$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/349778ec-dd5c-4e52-8440-4155573588c4.roa File: 349778ec-dd5c-4e52-8440-4155573588c4.roa (raw, json) Hash identifier: 5ko5XUX6aJB3K566dX3Ql5T0SQdhy1CEpjV6v9NeB8M= Subject key identifier: B3:A2:20:E5:66:42:3D:C6:9A:BA:3E:56:3F:BD:3F:76:C7:95:F4:E4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5551F72E6CF8DEDDE8403C23F7B6503246424329 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/349778ec-dd5c-4e52-8440-4155573588c4.roa Signing time: Mon 11 May 2026 00:10:24 +0000 ROA not before: Mon 11 May 2026 00:10:24 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:e0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:51:f7:2e:6c:f8:de:dd:e8:40:3c:23:f7:b6:50:32:46:42:43:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:10:24 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=7a4245895db9f4f38d8fd79bad2237cab600cf22b922b0c201baa620d4332668, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:39:9c:d4:ea:5a:3f:14:de:ed:60:c8:3f:0e: ef:e6:fe:44:e5:e2:f0:d0:2b:83:86:14:97:33:80: 95:30:df:ce:45:2a:58:fb:ad:e1:07:db:a9:b0:76: e6:4f:1e:8e:a6:3c:6b:70:00:6d:70:26:29:8a:20: 95:4c:a9:6e:b9:6e:cd:d2:c9:5f:0c:e3:33:2d:44: c5:b0:cb:68:6a:47:2b:91:61:d6:98:b1:85:1b:f6: 21:4f:9b:3d:b5:e8:73:b0:08:ab:3e:6c:2f:6c:c6: d9:86:2c:0d:dc:43:3d:c7:43:22:fb:d8:e2:ee:0e: 52:f4:8c:5f:6c:eb:36:17:54:c3:bc:ea:6d:7e:4b: a3:5d:2f:6e:b0:b3:6c:13:45:e9:b5:ab:ee:6e:c4: 00:38:18:ec:b5:e5:52:58:5c:1b:16:b8:42:28:99: a8:95:db:fe:45:12:11:a2:83:f4:d1:46:2e:32:3f: 4d:de:15:8f:e5:ab:cf:3d:63:b4:71:28:93:98:06: d8:dc:81:2b:5e:d5:1c:11:19:b7:69:29:64:75:ab: 2f:e7:9d:08:f4:47:43:9e:af:cb:ba:39:4a:49:76: 14:8d:f3:90:8d:9c:6b:e6:39:6c:c6:34:06:43:23: e3:f7:6f:c7:14:f3:56:e4:48:48:2e:6e:df:e3:48: 7a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A2:20:E5:66:42:3D:C6:9A:BA:3E:56:3F:BD:3F:76:C7:95:F4:E4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/349778ec-dd5c-4e52-8440-4155573588c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:e0c0::/48 Signature Algorithm: sha256WithRSAEncryption 5e:08:a9:3f:26:94:f0:c1:4f:6f:35:cc:d4:60:18:c2:37:1d: cd:32:1d:78:75:31:32:2b:8b:b7:0b:cd:6f:47:4b:39:a8:cd: c7:26:61:b3:d9:38:98:cb:b1:f5:a1:bc:22:ce:df:95:bc:f3: 98:61:f2:f1:fe:20:42:56:27:08:57:ef:66:68:c7:22:78:cf: a1:19:d6:58:a4:61:d2:41:7f:fe:3b:db:a6:d4:5a:48:68:7f: cb:e6:e0:07:19:e3:90:08:39:ae:97:12:c1:6c:da:89:e7:c0: 24:48:c1:42:69:8e:05:a3:ff:c6:6b:e3:0c:1c:d3:a2:b7:9e: 00:94:d3:16:be:ed:12:0d:3f:52:72:60:4e:13:e5:6a:71:d4: cb:2c:8b:e7:a0:bb:2e:76:51:0a:5b:9f:82:d6:79:2a:b6:24: 3c:9a:69:7c:bf:78:8f:d2:2b:e9:4f:66:5b:05:8a:42:b9:67: 3a:b9:60:65:25:ff:e8:d2:f0:3d:59:12:27:14:4b:51:b6:0c: 94:52:25:28:a7:8f:d0:6a:c1:64:61:db:19:c5:b5:3b:db:17: ae:4f:3c:79:f6:e5:d0:70:c8:39:26:41:4c:36:17:a8:0f:13: 6c:dc:42:5f:e3:c6:24:bc:7e:d0:b9:49:d1:f3:0a:dd:80:6a: a5:20:c0:1b -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUVVH3Lmz43t3oQDwj97ZQMkZCQykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMTAyNFoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAN2E0MjQ1ODk1ZGI5ZjRmMzhkOGZk NzliYWQyMjM3Y2FiNjAwY2YyMmI5MjJiMGMyMDFiYWE2MjBkNDMzMjY2ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Dmc1OpaPxTe7WDIPw7v5v5E5eLw 0CuDhhSXM4CVMN/ORSpY+63hB9upsHbmTx6OpjxrcABtcCYpiiCVTKluuW7N0slf DOMzLUTFsMtoakcrkWHWmLGFG/YhT5s9tehzsAirPmwvbMbZhiwN3EM9x0Mi+9ji 7g5S9IxfbOs2F1TDvOptfkujXS9usLNsE0XptavubsQAOBjsteVSWFwbFrhCKJmo ldv+RRIRooP00UYuMj9N3hWP5avPPWO0cSiTmAbY3IErXtUcERm3aSlkdasv550I 9EdDnq/LujlKSXYUjfOQjZxr5jlsxjQGQyPj92/HFPNW5EhILm7f40h6QQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLOiIOVmQj3Gmro+Vj+9P3bHlfTkMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM0OTc3OGVjLWRkNWMtNGU1Mi04NDQwLTQxNTU1NzM1ODhjNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/+DAMA0GCSqGSIb3DQEBCwUAA4IBAQBeCKk/JpTwwU9vNczU YBjCNx3NMh14dTEyK4u3C81vR0s5qM3HJmGz2TiYy7H1obwizt+VvPOYYfLx/iBC VicIV+9maMcieM+hGdZYpGHSQX/+O9um1FpIaH/L5uAHGeOQCDmulxLBbNqJ58Ak SMFCaY4Fo//Ga+MMHNOit54AlNMWvu0SDT9ScmBOE+VqcdTLLIvnoLsudlEKW5+C 1nkqtiQ8mml8v3iP0ivpT2ZbBYpCuWc6uWBlJf/o0vA9WRInFEtRtgyUUiUop4/Q asFkYdsZxbU72xeuTzx59uXQcMg5JkFMNheoDxNs3EJf48YkvH7QuUnR8wrdgGql IMAb -----END CERTIFICATE-----Generated at Tue May 12 23:43:03 2026 by rpki-client