$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c6127299-514b-4491-a082-e7778a135677.roa File: c6127299-514b-4491-a082-e7778a135677.roa (raw, json) Hash identifier: XdRFXzVFnvt+AJo8gcZjjFZQ9bWCPWSeEyo9XL4yWGI= Subject key identifier: 5B:87:08:EC:32:5A:27:00:DD:DA:D7:8D:03:53:D5:FC:56:4B:79:5B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1B4605289989BA132D982C5EFB54037CC76A13FC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c6127299-514b-4491-a082-e7778a135677.roa Signing time: Fri 15 May 2026 00:00:50 +0000 ROA not before: Fri 15 May 2026 00:00:50 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:da22:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:46:05:28:99:89:ba:13:2d:98:2c:5e:fb:54:03:7c:c7:6a:13:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 15 00:00:50 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=be4d008d0513c745f1d0818497e60783a0b1be9f7ba3f9931595f2910169fc89, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d8:49:a1:86:c6:e3:9b:c4:55:b4:a9:da:58: 01:e9:1f:93:b5:5f:da:ef:73:be:ea:fe:24:3d:4b: 66:3c:38:84:ba:02:f6:4b:b8:b5:01:bb:bf:71:63: 6e:d3:96:69:fc:c7:a3:07:a5:fa:8e:aa:b7:39:00: 5c:ae:92:21:33:6f:64:9d:bf:32:0c:4b:d3:a4:28: 50:a7:a2:ce:86:67:b1:48:b3:e5:aa:d6:fd:52:ee: 57:cb:8f:53:19:03:80:79:f4:57:e8:51:00:9a:ff: 90:b3:47:ed:49:a7:12:61:dd:f8:39:d6:7b:da:8f: 71:f3:84:91:52:c9:a5:30:67:7f:bd:89:00:79:fd: 84:be:a1:f6:13:dd:41:32:cd:66:5a:47:fd:8f:a0: cb:2f:60:b1:73:3e:6b:17:e9:e0:86:46:e5:95:cf: b5:8a:5a:db:35:2a:66:a1:27:fe:2e:ed:40:a8:23: f9:22:e8:37:31:61:c2:11:f2:d8:71:02:c6:99:b2: b6:9d:8b:d4:34:8a:a4:de:28:d8:b3:cd:c8:f4:b3: 38:b7:76:4e:b1:ec:45:5a:41:89:03:9d:6f:32:08: ab:c6:4e:8e:17:a4:82:a3:21:32:4a:96:28:fd:9e: 37:83:d3:8b:6f:12:37:34:d7:58:0d:4c:d3:81:ab: 9e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:87:08:EC:32:5A:27:00:DD:DA:D7:8D:03:53:D5:FC:56:4B:79:5B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c6127299-514b-4491-a082-e7778a135677.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da22:8000::/36 Signature Algorithm: sha256WithRSAEncryption a5:af:03:17:58:f6:98:35:b6:ca:6f:ae:a5:74:bd:2c:16:93: f2:35:a6:71:35:0c:09:45:47:76:46:f8:94:36:c7:0a:ff:37: 9e:de:5c:9b:4f:39:86:25:35:dc:db:7d:64:1f:7d:ca:df:09: df:fe:b7:13:95:a6:1f:ac:b9:5f:c6:ec:55:19:f5:f4:c3:d9: 65:f5:c3:91:ec:43:a2:aa:ff:67:1f:c1:b3:72:91:d1:e6:7e: 72:39:c4:4c:12:51:41:4c:e8:6b:2b:a9:d9:92:f4:22:e4:f1: 91:b8:dc:31:21:72:2b:75:df:26:c6:9a:b5:d1:30:af:08:1b: 28:bf:7a:dc:cc:ba:d4:1b:94:46:11:93:4c:10:49:78:df:b0: ae:e1:64:df:ed:08:ae:30:c1:c0:58:73:1a:f1:51:6f:c8:19: f9:0c:53:e0:28:df:b3:39:68:ae:53:44:fd:5c:50:27:47:8d: 71:aa:97:05:80:c1:b4:29:80:dd:80:ec:6c:9d:53:d5:ca:dc: 9a:31:10:5d:ea:b7:22:00:cc:fa:1f:86:5b:e1:0c:54:74:1f: a4:2d:67:3a:6f:0f:c8:b0:48:b5:23:69:05:2f:c3:f8:17:06: 9f:ef:dd:06:c2:3d:7c:5f:e9:0b:8a:73:b6:08:94:49:74:42: 60:1b:7c:a8 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUG0YFKJmJuhMtmCxe+1QDfMdqE/wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNTAwMDA1MFoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAYmU0ZDAwOGQwNTEzYzc0NWYxZDA4 MTg0OTdlNjA3ODNhMGIxYmU5ZjdiYTNmOTkzMTU5NWYyOTEwMTY5ZmM4OTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNhJoYbG45vEVbSp2lgB6R+TtV/a 73O+6v4kPUtmPDiEugL2S7i1Abu/cWNu05Zp/MejB6X6jqq3OQBcrpIhM29knb8y DEvTpChQp6LOhmexSLPlqtb9Uu5Xy49TGQOAefRX6FEAmv+Qs0ftSacSYd34OdZ7 2o9x84SRUsmlMGd/vYkAef2EvqH2E91BMs1mWkf9j6DLL2Cxcz5rF+nghkbllc+1 ilrbNSpmoSf+Lu1AqCP5Iug3MWHCEfLYcQLGmbK2nYvUNIqk3ijYs83I9LM4t3ZO sexFWkGJA51vMgirxk6OF6SCoyEySpYo/Z43g9OLbxI3NNdYDUzTgaueuQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFuHCOwyWicA3drXjQNT1fxWS3lbMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M2MTI3Mjk5LTUxNGItNDQ5MS1hMDgyLWU3Nzc4YTEzNTY3Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaIoAwDQYJKoZIhvcNAQELBQADggEBAKWvAxdY9pg1tspvrqV0 vSwWk/I1pnE1DAlFR3ZG+JQ2xwr/N57eXJtPOYYlNdzbfWQffcrfCd/+txOVph+s uV/G7FUZ9fTD2WX1w5HsQ6Kq/2cfwbNykdHmfnI5xEwSUUFM6GsrqdmS9CLk8ZG4 3DEhcit13ybGmrXRMK8IGyi/etzMutQblEYRk0wQSXjfsK7hZN/tCK4wwcBYcxrx UW/IGfkMU+Ao37M5aK5TRP1cUCdHjXGqlwWAwbQpgN2A7GydU9XK3JoxEF3qtyIA zPofhlvhDFR0H6QtZzpvD8iwSLUjaQUvw/gXBp/v3QbCPXxf6QuKc7YIlEl0QmAb fKg= -----END CERTIFICATE-----Generated at Fri May 22 14:19:06 2026 by rpki-client