$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8f3d290f-ba07-44ec-8836-8683ef177077.roa File: 8f3d290f-ba07-44ec-8836-8683ef177077.roa (raw, json) Hash identifier: E5JzrUIAzUG2qfPnFwZ4fTDP/xAivsEY32JOhEzGibw= Subject key identifier: 9F:0C:5A:DE:94:F6:79:9B:27:23:83:4C:B1:52:37:55:C2:D1:0C:3C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 02F7DF088DC93B61B70642655E4FBB00E4B7C10A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8f3d290f-ba07-44ec-8836-8683ef177077.roa Signing time: Wed 13 May 2026 00:01:30 +0000 ROA not before: Wed 13 May 2026 00:01:30 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab9:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f7:df:08:8d:c9:3b:61:b7:06:42:65:5e:4f:bb:00:e4:b7:c1:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:01:30 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=79d3eda41c6a887e43a47ef764654c4ec7065eb12de5a4481a83c5f11997ca13, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e2:9a:5e:89:26:ed:c9:b5:0a:43:31:44:a9: 9d:f3:44:c3:d1:69:82:4d:d6:83:15:ce:e6:d3:ce: 0a:6a:48:f8:f9:c1:4a:d3:2d:8a:14:5d:a4:f6:01: 41:6a:c7:f4:0d:81:72:bb:73:60:d6:bb:76:58:37: 9d:d7:b0:33:a0:15:da:ec:93:41:42:de:38:1e:7e: 5a:ee:72:c8:da:c5:32:32:ce:c8:71:db:44:47:1e: ca:d6:16:e6:c2:49:ba:25:06:08:4c:4a:e8:4a:ee: 07:0d:15:35:62:9a:83:43:28:8c:f4:17:11:0b:78: 97:56:2d:6f:d2:c6:0c:35:3b:06:e7:65:9c:f0:d9: 54:4a:f5:5d:51:4c:c4:f6:3e:33:66:90:6f:13:bd: 4c:d2:93:31:21:33:98:38:4b:59:7f:c0:72:a1:c8: 3c:07:86:a0:04:66:d1:66:7b:f4:59:82:57:8f:22: 37:f2:70:b2:3e:af:1d:e4:2d:21:29:ae:b6:d9:9b: 05:95:7e:d9:c0:63:44:55:6c:f6:48:aa:65:f1:3d: ee:1b:e9:3a:a1:83:10:0d:43:c6:27:b5:14:16:5a: 5c:a8:8e:62:d5:31:20:3e:9f:14:3f:be:99:89:a1: 28:c6:5a:d8:41:9f:fb:6f:a4:44:7c:77:db:8c:4f: d8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:0C:5A:DE:94:F6:79:9B:27:23:83:4C:B1:52:37:55:C2:D1:0C:3C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8f3d290f-ba07-44ec-8836-8683ef177077.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:e000::/40 Signature Algorithm: sha256WithRSAEncryption 78:0f:9d:0b:26:95:aa:3d:5f:5c:84:82:29:f2:39:97:f2:30: 89:b8:43:99:b8:c0:1b:81:7c:52:d6:15:bb:a2:07:6d:8e:8a: 9d:b5:c8:43:41:f5:09:24:cf:21:6c:da:7c:86:4b:0e:5a:56: cb:64:58:44:84:29:58:41:98:65:39:b5:63:2a:8e:d1:4d:bc: 87:eb:03:0e:d0:3b:98:5b:5d:e4:b2:1e:7e:7c:1f:b1:8c:43: 5c:fa:c4:8b:9d:45:5c:5b:1e:58:e3:e6:43:65:8a:36:06:c3: d6:92:73:f3:33:51:6a:d0:73:c1:8f:04:29:e6:87:d3:7b:07: 95:4d:27:c6:e7:86:ce:b4:86:84:6c:68:df:5f:ba:8b:e0:c7: 6c:6d:f2:da:48:5e:dd:e1:25:9f:4b:dc:40:65:28:dd:59:cc: 4b:b4:5f:1f:43:79:3d:ca:16:7c:3a:73:fe:c6:b8:1b:4f:54: 0a:39:cb:6e:cb:2d:f7:0e:e4:4c:0f:f6:d1:31:fa:2a:7c:bd: 73:6a:96:6e:4e:ac:c6:66:b7:6d:d2:76:60:af:a2:e0:43:f9: f4:f1:05:c0:b5:f2:ad:d0:75:69:79:66:27:e3:62:f8:63:47: 3d:9c:ea:f8:c0:03:93:fd:a6:58:72:85:96:d4:7f:dc:b5:35: f5:d8:ca:c2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUAvffCI3JO2G3BkJlXk+7AOS3wQowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMDEzMFoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNANzlkM2VkYTQxYzZhODg3ZTQzYTQ3 ZWY3NjQ2NTRjNGVjNzA2NWViMTJkZTVhNDQ4MWE4M2M1ZjExOTk3Y2ExMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOKaXokm7cm1CkMxRKmd80TD0WmC TdaDFc7m084Kakj4+cFK0y2KFF2k9gFBasf0DYFyu3Ng1rt2WDed17AzoBXa7JNB Qt44Hn5a7nLI2sUyMs7IcdtERx7K1hbmwkm6JQYITEroSu4HDRU1YpqDQyiM9BcR C3iXVi1v0sYMNTsG52Wc8NlUSvVdUUzE9j4zZpBvE71M0pMxITOYOEtZf8Byocg8 B4agBGbRZnv0WYJXjyI38nCyPq8d5C0hKa622ZsFlX7ZwGNEVWz2SKpl8T3uG+k6 oYMQDUPGJ7UUFlpcqI5i1TEgPp8UP76ZiaEoxlrYQZ/7b6REfHfbjE/Y1QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJ8MWt6U9nmbJyODTLFSN1XC0Qw8MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhmM2QyOTBmLWJhMDctNDRlYy04ODM2LTg2ODNlZjE3NzA3Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaueAwDQYJKoZIhvcNAQELBQADggEBAHgPnQsmlao9X1yEginy OZfyMIm4Q5m4wBuBfFLWFbuiB22Oip21yENB9QkkzyFs2nyGSw5aVstkWESEKVhB mGU5tWMqjtFNvIfrAw7QO5hbXeSyHn58H7GMQ1z6xIudRVxbHljj5kNlijYGw9aS c/MzUWrQc8GPBCnmh9N7B5VNJ8bnhs60hoRsaN9fuovgx2xt8tpIXt3hJZ9L3EBl KN1ZzEu0Xx9DeT3KFnw6c/7GuBtPVAo5y27LLfcO5EwP9tEx+ip8vXNqlm5OrMZm t23SdmCvouBD+fTxBcC18q3QdWl5ZifjYvhjRz2c6vjAA5P9plhyhZbUf9y1NfXY ysI= -----END CERTIFICATE-----Generated at Sun May 24 12:22:26 2026 by rpki-client