$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/11e5f675-e1ee-4c13-9838-84428fcc5fd2.roa File: 11e5f675-e1ee-4c13-9838-84428fcc5fd2.roa (raw, json) Hash identifier: K/SnE6ZsCMKH8ovZjeg3vA/rLljd88teoj4aZbeV8QQ= Subject key identifier: D1:A4:C2:D4:01:9D:BD:F6:95:44:38:1A:C0:0B:C8:E3:63:EE:2E:B9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 46B490FD99BD5A0A1469F3ACCA55E25163DF7FAD Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/11e5f675-e1ee-4c13-9838-84428fcc5fd2.roa Signing time: Tue 12 May 2026 00:20:32 +0000 ROA not before: Tue 12 May 2026 00:20:32 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daec:2800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:b4:90:fd:99:bd:5a:0a:14:69:f3:ac:ca:55:e2:51:63:df:7f:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 12 00:20:32 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=23a18e4b3334e8d3a962cdcb47308579085c7a1d7ff1cd9487377c0ef506db21, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2e:5d:8f:35:30:b7:9a:80:41:33:21:83:d5: ca:95:00:bf:e4:45:ff:56:d8:29:40:14:cb:55:5a: 6d:20:7f:0c:ac:92:d2:64:3c:6a:41:91:96:1e:0e: 47:4c:cd:13:3f:d5:96:c1:45:64:99:4e:14:3c:fd: 7c:b3:fb:ea:da:a8:e9:eb:93:ef:f1:aa:a8:86:c9: 22:20:bf:52:90:0d:ab:4a:31:f8:cf:7e:8f:bc:1c: b2:e2:65:5b:0f:04:98:b4:94:3d:0a:c4:05:73:6a: cd:80:1c:c8:09:5d:c5:f4:58:2a:e1:8b:7b:a5:18: 5a:37:5c:73:a6:80:c0:52:8d:b5:75:7b:4a:17:a9: 03:56:43:d5:f9:ea:52:ab:d8:69:2f:7d:e2:22:66: e8:b3:f5:35:93:27:de:da:16:da:be:1e:c4:aa:90: dd:40:09:81:8c:a9:82:63:08:d6:a7:c1:9e:3e:4b: 8d:26:3c:04:33:57:12:80:6e:d2:8a:9c:f9:16:46: e2:32:c7:fb:dc:56:0a:7f:90:7f:21:3b:44:5f:8b: d1:63:8e:11:91:57:0f:4e:b5:8a:d8:9f:72:14:58: 62:ab:ac:b2:e5:85:db:2e:71:82:5d:05:0b:83:92: e8:4e:c2:c5:e0:89:07:d2:d2:d8:39:c1:7e:3d:71: 29:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A4:C2:D4:01:9D:BD:F6:95:44:38:1A:C0:0B:C8:E3:63:EE:2E:B9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/11e5f675-e1ee-4c13-9838-84428fcc5fd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daec:2800::/48 Signature Algorithm: sha256WithRSAEncryption 58:5a:9b:81:ff:84:d5:5a:39:91:a0:24:3d:fa:05:cc:a0:35: 4a:7d:b9:de:43:80:ca:58:14:46:da:c5:27:d1:e9:e1:0b:cf: 49:8d:ed:f1:77:c6:a8:2a:c7:e0:ba:2e:af:1e:86:8f:f1:d3: 5a:51:83:12:95:df:0d:c6:7a:fe:ed:f5:e5:1c:8d:b7:b7:83: 1e:2f:cc:f8:08:5f:28:59:98:28:8a:81:9b:97:ed:4f:67:85: ed:7d:81:99:ed:3f:e2:93:58:23:9e:7f:4b:49:6a:32:f6:36: e5:25:dc:e6:ad:b8:00:18:d5:2a:25:24:31:e6:f4:c1:ea:61: 3f:6f:1f:d9:70:5e:20:ee:ad:15:8e:eb:21:f0:67:40:d2:f9: a0:7b:ef:01:eb:e8:75:e3:bf:19:7d:b6:da:e1:1e:1c:75:b1: 79:c2:2c:a6:af:2b:b3:4e:ed:83:d6:25:01:a1:82:b9:62:3b: 96:99:98:e1:8f:c8:29:83:19:82:f1:7b:20:cc:c6:3a:40:1d: e2:5b:bb:85:c6:33:2a:c8:bc:a6:01:f8:02:72:61:86:95:cc: fd:27:4b:a9:3a:16:56:fd:3b:83:88:e7:fa:00:c5:96:ac:15: 6f:cb:c4:05:44:a1:fe:1d:6a:39:73:a5:43:de:d9:81:d8:53: b3:c0:88:6c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURrSQ/Zm9WgoUafOsylXiUWPff60wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMjAwMjAzMloX DTI2MDgxMDIzNTk1OVowejFJMEcGA1UEBRNAMjNhMThlNGIzMzM0ZThkM2E5NjJj ZGNiNDczMDg1NzkwODVjN2ExZDdmZjFjZDk0ODczNzdjMGVmNTA2ZGIyMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAny5djzUwt5qAQTMhg9XKlQC/5EX/ VtgpQBTLVVptIH8MrJLSZDxqQZGWHg5HTM0TP9WWwUVkmU4UPP18s/vq2qjp65Pv 8aqohskiIL9SkA2rSjH4z36PvByy4mVbDwSYtJQ9CsQFc2rNgBzICV3F9Fgq4Yt7 pRhaN1xzpoDAUo21dXtKF6kDVkPV+epSq9hpL33iImbos/U1kyfe2hbavh7EqpDd QAmBjKmCYwjWp8GePkuNJjwEM1cSgG7Sipz5FkbiMsf73FYKf5B/ITtEX4vRY44R kVcPTrWK2J9yFFhiq6yy5YXbLnGCXQULg5LoTsLF4IkH0tLYOcF+PXEpZwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNGkwtQBnb32lUQ4GsALyONj7i65MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzExZTVmNjc1LWUxZWUtNGMxMy05ODM4LTg0NDI4ZmNjNWZkMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba7CgAMA0GCSqGSIb3DQEBCwUAA4IBAQBYWpuB/4TVWjmRoCQ9 +gXMoDVKfbneQ4DKWBRG2sUn0enhC89Jje3xd8aoKsfgui6vHoaP8dNaUYMSld8N xnr+7fXlHI23t4MeL8z4CF8oWZgoioGbl+1PZ4XtfYGZ7T/ik1gjnn9LSWoy9jbl JdzmrbgAGNUqJSQx5vTB6mE/bx/ZcF4g7q0Vjush8GdA0vmge+8B6+h1478Zfbba 4R4cdbF5wiymryuzTu2D1iUBoYK5YjuWmZjhj8gpgxmC8XsgzMY6QB3iW7uFxjMq yLymAfgCcmGGlcz9J0upOhZW/TuDiOf6AMWWrBVvy8QFRKH+HWo5c6VD3tmB2FOz wIhs -----END CERTIFICATE-----Generated at Tue May 12 23:26:54 2026 by rpki-client