$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9f7f81d5-9939-43d6-b333-dd2d090500da.roa File: 9f7f81d5-9939-43d6-b333-dd2d090500da.roa (raw, json) Hash identifier: pV3qG6rMu06Y/2baVc2ozsQe/DqZLcxct453QhLrXLI= Subject key identifier: 8F:50:37:22:81:0C:DE:91:54:9F:D8:DD:03:BA:89:88:42:36:FB:46 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 57D0E22B6D5BC1C92C71B9969D207245D82E2273 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9f7f81d5-9939-43d6-b333-dd2d090500da.roa Signing time: Wed 13 May 2026 00:11:10 +0000 ROA not before: Wed 13 May 2026 00:11:10 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:8800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:d0:e2:2b:6d:5b:c1:c9:2c:71:b9:96:9d:20:72:45:d8:2e:22:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:11:10 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=48fdb46d0fcd7ae008dac6edf2f7836017c0269bdfdd3f218f09fdd72ac0075a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:52:2c:7d:63:24:c0:ad:46:17:e4:5a:e8:88: cd:b8:1e:30:39:5b:b6:67:b7:4c:fe:1c:06:e7:08: a0:b7:60:1e:93:7a:88:a3:31:3a:08:57:5e:6d:bf: ec:7f:8a:c9:0e:40:75:d0:78:a4:6c:fa:90:c5:20: 8e:8d:e6:52:c0:9b:91:51:13:57:9b:b7:5d:19:90: d4:51:eb:80:74:35:2c:1d:4b:c6:e5:8a:c0:68:0d: cf:6a:45:46:43:d6:2f:bc:61:27:7c:e6:a2:11:18: eb:27:2d:85:ad:36:19:83:f5:fe:6d:56:ed:f4:50: 07:80:82:cd:48:50:ae:07:58:74:38:f6:91:ac:b7: 7b:20:91:9c:c2:38:74:a7:af:99:17:76:d2:9c:1c: 6c:49:b2:09:a4:27:cf:2e:e6:aa:3b:49:f5:b4:9a: 8c:6b:be:2a:1a:cc:21:cf:ef:08:f7:4d:4c:1d:b4: a6:72:36:9a:f0:12:48:ea:4c:2b:f9:75:2f:71:b3: dc:09:b8:bf:81:07:d7:cf:75:0c:a5:e5:12:17:1a: 93:4f:d8:d7:6a:db:9f:6c:8e:14:9a:19:dc:05:22: d7:1e:32:06:b7:f7:7f:7e:2c:e5:5f:6c:6a:81:e5: 6d:25:5d:49:02:5d:4f:03:c4:17:6f:46:4b:eb:26: d3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:50:37:22:81:0C:DE:91:54:9F:D8:DD:03:BA:89:88:42:36:FB:46 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9f7f81d5-9939-43d6-b333-dd2d090500da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:8800::/40 Signature Algorithm: sha256WithRSAEncryption be:24:61:b7:42:3a:88:7a:78:e2:ef:34:77:91:3c:d5:06:58: 6e:1f:a8:a2:3d:25:f2:72:55:c1:62:2b:fe:d6:71:68:91:dd: 10:93:b6:07:43:24:51:c7:a0:d7:7b:c6:a3:b8:2d:d6:89:e7: 1b:f2:eb:1f:a0:84:cb:b8:71:8f:cc:1b:1d:58:3a:2b:aa:d2: dd:ab:8a:1a:74:bb:d3:01:df:b1:c3:fd:67:b1:69:a4:1f:0a: 26:4b:0f:3a:27:b9:b5:a1:7b:2c:07:db:53:8b:93:41:6f:06: 91:72:c7:f7:1c:7f:fa:9c:e4:32:a9:bd:04:74:f2:88:79:12: 1e:c3:78:f2:8d:39:f2:2a:d3:27:77:a6:c5:85:b0:0a:17:ff: 2b:6e:e7:da:3b:96:21:82:c0:1a:37:1f:0d:47:64:5f:47:f6: 54:5b:e2:6c:68:5e:79:f2:7d:00:10:ae:41:e8:06:51:b9:b2: eb:64:58:9b:0c:7b:e5:70:18:10:d2:e0:9e:21:6f:1b:8d:16: 7e:24:5b:fa:53:de:7b:f1:95:da:e9:66:d7:a3:1c:a7:64:27: 61:cf:e0:8a:9c:9d:94:55:5c:31:ee:3f:ed:c2:2b:20:70:cb: 31:a3:ef:ca:ae:e0:95:72:cd:a3:a9:a4:9a:82:5c:03:fb:ac: dc:59:94:9b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUV9DiK21bwckscbmWnSByRdguInMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMTExMFoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNANDhmZGI0NmQwZmNkN2FlMDA4ZGFj NmVkZjJmNzgzNjAxN2MwMjY5YmRmZGQzZjIxOGYwOWZkZDcyYWMwMDc1YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1IsfWMkwK1GF+Ra6IjNuB4wOVu2 Z7dM/hwG5wigt2Aek3qIozE6CFdebb/sf4rJDkB10HikbPqQxSCOjeZSwJuRURNX m7ddGZDUUeuAdDUsHUvG5YrAaA3PakVGQ9YvvGEnfOaiERjrJy2FrTYZg/X+bVbt 9FAHgILNSFCuB1h0OPaRrLd7IJGcwjh0p6+ZF3bSnBxsSbIJpCfPLuaqO0n1tJqM a74qGswhz+8I901MHbSmcjaa8BJI6kwr+XUvcbPcCbi/gQfXz3UMpeUSFxqTT9jX atufbI4UmhncBSLXHjIGt/d/fizlX2xqgeVtJV1JAl1PA8QXb0ZL6ybTSQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFI9QNyKBDN6RVJ/Y3QO6iYhCNvtGMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlmN2Y4MWQ1LTk5MzktNDNkNi1iMzMzLWRkMmQwOTA1MDBkYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacIgwDQYJKoZIhvcNAQELBQADggEBAL4kYbdCOoh6eOLvNHeR PNUGWG4fqKI9JfJyVcFiK/7WcWiR3RCTtgdDJFHHoNd7xqO4LdaJ5xvy6x+ghMu4 cY/MGx1YOiuq0t2rihp0u9MB37HD/WexaaQfCiZLDzonubWheywH21OLk0FvBpFy x/ccf/qc5DKpvQR08oh5Eh7DePKNOfIq0yd3psWFsAoX/ytu59o7liGCwBo3Hw1H ZF9H9lRb4mxoXnnyfQAQrkHoBlG5sutkWJsMe+VwGBDS4J4hbxuNFn4kW/pT3nvx ldrpZtejHKdkJ2HP4IqcnZRVXDHuP+3CKyBwyzGj78qu4JVyzaOppJqCXAP7rNxZ lJs= -----END CERTIFICATE-----Generated at Sat Jun 13 08:05:54 2026 by rpki-client