$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e03a5801-427d-4783-a71e-c8578a0ffe7b.roa File: e03a5801-427d-4783-a71e-c8578a0ffe7b.roa (raw, json) Hash identifier: OisoPQkkWJYA6rrA65SYpuOzVu0r1t+rB846aUDaUKQ= Subject key identifier: 52:33:ED:1F:85:C9:51:E1:D4:22:C7:FC:8D:06:A7:62:3C:7E:C9:2C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 755A1FDF18C69B1BB134476E8A8CDD72920CD0E3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e03a5801-427d-4783-a71e-c8578a0ffe7b.roa Signing time: Wed 13 May 2026 00:30:42 +0000 ROA not before: Wed 13 May 2026 00:30:42 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:4800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 00:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:5a:1f:df:18:c6:9b:1b:b1:34:47:6e:8a:8c:dd:72:92:0c:d0:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:30:42 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=83ff753bddac03acb428fdb53e94813d74938ccf1ae02744961e0ab56c9e119f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:8d:40:dd:97:3a:f2:c7:23:7e:b8:19:49:cc: f3:52:d6:35:a2:e6:f6:db:f0:06:4d:8f:e0:87:4e: cb:57:8b:06:d5:f8:49:ca:ae:91:ee:01:83:1a:ab: de:0a:62:77:76:50:05:f2:55:3f:fd:3a:f1:e4:0a: a5:e4:f2:86:70:b6:88:dd:76:65:3b:c8:26:14:1f: 20:58:6a:c0:b9:0b:ec:5e:f9:b0:a1:da:cb:0b:08: ae:a9:d3:e7:5d:05:a1:82:07:73:4d:14:f8:9b:a0: 03:cd:8b:4e:b8:99:fe:91:f1:f5:c6:7e:ac:12:9e: e9:66:ef:35:c0:6e:cd:83:1d:d7:14:97:a4:c8:ca: 22:ee:5f:f2:70:36:7a:bb:20:18:ae:74:aa:15:de: e9:82:9a:cf:b9:57:e2:df:93:3c:e6:25:af:dc:f5: 25:b3:0e:ef:c7:66:87:18:6a:0b:31:3b:69:01:23: 41:1f:ff:8c:3d:b9:fc:29:b3:c2:00:a9:46:9b:ec: 7d:1f:a2:7d:68:99:17:cb:78:a5:37:e6:b0:08:db: 95:07:d2:8f:d1:07:be:04:54:7b:8a:34:b0:14:f4: 5c:8a:78:67:da:c7:01:2c:3e:80:a3:53:6b:0b:d1: e2:4b:a2:53:45:54:07:8a:7b:d1:e1:78:ec:c9:86: 4c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:33:ED:1F:85:C9:51:E1:D4:22:C7:FC:8D:06:A7:62:3C:7E:C9:2C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e03a5801-427d-4783-a71e-c8578a0ffe7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:4800::/40 Signature Algorithm: sha256WithRSAEncryption 3d:0a:38:f8:9a:47:0e:95:a7:f1:52:fd:a7:a5:bb:9d:c5:16: 13:5e:8b:84:55:dd:90:b2:29:9f:e6:ce:e0:eb:42:f6:21:f4: 04:2d:81:3b:aa:a1:88:95:7a:74:2f:e1:23:4f:3c:39:57:61: 19:dc:f4:66:6d:65:46:4a:20:7e:a1:dc:29:9a:d7:81:fe:6c: c2:e7:74:a5:a2:5d:1e:c4:4a:cc:d0:48:3f:d9:b1:85:4e:20: 13:94:a1:d9:bf:e1:b7:2a:a3:77:c9:3f:38:62:3f:ad:4c:54: 41:47:3c:f5:cd:65:71:e5:89:62:06:4f:a5:e7:6a:69:dd:a9: 4d:34:f8:d6:8d:b8:bd:68:65:64:09:96:ca:ed:b4:55:5d:ba: 6d:6e:14:1a:1e:ed:57:d7:1f:a2:77:a9:30:d0:01:b6:69:3b: fc:6c:b3:79:dd:d9:c8:f5:78:5e:65:c6:6e:88:4a:e5:ed:59: 88:95:7d:92:5c:a9:cd:1f:ce:85:03:ff:e3:f6:d6:7f:a8:12: 39:00:3d:35:0c:ff:e2:ce:ef:5d:b5:26:7e:89:45:86:dc:b6: 3a:56:e2:8f:63:6a:c7:d4:e9:51:7d:f4:21:9d:4f:7c:8c:ae: 47:a4:0b:d9:a9:ec:9c:d8:80:4e:33:44:ab:5b:b2:f8:b2:87: af:ad:e9:94 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUdVof3xjGmxuxNEduiozdcpIM0OMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMzA0MloX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAODNmZjc1M2JkZGFjMDNhY2I0Mjhm ZGI1M2U5NDgxM2Q3NDkzOGNjZjFhZTAyNzQ0OTYxZTBhYjU2YzllMTE5ZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmY1A3Zc68scjfrgZSczzUtY1oub2 2/AGTY/gh07LV4sG1fhJyq6R7gGDGqveCmJ3dlAF8lU//Trx5Aql5PKGcLaI3XZl O8gmFB8gWGrAuQvsXvmwodrLCwiuqdPnXQWhggdzTRT4m6ADzYtOuJn+kfH1xn6s Ep7pZu81wG7Ngx3XFJekyMoi7l/ycDZ6uyAYrnSqFd7pgprPuVfi35M85iWv3PUl sw7vx2aHGGoLMTtpASNBH/+MPbn8KbPCAKlGm+x9H6J9aJkXy3ilN+awCNuVB9KP 0Qe+BFR7ijSwFPRcinhn2scBLD6Ao1NrC9HiS6JTRVQHinvR4XjsyYZMbwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFIz7R+FyVHh1CLH/I0Gp2I8fsksMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2UwM2E1ODAxLTQyN2QtNDc4My1hNzFlLWM4NTc4YTBmZmU3Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9UgwDQYJKoZIhvcNAQELBQADggEBAD0KOPiaRw6Vp/FS/ael u53FFhNei4RV3ZCyKZ/mzuDrQvYh9AQtgTuqoYiVenQv4SNPPDlXYRnc9GZtZUZK IH6h3Cma14H+bMLndKWiXR7ESszQSD/ZsYVOIBOUodm/4bcqo3fJPzhiP61MVEFH PPXNZXHliWIGT6XnamndqU00+NaNuL1oZWQJlsrttFVdum1uFBoe7VfXH6J3qTDQ AbZpO/xss3nd2cj1eF5lxm6ISuXtWYiVfZJcqc0fzoUD/+P21n+oEjkAPTUM/+LO 7121Jn6JRYbctjpW4o9jasfU6VF99CGdT3yMrkekC9mp7JzYgE4zRKtbsviyh6+t 6ZQ= -----END CERTIFICATE-----Generated at Wed Jun 17 08:54:38 2026 by rpki-client