$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa File: 1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa (raw, json) Hash identifier: uINJOZsN1sBpjYKGcP5PE3RPbpsZsKghWYnBcUfK+zc= Subject key identifier: 1D:88:5B:1A:A9:DA:B2:09:84:A7:B3:77:AB:54:B4:7D:F2:C8:67:F6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 01F6E79CAE46AD2DC424F76258D1EB2304F5C6A9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa Signing time: Fri 08 May 2026 00:01:08 +0000 ROA not before: Fri 08 May 2026 00:01:08 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f6:e7:9c:ae:46:ad:2d:c4:24:f7:62:58:d1:eb:23:04:f5:c6:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 8 00:01:08 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=1597e883b57dc3b7c5bc47f675d52f3004de911ab6f1f1077104429dd6a33f26, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:1a:36:cf:a5:46:ad:08:8a:f8:00:41:13:6f: 5f:ef:1b:bb:ab:f3:4d:67:bd:cf:76:8f:8a:29:62: ae:25:96:51:95:99:25:31:96:89:a7:4a:40:66:64: d7:27:fa:09:80:c6:32:aa:07:a6:41:b3:3c:3f:51: 05:3a:63:77:99:d0:0d:09:e3:5c:95:32:93:d7:0e: 36:75:18:c4:e0:ef:37:ab:bb:00:0a:99:08:b2:e0: 30:3d:63:1e:0e:2e:10:88:ec:c9:94:9b:bb:8b:17: 20:ba:27:ce:54:b9:98:cf:2f:28:82:7c:db:2a:4e: 89:3a:17:12:6d:dd:b0:5d:fd:d8:cb:67:ea:21:ee: ca:be:94:46:63:b7:ef:95:4c:63:87:6f:39:04:db: d2:1b:e8:51:a6:b7:84:25:7c:c9:7d:de:f7:89:33: 2a:d8:0d:4b:89:2d:ca:ed:67:28:b4:c1:e5:8c:ce: f1:70:ec:68:f6:c8:82:47:f8:3e:c9:84:35:24:70: 80:2c:0d:6f:bc:a6:16:d9:ca:7f:69:4b:ff:ec:37: 59:e5:ee:aa:25:8f:23:93:5a:71:42:59:19:12:fe: e5:dd:1d:8f:7f:ca:21:fb:21:65:af:70:4b:93:26: 65:75:d3:e0:f6:6e:2c:08:26:64:7b:9d:39:cd:ec: 33:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:88:5B:1A:A9:DA:B2:09:84:A7:B3:77:AB:54:B4:7D:F2:C8:67:F6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e2eabb6-7cb9-478c-b61e-54b97e17d490.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:e000::/40 Signature Algorithm: sha256WithRSAEncryption 8d:32:64:e1:a0:60:3f:e3:92:e2:a1:9c:d1:08:38:2b:05:1d: 56:2d:b7:a1:5d:29:65:3a:27:b3:bb:b4:df:10:3a:f6:a1:62: 74:7a:39:32:d4:56:3c:85:51:d2:72:76:80:0b:22:00:07:36: 21:bc:14:06:4b:bf:e6:73:e5:ef:c0:a8:7b:d6:0d:c6:5c:61: f4:da:52:0b:43:d3:c1:21:7d:97:ea:de:5b:82:69:35:d6:a3: 8d:6e:4d:31:09:48:fe:af:2b:af:7b:22:44:b8:10:7b:b8:cb: 83:50:a8:a0:01:c2:b0:0b:e7:1c:cf:74:8f:71:85:9a:fa:dc: 96:dc:71:af:85:71:96:4f:0c:80:97:2b:6a:b1:f1:ef:c0:1b: ab:b7:48:f8:f3:ea:88:07:b3:db:fd:88:2b:c9:65:e4:9e:08: 30:74:b3:33:77:aa:94:fe:96:19:23:68:85:29:01:ef:87:06: b1:b9:09:1b:27:fb:38:bd:73:6a:2b:b4:0a:9b:8f:58:1e:6a: 79:5a:83:1e:a4:bd:b2:56:02:d2:35:5f:db:af:27:a1:9e:4c: c5:8f:39:de:e3:ab:8b:27:35:22:10:75:d8:fa:7c:92:80:4c: 07:77:9c:a2:a6:f3:a0:99:ee:ac:c8:6e:cd:bb:0e:56:5f:ba: 18:f6:c6:24 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUAfbnnK5GrS3EJPdiWNHrIwT1xqkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwODAwMDEwOFoX DTI2MDgwNjIzNTk1OVowejFJMEcGA1UEBRNAMTU5N2U4ODNiNTdkYzNiN2M1YmM0 N2Y2NzVkNTJmMzAwNGRlOTExYWI2ZjFmMTA3NzEwNDQyOWRkNmEzM2YyNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+Bo2z6VGrQiK+ABBE29f7xu7q/NN Z73Pdo+KKWKuJZZRlZklMZaJp0pAZmTXJ/oJgMYyqgemQbM8P1EFOmN3mdANCeNc lTKT1w42dRjE4O83q7sACpkIsuAwPWMeDi4QiOzJlJu7ixcguifOVLmYzy8ognzb Kk6JOhcSbd2wXf3Yy2fqIe7KvpRGY7fvlUxjh285BNvSG+hRpreEJXzJfd73iTMq 2A1LiS3K7WcotMHljM7xcOxo9siCR/g+yYQ1JHCALA1vvKYW2cp/aUv/7DdZ5e6q JY8jk1pxQlkZEv7l3R2Pf8oh+yFlr3BLkyZlddPg9m4sCCZke505zewzJQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFB2IWxqp2rIJhKezd6tUtH3yyGf2MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFlMmVhYmI2LTdjYjktNDc4Yy1iNjFlLTU0Yjk3ZTE3ZDQ5MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9uAwDQYJKoZIhvcNAQELBQADggEBAI0yZOGgYD/jkuKhnNEI OCsFHVYtt6FdKWU6J7O7tN8QOvahYnR6OTLUVjyFUdJydoALIgAHNiG8FAZLv+Zz 5e/AqHvWDcZcYfTaUgtD08EhfZfq3luCaTXWo41uTTEJSP6vK697IkS4EHu4y4NQ qKABwrAL5xzPdI9xhZr63Jbcca+FcZZPDICXK2qx8e/AG6u3SPjz6ogHs9v9iCvJ ZeSeCDB0szN3qpT+lhkjaIUpAe+HBrG5CRsn+zi9c2ortAqbj1geanlagx6kvbJW AtI1X9uvJ6GeTMWPOd7jq4snNSIQddj6fJKATAd3nKKm86CZ7qzIbs27DlZfuhj2 xiQ= -----END CERTIFICATE-----Generated at Tue May 12 23:31:11 2026 by rpki-client