$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6ea417f3-3b4b-41d7-a7ff-22c7107de3b3.roa File: 6ea417f3-3b4b-41d7-a7ff-22c7107de3b3.roa (raw, json) Hash identifier: U4v82m1e9hg5gVj9daXx46rMwGDZ83MIc0PyFjpoczo= Subject key identifier: 58:40:C7:94:11:40:9F:61:4A:C0:58:A5:15:0A:7E:A0:98:43:1E:BF Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 63A37EE7336D5FB8F1C5E6FAF7D7F6A878436AD7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6ea417f3-3b4b-41d7-a7ff-22c7107de3b3.roa Signing time: Sat 02 May 2026 00:10:27 +0000 ROA not before: Sat 02 May 2026 00:10:27 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:6080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a3:7e:e7:33:6d:5f:b8:f1:c5:e6:fa:f7:d7:f6:a8:78:43:6a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 2 00:10:27 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=c1373ee048dd4f0bc42afc4e80c88fa45bd214fb9b1ccbcb8e63ba60a7e4109c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b3:f4:d7:13:0a:6e:f7:f2:69:b7:f6:f3:c4: 78:95:19:6a:43:a2:0d:16:09:88:1b:a1:21:c8:68: a6:47:28:85:9d:ef:6e:f1:46:90:79:34:ab:9d:2f: 38:40:02:f4:5e:96:c9:f4:78:1f:1e:c5:0e:3a:53: 52:4d:1b:a9:18:1f:3f:48:94:88:38:f5:8e:67:ae: d5:b6:54:e4:88:f5:39:da:2f:de:5c:62:86:70:6b: 9f:78:b9:d1:3b:64:bc:db:bf:0f:f3:45:62:80:ac: e1:a7:9b:e9:31:c5:e7:0a:5d:75:36:83:d8:bf:77: 9c:66:7f:b2:8e:83:b4:55:02:b8:e8:ff:36:bd:16: 6d:61:d8:5c:fc:ff:af:32:d6:87:ac:43:1a:92:65: f2:42:60:bb:fa:b4:8a:1f:c2:50:58:b3:ad:96:11: ee:44:8c:7e:cb:71:a9:08:23:71:90:57:ab:3a:93: a9:c6:5a:3b:cb:bb:93:a3:a1:14:b3:29:db:7c:da: 8a:95:a8:71:60:64:71:40:e3:48:9a:5f:6a:ad:ec: b7:2e:9f:dd:95:ac:49:25:d9:8d:18:33:70:b3:a4: cd:34:51:79:ee:9a:3e:be:47:0d:c1:a5:35:bb:0d: fa:8a:05:5d:bd:f7:ea:32:8e:82:56:60:0a:66:17: c6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:40:C7:94:11:40:9F:61:4A:C0:58:A5:15:0A:7E:A0:98:43:1E:BF X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6ea417f3-3b4b-41d7-a7ff-22c7107de3b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:6080::/46 Signature Algorithm: sha256WithRSAEncryption 2f:33:7a:83:6a:c0:51:06:85:4a:b1:70:ab:0d:b0:77:86:ab: 35:d7:68:26:8f:89:cb:dc:79:c4:9f:c0:a8:97:dd:11:79:33: 06:1d:4b:71:aa:0d:65:7e:5c:7e:6a:89:d7:a1:a7:96:0e:22: bf:40:7a:14:89:ef:1b:ec:68:d5:eb:e6:aa:58:79:78:23:c2: 26:ea:4f:cf:58:7d:da:ad:f0:8e:43:18:a4:ec:da:84:c5:1d: 7e:5a:09:98:97:9e:cb:37:7e:d4:7b:79:d6:7a:b7:4b:18:4e: 0d:54:f8:9c:7b:86:cc:bf:fe:13:be:2b:7a:d2:c8:ba:eb:90: 8d:5b:a9:6d:42:1d:43:de:10:0e:82:c4:db:65:19:38:6b:83: b1:01:6d:9c:d7:35:da:ec:f1:34:af:48:b6:ef:ca:c3:17:39: 09:82:9b:97:ee:47:ff:62:92:ad:64:25:88:27:e4:22:87:c3: 76:63:8a:84:03:f9:a5:94:2b:77:e5:60:51:70:0f:69:6b:cf: 53:9f:b6:c4:84:dd:ff:23:d9:ba:78:0f:c4:39:02:25:60:88: e5:20:ed:64:ee:2a:c6:f0:f0:a9:a5:2b:76:1c:da:2d:32:d0: 9d:e0:4a:d3:49:07:73:11:9b:c9:99:1d:80:16:69:19:aa:11: 41:9b:6e:df -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUY6N+5zNtX7jxxeb699f2qHhDatcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwMjAwMTAyN1oX DTI2MDczMTIzNTk1OVowejFJMEcGA1UEBRNAYzEzNzNlZTA0OGRkNGYwYmM0MmFm YzRlODBjODhmYTQ1YmQyMTRmYjliMWNjYmNiOGU2M2JhNjBhN2U0MTA5YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLP01xMKbvfyabf288R4lRlqQ6IN FgmIG6EhyGimRyiFne9u8UaQeTSrnS84QAL0XpbJ9HgfHsUOOlNSTRupGB8/SJSI OPWOZ67VtlTkiPU52i/eXGKGcGufeLnRO2S8278P80VigKzhp5vpMcXnCl11NoPY v3ecZn+yjoO0VQK46P82vRZtYdhc/P+vMtaHrEMakmXyQmC7+rSKH8JQWLOtlhHu RIx+y3GpCCNxkFerOpOpxlo7y7uTo6EUsynbfNqKlahxYGRxQONIml9qrey3Lp/d laxJJdmNGDNws6TNNFF57po+vkcNwaU1uw36igVdvffqMo6CVmAKZhfG/QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFhAx5QRQJ9hSsBYpRUKfqCYQx6/MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZlYTQxN2YzLTNiNGItNDFkNy1hN2ZmLTIyYzcxMDdkZTNiMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba82CAMA0GCSqGSIb3DQEBCwUAA4IBAQAvM3qDasBRBoVKsXCr DbB3hqs112gmj4nL3HnEn8Col90ReTMGHUtxqg1lflx+aonXoaeWDiK/QHoUie8b 7GjV6+aqWHl4I8Im6k/PWH3arfCOQxik7NqExR1+WgmYl57LN37Ue3nWerdLGE4N VPice4bMv/4Tvit60si665CNW6ltQh1D3hAOgsTbZRk4a4OxAW2c1zXa7PE0r0i2 78rDFzkJgpuX7kf/YpKtZCWIJ+Qih8N2Y4qEA/mllCt35WBRcA9pa89Tn7bEhN3/ I9m6eA/EOQIlYIjlIO1k7irG8PCppSt2HNotMtCd4ErTSQdzEZvJmR2AFmkZqhFB m27f -----END CERTIFICATE-----Generated at Sun May 3 15:24:16 2026 by rpki-client