$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a7b6771f-2f85-4683-b0d9-3a749bbe218a.roa File: a7b6771f-2f85-4683-b0d9-3a749bbe218a.roa (raw, json) Hash identifier: cKc84kfKOTFug/hgmbAODlY7yRPkHnZQALUAehvCKRM= Subject key identifier: 37:57:D3:AC:7C:84:30:EE:E1:65:9E:8E:84:79:C7:D1:CD:4A:6F:22 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4E3BFDD47AA8F1271E5CA8313729EA44C77A0B83 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a7b6771f-2f85-4683-b0d9-3a749bbe218a.roa Signing time: Sat 02 May 2026 00:01:31 +0000 ROA not before: Sat 02 May 2026 00:01:31 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab8:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:3b:fd:d4:7a:a8:f1:27:1e:5c:a8:31:37:29:ea:44:c7:7a:0b:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 2 00:01:31 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=39add2bcc7b4df0f611507dd250020c1294a6057ff738443c98564d71662dfb0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:19:99:02:cc:2c:36:32:40:44:85:79:08:13: 39:3d:04:4c:2a:3d:47:45:fe:2c:45:f9:97:61:03: a2:e5:c0:6f:da:d6:e0:7d:6d:3f:89:35:77:0d:bb: 3e:96:8d:8f:56:31:a3:69:33:91:4d:9d:45:21:11: 25:5b:c8:09:ee:88:df:0a:de:3b:15:bc:63:ac:06: 3a:34:4b:80:8f:15:63:37:42:0f:cf:62:a5:49:d1: eb:16:ce:7b:ea:12:69:c6:23:27:3e:72:82:fc:c2: 55:41:ca:b4:8e:9a:28:6c:bb:25:47:f4:49:32:c5: 65:b8:f7:77:50:c8:fb:86:19:9d:07:df:7d:ee:3a: 91:6f:d3:bc:80:de:5f:ca:60:5a:ec:e7:28:6e:48: 66:a1:ff:d3:9f:53:83:2e:7e:23:16:96:ee:c5:c9: c8:12:e2:cf:ba:e9:d9:3b:b5:64:b1:2d:10:91:c2: 7f:14:68:c3:c1:5f:c8:79:63:f3:83:16:0c:82:a1: 4a:42:6f:68:04:91:44:74:67:26:53:1c:fb:75:b2: 22:b1:ce:56:b4:32:33:d2:6f:b2:2c:f3:87:56:a1: ac:5b:5a:9e:db:0f:38:a2:3d:a5:5a:f0:a0:35:17: bc:13:85:7b:27:ec:41:4d:ef:15:e7:c1:b3:23:be: 8f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:57:D3:AC:7C:84:30:EE:E1:65:9E:8E:84:79:C7:D1:CD:4A:6F:22 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a7b6771f-2f85-4683-b0d9-3a749bbe218a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab8:6000::/40 Signature Algorithm: sha256WithRSAEncryption 91:6a:80:12:f9:31:54:6b:b7:d4:3e:55:30:75:79:6b:db:27: 51:e9:02:84:5b:08:85:e5:67:d5:2c:41:c8:f2:f7:6c:0f:f5: 15:65:70:10:49:c4:d1:d2:2e:86:52:06:d4:3d:58:9e:b1:a5: 91:d2:fb:78:cd:66:c4:bc:ef:b0:05:4c:1d:ce:8e:03:f3:25: 0e:ad:7e:21:8d:e4:f0:69:56:21:45:a4:35:ff:60:4b:c0:92: 46:90:c0:96:4c:d7:42:b2:01:e0:35:d6:b4:9a:7d:4d:52:42: ac:6e:db:db:88:55:53:66:b9:59:96:10:30:d6:60:3f:12:e0: 3f:41:a3:03:13:dc:64:98:ef:d5:c3:6d:66:ec:12:74:3d:ad: c2:21:5c:1a:44:38:cb:70:ea:7e:09:89:6b:6e:73:95:63:5e: 1e:b6:3f:39:44:5d:ba:84:6f:93:0b:b2:e5:13:8a:57:a9:30: bb:2a:6a:d8:fb:b7:53:bf:6c:f4:b5:8d:26:6c:97:8e:39:4d: 13:9d:35:2c:00:3e:2e:eb:78:fd:55:5d:ca:b6:a4:be:74:27: ea:4c:18:bc:67:b0:cf:b1:50:cd:0c:37:88:6b:ce:08:f9:34: 55:6b:8a:e5:36:cf:fb:f0:7e:81:88:8c:52:fa:42:a2:a6:dd: 8e:5c:9b:47 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUTjv91Hqo8SceXKgxNynqRMd6C4MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwMjAwMDEzMVoX DTI2MDczMTIzNTk1OVowejFJMEcGA1UEBRNAMzlhZGQyYmNjN2I0ZGYwZjYxMTUw N2RkMjUwMDIwYzEyOTRhNjA1N2ZmNzM4NDQzYzk4NTY0ZDcxNjYyZGZiMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshmZAswsNjJARIV5CBM5PQRMKj1H Rf4sRfmXYQOi5cBv2tbgfW0/iTV3Dbs+lo2PVjGjaTORTZ1FIRElW8gJ7ojfCt47 FbxjrAY6NEuAjxVjN0IPz2KlSdHrFs576hJpxiMnPnKC/MJVQcq0jpoobLslR/RJ MsVluPd3UMj7hhmdB9997jqRb9O8gN5fymBa7Ocobkhmof/Tn1ODLn4jFpbuxcnI EuLPuunZO7VksS0QkcJ/FGjDwV/IeWPzgxYMgqFKQm9oBJFEdGcmUxz7dbIisc5W tDIz0m+yLPOHVqGsW1qe2w84oj2lWvCgNRe8E4V7J+xBTe8V58GzI76PRwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDdX06x8hDDu4WWejoR5x9HNSm8iMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2E3YjY3NzFmLTJmODUtNDY4My1iMGQ5LTNhNzQ5YmJlMjE4YS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauGAwDQYJKoZIhvcNAQELBQADggEBAJFqgBL5MVRrt9Q+VTB1 eWvbJ1HpAoRbCIXlZ9UsQcjy92wP9RVlcBBJxNHSLoZSBtQ9WJ6xpZHS+3jNZsS8 77AFTB3OjgPzJQ6tfiGN5PBpViFFpDX/YEvAkkaQwJZM10KyAeA11rSafU1SQqxu 29uIVVNmuVmWEDDWYD8S4D9BowMT3GSY79XDbWbsEnQ9rcIhXBpEOMtw6n4JiWtu c5VjXh62PzlEXbqEb5MLsuUTilepMLsqatj7t1O/bPS1jSZsl445TROdNSwAPi7r eP1VXcq2pL50J+pMGLxnsM+xUM0MN4hrzgj5NFVriuU2z/vwfoGIjFL6QqKm3Y5c m0c= -----END CERTIFICATE-----Generated at Sun May 3 06:58:43 2026 by rpki-client