$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f5395226-d3ec-4c71-b20c-8c04577c7df0.roa File: f5395226-d3ec-4c71-b20c-8c04577c7df0.roa (raw, json) Hash identifier: aG+RsKQ44p9xzK7LtWkvgPv8KR5qKEDNBwAZcu0Ydos= Subject key identifier: 1F:9C:70:71:40:E5:47:9F:C2:23:5A:A3:FF:55:FC:6F:89:EE:BC:4A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4E90A5E3D2E1C9184543C254A2926623BBC0559B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f5395226-d3ec-4c71-b20c-8c04577c7df0.roa Signing time: Wed 13 May 2026 00:20:30 +0000 ROA not before: Wed 13 May 2026 00:20:30 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daa0:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 00:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:90:a5:e3:d2:e1:c9:18:45:43:c2:54:a2:92:66:23:bb:c0:55:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:20:30 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=57871e3b645c0b9f997b236b5a9f8d9dc0cd14488e0037a0d224757ac3126dbf, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:56:17:cb:3f:3f:63:e7:78:d7:2f:80:15:4c: da:92:e7:7f:99:05:70:de:ff:2c:92:5a:eb:9d:ad: 3c:11:0d:8c:e9:f5:f0:a1:3e:2e:31:91:79:7f:d4: bb:ba:31:1d:1a:f6:e7:d5:6a:51:49:1d:cf:b2:6c: e0:c9:78:07:f3:d1:89:0a:62:88:90:f7:8c:4f:c8: c8:d5:1e:b2:94:ca:b6:e1:42:a8:b7:61:e1:32:24: fe:25:76:cf:4c:22:c8:c9:8c:07:44:53:4d:01:de: 08:cb:d5:05:5d:db:0c:d9:a9:fe:0a:e2:0f:4d:a4: 94:46:1c:fd:9d:8d:60:28:4a:9a:4e:33:57:80:c3: cb:42:13:18:67:b6:8b:b8:de:5a:e7:a7:ca:72:79: 6a:1d:7f:6a:51:cc:62:8e:f6:84:81:c4:7b:2c:de: 82:31:c5:f4:ca:35:90:fb:48:5a:18:b1:99:0c:74: 66:33:a2:ee:40:a0:6a:a9:a5:26:23:56:89:e4:66: 03:53:ad:18:50:05:b2:42:88:78:d7:22:bc:82:39: c8:80:2a:85:15:0c:44:6d:1e:60:ff:6a:81:13:77: 12:ce:57:4f:e5:e1:62:c5:e9:d7:df:ff:00:16:b8: 86:63:e3:4e:77:5a:e0:b2:f7:14:0d:2d:d0:67:ab: 24:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:9C:70:71:40:E5:47:9F:C2:23:5A:A3:FF:55:FC:6F:89:EE:BC:4A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f5395226-d3ec-4c71-b20c-8c04577c7df0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daa0:9000::/40 Signature Algorithm: sha256WithRSAEncryption ac:ff:ad:3f:ca:63:10:99:3f:a6:28:c5:d4:f4:bd:9a:7a:99: 24:bb:3d:e7:78:d7:43:f8:f7:54:18:0c:40:7c:bd:da:06:24: e1:ae:3d:49:3c:5f:40:d2:a5:90:ef:08:78:89:3f:44:1c:68: 11:06:25:9f:75:df:be:e6:5e:f6:5e:b6:6b:c6:bc:fc:09:ad: a9:a1:c6:49:e6:14:9e:78:a8:91:90:f8:f8:ce:16:28:0e:d2: c7:fe:67:64:f2:4e:03:a9:db:55:7e:70:b6:32:f2:c5:c4:f3: 59:fc:b8:26:36:33:e7:5e:1f:13:b3:f3:4f:ad:3f:d5:b9:11: 35:47:8e:fb:73:b0:cd:e0:cd:1e:39:6f:0f:0a:0f:98:44:b1: 23:47:0a:3a:8b:f6:19:18:e7:9e:e6:38:32:cd:7c:bb:f8:68: 1b:c2:e2:ea:35:7a:ea:02:dc:38:27:80:53:61:98:6d:76:71: 4a:05:da:87:25:81:a4:4c:69:1a:e9:6e:19:40:8f:62:1e:af: 49:c1:69:46:13:13:fa:f8:4e:fb:91:5e:68:26:5a:12:21:ca: e4:bd:e8:a0:c4:c6:c1:26:84:ab:67:1d:8e:aa:c3:0d:27:6b: 71:37:75:e1:b3:76:4d:58:2a:94:df:28:a3:68:fb:b2:49:9a: 04:8a:93:05 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUTpCl49LhyRhFQ8JUopJmI7vAVZswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMjAzMFoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNANTc4NzFlM2I2NDVjMGI5Zjk5N2Iy MzZiNWE5ZjhkOWRjMGNkMTQ0ODhlMDAzN2EwZDIyNDc1N2FjMzEyNmRiZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1YXyz8/Y+d41y+AFUzakud/mQVw 3v8sklrrna08EQ2M6fXwoT4uMZF5f9S7ujEdGvbn1WpRSR3PsmzgyXgH89GJCmKI kPeMT8jI1R6ylMq24UKot2HhMiT+JXbPTCLIyYwHRFNNAd4Iy9UFXdsM2an+CuIP TaSURhz9nY1gKEqaTjNXgMPLQhMYZ7aLuN5a56fKcnlqHX9qUcxijvaEgcR7LN6C McX0yjWQ+0haGLGZDHRmM6LuQKBqqaUmI1aJ5GYDU60YUAWyQoh41yK8gjnIgCqF FQxEbR5g/2qBE3cSzldP5eFixenX3/8AFriGY+NOd1rgsvcUDS3QZ6skPQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFB+ccHFA5UefwiNao/9V/G+J7rxKMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y1Mzk1MjI2LWQzZWMtNGM3MS1iMjBjLThjMDQ1NzdjN2RmMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaoJAwDQYJKoZIhvcNAQELBQADggEBAKz/rT/KYxCZP6YoxdT0 vZp6mSS7Ped410P491QYDEB8vdoGJOGuPUk8X0DSpZDvCHiJP0QcaBEGJZ91377m XvZetmvGvPwJramhxknmFJ54qJGQ+PjOFigO0sf+Z2TyTgOp21V+cLYy8sXE81n8 uCY2M+deHxOz80+tP9W5ETVHjvtzsM3gzR45bw8KD5hEsSNHCjqL9hkY557mODLN fLv4aBvC4uo1euoC3DgngFNhmG12cUoF2oclgaRMaRrpbhlAj2Ier0nBaUYTE/r4 TvuRXmgmWhIhyuS96KDExsEmhKtnHY6qww0na3E3deGzdk1YKpTfKKNo+7JJmgSK kwU= -----END CERTIFICATE-----Generated at Mon Jun 15 12:38:57 2026 by rpki-client