$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aaa35ad5-2fe1-4cfb-9d09-7c1e95518f09.roa File: aaa35ad5-2fe1-4cfb-9d09-7c1e95518f09.roa (raw, json) Hash identifier: ZtUDVAC05McTkqJRF8+zTn7RgPPLyg14z7J1UV1isWg= Subject key identifier: 05:83:1D:40:1A:A3:0B:0E:CF:82:C1:11:FF:CD:41:1A:DA:4A:72:B3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 24715BA7C869EBED4260B968CE736B1F05DF6C92 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aaa35ad5-2fe1-4cfb-9d09-7c1e95518f09.roa Signing time: Sun 31 May 2026 00:00:10 +0000 ROA not before: Sun 31 May 2026 00:00:10 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da33:2800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:71:5b:a7:c8:69:eb:ed:42:60:b9:68:ce:73:6b:1f:05:df:6c:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:00:10 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=6a46e2552bcf81c4356df2dfd3a51e03ed65740df30be3ab41771eb02888042c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ef:d7:f7:28:f6:aa:93:1d:0f:6f:c1:15:38: 4f:cf:b2:85:16:80:38:86:3e:4b:16:b7:22:df:b1: b8:72:14:31:b0:1f:75:54:17:f9:40:bf:58:da:c1: 05:02:61:a1:23:79:ae:8e:8e:35:33:9e:16:04:96: f5:21:e1:6a:7d:a6:b8:0c:2d:88:32:88:35:f4:2e: a4:da:ab:35:00:a4:f8:4f:7f:7c:ee:04:c0:de:19: 6a:63:5d:59:92:73:b2:ff:aa:eb:24:f9:78:7c:f4: ea:98:ac:7f:cf:9a:78:25:77:41:47:d9:6d:c2:97: 62:30:24:8a:5e:9d:b0:8f:16:06:22:bd:e8:9c:3b: 1f:0d:9c:11:ab:60:55:a8:5a:3c:d8:ac:ed:f4:14: 40:3b:97:d9:d8:aa:01:3e:aa:92:70:ac:61:c9:c8: b5:77:49:94:ab:9e:77:d7:bd:4b:d5:e6:06:60:dc: 4e:f6:18:8c:ff:d1:ff:b1:e4:cb:13:ae:fe:8c:3c: 1f:9d:cb:83:b3:f4:c0:8b:08:9e:b9:7f:5e:c0:01: dd:53:d1:6c:7c:37:c1:5d:cd:94:44:e1:56:ef:6e: a7:b0:5e:56:de:2d:e2:e6:8d:17:89:a8:86:65:71: a8:75:dd:2a:1c:f0:34:a6:30:e0:8c:57:ff:f9:b8: 9c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:83:1D:40:1A:A3:0B:0E:CF:82:C1:11:FF:CD:41:1A:DA:4A:72:B3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aaa35ad5-2fe1-4cfb-9d09-7c1e95518f09.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da33:2800::/40 Signature Algorithm: sha256WithRSAEncryption c9:8a:29:74:1f:bd:97:62:b2:58:86:f5:90:ef:aa:8f:d3:d9: 55:8f:ff:d6:95:46:6f:e1:9b:5a:30:02:ae:d0:b8:be:ad:d3: ef:73:72:f3:9a:43:cb:03:1b:39:0d:e0:c4:31:f9:cf:41:73: dc:b4:dd:3b:c2:06:59:f7:a9:76:8c:d2:05:52:63:67:4b:c2: 36:29:84:1a:28:28:69:55:7c:e6:4f:e8:e2:ad:3c:96:86:91: f5:91:de:02:4e:a7:0f:88:2c:c8:42:72:6c:a5:b3:2f:84:a6: 60:e8:c9:77:23:61:22:7a:30:8e:d7:0e:47:a0:5a:3b:bb:4a: 3a:b4:af:89:02:a6:26:4b:7c:9d:64:02:18:89:8e:ad:ad:97: ad:ce:16:de:19:51:7d:1f:4a:7e:1d:4a:2c:bf:7a:46:62:1c: 6a:e1:37:21:77:67:23:2d:c4:1a:e4:ed:2c:a7:8f:f3:1b:b3: 0f:55:03:42:e0:bc:7f:ba:af:0d:d9:63:b6:d5:d7:71:b4:c5: e6:ba:11:31:48:0c:7b:f6:89:5b:10:15:8e:63:ec:5d:5a:2b: 6d:d1:a5:f4:98:33:2d:68:22:58:64:1b:9f:20:3f:25:61:bf: da:a9:c8:c4:f9:3a:db:36:11:d2:97:15:a9:bb:49:a3:ac:51: b4:21:70:20 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJHFbp8hp6+1CYLloznNrHwXfbJIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMDAxMFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNANmE0NmUyNTUyYmNmODFjNDM1NmRm MmRmZDNhNTFlMDNlZDY1NzQwZGYzMGJlM2FiNDE3NzFlYjAyODg4MDQyYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2O/X9yj2qpMdD2/BFThPz7KFFoA4 hj5LFrci37G4chQxsB91VBf5QL9Y2sEFAmGhI3mujo41M54WBJb1IeFqfaa4DC2I Mog19C6k2qs1AKT4T3987gTA3hlqY11ZknOy/6rrJPl4fPTqmKx/z5p4JXdBR9lt wpdiMCSKXp2wjxYGIr3onDsfDZwRq2BVqFo82Kzt9BRAO5fZ2KoBPqqScKxhyci1 d0mUq553171L1eYGYNxO9hiM/9H/seTLE67+jDwfncuDs/TAiwieuX9ewAHdU9Fs fDfBXc2UROFW726nsF5W3i3i5o0XiaiGZXGodd0qHPA0pjDgjFf/+bicEwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAWDHUAaowsOz4LBEf/NQRraSnKzMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FhYTM1YWQ1LTJmZTEtNGNmYi05ZDA5LTdjMWU5NTUxOGYwOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaMygwDQYJKoZIhvcNAQELBQADggEBAMmKKXQfvZdisliG9ZDv qo/T2VWP/9aVRm/hm1owAq7QuL6t0+9zcvOaQ8sDGzkN4MQx+c9Bc9y03TvCBln3 qXaM0gVSY2dLwjYphBooKGlVfOZP6OKtPJaGkfWR3gJOpw+ILMhCcmylsy+EpmDo yXcjYSJ6MI7XDkegWju7Sjq0r4kCpiZLfJ1kAhiJjq2tl63OFt4ZUX0fSn4dSiy/ ekZiHGrhNyF3ZyMtxBrk7Synj/Mbsw9VA0LgvH+6rw3ZY7bV13G0xea6ETFIDHv2 iVsQFY5j7F1aK23RpfSYMy1oIlhkG58gPyVhv9qpyMT5Ots2EdKXFam7SaOsUbQh cCA= -----END CERTIFICATE-----Generated at Sat Jun 13 08:01:29 2026 by rpki-client