$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4a75b2a7-15e5-4501-aaaf-4737a678d996.roa File: 4a75b2a7-15e5-4501-aaaf-4737a678d996.roa (raw, json) Hash identifier: FFq+re+9kVyg1Q+zTaRRz7aV5mffyh7fmjwphTlPTLM= Subject key identifier: A2:E8:24:6C:4A:85:94:1B:02:A9:33:9E:7A:EB:66:F6:41:9E:AA:5A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 725030DCE96948C61E9F9E5756FB4DBCBD8D05E0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4a75b2a7-15e5-4501-aaaf-4737a678d996.roa Signing time: Fri 15 May 2026 00:00:19 +0000 ROA not before: Fri 15 May 2026 00:00:19 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 00:10:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:50:30:dc:e9:69:48:c6:1e:9f:9e:57:56:fb:4d:bc:bd:8d:05:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 15 00:00:19 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=25501bd04e6d1eaac1460dc4ecd812677805a9cb8c31d16794ba1ea585cc17c3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d7:a8:93:b4:bf:41:a7:56:e1:eb:b2:62:80: cf:85:df:35:f1:c7:fa:67:c5:eb:37:3d:ee:00:0c: 6b:8c:63:83:b4:20:d1:7b:f4:60:9f:61:5d:d7:1e: e2:21:29:96:7b:23:48:3a:48:79:31:8a:8c:66:e3: b4:9b:49:d8:33:5f:01:f3:06:75:07:ae:e1:d1:d7: f9:71:8e:c4:56:7d:e5:d1:8c:ee:c5:2f:62:ae:68: 8c:21:94:08:06:2b:52:c2:34:64:05:ae:17:4c:fb: 01:2a:dd:e1:f4:3d:ae:4e:c2:f8:81:27:89:84:e1: b5:ad:52:15:b8:c0:f0:69:e3:8f:c3:55:e8:39:f5: 57:c1:53:4c:99:57:2e:75:d1:fa:25:a1:e2:01:94: cc:ba:9c:f6:ec:ba:04:37:64:7e:78:d4:db:03:85: aa:6e:0b:83:7a:2a:9b:63:ab:e4:55:76:c3:43:1d: 6b:2f:ee:17:c4:af:e4:f3:37:23:bc:58:e6:3d:ed: ec:74:a9:ec:9d:f7:67:1f:e0:d5:27:94:0c:8f:f3: 28:e0:25:82:fb:9d:6e:79:b6:8e:a3:b9:20:23:85: 98:17:07:57:cb:5d:eb:26:e0:b7:7a:fd:99:d1:6c: c1:f7:e4:d4:98:75:d6:d2:ee:04:59:23:d1:b8:86: 21:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E8:24:6C:4A:85:94:1B:02:A9:33:9E:7A:EB:66:F6:41:9E:AA:5A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4a75b2a7-15e5-4501-aaaf-4737a678d996.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:7000::/40 Signature Algorithm: sha256WithRSAEncryption 13:5f:8a:21:5b:0e:c3:9a:80:bc:63:94:49:56:5f:81:1c:29: 04:bf:8d:9d:74:0a:5a:37:48:1e:72:b2:08:3c:b8:2e:02:09: 86:6f:a7:73:c2:4f:48:18:e5:e4:8b:27:07:52:44:7a:99:ed: 88:57:ea:a6:99:76:41:98:79:7c:91:ae:f3:c5:ca:8a:5c:12: d4:42:b1:13:9f:f6:dd:5f:93:28:ab:19:59:1f:8a:15:5a:bd: a7:cf:92:aa:17:25:f3:f4:e7:a3:8c:4e:7c:48:24:9a:81:e5: 70:8d:63:4b:b1:a5:ee:f0:68:1e:a9:ae:aa:68:d8:d9:3c:3c: 11:36:32:47:8f:3f:44:d9:09:f9:1c:0a:75:96:22:71:92:0f: 6e:82:28:0b:41:0a:70:ec:59:a4:8a:aa:80:6a:b0:2b:7b:49: ea:84:a6:48:43:99:bd:12:08:be:a4:6a:10:dc:aa:eb:fd:1b: 23:2f:46:75:8c:6f:0e:35:d8:c9:78:54:a6:9c:0f:cc:ac:2b: d1:08:83:36:22:62:9b:db:84:b3:a9:7d:92:6e:00:ff:70:a0: 07:c0:ad:57:8f:88:0f:f5:a0:5b:09:1f:49:6e:02:1e:45:b8: f0:42:c4:28:d0:af:12:2b:97:f5:ea:f2:55:4b:12:47:bf:a5: a9:05:c8:8a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUclAw3OlpSMYen55XVvtNvL2NBeAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNTAwMDAxOVoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAMjU1MDFiZDA0ZTZkMWVhYWMxNDYw ZGM0ZWNkODEyNjc3ODA1YTljYjhjMzFkMTY3OTRiYTFlYTU4NWNjMTdjMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9eok7S/QadW4euyYoDPhd818cf6 Z8XrNz3uAAxrjGODtCDRe/Rgn2Fd1x7iISmWeyNIOkh5MYqMZuO0m0nYM18B8wZ1 B67h0df5cY7EVn3l0YzuxS9irmiMIZQIBitSwjRkBa4XTPsBKt3h9D2uTsL4gSeJ hOG1rVIVuMDwaeOPw1XoOfVXwVNMmVcuddH6JaHiAZTMupz27LoEN2R+eNTbA4Wq bguDeiqbY6vkVXbDQx1rL+4XxK/k8zcjvFjmPe3sdKnsnfdnH+DVJ5QMj/Mo4CWC +51uebaOo7kgI4WYFwdXy13rJuC3ev2Z0WzB9+TUmHXW0u4EWSPRuIYhBQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKLoJGxKhZQbAqkznnrrZvZBnqpaMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRhNzViMmE3LTE1ZTUtNDUwMS1hYWFmLTQ3MzdhNjc4ZDk5Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaHAwDQYJKoZIhvcNAQELBQADggEBABNfiiFbDsOagLxjlElW X4EcKQS/jZ10Clo3SB5ysgg8uC4CCYZvp3PCT0gY5eSLJwdSRHqZ7YhX6qaZdkGY eXyRrvPFyopcEtRCsROf9t1fkyirGVkfihVavafPkqoXJfP056OMTnxIJJqB5XCN Y0uxpe7waB6prqpo2Nk8PBE2MkePP0TZCfkcCnWWInGSD26CKAtBCnDsWaSKqoBq sCt7SeqEpkhDmb0SCL6kahDcquv9GyMvRnWMbw412Ml4VKacD8ysK9EIgzYiYpvb hLOpfZJuAP9woAfArVePiA/1oFsJH0luAh5FuPBCxCjQrxIrl/Xq8lVLEke/pakF yIo= -----END CERTIFICATE-----Generated at Fri May 15 08:22:35 2026 by rpki-client