$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2f5f7c96-cbf6-4cd7-a2da-6c86ff029673.roa File: 2f5f7c96-cbf6-4cd7-a2da-6c86ff029673.roa (raw, json) Hash identifier: tnmInO4lnaE+ME3/HJp95WAMtzC46ZpVMPZCRK5dLB4= Subject key identifier: FD:2C:84:BA:59:A3:11:6C:1A:85:B9:3F:6D:26:04:7B:EC:FC:C0:F6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4404AF8E678D6C73EC8069515CC1FB77A16EFED9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2f5f7c96-cbf6-4cd7-a2da-6c86ff029673.roa Signing time: Mon 11 May 2026 00:10:43 +0000 ROA not before: Mon 11 May 2026 00:10:43 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:c840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:04:af:8e:67:8d:6c:73:ec:80:69:51:5c:c1:fb:77:a1:6e:fe:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:10:43 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=95105b9a203e220ea5b2631536694efbae1dd092351e0b92ba40006559433ad6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:72:2a:ec:2e:53:55:df:ac:f8:8e:82:52:91: 63:4f:5b:0e:38:c5:75:1e:3f:d3:cc:e6:81:92:5f: 7e:e6:d6:70:be:b2:de:bf:11:7e:69:e3:2f:15:23: be:52:d0:78:81:76:53:15:a0:5e:77:5e:aa:20:00: 0e:89:3b:c0:b2:b6:b5:ec:82:85:46:96:a8:bb:0b: fe:2d:43:19:5a:7e:fd:21:5d:25:5f:da:0b:e2:b7: 12:18:6a:54:42:cc:ed:08:df:b1:c7:c0:28:8a:76: 63:c9:f3:46:f3:92:71:8c:27:4e:1b:56:a3:fe:06: 23:96:69:4c:fd:56:43:38:63:e1:32:b3:b2:3f:5f: 82:75:b3:e1:03:96:e7:c5:43:97:71:cf:98:75:ba: 35:33:c2:7c:98:e4:1e:fa:c8:ca:b7:30:6b:37:0c: a4:8c:0e:99:ac:a1:bf:60:b4:6d:1d:ef:a6:a4:ac: 6c:9f:65:eb:2f:ee:eb:90:34:f1:38:27:cd:6b:a3: 1c:90:65:e0:95:c0:ff:6d:c1:8e:ac:00:cf:ab:67: f2:9b:9c:54:22:b4:28:57:23:25:d6:03:91:bd:3f: db:1b:99:31:8d:c2:d3:cd:93:cd:2c:71:8a:ae:bb: 75:05:0c:3f:4b:75:5b:2c:ad:62:46:c5:f0:bf:8c: 7a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2C:84:BA:59:A3:11:6C:1A:85:B9:3F:6D:26:04:7B:EC:FC:C0:F6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2f5f7c96-cbf6-4cd7-a2da-6c86ff029673.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:c840::/48 Signature Algorithm: sha256WithRSAEncryption ca:bc:fa:0e:dc:10:c0:6d:50:93:a1:ee:9d:96:22:33:36:55: d4:83:73:37:52:03:6f:04:32:c7:b9:31:e1:ff:a2:59:9e:ac: cc:47:10:a7:0e:b9:db:b1:5d:32:f9:a6:93:e6:67:ba:e2:18: cc:30:63:51:ab:9a:43:0e:3f:c6:ca:66:5a:2c:e7:cc:10:b2: f0:29:f6:40:77:28:f0:0e:09:51:6c:02:08:2b:7b:5f:6b:42: b3:b7:5a:9f:f5:fc:b0:dc:3a:07:1f:bc:23:8d:14:a2:b0:79: 48:68:88:39:08:e3:e8:8b:2d:bc:1d:8d:02:4d:eb:79:59:9d: c8:03:d2:09:c7:7c:5a:ad:d4:0d:2f:e5:5a:2a:d6:4f:76:10: e3:91:38:a5:e7:f5:14:00:ba:66:e2:c7:50:f2:35:04:32:48: ec:30:f2:b1:aa:ee:7b:58:2b:8b:b4:4e:a7:0d:65:c0:1d:98: 20:b0:72:d0:32:b9:19:91:3a:06:31:d9:f5:52:d1:b1:5c:e2: 99:1a:cb:0e:10:32:0e:e1:81:6c:6e:28:d2:64:a5:1f:0c:c7: 54:2c:62:e2:83:c8:c9:3a:6b:6a:6d:2f:46:f5:ae:2d:18:58: a9:b1:10:79:46:01:50:49:4a:0f:3b:17:ec:0f:9c:df:8a:28: 16:6b:ae:28 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURASvjmeNbHPsgGlRXMH7d6Fu/tkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMTA0M1oX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAOTUxMDViOWEyMDNlMjIwZWE1YjI2 MzE1MzY2OTRlZmJhZTFkZDA5MjM1MWUwYjkyYmE0MDAwNjU1OTQzM2FkNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXIq7C5TVd+s+I6CUpFjT1sOOMV1 Hj/TzOaBkl9+5tZwvrLevxF+aeMvFSO+UtB4gXZTFaBed16qIAAOiTvAsra17IKF Rpaouwv+LUMZWn79IV0lX9oL4rcSGGpUQsztCN+xx8AoinZjyfNG85JxjCdOG1aj /gYjlmlM/VZDOGPhMrOyP1+CdbPhA5bnxUOXcc+Ydbo1M8J8mOQe+sjKtzBrNwyk jA6ZrKG/YLRtHe+mpKxsn2XrL+7rkDTxOCfNa6MckGXglcD/bcGOrADPq2fym5xU IrQoVyMl1gORvT/bG5kxjcLTzZPNLHGKrrt1BQw/S3VbLK1iRsXwv4x6YQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFP0shLpZoxFsGoW5P20mBHvs/MD2MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJmNWY3Yzk2LWNiZjYtNGNkNy1hMmRhLTZjODZmZjAyOTY3My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/8hAMA0GCSqGSIb3DQEBCwUAA4IBAQDKvPoO3BDAbVCToe6d liIzNlXUg3M3UgNvBDLHuTHh/6JZnqzMRxCnDrnbsV0y+aaT5me64hjMMGNRq5pD Dj/GymZaLOfMELLwKfZAdyjwDglRbAIIK3tfa0Kzt1qf9fyw3DoHH7wjjRSisHlI aIg5COPoiy28HY0CTet5WZ3IA9IJx3xardQNL+VaKtZPdhDjkTil5/UUALpm4sdQ 8jUEMkjsMPKxqu57WCuLtE6nDWXAHZggsHLQMrkZkToGMdn1UtGxXOKZGssOEDIO 4YFsbijSZKUfDMdULGLig8jJOmtqbS9G9a4tGFipsRB5RgFQSUoPOxfsD5zfiigW a64o -----END CERTIFICATE-----Generated at Wed May 13 01:33:01 2026 by rpki-client