$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f908d384-ebab-4e47-9054-b6225011a89f.roa File: f908d384-ebab-4e47-9054-b6225011a89f.roa (raw, json) Hash identifier: PNteZsBzFs83BkBSo2AZMWnZ/lfztViVpOxD8Zj9+1k= Subject key identifier: CD:6D:E0:92:B5:9C:82:2F:AB:D2:3A:E3:BC:A9:D4:CB:19:3E:2C:51 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 769D16A0F6FFD9F9710C4BC0B6535A3373113139 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f908d384-ebab-4e47-9054-b6225011a89f.roa Signing time: Tue 19 May 2026 00:00:12 +0000 ROA not before: Tue 19 May 2026 00:00:12 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2a:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:9d:16:a0:f6:ff:d9:f9:71:0c:4b:c0:b6:53:5a:33:73:11:31:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 19 00:00:12 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=83629b7c227980531ea47b36375f007b8d28d2ca94e74c911e8df945c8b4bae6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:63:8f:02:80:f2:5c:a8:14:f9:79:ec:0c:55: 08:1b:4a:b9:62:4d:e1:a5:86:64:8d:77:72:5f:d6: f5:aa:58:85:6d:65:c2:08:04:84:f2:36:3f:9e:84: 62:bf:7b:78:15:3e:6d:5a:dd:b2:b4:d5:79:68:f8: 00:0f:f6:e2:fb:99:f3:06:dd:58:cc:5c:ea:b9:81: de:a6:7a:1f:e4:f2:91:56:74:79:cd:d2:29:55:ef: d8:6c:3e:1f:cc:6a:48:53:1e:70:3c:3e:c7:0f:ba: d3:08:28:9d:45:12:42:f9:27:04:b6:ee:3f:8f:0c: 26:87:c9:41:a0:d0:5e:e1:bf:54:2e:4d:2f:9b:a8: 4e:eb:01:64:c1:48:c5:71:b9:6e:2c:85:ca:bb:47: 18:31:7f:46:2a:b2:54:98:96:12:a8:e6:3d:48:81: 1d:03:4e:2f:20:ed:cb:fd:8a:16:38:08:d4:02:b8: 4b:01:aa:a5:df:d0:80:53:28:89:fa:a8:81:a1:6a: 78:04:3b:68:bf:01:51:8c:f5:5d:f9:99:36:7e:33: a2:3c:b0:0c:a5:f3:c1:4c:f7:15:06:b5:7d:4d:07: 4f:4d:f4:34:3f:be:59:f1:fd:f3:35:17:66:2a:c1: 1a:46:24:4b:c4:46:03:ca:6f:6a:f9:4f:17:54:46: 88:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:6D:E0:92:B5:9C:82:2F:AB:D2:3A:E3:BC:A9:D4:CB:19:3E:2C:51 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f908d384-ebab-4e47-9054-b6225011a89f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2a:8000::/36 Signature Algorithm: sha256WithRSAEncryption c3:ef:27:a5:1c:3b:d6:34:ca:52:6c:ad:bb:4f:72:a2:ca:32: a1:d0:5a:a1:d7:6a:b9:9a:2f:0f:10:ee:1f:99:cc:c3:90:ef: 57:22:1d:50:7b:11:b6:91:f0:ac:24:0f:77:d1:d8:62:aa:f5: df:73:35:df:44:a7:54:01:34:f4:4f:be:d3:12:a6:ce:f0:44: e8:b6:fd:d8:4a:f5:83:b2:c6:3b:47:6e:9a:7f:45:4c:7e:a2: d6:a2:94:8b:b2:d0:8a:a0:95:86:34:28:3e:f4:69:34:9b:2f: 42:7c:8c:2c:9a:c8:98:be:17:7a:b7:3f:0e:15:94:48:77:6d: 20:60:9f:cf:92:ec:4e:b7:e3:3c:14:56:4f:52:4f:1b:19:5a: 73:3b:7a:3f:69:94:b0:c6:7f:7e:a5:f8:11:b5:f8:d6:f1:ac: 1a:7f:b4:8f:a3:74:03:5a:a3:e3:0c:79:cd:ea:2c:76:f8:ec: ad:62:7b:6a:ca:4e:97:50:6c:2b:a7:16:e7:9d:a7:67:31:28: 09:e6:ca:04:7f:51:4f:c5:ee:2e:1e:15:2a:0f:8d:03:ee:45: 3f:6b:9a:24:43:0d:26:15:5f:01:60:76:e7:80:c2:a2:c8:37: 04:7c:68:ab:ed:46:42:33:54:23:a9:35:9a:db:a0:dc:98:b1: c0:01:85:ab -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUdp0WoPb/2flxDEvAtlNaM3MRMTkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxOTAwMDAxMloX DTI2MDgxNzIzNTk1OVowejFJMEcGA1UEBRNAODM2MjliN2MyMjc5ODA1MzFlYTQ3 YjM2Mzc1ZjAwN2I4ZDI4ZDJjYTk0ZTc0YzkxMWU4ZGY5NDVjOGI0YmFlNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA92OPAoDyXKgU+XnsDFUIG0q5Yk3h pYZkjXdyX9b1qliFbWXCCASE8jY/noRiv3t4FT5tWt2ytNV5aPgAD/bi+5nzBt1Y zFzquYHepnof5PKRVnR5zdIpVe/YbD4fzGpIUx5wPD7HD7rTCCidRRJC+ScEtu4/ jwwmh8lBoNBe4b9ULk0vm6hO6wFkwUjFcbluLIXKu0cYMX9GKrJUmJYSqOY9SIEd A04vIO3L/YoWOAjUArhLAaql39CAUyiJ+qiBoWp4BDtovwFRjPVd+Zk2fjOiPLAM pfPBTPcVBrV9TQdPTfQ0P75Z8f3zNRdmKsEaRiRLxEYDym9q+U8XVEaIVQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFM1t4JK1nIIvq9I647yp1MsZPixRMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y5MDhkMzg0LWViYWItNGU0Ny05MDU0LWI2MjI1MDExYTg5Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaKoAwDQYJKoZIhvcNAQELBQADggEBAMPvJ6UcO9Y0ylJsrbtP cqLKMqHQWqHXarmaLw8Q7h+ZzMOQ71ciHVB7EbaR8KwkD3fR2GKq9d9zNd9Ep1QB NPRPvtMSps7wROi2/dhK9YOyxjtHbpp/RUx+otailIuy0IqglYY0KD70aTSbL0J8 jCyayJi+F3q3Pw4VlEh3bSBgn8+S7E634zwUVk9STxsZWnM7ej9plLDGf36l+BG1 +NbxrBp/tI+jdANao+MMec3qLHb47K1ie2rKTpdQbCunFuedp2cxKAnmygR/UU/F 7i4eFSoPjQPuRT9rmiRDDSYVXwFgdueAwqLINwR8aKvtRkIzVCOpNZrboNyYscAB has= -----END CERTIFICATE-----Generated at Sat Jun 13 08:03:30 2026 by rpki-client