$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c7115a77-d818-464a-bc2f-b89dc4f3d0ef.roa File: c7115a77-d818-464a-bc2f-b89dc4f3d0ef.roa (raw, json) Hash identifier: cf8Tqw1XHPPadOzs0dW7TPTIZgrW2nGZrKZMorGIe4Y= Subject key identifier: 0A:75:74:CB:61:85:1A:DF:EE:E2:03:F7:61:24:5B:81:5A:E1:3F:36 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3506C6E165361DC4C8610209D5B1171E121CEF68 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c7115a77-d818-464a-bc2f-b89dc4f3d0ef.roa Signing time: Sun 31 May 2026 00:10:28 +0000 ROA not before: Sun 31 May 2026 00:10:28 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dae9:2840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:06:c6:e1:65:36:1d:c4:c8:61:02:09:d5:b1:17:1e:12:1c:ef:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:10:28 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=dcbf4865992926a67664f29631016262fd8b12b078211086938eee531e808fa2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ee:4d:3e:1d:29:09:25:47:d7:48:32:cd:99: bf:85:2d:1b:23:fe:4b:78:90:13:8e:89:50:56:e7: 9d:84:4e:00:ca:df:8d:c8:d3:ec:d1:d8:6a:87:40: 56:b5:51:b0:b0:e5:7d:05:38:43:7b:b4:84:f0:5e: b3:2a:0a:ac:44:a5:72:df:0f:53:ab:43:7e:0d:9b: 2d:25:b3:7f:c8:81:22:4f:e3:7b:b0:14:d0:bb:ea: 53:79:51:82:20:fa:b9:98:07:4b:3c:43:66:54:be: 92:22:09:48:7b:30:99:54:46:fd:a3:fa:06:cb:09: f6:38:85:0d:10:d6:72:4c:3b:c0:e3:36:d8:74:85: 77:3b:34:a0:d9:c2:c2:27:e1:7b:92:62:85:a0:26: 12:2d:e8:40:13:91:56:a1:89:de:db:81:ea:04:d1: 09:86:dd:a1:44:fe:d0:b2:07:66:e6:cb:83:30:1d: eb:2e:e7:41:d8:0b:3c:62:3d:fa:95:6f:4e:a3:be: 9b:b6:30:15:03:7e:5c:73:23:7a:bd:ee:70:fb:30: 41:ba:2b:75:dd:51:56:7b:56:18:74:12:6b:99:6c: 5b:07:8e:0f:fd:89:a6:00:77:b6:f1:17:67:53:f1: 98:f5:74:01:c1:5f:3f:d2:11:7c:03:32:99:1a:23: 4a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:75:74:CB:61:85:1A:DF:EE:E2:03:F7:61:24:5B:81:5A:E1:3F:36 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c7115a77-d818-464a-bc2f-b89dc4f3d0ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dae9:2840::/48 Signature Algorithm: sha256WithRSAEncryption 16:47:ac:87:5b:62:24:c6:f6:6a:c2:5d:d1:48:77:93:71:81: 8c:c3:33:35:65:b7:57:93:9e:f7:29:23:57:6c:fc:0b:9d:2b: 70:48:af:53:a9:7a:26:f6:37:18:a2:7e:d5:77:32:9e:d9:6f: e8:60:dd:d1:89:97:a1:17:99:f9:47:1c:c1:45:04:f6:60:70: 74:a6:01:68:3c:ba:33:51:d7:ad:f2:18:0e:a5:24:96:79:93: 0e:bb:83:8e:fa:e4:d8:18:6c:b9:49:d2:bc:a2:b8:68:24:0b: fa:91:03:c6:6f:4d:6c:dd:95:9b:1a:4c:9d:db:50:37:57:40: a6:17:a1:f8:0f:2b:46:ad:8e:4b:27:c8:fe:5d:42:1f:a5:05: c1:9d:16:94:46:e2:82:ea:02:60:d9:cb:3d:24:ee:4b:80:2c: 02:e6:3e:dd:9f:16:53:35:df:2c:4f:eb:3c:cb:18:17:45:c0: 41:db:54:a0:96:65:23:dc:e6:b3:f5:de:44:f9:2c:ed:02:4a: a4:8d:f2:d3:41:2b:30:a9:bc:4d:f4:1b:4f:ab:82:51:70:44: 71:76:c7:01:cb:9b:f7:9d:f3:07:e2:61:3a:8d:52:5c:92:0d: f2:4f:5d:db:af:b1:0e:e0:33:99:c5:47:3b:ab:59:1b:15:37: 4e:ea:c9:1c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUNQbG4WU2HcTIYQIJ1bEXHhIc72gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMTAyOFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAZGNiZjQ4NjU5OTI5MjZhNjc2NjRm Mjk2MzEwMTYyNjJmZDhiMTJiMDc4MjExMDg2OTM4ZWVlNTMxZTgwOGZhMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtO5NPh0pCSVH10gyzZm/hS0bI/5L eJATjolQVuedhE4Ayt+NyNPs0dhqh0BWtVGwsOV9BThDe7SE8F6zKgqsRKVy3w9T q0N+DZstJbN/yIEiT+N7sBTQu+pTeVGCIPq5mAdLPENmVL6SIglIezCZVEb9o/oG ywn2OIUNENZyTDvA4zbYdIV3OzSg2cLCJ+F7kmKFoCYSLehAE5FWoYne24HqBNEJ ht2hRP7Qsgdm5suDMB3rLudB2As8Yj36lW9Oo76btjAVA35ccyN6ve5w+zBBuit1 3VFWe1YYdBJrmWxbB44P/YmmAHe28RdnU/GY9XQBwV8/0hF8AzKZGiNKmQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAp1dMthhRrf7uID92EkW4Fa4T82MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M3MTE1YTc3LWQ4MTgtNDY0YS1iYzJmLWI4OWRjNGYzZDBlZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6ShAMA0GCSqGSIb3DQEBCwUAA4IBAQAWR6yHW2IkxvZqwl3R SHeTcYGMwzM1ZbdXk573KSNXbPwLnStwSK9TqXom9jcYon7VdzKe2W/oYN3RiZeh F5n5RxzBRQT2YHB0pgFoPLozUdet8hgOpSSWeZMOu4OO+uTYGGy5SdK8orhoJAv6 kQPGb01s3ZWbGkyd21A3V0CmF6H4DytGrY5LJ8j+XUIfpQXBnRaURuKC6gJg2cs9 JO5LgCwC5j7dnxZTNd8sT+s8yxgXRcBB21SglmUj3Oaz9d5E+SztAkqkjfLTQSsw qbxN9BtPq4JRcERxdscBy5v3nfMH4mE6jVJckg3yT13br7EO4DOZxUc7q1kbFTdO 6skc -----END CERTIFICATE-----Generated at Sat Jun 13 08:01:36 2026 by rpki-client