$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa File: 9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa (raw, json) Hash identifier: a4LCLN6Ae2c+HcJQ9RP6j6BAPQsN6NX3dmIl3vt+ucQ= Subject key identifier: 0E:8D:DE:E6:C8:4A:4E:59:DA:95:7E:50:E3:FF:DE:B8:DD:F9:31:11 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 52FBA24EE19CEE1BDE7BB196BA6619AC2AEBF064 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa Signing time: Wed 13 May 2026 00:00:41 +0000 ROA not before: Wed 13 May 2026 00:00:41 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:fb:a2:4e:e1:9c:ee:1b:de:7b:b1:96:ba:66:19:ac:2a:eb:f0:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:00:41 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=1ede06bac7a278d2ea1d8454e84d52ddc6260be39df613b5202f37ecea4b93f4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8e:6d:dc:5b:24:f9:ef:70:6f:61:0d:b7:9a: c5:fd:ad:5e:cf:ab:33:67:e4:8a:5e:24:92:dd:4d: d6:9b:05:15:91:86:8c:d6:2b:54:5e:3f:db:c2:cf: 5c:cb:44:d0:8b:54:a8:bb:d2:ce:26:ae:73:47:e1: 9d:ed:da:42:35:af:1a:b3:3c:a4:c9:65:1a:f2:5e: 46:1b:fe:af:7d:c7:8c:e7:37:0d:3a:f5:c2:3c:2f: d6:b2:a8:1b:42:56:96:0b:df:7c:ec:36:4a:1a:f6: 36:9e:ec:f0:16:51:56:26:a7:53:bf:c5:eb:4e:cb: 52:2a:d7:4b:8f:19:fb:95:8d:7c:ba:0b:c6:44:66: 15:a2:26:08:9b:c3:19:5e:81:36:dd:92:df:d3:70: 52:14:b4:45:64:5b:97:75:dd:0e:65:3d:f2:d2:c4: 03:d9:84:fb:84:d5:9a:8d:b3:a3:5e:c0:45:f8:9b: 6f:da:2d:fa:93:2d:62:bc:54:12:a1:5f:5e:d9:67: 72:ac:55:07:e2:81:c8:f1:e1:48:20:45:5c:47:25: a1:fe:78:42:c4:12:4f:67:a4:b4:31:6b:c7:9c:45: a1:e7:c9:84:15:dc:6f:42:7a:67:0a:31:65:79:cb: 55:f2:09:86:fc:26:01:6b:69:b1:f6:42:52:81:36: 9a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:8D:DE:E6:C8:4A:4E:59:DA:95:7E:50:E3:FF:DE:B8:DD:F9:31:11 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:2000::/40 Signature Algorithm: sha256WithRSAEncryption 85:b7:71:fa:2d:70:28:26:b6:3f:49:7f:bb:db:87:f3:6c:d3: eb:38:e0:e6:a4:00:88:1b:cd:0c:bd:5f:08:1c:b8:c3:cf:8a: b9:07:41:c3:ea:19:77:ce:ae:e4:6a:ba:d4:91:af:81:e0:2c: 31:d6:d1:c4:95:0a:cc:f6:8c:60:59:ac:20:f8:48:ba:f7:f0: 90:5f:32:19:cc:4f:fa:f1:24:cf:d3:84:2a:6a:1e:66:d8:f2: bb:bd:a7:16:a2:03:73:0e:fa:26:7b:b8:d2:f7:03:2c:91:14: c7:83:f6:be:f6:ad:25:b2:5a:53:8e:7b:07:79:b3:f6:59:27: bc:d8:4f:6f:44:a7:85:3e:ed:5c:1f:84:b1:0b:8e:e5:4e:da: 21:b7:95:ac:01:7a:d5:f9:aa:30:4e:b9:de:d9:2e:47:90:a3: 68:2e:c6:ba:43:24:7b:1f:ff:bc:c8:98:e9:cb:7e:5d:f5:9f: 92:09:16:a8:24:59:0d:9a:04:2b:9f:34:e3:5d:06:6d:6c:70: 6b:2d:15:85:d6:5c:3e:4d:eb:07:72:eb:ae:18:6d:0c:4c:bd: 30:d0:ff:0d:32:b4:08:28:8d:36:1c:ef:54:c0:cb:4e:0c:05: a4:96:69:87:47:d6:23:0d:8d:44:e6:33:b2:f4:8a:8f:21:ca: bb:47:a2:e4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUvuiTuGc7hvee7GWumYZrCrr8GQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMDA0MVoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAMWVkZTA2YmFjN2EyNzhkMmVhMWQ4 NDU0ZTg0ZDUyZGRjNjI2MGJlMzlkZjYxM2I1MjAyZjM3ZWNlYTRiOTNmNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2I5t3Fsk+e9wb2ENt5rF/a1ez6sz Z+SKXiSS3U3WmwUVkYaM1itUXj/bws9cy0TQi1Sou9LOJq5zR+Gd7dpCNa8aszyk yWUa8l5GG/6vfceM5zcNOvXCPC/WsqgbQlaWC9987DZKGvY2nuzwFlFWJqdTv8Xr TstSKtdLjxn7lY18ugvGRGYVoiYIm8MZXoE23ZLf03BSFLRFZFuXdd0OZT3y0sQD 2YT7hNWajbOjXsBF+Jtv2i36ky1ivFQSoV9e2WdyrFUH4oHI8eFIIEVcRyWh/nhC xBJPZ6S0MWvHnEWh58mEFdxvQnpnCjFlectV8gmG/CYBa2mx9kJSgTaavQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFA6N3ubISk5Z2pV+UOP/3rjd+TERMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlhZGJiNzIyLTc3ZmQtNDNmNy05ZDY1LWZlZjhiZjQxYWI0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauSAwDQYJKoZIhvcNAQELBQADggEBAIW3cfotcCgmtj9Jf7vb h/Ns0+s44OakAIgbzQy9XwgcuMPPirkHQcPqGXfOruRqutSRr4HgLDHW0cSVCsz2 jGBZrCD4SLr38JBfMhnMT/rxJM/ThCpqHmbY8ru9pxaiA3MO+iZ7uNL3AyyRFMeD 9r72rSWyWlOOewd5s/ZZJ7zYT29Ep4U+7VwfhLELjuVO2iG3lawBetX5qjBOud7Z LkeQo2guxrpDJHsf/7zImOnLfl31n5IJFqgkWQ2aBCufNONdBm1scGstFYXWXD5N 6wdy664YbQxMvTDQ/w0ytAgojTYc71TAy04MBaSWaYdH1iMNjUTmM7L0io8hyrtH ouQ= -----END CERTIFICATE-----Generated at Fri May 22 14:19:37 2026 by rpki-client