$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/afbe1056-0341-49e6-8523-fbc4dc370520.roa File: afbe1056-0341-49e6-8523-fbc4dc370520.roa (raw, json) Hash identifier: ZhWUMFNHs+2BMM0N9S6HAT/U0X1B6vil3QezFnH4/4g= Subject key identifier: 6A:98:4D:4C:3B:39:FE:C2:55:04:A2:C3:B3:EA:5C:07:7E:C4:13:8B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 71E7731888A5E1E47104B03B30A439DF6147A34A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/afbe1056-0341-49e6-8523-fbc4dc370520.roa Signing time: Sun 31 May 2026 00:10:44 +0000 ROA not before: Sun 31 May 2026 00:10:44 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daba:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:e7:73:18:88:a5:e1:e4:71:04:b0:3b:30:a4:39:df:61:47:a3:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:10:44 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=d7c52c2d976973b851719abfd788ce8a3b6febfff1d5faa11166f0b6675137b8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fd:15:13:d1:92:8f:8d:7f:1f:df:33:3c:70: da:2b:a7:64:d7:7b:00:f9:60:f4:f3:50:02:97:c9: 25:89:08:ba:43:56:11:04:ee:af:d6:b6:ad:f1:a5: 4e:39:a7:11:4f:e5:26:bb:95:e5:75:a7:87:88:1a: 51:10:0d:24:c5:75:2c:fe:01:f5:c6:a0:02:ed:d9: 85:7c:14:c0:61:23:50:e1:6b:2f:8c:91:7a:9d:73: af:97:c7:3c:9a:3b:68:22:f7:cd:09:5d:22:3c:03: ef:0c:7f:3b:55:71:91:ad:42:2c:36:be:92:75:89: 27:8f:54:2f:3a:a0:a3:14:a5:25:6c:47:1f:1d:4c: 1f:62:61:16:68:9c:f6:43:ad:e2:69:0d:6f:4c:68: 79:f9:93:71:af:d7:3d:21:96:d7:dc:fa:f8:78:99: d8:d4:cf:56:1e:ba:62:a9:f6:12:23:3c:83:2a:1b: 93:be:97:f5:76:57:d7:6d:04:2d:05:c7:4a:90:ae: 5c:a8:76:fd:c0:09:77:c5:83:82:e4:a6:f0:6c:38: a1:c6:76:7f:7f:71:20:15:99:a0:9d:6f:19:ea:3c: 1b:6a:c9:b8:8c:f0:5c:eb:8d:ba:09:64:8c:1c:6d: fe:bf:d7:10:7b:7a:d9:e5:59:9b:22:e0:65:f9:4b: 24:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:98:4D:4C:3B:39:FE:C2:55:04:A2:C3:B3:EA:5C:07:7E:C4:13:8B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/afbe1056-0341-49e6-8523-fbc4dc370520.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daba:1000::/40 Signature Algorithm: sha256WithRSAEncryption 9b:f6:1d:7a:84:13:4e:6f:ed:83:ee:4d:82:12:8d:56:96:63: c1:58:fe:20:04:17:74:e9:39:1d:40:b9:09:ae:9d:06:78:d5: 81:58:84:63:df:05:69:5a:a5:e8:26:1c:12:e4:4a:5d:47:dc: 99:29:bb:dc:a8:f3:50:d9:ab:a4:a9:62:97:16:69:f7:f2:84: ca:c0:07:4f:17:62:da:ee:21:c2:f1:e9:63:2a:68:3b:76:77: 5b:fc:41:8f:3f:3f:dc:e7:a2:31:7e:cf:22:b6:33:bb:f0:38: 23:08:14:0e:d0:f0:67:10:72:05:ed:14:c7:32:38:7d:8a:ba: 51:a2:5d:73:f6:66:6c:1a:da:51:41:8f:7c:53:4f:7b:fc:b5: f4:ac:43:ce:a0:c8:3b:01:d7:78:cc:10:f7:01:cd:b6:1e:19: 59:7d:5d:8d:82:04:2a:75:3e:67:74:ba:d2:8a:ac:09:3b:76: b3:2e:3a:19:dc:9d:69:bf:67:b6:1f:90:33:43:3c:e0:43:34: 52:45:88:f0:83:65:90:99:ca:c9:5d:ce:fe:8b:3d:bf:8f:34: 70:13:72:dd:fa:e8:04:68:cd:2d:07:f1:97:c2:d7:1a:dd:64: 97:ec:76:66:6a:48:a4:eb:c5:86:16:1b:7b:7c:db:12:ca:1f: e6:8e:34:be -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUcedzGIil4eRxBLA7MKQ532FHo0owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMTA0NFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAZDdjNTJjMmQ5NzY5NzNiODUxNzE5 YWJmZDc4OGNlOGEzYjZmZWJmZmYxZDVmYWExMTE2NmYwYjY2NzUxMzdiODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAof0VE9GSj41/H98zPHDaK6dk13sA +WD081ACl8kliQi6Q1YRBO6v1rat8aVOOacRT+Umu5XldaeHiBpREA0kxXUs/gH1 xqAC7dmFfBTAYSNQ4WsvjJF6nXOvl8c8mjtoIvfNCV0iPAPvDH87VXGRrUIsNr6S dYknj1QvOqCjFKUlbEcfHUwfYmEWaJz2Q63iaQ1vTGh5+ZNxr9c9IZbX3Pr4eJnY 1M9WHrpiqfYSIzyDKhuTvpf1dlfXbQQtBcdKkK5cqHb9wAl3xYOC5KbwbDihxnZ/ f3EgFZmgnW8Z6jwbasm4jPBc6426CWSMHG3+v9cQe3rZ5VmbIuBl+UskiwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGqYTUw7Of7CVQSiw7PqXAd+xBOLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FmYmUxMDU2LTAzNDEtNDllNi04NTIzLWZiYzRkYzM3MDUyMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauhAwDQYJKoZIhvcNAQELBQADggEBAJv2HXqEE05v7YPuTYIS jVaWY8FY/iAEF3TpOR1AuQmunQZ41YFYhGPfBWlapegmHBLkSl1H3Jkpu9yo81DZ q6SpYpcWaffyhMrAB08XYtruIcLx6WMqaDt2d1v8QY8/P9znojF+zyK2M7vwOCMI FA7Q8GcQcgXtFMcyOH2KulGiXXP2Zmwa2lFBj3xTT3v8tfSsQ86gyDsB13jMEPcB zbYeGVl9XY2CBCp1Pmd0utKKrAk7drMuOhncnWm/Z7YfkDNDPOBDNFJFiPCDZZCZ ysldzv6LPb+PNHATct366ARozS0H8ZfC1xrdZJfsdmZqSKTrxYYWG3t82xLKH+aO NL4= -----END CERTIFICATE-----Generated at Sat Jun 13 09:18:58 2026 by rpki-client