$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d1b9282-680b-4992-beb1-19fa7dc7e043.roa File: 4d1b9282-680b-4992-beb1-19fa7dc7e043.roa (raw, json) Hash identifier: VUEE5P7CtiApHg00AOO3eBqw6gZTZpgOv9lwaRz6ALk= Subject key identifier: 92:AE:1D:11:F7:96:0E:7F:8D:55:21:CF:34:F4:02:A3:8A:61:35:F2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4626270685B0902F90F68F5D50A5836B615E70B0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d1b9282-680b-4992-beb1-19fa7dc7e043.roa Signing time: Wed 13 May 2026 00:00:59 +0000 ROA not before: Wed 13 May 2026 00:00:59 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:26:27:06:85:b0:90:2f:90:f6:8f:5d:50:a5:83:6b:61:5e:70:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:00:59 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=4aff70f3c3596541922271d33173bb0f4874ae664ef1edfb0790cc5f9c05fc0b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b2:30:cf:89:25:30:96:ff:a6:73:c1:fb:60: a5:de:b8:17:28:3b:cd:37:89:24:81:2d:6d:38:aa: e5:72:b4:37:34:f5:e6:3a:dd:c8:cc:a8:c7:f3:0a: e9:1d:72:1c:4f:a3:48:86:22:6c:5b:df:c2:81:b3: a4:a4:38:98:16:51:a6:af:c1:2c:ea:9d:12:2b:58: f3:4d:4e:b7:0d:2d:f0:c7:c3:ed:0d:5f:2e:59:53: 11:7c:0b:37:7a:4c:56:92:5e:ba:6b:06:16:5a:17: bc:74:b3:7c:2c:19:b4:2f:67:1c:1e:ac:c5:94:e5: 13:7d:4e:f7:cb:be:1a:f3:a2:18:b1:74:26:7d:bc: 5f:dc:3d:62:c5:87:e5:54:bd:5a:8a:59:1b:55:19: f7:a7:e6:ad:99:4f:61:58:7a:77:39:f5:21:42:3f: bd:a8:51:7e:ce:e5:a9:49:6e:e9:38:9e:66:18:11: a2:90:5f:9b:ef:ee:b1:07:85:d6:58:88:db:73:54: c0:64:61:9a:20:62:65:1e:f2:e0:97:a5:b9:31:f9: 57:57:a6:05:7c:ab:69:1d:20:b3:04:35:a5:99:5c: f7:c5:d5:cf:87:fe:dd:75:1a:ba:8e:92:e7:ad:9e: 19:4a:f1:dd:d4:30:13:d8:f9:38:36:27:d1:ab:3e: 02:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AE:1D:11:F7:96:0E:7F:8D:55:21:CF:34:F4:02:A3:8A:61:35:F2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d1b9282-680b-4992-beb1-19fa7dc7e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:c000::/40 Signature Algorithm: sha256WithRSAEncryption 84:b7:e6:c7:3f:fe:ed:90:f8:69:ce:71:2d:ff:dc:fe:eb:da: 7a:d8:62:3a:f5:61:50:37:6f:db:99:2e:ca:0e:52:51:76:da: 6f:62:55:af:d5:58:7e:27:47:d4:d1:46:44:2f:db:01:13:c9: 9d:0e:e8:a4:a2:ee:9e:8f:0c:6e:30:a4:75:2d:59:76:3f:4f: 2e:22:db:ae:ae:f9:65:0e:2a:94:bd:79:d0:48:d4:22:83:46: 30:05:41:92:88:f0:55:23:57:47:06:e1:97:ee:d9:ee:1c:b7: 29:d2:7f:15:49:8a:c9:49:25:0a:30:a6:c2:94:ef:48:b6:96: 6a:2a:58:09:e2:c5:07:fd:b9:77:b1:86:41:90:36:40:68:78: 01:26:6b:92:0e:fc:e9:4a:62:ef:3e:d6:18:a2:56:30:91:ed: 99:bb:bf:6f:3b:1b:29:f5:05:d5:ce:c9:d8:5e:f7:19:1f:d3: 9e:76:3d:1e:f7:8a:72:9c:8e:02:1a:e3:b7:48:c3:05:dc:d8: 26:9e:2f:70:25:15:85:94:a7:75:6f:2c:4e:08:3c:f9:91:8c: c8:46:3a:ae:a3:74:b4:9b:89:16:13:98:a7:25:fd:bf:c2:14: 66:de:1e:8b:bd:92:03:17:91:df:4b:fa:d2:43:5e:1f:2e:ba: c7:e2:ed:1b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIURiYnBoWwkC+Q9o9dUKWDa2FecLAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMDA1OVoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNANGFmZjcwZjNjMzU5NjU0MTkyMjI3 MWQzMzE3M2JiMGY0ODc0YWU2NjRlZjFlZGZiMDc5MGNjNWY5YzA1ZmMwYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0bIwz4klMJb/pnPB+2Cl3rgXKDvN N4kkgS1tOKrlcrQ3NPXmOt3IzKjH8wrpHXIcT6NIhiJsW9/CgbOkpDiYFlGmr8Es 6p0SK1jzTU63DS3wx8PtDV8uWVMRfAs3ekxWkl66awYWWhe8dLN8LBm0L2ccHqzF lOUTfU73y74a86IYsXQmfbxf3D1ixYflVL1ailkbVRn3p+atmU9hWHp3OfUhQj+9 qFF+zuWpSW7pOJ5mGBGikF+b7+6xB4XWWIjbc1TAZGGaIGJlHvLgl6W5MflXV6YF fKtpHSCzBDWlmVz3xdXPh/7ddRq6jpLnrZ4ZSvHd1DAT2Pk4NifRqz4CxwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJKuHRH3lg5/jVUhzzT0AqOKYTXyMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRkMWI5MjgyLTY4MGItNDk5Mi1iZWIxLTE5ZmE3ZGM3ZTA0My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaucAwDQYJKoZIhvcNAQELBQADggEBAIS35sc//u2Q+GnOcS3/ 3P7r2nrYYjr1YVA3b9uZLsoOUlF22m9iVa/VWH4nR9TRRkQv2wETyZ0O6KSi7p6P DG4wpHUtWXY/Ty4i266u+WUOKpS9edBI1CKDRjAFQZKI8FUjV0cG4Zfu2e4ctynS fxVJislJJQowpsKU70i2lmoqWAnixQf9uXexhkGQNkBoeAEma5IO/OlKYu8+1hii VjCR7Zm7v287Gyn1BdXOydhe9xkf0552PR73inKcjgIa47dIwwXc2CaeL3AlFYWU p3VvLE4IPPmRjMhGOq6jdLSbiRYTmKcl/b/CFGbeHou9kgMXkd9L+tJDXh8uusfi 7Rs= -----END CERTIFICATE-----Generated at Fri May 22 14:19:12 2026 by rpki-client