$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5637e746-68a9-4187-b79d-5e4d4b5c348e.roa File: 5637e746-68a9-4187-b79d-5e4d4b5c348e.roa (raw, json) Hash identifier: ygxfHwQ366Fy8GQ9BsphKpwa3iRFXMVWu3UFyK51eOg= Subject key identifier: 51:80:71:F5:6C:9A:0C:87:D7:27:20:6C:70:D5:90:2A:10:2C:D8:B4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 59169FEF459CC14683ECECC3298B495FE2230E5B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5637e746-68a9-4187-b79d-5e4d4b5c348e.roa Signing time: Wed 13 May 2026 00:00:06 +0000 ROA not before: Wed 13 May 2026 00:00:06 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2c:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:16:9f:ef:45:9c:c1:46:83:ec:ec:c3:29:8b:49:5f:e2:23:0e:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:00:06 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=483d4e8a503ced77adde1b9ece527dbdce88affb3d196a04abe38d0df08528f6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9b:9d:dc:01:12:39:c6:68:5d:a4:21:37:89: d4:2a:e2:9a:a3:5a:db:fb:84:ee:15:1a:4b:eb:0e: ec:c4:2e:4b:cb:8a:83:28:e2:80:56:00:d1:3f:14: d8:1c:fd:05:a3:b9:12:8c:d5:01:35:71:21:77:af: 58:3b:e6:09:af:68:a8:c8:51:38:f8:16:bb:c9:bf: 55:35:32:9d:65:de:36:2a:97:6d:ad:21:0d:26:28: 8e:69:d9:b9:11:28:c2:01:e0:ae:15:9f:f1:2f:2c: c7:dc:47:1e:69:3b:31:20:b3:4e:dc:2c:ce:81:57: a5:38:67:bd:81:1b:a5:a6:d8:a9:1d:32:e3:e1:ec: 1c:2d:d1:3d:09:53:45:8f:44:3f:07:34:04:a9:97: 80:f3:54:3b:81:a6:b3:7e:34:67:fc:42:59:86:44: ab:a1:f5:35:33:67:89:5c:d7:18:7e:83:83:74:c3: 22:e0:d3:af:5c:81:9a:b4:3b:61:aa:d0:98:e5:65: 51:f1:f0:dc:a5:7c:60:89:7a:93:a1:40:87:12:79: fc:ba:2d:8f:80:77:69:9f:75:c4:aa:d5:07:e8:75: db:00:2e:ab:78:9f:02:94:89:40:4f:47:ca:f2:54: 7a:0a:73:eb:b7:d5:50:d8:5a:1a:39:7b:b6:b0:22: c4:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:80:71:F5:6C:9A:0C:87:D7:27:20:6C:70:D5:90:2A:10:2C:D8:B4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5637e746-68a9-4187-b79d-5e4d4b5c348e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2c:8000::/36 Signature Algorithm: sha256WithRSAEncryption 7a:79:45:61:51:16:1d:82:db:5a:8a:99:41:f1:ba:74:f9:e7: ae:de:7d:c4:e0:9f:84:93:55:9c:70:65:b5:5a:19:44:1c:19: a2:f3:b1:b8:ae:39:02:b1:5b:54:aa:0a:eb:a4:0c:69:d6:56: bc:a3:a3:a5:f5:68:ad:9a:b0:84:2b:e5:68:d0:a8:5f:0b:e5: cb:40:c8:bb:41:5b:0b:4e:78:d7:2d:b8:47:4a:6c:4e:c7:fb: 08:91:a5:90:dc:0a:f6:25:4d:b4:62:8a:8d:59:89:53:b7:8e: 6a:42:08:5d:88:f6:b6:00:49:78:d5:90:73:0c:77:a4:5d:e3: a4:d8:6a:b6:79:82:ca:7c:de:37:43:f3:49:93:c5:ca:e9:6d: f1:1a:12:c2:52:4b:8c:11:84:d4:9c:11:1d:dc:5b:28:eb:68: bf:08:94:54:d3:af:ce:1a:3e:bc:a2:34:cf:75:89:55:ac:13: 7c:d5:0e:67:6e:80:9f:3c:80:47:13:7e:26:6f:1b:8f:13:73: 24:77:cd:08:e1:7d:9f:2c:03:40:66:67:46:f6:e5:3b:f9:7c: 48:17:e2:9c:fb:d8:00:d5:c2:68:a6:99:95:85:1d:36:0c:77: 7a:b0:b6:0e:fb:ba:7a:90:b6:fc:f1:b1:ac:21:8f:e0:1d:9e: e7:ab:fa:0d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWRaf70WcwUaD7OzDKYtJX+IjDlswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMDAwNloX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNANDgzZDRlOGE1MDNjZWQ3N2FkZGUx YjllY2U1MjdkYmRjZTg4YWZmYjNkMTk2YTA0YWJlMzhkMGRmMDg1MjhmNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Jud3AESOcZoXaQhN4nUKuKao1rb +4TuFRpL6w7sxC5Ly4qDKOKAVgDRPxTYHP0Fo7kSjNUBNXEhd69YO+YJr2ioyFE4 +Ba7yb9VNTKdZd42KpdtrSENJiiOadm5ESjCAeCuFZ/xLyzH3EceaTsxILNO3CzO gVelOGe9gRulptipHTLj4ewcLdE9CVNFj0Q/BzQEqZeA81Q7gaazfjRn/EJZhkSr ofU1M2eJXNcYfoODdMMi4NOvXIGatDthqtCY5WVR8fDcpXxgiXqToUCHEnn8ui2P gHdpn3XEqtUH6HXbAC6reJ8ClIlAT0fK8lR6CnPrt9VQ2FoaOXu2sCLEQwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFGAcfVsmgyH1ycgbHDVkCoQLNi0MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU2MzdlNzQ2LTY4YTktNDE4Ny1iNzlkLTVlNGQ0YjVjMzQ4ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaLIAwDQYJKoZIhvcNAQELBQADggEBAHp5RWFRFh2C21qKmUHx unT5567efcTgn4STVZxwZbVaGUQcGaLzsbiuOQKxW1SqCuukDGnWVryjo6X1aK2a sIQr5WjQqF8L5ctAyLtBWwtOeNctuEdKbE7H+wiRpZDcCvYlTbRiio1ZiVO3jmpC CF2I9rYASXjVkHMMd6Rd46TYarZ5gsp83jdD80mTxcrpbfEaEsJSS4wRhNScER3c WyjraL8IlFTTr84aPryiNM91iVWsE3zVDmdugJ88gEcTfiZvG48TcyR3zQjhfZ8s A0BmZ0b25Tv5fEgX4pz72ADVwmimmZWFHTYMd3qwtg77unqQtvzxsawhj+Adnuer +g0= -----END CERTIFICATE-----Generated at Sun May 24 12:22:04 2026 by rpki-client