb:e2:13:dd:b9:f8:b4:9b:95:90:cd:e8:c5:3e: b5:81:42:fe:97:94:2f:c9:6b:ba:e2:d0:f6:a7:9a: 39:66:78:87:4c:1d:9d:41:76:91:6c:e7:35:6e:f1: a3:fe:0e:ed:aa:48:94:21:29:05:ef:3d:c9:db:4a: 94:04:f1:84:cd:89:40:8b:c5:03:c7:02:a2:89:ec: 0d:e6:40:23:94:a5:da:2e:86:76:3a:bf:4d:c2:3c: 5e:81:f0:bb:7d:a5:cf:cb:70:fd:0e:44:4a:b6:04: 2d:1a:73:f3:73:e7:a9:69:a6:38:a5:7a:c4:ac:37: 89:fd:cc:7a:8d:ab:25:4b:07:45:d7:23:56:e9:af: ce:b7:84:6b:af:bb:86:58:36:c2:98:f7:d8:fb:5e: e3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:89:72:3E:96:E5:A0:AF:5B:B1:9A:F5:09:80:07:E1:2E:9D:3D:EB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/87ba4a57-b2b9-43cc-9a6f-a0d705c2a0d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:6000::/40 Signature Algorithm: sha256WithRSAEncryption 47:bb:2d:30:cc:27:ac:68:d5:17:86:08:ef:4d:72:ff:aa:52: 62:6b:b1:3f:ad:6f:19:d7:a6:9e:94:73:c3:97:ad:54:9c:e3: 64:4a:c5:69:c5:05:9a:2b:21:51:e2:63:bf:40:96:aa:4c:57: 6f:88:45:7b:75:ad:3d:01:ae:20:af:1f:56:14:4f:9e:c8:26: 69:43:d9:40:1d:71:92:44:76:65:e7:50:10:92:4c:ca:b3:61: 52:eb:20:2e:09:32:f3:8e:a0:0b:e6:84:34:95:6a:cd:e4:80: 6e:9d:2b:9f:b1:d4:06:42:a3:6f:db:79:1c:d7:0e:a9:4b:2d: 9e:44:67:5b:74:63:93:7c:b4:e5:5d:55:15:6e:1c:37:ec:05: 81:a9:15:21:c0:2c:6e:56:23:19:07:dc:ab:b3:22:ec:d9:fe: 50:29:12:9f:ed:68:27:fa:0e:25:e0:38:48:b2:aa:28:06:1b: 9d:37:40:cd:1f:47:be:9c:e6:d9:f0:5b:ff:c9:d1:71:42:90: 5f:65:a2:d9:5e:74:bc:ca:0e:c6:e8:c9:f4:6f:5a:d0:3b:d9: 84:e8:e3:8a:75:16:e7:d2:44:27:13:1b:8d:14:38:5d:bd:7e: 3b:bc:aa:d1:fd:56:95:bd:ee:95:c3:09:7c:aa:f2:20:46:8f: 18:07:c9:89 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUEUKGFDpN5rPb5Jr8oxZhpfDNqPAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMjAxM1oX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNANTEzMTAzZDYzYzFkMmMxZWVjNjFk MzUwZWNhNDA2ZTY3OTBiZjliY2Q0NTYzMTBjYWFjZjNhNzY5NjM0NzQxYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmIXQwALi3BxwqXsSMC4fgATbv+1 UWVH1v6sylOHWJzpyQlLpM7sDnq88u6cU+PJ9PGGz8EQf7uC+knTE+8UJRy1IusR Us3vTmQu646xQb2SJuVg5aTa/xLqbCKbPlyXOT8MFS+sXHQeu+IT3bn4tJuVkM3o xT61gUL+l5QvyWu64tD2p5o5ZniHTB2dQXaRbOc1bvGj/g7tqkiUISkF7z3J20qU BPGEzYlAi8UDxwKiiewN5kAjlKXaLoZ2Or9NwjxegfC7faXPy3D9DkRKtgQtGnPz c+epaaY4pXrErDeJ/cx6jaslSwdF1yNW6a/Ot4Rrr7uGWDbCmPfY+17jTQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNGJcj6W5aCvW7Ga9QmAB+EunT3rMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzg3YmE0YTU3LWIyYjktNDNjYy05YTZmLWEwZDcwNWMyYTBkNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacGAwDQYJKoZIhvcNAQELBQADggEBAEe7LTDMJ6xo1ReGCO9N cv+qUmJrsT+tbxnXpp6Uc8OXrVSc42RKxWnFBZorIVHiY79AlqpMV2+IRXt1rT0B riCvH1YUT57IJmlD2UAdcZJEdmXnUBCSTMqzYVLrIC4JMvOOoAvmhDSVas3kgG6d K5+x1AZCo2/beRzXDqlLLZ5EZ1t0Y5N8tOVdVRVuHDfsBYGpFSHALG5WIxkH3Kuz IuzZ/lApEp/taCf6DiXgOEiyqigGG503QM0fR76c5tnwW//J0XFCkF9lotledLzK DsboyfRvWtA72YTo44p1FufSRCcTG40UOF29fju8qtH9VpW97pXDCXyq8iBGjxgH yYk= -----END CERTIFICATE-----Generated at Sat Jun 13 08:02:31 2026 by rpki-client