$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a91606af-f23b-41f1-a5e0-9c946ffa3ce0.roa File: a91606af-f23b-41f1-a5e0-9c946ffa3ce0.roa (raw, json) Hash identifier: 4mDHsNB/QW0Z8+5BGSKxxhV3ckk86zBLAeIUI2ivpuM= Subject key identifier: C0:1E:54:91:C1:99:22:04:E4:65:20:30:C8:44:2E:48:11:1A:8D:0D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 545088B02D6B782ADC14381DB6372794E67DA991 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a91606af-f23b-41f1-a5e0-9c946ffa3ce0.roa Signing time: Wed 13 May 2026 00:10:10 +0000 ROA not before: Wed 13 May 2026 00:10:10 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf8:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:50:88:b0:2d:6b:78:2a:dc:14:38:1d:b6:37:27:94:e6:7d:a9:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:10:10 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=a9de48da55d1a6163efd880de7db661ee70c48368df9b8b70a4c2ba3e5ab2c70, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:06:27:a4:d3:4c:8e:ae:97:20:61:63:1f:64: b3:8f:dc:e5:82:9c:1c:6e:c1:44:1d:f3:4b:3e:d1: 55:60:b2:9a:f7:4b:57:da:a0:d1:04:06:52:4e:d8: 93:55:fa:3f:66:df:28:20:89:55:5f:71:32:a9:23: c0:73:36:f0:35:43:85:74:9e:d7:61:ec:86:62:6c: 44:b5:e9:ef:a3:27:72:41:42:23:f2:75:9e:6a:c3: 30:eb:db:04:75:94:ff:35:73:62:a7:e1:30:a1:73: 67:6c:1f:0c:36:3d:08:bf:84:7e:e1:62:14:2e:f3: 78:4c:6f:88:d6:d1:a0:c1:54:b5:24:6b:d7:6a:42: 06:35:f8:c3:7a:9c:99:7b:89:78:a2:33:a7:9f:88: df:54:69:3a:b5:f7:10:a4:6d:35:72:d7:f8:84:81: 87:eb:c5:26:7d:33:8a:cd:a1:d3:a5:30:08:da:61: 22:82:b0:9a:b1:21:f1:bb:23:a0:a7:05:b4:4a:2c: eb:11:77:2a:84:cb:5b:42:ff:2a:ff:e1:2b:92:c7: 4c:d6:5b:77:ac:e5:69:e2:c0:22:52:d8:e0:64:20: 6a:cd:7b:76:ac:16:30:e6:46:b6:15:67:2b:d2:42: ef:3f:38:10:50:c4:df:22:27:cc:2b:45:62:16:55: 8a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:1E:54:91:C1:99:22:04:E4:65:20:30:C8:44:2E:48:11:1A:8D:0D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a91606af-f23b-41f1-a5e0-9c946ffa3ce0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf8:8000::/40 Signature Algorithm: sha256WithRSAEncryption 61:45:d2:a9:4d:74:19:07:39:dd:7c:67:7b:1e:f4:65:a9:a0: 30:01:d0:00:26:f7:06:38:4e:15:c8:b5:69:2f:10:09:6f:fa: 4a:57:3e:27:7c:46:0d:e9:67:ac:f0:9a:df:ae:4b:df:9d:e4: 7c:70:9e:0f:44:71:40:7e:50:e3:34:d5:18:d8:dd:e9:84:41: ae:73:a2:e2:9f:d0:24:45:09:58:f4:6e:b2:05:3e:19:36:5a: b3:39:a8:69:b0:70:6e:8a:31:20:08:22:32:c1:88:2b:76:09: 1e:d4:fc:09:48:11:e7:23:2f:af:6c:ec:08:ce:b9:46:f5:3b: 37:4a:fb:38:f3:b3:ac:d7:43:06:b5:1f:ed:ea:32:e9:53:ab: ae:61:6d:63:6f:9c:12:0b:96:42:02:a9:0f:83:1f:9f:2a:a1: ec:3f:6a:77:de:bd:cc:2a:2b:7a:20:f5:e3:f7:33:11:7c:97: bc:a8:6a:a4:88:04:b3:b5:f1:89:1d:7a:bf:c4:d1:77:87:8d: 09:f8:98:d1:e6:25:ef:de:d7:70:e9:a5:21:4e:41:fe:79:83: c3:28:30:1d:4c:d1:8d:c5:97:9b:b5:9f:a9:32:00:9e:00:eb: d4:ea:75:6e:90:97:e5:ee:3a:b2:73:f4:67:47:b2:59:26:7c: 7d:c8:c9:4e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUVFCIsC1reCrcFDgdtjcnlOZ9qZEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMTAxMFoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAYTlkZTQ4ZGE1NWQxYTYxNjNlZmQ4 ODBkZTdkYjY2MWVlNzBjNDgzNjhkZjliOGI3MGE0YzJiYTNlNWFiMmM3MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogYnpNNMjq6XIGFjH2Szj9zlgpwc bsFEHfNLPtFVYLKa90tX2qDRBAZSTtiTVfo/Zt8oIIlVX3EyqSPAczbwNUOFdJ7X YeyGYmxEtenvoydyQUIj8nWeasMw69sEdZT/NXNip+EwoXNnbB8MNj0Iv4R+4WIU LvN4TG+I1tGgwVS1JGvXakIGNfjDepyZe4l4ojOnn4jfVGk6tfcQpG01ctf4hIGH 68UmfTOKzaHTpTAI2mEigrCasSHxuyOgpwW0SizrEXcqhMtbQv8q/+ErksdM1lt3 rOVp4sAiUtjgZCBqzXt2rBYw5ka2FWcr0kLvPzgQUMTfIifMK0ViFlWK+QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMAeVJHBmSIE5GUgMMhELkgRGo0NMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2E5MTYwNmFmLWYyM2ItNDFmMS1hNWUwLTljOTQ2ZmZhM2NlMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+IAwDQYJKoZIhvcNAQELBQADggEBAGFF0qlNdBkHOd18Z3se 9GWpoDAB0AAm9wY4ThXItWkvEAlv+kpXPid8Rg3pZ6zwmt+uS9+d5Hxwng9EcUB+ UOM01RjY3emEQa5zouKf0CRFCVj0brIFPhk2WrM5qGmwcG6KMSAIIjLBiCt2CR7U /AlIEecjL69s7AjOuUb1OzdK+zjzs6zXQwa1H+3qMulTq65hbWNvnBILlkICqQ+D H58qoew/anfevcwqK3og9eP3MxF8l7yoaqSIBLO18Ykder/E0XeHjQn4mNHmJe/e 13DppSFOQf55g8MoMB1M0Y3Fl5u1n6kyAJ4A69TqdW6Ql+XuOrJz9GdHslkmfH3I yU4= -----END CERTIFICATE-----Generated at Sun May 24 11:02:38 2026 by rpki-client