$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b460995f-b872-442a-beb5-8fc9d6720509.roa File: b460995f-b872-442a-beb5-8fc9d6720509.roa (raw, json) Hash identifier: GOW3z0nsou4VPYB16n0ZOLSo/G3Qc77vIf1otq9ZSxQ= Subject key identifier: A8:95:81:6F:88:17:CC:60:3D:DE:FB:93:F1:DE:6E:24:FC:41:BD:68 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 47AD1BBAC14701669B030E10BE3EE9C9B91E118D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b460995f-b872-442a-beb5-8fc9d6720509.roa Signing time: Wed 13 May 2026 00:30:58 +0000 ROA not before: Wed 13 May 2026 00:30:58 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da19::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ad:1b:ba:c1:47:01:66:9b:03:0e:10:be:3e:e9:c9:b9:1e:11:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:30:58 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=c20feb4f1475a614ac762547fc10d8a837b89ef8dcb2949e94421cf48ca242ea, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:44:66:96:d9:94:a2:cf:ce:ad:3b:79:17:aa: c6:b9:9e:fc:43:18:f9:b1:b0:ed:47:77:a0:d6:3a: 46:9c:40:43:a8:72:0c:05:8c:84:82:4b:ff:42:9c: bd:2d:d6:ad:60:8d:f4:a3:54:5f:86:34:0b:8a:fb: c5:c3:aa:5c:fa:8b:b5:07:c3:aa:5a:ed:ac:71:05: e7:eb:d7:91:70:e2:0c:64:35:9b:e1:0e:cc:8c:df: 9b:73:50:e3:53:e9:35:a5:e0:3a:71:b9:55:5f:07: 26:06:e9:62:8f:35:21:7c:c3:22:bb:41:38:4d:10: fe:34:80:06:0e:3f:b8:09:a2:b2:12:64:1e:20:40: 7b:4f:de:aa:b7:cb:dd:bc:d8:73:62:a9:96:f7:d2: 90:99:e3:5d:21:15:39:e3:4d:8f:eb:d9:b5:af:29: 80:09:a2:d5:62:9c:d4:1b:08:3f:6f:66:c5:4d:22: 0f:2d:7a:42:69:f0:ff:e2:77:58:dd:07:3c:ff:1a: 89:2e:e0:e1:bb:1e:ee:d7:b6:6b:e7:de:b2:57:81: 06:a6:22:a3:cc:19:c4:0e:98:a5:2e:1a:84:ce:ee: a3:28:f9:d6:54:8d:27:43:12:57:96:48:22:38:e3: 3a:cf:be:d0:c3:b4:81:7d:07:4b:f3:66:0b:ea:29: 88:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:95:81:6F:88:17:CC:60:3D:DE:FB:93:F1:DE:6E:24:FC:41:BD:68 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b460995f-b872-442a-beb5-8fc9d6720509.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da19::/38 Signature Algorithm: sha256WithRSAEncryption 08:2b:a4:92:77:3a:6b:80:cb:c6:bb:88:fe:9a:91:1f:ef:63: 2e:92:c3:70:bb:90:44:3c:b8:ed:27:eb:de:b4:03:e6:c4:ba: 15:17:f1:90:23:40:f7:60:ad:2d:a1:d7:14:09:c4:cd:04:86: 0f:7a:d4:9b:26:fc:af:64:c4:8d:f8:fe:69:64:92:04:68:8b: fa:44:58:9e:37:af:bd:15:2f:19:a2:a2:51:83:48:04:d6:1e: a7:eb:7d:c5:cc:20:c3:aa:91:66:57:eb:a8:b3:fc:49:4f:11: 0b:53:19:e2:db:da:d3:6d:2a:fd:75:c4:20:43:f3:9d:b8:58: 5d:1a:22:32:6b:e2:c5:ce:84:57:65:a8:d1:90:9e:ee:b5:a4: 5b:8a:e4:a5:f3:e8:2a:ef:40:f7:37:f3:4c:08:b7:0d:8c:80: ff:59:93:26:16:42:ec:ea:07:40:23:ae:e5:23:06:db:5e:b0: a5:c4:56:fc:22:8f:0f:83:73:d2:b6:92:e2:86:6b:33:2a:02: 21:46:d0:73:77:f9:19:d2:2e:b8:88:5c:42:7e:85:a4:b0:34: fe:c1:d2:2f:41:01:c4:64:1d:42:2f:03:06:61:ff:2d:fe:2f: 04:85:d8:2d:ed:ee:2c:76:43:34:7e:26:34:d2:f0:ad:63:90: e6:e0:ed:e4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUR60busFHAWabAw4Qvj7pybkeEY0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMzA1OFoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAYzIwZmViNGYxNDc1YTYxNGFjNzYy NTQ3ZmMxMGQ4YTgzN2I4OWVmOGRjYjI5NDllOTQ0MjFjZjQ4Y2EyNDJlYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnERmltmUos/OrTt5F6rGuZ78Qxj5 sbDtR3eg1jpGnEBDqHIMBYyEgkv/Qpy9LdatYI30o1RfhjQLivvFw6pc+ou1B8Oq Wu2scQXn69eRcOIMZDWb4Q7MjN+bc1DjU+k1peA6cblVXwcmBulijzUhfMMiu0E4 TRD+NIAGDj+4CaKyEmQeIEB7T96qt8vdvNhzYqmW99KQmeNdIRU5402P69m1rymA CaLVYpzUGwg/b2bFTSIPLXpCafD/4ndY3Qc8/xqJLuDhux7u17Zr596yV4EGpiKj zBnEDpilLhqEzu6jKPnWVI0nQxJXlkgiOOM6z77Qw7SBfQdL82YL6imIOwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKiVgW+IF8xgPd77k/HebiT8Qb1oMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2I0NjA5OTVmLWI4NzItNDQyYS1iZWI1LThmYzlkNjcyMDUwOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaGQAwDQYJKoZIhvcNAQELBQADggEBAAgrpJJ3OmuAy8a7iP6a kR/vYy6Sw3C7kEQ8uO0n6960A+bEuhUX8ZAjQPdgrS2h1xQJxM0Ehg961Jsm/K9k xI34/mlkkgRoi/pEWJ43r70VLxmiolGDSATWHqfrfcXMIMOqkWZX66iz/ElPEQtT GeLb2tNtKv11xCBD8524WF0aIjJr4sXOhFdlqNGQnu61pFuK5KXz6CrvQPc380wI tw2MgP9ZkyYWQuzqB0AjruUjBttesKXEVvwijw+Dc9K2kuKGazMqAiFG0HN3+RnS LriIXEJ+haSwNP7B0i9BAcRkHUIvAwZh/y3+LwSF2C3t7ix2QzR+JjTS8K1jkObg 7eQ= -----END CERTIFICATE-----Generated at Sat Jun 13 09:17:49 2026 by rpki-client