$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/46bb148e-b1fe-4d40-9bbe-51d7ced3806f.roa File: 46bb148e-b1fe-4d40-9bbe-51d7ced3806f.roa (raw, json) Hash identifier: 8utfhAGi2etVpUSEDP3u+HbNPi+p/jGtmvztBsMnwbg= Subject key identifier: 4F:23:6B:31:95:D0:AF:1E:5D:8B:17:89:6A:6F:1A:E3:B9:A4:6B:30 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 64030FDB4483BF45538FA0E1925F8E5D4454DEBC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/46bb148e-b1fe-4d40-9bbe-51d7ced3806f.roa Signing time: Sat 02 May 2026 00:01:13 +0000 ROA not before: Sat 02 May 2026 00:01:13 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:90c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:03:0f:db:44:83:bf:45:53:8f:a0:e1:92:5f:8e:5d:44:54:de:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 2 00:01:13 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=e9960e0daa1e60c912d12368c8ee0966fe245a44cb11f543af1d7984376c749a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7b:ac:16:5a:48:a4:b6:00:c4:08:8f:4e:69: 70:cf:f7:fc:ca:d7:05:76:06:be:2e:01:07:9d:ff: fb:48:97:39:f2:1a:87:a5:c6:e3:86:67:89:58:ae: 1f:27:05:f3:33:59:fd:60:79:db:4d:7d:7f:e1:fe: b8:47:2b:5f:7e:c1:eb:5d:cc:f8:fc:31:9c:5f:98: 83:22:71:a2:17:5c:e6:3d:19:0a:6b:65:68:ae:18: 0a:fb:13:39:7f:ae:17:bf:92:a5:73:59:93:ee:46: 91:44:2d:4d:0d:38:55:11:12:24:e4:0e:68:43:ba: 23:f9:fb:57:ad:dc:85:f9:b5:c7:da:e2:36:ec:5e: 7a:9f:75:2b:5b:8e:09:4a:2b:cd:71:e4:a4:3e:f7: 4b:d3:52:71:36:be:ff:ea:e5:71:6e:21:2a:ba:b4: 94:81:02:fe:89:dd:a0:18:98:d4:0c:ef:a3:50:f2: 7c:95:a5:36:1b:4e:4e:d6:e6:45:38:0c:19:22:22: 4a:45:12:b1:08:0d:8c:8b:56:c4:19:35:45:e0:a8: 2c:ab:f3:f1:32:77:c9:2a:d3:f9:c8:fb:8a:20:91: 4c:ba:21:02:a9:97:c8:e9:5d:60:4a:df:99:bc:f2: b3:93:c8:8c:30:c3:83:b3:ba:21:c4:64:51:73:74: 1e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:23:6B:31:95:D0:AF:1E:5D:8B:17:89:6A:6F:1A:E3:B9:A4:6B:30 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/46bb148e-b1fe-4d40-9bbe-51d7ced3806f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:90c0::/46 Signature Algorithm: sha256WithRSAEncryption 11:9e:15:e0:30:d9:5a:70:da:35:2f:31:2a:a7:30:9f:75:61: 89:b9:86:8b:c6:8e:be:51:33:e3:ad:20:f6:d9:12:f8:80:cb: 8f:9a:a6:3b:26:51:37:c7:a1:f5:34:b0:f8:09:2a:50:77:cf: 31:be:89:87:19:ff:38:8f:92:a2:5c:c8:12:15:9b:f1:44:26: 64:17:08:8f:30:9c:60:fc:17:63:42:5f:d2:b0:d2:06:78:1b: a2:98:7c:de:8a:98:89:38:c6:05:d7:ca:de:b5:a2:7a:cc:18: a4:1f:21:2a:39:43:97:e6:95:0c:6b:e0:06:a3:99:25:6b:d2: 16:63:12:3d:66:40:f4:e2:a3:e2:64:ea:78:29:77:4c:57:fd: 67:08:4d:78:3a:e9:6c:a0:ee:dc:5f:26:94:19:50:43:b5:56: 9b:35:77:1c:4f:83:51:3b:64:0b:ce:3e:a5:92:4c:a4:65:3d: d6:5d:ce:b7:cd:61:5c:2b:28:b8:06:83:3a:03:5e:74:24:e6: ef:2a:1a:e3:6c:ba:59:c8:0f:f0:b1:f6:87:0c:a0:08:6b:44: dc:c4:1e:46:af:29:64:41:59:f8:fe:de:c8:26:3d:80:b9:86: f8:cf:37:8e:e0:85:84:bd:26:ed:2c:d0:a8:4e:29:7f:0b:88: 70:d4:cc:7e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUZAMP20SDv0VTj6Dhkl+OXURU3rwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwMjAwMDExM1oX DTI2MDczMTIzNTk1OVowejFJMEcGA1UEBRNAZTk5NjBlMGRhYTFlNjBjOTEyZDEy MzY4YzhlZTA5NjZmZTI0NWE0NGNiMTFmNTQzYWYxZDc5ODQzNzZjNzQ5YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXusFlpIpLYAxAiPTmlwz/f8ytcF dga+LgEHnf/7SJc58hqHpcbjhmeJWK4fJwXzM1n9YHnbTX1/4f64RytffsHrXcz4 /DGcX5iDInGiF1zmPRkKa2VorhgK+xM5f64Xv5Klc1mT7kaRRC1NDThVERIk5A5o Q7oj+ftXrdyF+bXH2uI27F56n3UrW44JSivNceSkPvdL01JxNr7/6uVxbiEqurSU gQL+id2gGJjUDO+jUPJ8laU2G05O1uZFOAwZIiJKRRKxCA2Mi1bEGTVF4Kgsq/Px MnfJKtP5yPuKIJFMuiECqZfI6V1gSt+ZvPKzk8iMMMODs7ohxGRRc3QemwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFE8jazGV0K8eXYsXiWpvGuO5pGswMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzQ2YmIxNDhlLWIxZmUtNGQ0MC05YmJlLTUxZDdjZWQzODA2Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba85DAMA0GCSqGSIb3DQEBCwUAA4IBAQARnhXgMNlacNo1LzEq pzCfdWGJuYaLxo6+UTPjrSD22RL4gMuPmqY7JlE3x6H1NLD4CSpQd88xvomHGf84 j5KiXMgSFZvxRCZkFwiPMJxg/BdjQl/SsNIGeBuimHzeipiJOMYF18retaJ6zBik HyEqOUOX5pUMa+AGo5kla9IWYxI9ZkD04qPiZOp4KXdMV/1nCE14OulsoO7cXyaU GVBDtVabNXccT4NRO2QLzj6lkkykZT3WXc63zWFcKyi4BoM6A150JObvKhrjbLpZ yA/wsfaHDKAIa0TcxB5GrylkQVn4/t7IJj2AuYb4zzeO4IWEvSbtLNCoTil/C4hw 1Mx+ -----END CERTIFICATE-----Generated at Sun May 3 15:23:14 2026 by rpki-client