$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/add5cc6a-7ce6-4c3c-925b-feadc7007109.roa File: add5cc6a-7ce6-4c3c-925b-feadc7007109.roa (raw, json) Hash identifier: 4f+1TXsexshkod82Yof404lTFJ48mS2rq4GQNoauprU= Subject key identifier: 62:83:F9:67:41:8F:32:E4:87:E3:01:02:C4:DC:19:AB:21:92:6B:07 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 60E7F2DBACCC9006F294C7AFCD85BFE58CB13332 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/add5cc6a-7ce6-4c3c-925b-feadc7007109.roa Signing time: Sun 17 May 2026 00:00:09 +0000 ROA not before: Sun 17 May 2026 00:00:09 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daed:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:e7:f2:db:ac:cc:90:06:f2:94:c7:af:cd:85:bf:e5:8c:b1:33:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 17 00:00:09 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=0f6384662073a0fc17a081a1d8a8e4363c95c9f112ea339a7d3e6f844a051a14, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:ca:5f:0e:77:d5:f9:56:4c:77:88:52:32:21: ac:36:18:d8:ad:ee:eb:1b:0a:17:e7:2e:ed:07:2e: a0:6a:b1:91:ac:9b:db:be:14:71:1e:d5:c9:e0:5a: 5d:3b:d2:fc:70:e2:58:45:a4:32:4f:2d:80:1c:b8: e8:8c:22:6b:e6:1a:35:ef:43:0c:51:fe:82:8e:89: 40:7f:e8:39:a1:99:24:05:b3:f7:c8:c6:08:08:32: d6:49:e1:ca:c6:25:bd:92:5b:79:47:c6:85:c1:16: ce:2c:27:bf:e5:fd:25:92:3f:43:dd:e4:53:06:c1: 06:e6:0a:bb:86:39:4f:5d:ef:0a:3c:47:07:4c:6b: d6:b0:bb:bf:a3:0e:e7:b8:dd:4c:92:7a:e0:e3:c4: 8f:44:15:db:aa:5d:8d:36:77:81:5b:d6:c6:05:1b: 63:72:6d:e3:fd:50:28:36:2f:6e:ab:95:50:8d:26: d0:f7:91:8c:0b:6d:ae:c1:68:cb:1b:e1:d1:fd:6f: bc:19:b7:37:8d:34:61:17:6f:b4:f9:d5:e2:07:a2: 53:70:dc:7f:bc:3d:44:b2:3c:9e:d0:5e:a4:f5:33: 9f:8b:3f:f5:f2:12:27:ba:a7:a9:77:64:fb:6d:82: e8:b0:43:46:33:ee:bb:95:01:56:5b:b8:5a:4b:31: 50:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:83:F9:67:41:8F:32:E4:87:E3:01:02:C4:DC:19:AB:21:92:6B:07 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/add5cc6a-7ce6-4c3c-925b-feadc7007109.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daed:2800::/40 Signature Algorithm: sha256WithRSAEncryption 04:c2:59:45:07:28:51:60:59:c5:33:b9:63:82:bb:82:ce:c6: 0f:2a:cb:85:2a:a0:75:df:6e:0b:a4:18:19:5f:6a:e5:ab:78: f1:30:7f:7e:81:2c:23:80:db:64:ab:df:5a:c0:e1:c6:10:d1: 30:d1:92:41:5e:95:3e:41:9c:b9:a2:d5:15:e5:a8:36:c7:97: f8:c9:fd:0a:c8:6b:c9:10:b5:aa:85:07:a7:4c:4d:0e:34:78: 41:83:76:3c:18:b8:f1:69:81:78:c2:94:1f:da:cc:60:9e:35: 9c:cb:06:22:59:12:6d:19:ff:d7:47:8b:e6:1d:3a:ae:2b:a1: 95:ad:9e:38:4d:3c:40:09:1c:87:a5:7a:1f:e7:f3:1f:b7:a7: 64:5e:0a:40:a7:94:5e:7d:2e:53:34:90:69:fe:b9:b8:a5:6b: 2b:6b:7c:bc:e8:8f:93:90:42:f8:1e:59:e1:a5:18:4c:8b:58: 08:2f:de:17:8a:9a:ba:28:71:c6:a1:56:2f:14:55:46:62:3b: f0:1d:9e:b3:74:80:75:8d:a5:23:a0:e8:1b:3a:46:56:1a:ba: 41:3a:c7:08:42:6f:d1:e3:67:8b:77:d3:44:23:e6:4a:46:bf: 9f:74:0b:d8:38:e2:d4:d0:e7:26:33:26:1c:9f:06:ae:7c:2a: a8:5a:58:c3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYOfy26zMkAbylMevzYW/5YyxMzIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNzAwMDAwOVoX DTI2MDgxNTIzNTk1OVowejFJMEcGA1UEBRNAMGY2Mzg0NjYyMDczYTBmYzE3YTA4 MWExZDhhOGU0MzYzYzk1YzlmMTEyZWEzMzlhN2QzZTZmODQ0YTA1MWExNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjMpfDnfV+VZMd4hSMiGsNhjYre7r GwoX5y7tBy6garGRrJvbvhRxHtXJ4FpdO9L8cOJYRaQyTy2AHLjojCJr5ho170MM Uf6CjolAf+g5oZkkBbP3yMYICDLWSeHKxiW9klt5R8aFwRbOLCe/5f0lkj9D3eRT BsEG5gq7hjlPXe8KPEcHTGvWsLu/ow7nuN1Mknrg48SPRBXbql2NNneBW9bGBRtj cm3j/VAoNi9uq5VQjSbQ95GMC22uwWjLG+HR/W+8Gbc3jTRhF2+0+dXiB6JTcNx/ vD1Esjye0F6k9TOfiz/18hInuqepd2T7bYLosENGM+67lQFWW7haSzFQ3QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGKD+WdBjzLkh+MBAsTcGashkmsHMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FkZDVjYzZhLTdjZTYtNGMzYy05MjViLWZlYWRjNzAwNzEwOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba7SgwDQYJKoZIhvcNAQELBQADggEBAATCWUUHKFFgWcUzuWOC u4LOxg8qy4UqoHXfbgukGBlfauWrePEwf36BLCOA22Sr31rA4cYQ0TDRkkFelT5B nLmi1RXlqDbHl/jJ/QrIa8kQtaqFB6dMTQ40eEGDdjwYuPFpgXjClB/azGCeNZzL BiJZEm0Z/9dHi+YdOq4roZWtnjhNPEAJHIeleh/n8x+3p2ReCkCnlF59LlM0kGn+ ubilaytrfLzoj5OQQvgeWeGlGEyLWAgv3heKmrooccahVi8UVUZiO/AdnrN0gHWN pSOg6Bs6RlYaukE6xwhCb9HjZ4t300Qj5kpGv590C9g44tTQ5yYzJhyfBq58Kqha WMM= -----END CERTIFICATE-----Generated at Sat Jun 13 08:08:03 2026 by rpki-client