$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/093bf138-d5d2-4fc5-9bb3-dc334c5fd7fb.roa File: 093bf138-d5d2-4fc5-9bb3-dc334c5fd7fb.roa (raw, json) Hash identifier: eVaVEMsH7vUpC+tCmVAQGUY0mZ1Y8vT4NZ8BzBH0GZQ= Subject key identifier: EE:1D:AC:D0:58:B2:06:9D:9E:07:97:E4:DD:E6:2E:5E:2A:83:80:CE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 183AF898167FEF85233671D32BA0ECF5DCA74D4D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/093bf138-d5d2-4fc5-9bb3-dc334c5fd7fb.roa Signing time: Fri 08 May 2026 00:01:10 +0000 ROA not before: Fri 08 May 2026 00:01:10 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:3a:f8:98:16:7f:ef:85:23:36:71:d3:2b:a0:ec:f5:dc:a7:4d:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 8 00:01:10 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=bdfb554fbe326bef94bc82cd4327cfdfdde01aa7fa41d619dbc1b01e8d59c264, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f4:4c:14:7f:45:ce:3a:1e:93:82:c5:66:6f: b5:44:27:64:b5:2b:56:26:e1:d4:7e:e3:6b:b5:19: 61:8c:b4:ba:32:7f:df:49:e7:c7:99:17:c4:b2:51: ee:29:28:26:6e:d4:02:44:31:82:a1:d3:4c:fc:08: 01:26:1c:26:f4:50:0a:6d:ff:fe:e2:06:b0:6d:5a: 37:be:1b:2c:c1:4d:0f:6f:b4:26:76:7c:f8:0a:bb: 75:90:cf:8e:fb:5f:f6:dc:3b:9c:a9:55:08:e2:50: e1:cb:c5:e1:09:38:bc:54:08:b2:0c:73:a1:07:8d: c1:74:0b:c0:c3:32:ce:ca:2f:a1:6b:f2:a7:02:41: ba:50:bf:2b:30:74:e3:94:7b:46:a3:c7:60:19:47: 4f:35:e3:3c:c6:bc:b3:52:ef:b0:83:3f:05:73:fa: 40:9b:d3:38:f0:24:c6:2f:fb:cd:62:8d:72:ca:cb: 55:24:26:95:d1:bd:f4:c6:22:c3:32:89:ac:0b:1f: c6:7c:4c:7c:f1:f9:13:26:81:08:80:b1:31:d8:0a: 30:b9:7d:83:e6:0b:97:15:14:89:70:08:ad:fa:e3: 69:f4:5e:6d:26:61:1a:66:c9:74:d2:38:e1:38:30: 63:f2:64:b1:27:73:b2:0a:f3:39:dd:63:a1:6d:26: 7a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:1D:AC:D0:58:B2:06:9D:9E:07:97:E4:DD:E6:2E:5E:2A:83:80:CE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/093bf138-d5d2-4fc5-9bb3-dc334c5fd7fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:4000::/40 Signature Algorithm: sha256WithRSAEncryption b0:64:b3:03:c5:94:90:1b:be:be:91:96:fa:4f:c6:42:75:07: 31:78:d5:6a:c9:e1:91:13:cc:54:84:21:64:2b:b4:bf:ad:a1: c1:07:b0:70:54:50:2d:d4:56:80:03:38:6c:44:61:cc:b9:54: 80:27:ee:33:a3:18:5a:b4:c0:16:12:81:9f:0a:e9:d7:05:28: 2a:1a:66:74:80:00:1b:f5:d6:0c:bc:65:ea:06:72:35:bb:94: 72:c7:52:17:be:a3:be:83:d3:29:9a:70:6c:58:81:a4:85:6c: 4d:04:b6:b6:b1:d1:53:29:87:60:27:68:35:93:17:e0:c1:d1: 46:0a:73:bb:8a:d9:47:1b:a9:c9:ff:56:e2:4d:8a:21:38:b1: 24:52:b4:1e:a7:fd:f8:ba:ff:c4:5c:db:4f:13:91:e0:29:7e: 51:bc:03:46:b1:95:a8:53:bb:04:03:29:df:0a:95:a0:ec:46: dc:e3:84:84:70:e2:b9:97:9e:7b:13:62:57:6a:85:d5:32:b6: c7:e5:07:15:1f:d7:fe:1a:cd:29:60:8d:49:8e:3d:00:f5:68: 16:71:e9:5e:0b:bc:c5:5d:3c:80:1f:76:e6:12:a8:d1:07:d2: f1:79:d4:aa:64:66:b7:a7:79:c0:51:4d:31:27:ba:09:ab:ff: 3d:92:30:e6 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUGDr4mBZ/74UjNnHTK6Ds9dynTU0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwODAwMDExMFoX DTI2MDgwNjIzNTk1OVowejFJMEcGA1UEBRNAYmRmYjU1NGZiZTMyNmJlZjk0YmM4 MmNkNDMyN2NmZGZkZGUwMWFhN2ZhNDFkNjE5ZGJjMWIwMWU4ZDU5YzI2NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvRMFH9Fzjoek4LFZm+1RCdktStW JuHUfuNrtRlhjLS6Mn/fSefHmRfEslHuKSgmbtQCRDGCodNM/AgBJhwm9FAKbf/+ 4gawbVo3vhsswU0Pb7Qmdnz4Crt1kM+O+1/23DucqVUI4lDhy8XhCTi8VAiyDHOh B43BdAvAwzLOyi+ha/KnAkG6UL8rMHTjlHtGo8dgGUdPNeM8xryzUu+wgz8Fc/pA m9M48CTGL/vNYo1yystVJCaV0b30xiLDMomsCx/GfEx88fkTJoEIgLEx2AowuX2D 5guXFRSJcAit+uNp9F5tJmEaZsl00jjhODBj8mSxJ3OyCvM53WOhbSZ6OwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFO4drNBYsgadngeX5N3mLl4qg4DOMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA5M2JmMTM4LWQ1ZDItNGZjNS05YmIzLWRjMzM0YzVmZDdmYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9kAwDQYJKoZIhvcNAQELBQADggEBALBkswPFlJAbvr6RlvpP xkJ1BzF41WrJ4ZETzFSEIWQrtL+tocEHsHBUUC3UVoADOGxEYcy5VIAn7jOjGFq0 wBYSgZ8K6dcFKCoaZnSAABv11gy8ZeoGcjW7lHLHUhe+o76D0ymacGxYgaSFbE0E trax0VMph2AnaDWTF+DB0UYKc7uK2Ucbqcn/VuJNiiE4sSRStB6n/fi6/8Rc208T keApflG8A0axlahTuwQDKd8KlaDsRtzjhIRw4rmXnnsTYldqhdUytsflBxUf1/4a zSlgjUmOPQD1aBZx6V4LvMVdPIAfduYSqNEH0vF51KpkZrenecBRTTEnugmr/z2S MOY= -----END CERTIFICATE-----Generated at Wed May 13 00:37:49 2026 by rpki-client