$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c5d2129-c65c-4419-a480-b48028703d92.roa File: 6c5d2129-c65c-4419-a480-b48028703d92.roa (raw, json) Hash identifier: Aj0W21SfTDvTjnHvxRIFy89CH29+3C5N+Qqt1yYGaFA= Subject key identifier: EE:DA:5E:B7:0A:50:BA:FC:AB:12:59:66:00:85:1E:3B:38:F7:4A:37 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 557E075929F44CF6800086953F42E1BD05B32A03 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c5d2129-c65c-4419-a480-b48028703d92.roa Signing time: Wed 13 May 2026 00:00:05 +0000 ROA not before: Wed 13 May 2026 00:00:05 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:7e:07:59:29:f4:4c:f6:80:00:86:95:3f:42:e1:bd:05:b3:2a:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:00:05 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=ee05a8c84d747f38e8b2cbd6f5225d758cff83090229697e58d607bfb4bc2085, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b1:8a:df:33:26:42:9e:c6:d2:81:fc:5c:96: e8:92:e5:7b:7a:1b:49:9c:7d:62:37:2e:e0:94:2e: 32:67:0b:69:3c:51:85:7d:bf:96:d3:ae:a4:b4:23: dc:0b:0f:f2:c6:1f:8b:f1:9a:51:a3:e8:a6:a1:0b: 04:e9:dd:bb:7a:80:a5:a7:90:fb:6c:90:b5:a0:03: 8b:e0:a6:39:fe:e6:0d:b1:30:53:d0:59:fe:e7:b8: 95:bb:d0:3b:6c:67:57:49:e2:d6:b8:8b:4f:9a:2f: 8a:1a:08:d3:ce:a1:81:80:e7:57:f6:b5:a8:2d:32: de:6d:70:14:a9:c8:35:d9:61:f9:2a:60:3b:42:37: 8f:1f:04:cc:25:4e:03:c1:60:e5:40:77:7b:d7:74: 6b:48:9d:f3:b3:b7:ed:f3:63:36:b7:3d:60:81:5d: db:a6:14:cb:15:27:f9:38:04:47:ba:fd:a0:20:53: 0a:13:3a:b2:d4:32:e6:fe:f6:aa:51:17:76:d3:b8: 2c:76:95:ea:c1:9d:77:64:65:38:2a:73:53:70:ba: d9:53:b1:4a:91:07:dc:51:cb:d4:08:b8:3b:95:34: eb:c8:80:6d:c8:b5:f5:2e:d9:ce:49:69:10:59:92: 2b:74:8e:f7:ea:49:07:bc:d0:d5:90:f7:ad:4a:67: 74:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:DA:5E:B7:0A:50:BA:FC:AB:12:59:66:00:85:1E:3B:38:F7:4A:37 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c5d2129-c65c-4419-a480-b48028703d92.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:9000::/40 Signature Algorithm: sha256WithRSAEncryption bb:fc:d2:23:37:3f:a0:0f:0d:b2:11:bc:07:ce:8c:68:64:51: 1f:24:de:d9:25:03:4c:08:0b:81:4f:90:ee:d6:86:ce:2d:fe: ba:f9:21:d0:84:ba:37:8d:a6:36:bd:95:89:fd:91:07:83:8d: 7b:56:5e:0a:60:87:40:4c:16:87:21:64:77:ee:4b:ff:1f:8d: 47:40:b9:b7:ae:da:a2:20:0f:26:f0:5e:07:76:ef:bb:ff:32: 60:c8:63:74:43:43:74:d3:e6:37:84:59:79:2d:77:dd:1d:eb: a0:e2:b6:b1:86:1e:f3:d6:4a:29:69:93:2d:b3:32:d9:64:fa: ea:7d:70:f9:9e:d4:56:2b:fc:c6:16:4d:2f:32:fc:ff:8e:16: 7f:5d:8d:09:b3:38:35:9a:26:f2:8f:ca:d4:71:09:d7:40:13: 14:2a:45:72:50:46:1e:8c:b3:85:44:eb:82:c3:5a:7e:e6:76: 67:5c:a4:8e:89:75:8f:94:ca:44:42:38:c1:e9:39:58:d5:46: 57:bb:ef:57:c7:04:4c:21:21:3a:5b:b5:a0:bc:01:36:50:e6: 70:e3:55:22:53:4c:14:d4:0e:39:95:14:89:71:f7:92:22:00: 41:ec:3e:ed:90:08:97:52:24:ce:b9:4d:de:cd:fa:1c:5a:d9: 92:05:b1:36 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUVX4HWSn0TPaAAIaVP0LhvQWzKgMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMDAwNVoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAZWUwNWE4Yzg0ZDc0N2YzOGU4YjJj YmQ2ZjUyMjVkNzU4Y2ZmODMwOTAyMjk2OTdlNThkNjA3YmZiNGJjMjA4NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7GK3zMmQp7G0oH8XJbokuV7ehtJ nH1iNy7glC4yZwtpPFGFfb+W066ktCPcCw/yxh+L8ZpRo+imoQsE6d27eoClp5D7 bJC1oAOL4KY5/uYNsTBT0Fn+57iVu9A7bGdXSeLWuItPmi+KGgjTzqGBgOdX9rWo LTLebXAUqcg12WH5KmA7QjePHwTMJU4DwWDlQHd713RrSJ3zs7ft82M2tz1ggV3b phTLFSf5OARHuv2gIFMKEzqy1DLm/vaqURd207gsdpXqwZ13ZGU4KnNTcLrZU7FK kQfcUcvUCLg7lTTryIBtyLX1LtnOSWkQWZIrdI736kkHvNDVkPetSmd0uwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFO7aXrcKULr8qxJZZgCFHjs490o3MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZjNWQyMTI5LWM2NWMtNDQxOS1hNDgwLWI0ODAyODcwM2Q5Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOJAwDQYJKoZIhvcNAQELBQADggEBALv80iM3P6APDbIRvAfO jGhkUR8k3tklA0wIC4FPkO7Whs4t/rr5IdCEujeNpja9lYn9kQeDjXtWXgpgh0BM FochZHfuS/8fjUdAubeu2qIgDybwXgd277v/MmDIY3RDQ3TT5jeEWXktd90d66Di trGGHvPWSilpky2zMtlk+up9cPme1FYr/MYWTS8y/P+OFn9djQmzODWaJvKPytRx CddAExQqRXJQRh6Ms4VE64LDWn7mdmdcpI6JdY+UykRCOMHpOVjVRle771fHBEwh ITpbtaC8ATZQ5nDjVSJTTBTUDjmVFIlx95IiAEHsPu2QCJdSJM65Td7N+hxa2ZIF sTY= -----END CERTIFICATE-----Generated at Sun May 24 12:22:26 2026 by rpki-client