$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fa8d9745-7b7e-4997-bb36-246e06d0e61e.roa File: fa8d9745-7b7e-4997-bb36-246e06d0e61e.roa (raw, json) Hash identifier: DOAGS0lErGUDTrMlTxh/9iOdHCuOlyqM5CrD97t0zyY= Subject key identifier: C0:3D:AC:7E:11:03:1B:75:2E:7D:1E:DF:13:A7:EF:00:AD:42:24:E2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6DC09A15B4EF474C9A4F352FEAB9DF467C3DB72F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fa8d9745-7b7e-4997-bb36-246e06d0e61e.roa Signing time: Sun 31 May 2026 00:20:54 +0000 ROA not before: Sun 31 May 2026 00:20:54 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daba:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c0:9a:15:b4:ef:47:4c:9a:4f:35:2f:ea:b9:df:46:7c:3d:b7:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:20:54 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=3b160d6bd5839fce794e6d581a0f76213a2285b4091fa25963295bb328ab8884, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f5:08:96:5b:79:04:2a:3b:86:88:a4:ed:46: cd:69:61:c8:da:55:69:4b:82:64:1c:6c:33:d6:ff: 37:9c:b3:67:df:c2:a4:75:e9:a4:bb:6e:1b:75:02: 29:42:4f:08:4c:67:32:6e:dc:70:e7:30:65:05:e7: 99:41:7c:2a:02:fe:e5:e3:6b:95:18:46:36:ee:a0: 54:3d:2a:bf:b5:4c:5f:51:5d:dd:18:ae:2e:e4:50: 7b:7b:d0:ee:d1:a0:f9:06:44:41:ed:e5:85:79:6b: a5:83:b9:b1:e1:74:69:40:28:c0:4f:19:15:c1:92: 62:ef:7c:db:f3:43:11:ad:44:81:25:cb:61:68:03: 41:f6:5e:4d:dd:80:f9:16:2a:80:d3:ec:ee:ae:ee: a2:e2:90:bf:74:8f:43:52:06:8c:9a:3e:8c:50:05: c2:02:0e:d8:cc:0f:11:32:6a:17:96:b9:09:db:a2: c7:ce:a6:5f:20:03:13:ed:28:7e:90:70:3f:39:46: 84:4d:c8:52:6b:7d:3b:75:ec:87:6f:0a:fe:c5:db: 9b:02:26:0f:20:65:47:70:97:3d:c8:c1:43:f9:1f: ca:4a:be:69:42:be:72:1c:9b:d7:99:ad:57:be:8d: 65:b5:fc:ae:e9:4a:bc:0c:d9:9b:d6:b0:95:0e:54: ae:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3D:AC:7E:11:03:1B:75:2E:7D:1E:DF:13:A7:EF:00:AD:42:24:E2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fa8d9745-7b7e-4997-bb36-246e06d0e61e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daba:2040::/48 Signature Algorithm: sha256WithRSAEncryption 8c:b6:61:66:34:46:15:ce:96:fc:3b:df:0e:ab:85:ee:8d:52: 15:00:c0:29:be:51:7b:7f:93:af:c8:92:a6:61:d0:4b:be:fb: fd:4f:bd:6a:79:00:02:40:08:19:a8:a3:7b:af:85:ce:fc:54: 3a:39:fa:0a:c6:b9:7f:a5:6b:5a:d4:d5:98:6a:b4:0a:b3:6e: ae:8a:e2:78:cf:88:30:97:02:30:81:ba:2b:c0:29:75:2c:37: b7:8a:95:66:ba:da:2e:dd:70:7f:82:ed:7a:09:73:f9:fb:ab: 1c:57:5c:fa:b4:37:c0:de:27:7b:1d:00:ae:4a:06:60:3d:c2: f9:8a:20:0d:c6:66:bf:50:51:f1:a7:b8:c4:56:fa:24:9f:4b: 6d:5d:db:af:7f:9f:ed:0f:7b:b4:fd:e7:18:a3:3e:6e:d9:fe: 58:97:a9:71:6b:6b:dc:d3:81:86:d2:ff:48:36:98:ec:f3:dd: 64:ef:c3:3b:80:bb:55:97:e7:12:12:a4:4a:d9:d3:d0:00:a8: 9c:75:e1:f8:f9:4a:f4:5a:7c:12:cc:8b:9c:19:37:cf:33:77: 48:fa:99:04:31:be:4a:a3:13:18:29:36:f4:ff:c5:12:a1:71: a4:44:cc:7f:4f:ff:06:3f:e3:dd:d4:68:e1:74:f9:d3:e7:50: e0:91:d5:82 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUbcCaFbTvR0yaTzUv6rnfRnw9ty8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMjA1NFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAM2IxNjBkNmJkNTgzOWZjZTc5NGU2 ZDU4MWEwZjc2MjEzYTIyODViNDA5MWZhMjU5NjMyOTViYjMyOGFiODg4NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/UIllt5BCo7hoik7UbNaWHI2lVp S4JkHGwz1v83nLNn38Kkdemku24bdQIpQk8ITGcybtxw5zBlBeeZQXwqAv7l42uV GEY27qBUPSq/tUxfUV3dGK4u5FB7e9Du0aD5BkRB7eWFeWulg7mx4XRpQCjATxkV wZJi73zb80MRrUSBJcthaANB9l5N3YD5FiqA0+zuru6i4pC/dI9DUgaMmj6MUAXC Ag7YzA8RMmoXlrkJ26LHzqZfIAMT7Sh+kHA/OUaETchSa307deyHbwr+xdubAiYP IGVHcJc9yMFD+R/KSr5pQr5yHJvXma1Xvo1ltfyu6Uq8DNmb1rCVDlSu3wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMA9rH4RAxt1Ln0e3xOn7wCtQiTiMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ZhOGQ5NzQ1LTdiN2UtNDk5Ny1iYjM2LTI0NmUwNmQwZTYxZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbauiBAMA0GCSqGSIb3DQEBCwUAA4IBAQCMtmFmNEYVzpb8O98O q4XujVIVAMApvlF7f5OvyJKmYdBLvvv9T71qeQACQAgZqKN7r4XO/FQ6OfoKxrl/ pWta1NWYarQKs26uiuJ4z4gwlwIwgborwCl1LDe3ipVmutou3XB/gu16CXP5+6sc V1z6tDfA3id7HQCuSgZgPcL5iiANxma/UFHxp7jEVvokn0ttXduvf5/tD3u0/ecY oz5u2f5Yl6lxa2vc04GG0v9INpjs891k78M7gLtVl+cSEqRK2dPQAKicdeH4+Ur0 WnwSzIucGTfPM3dI+pkEMb5KoxMYKTb0/8USoXGkRMx/T/8GP+Pd1GjhdPnT51Dg kdWC -----END CERTIFICATE-----Generated at Sat Jun 13 10:25:05 2026 by rpki-client