$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/635b223e-f641-496e-be0c-3d916b763149.roa File: 635b223e-f641-496e-be0c-3d916b763149.roa (raw, json) Hash identifier: AbUs47W3x1+HeGjvcmXeMkuEygEokcsL8HXqGlGMJFo= Subject key identifier: 6C:CB:4B:72:A7:44:40:4C:02:96:09:92:0E:3E:D0:1D:5C:70:08:7E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 54BE0CC29699A475860046E97512A1422C8DDA6A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/635b223e-f641-496e-be0c-3d916b763149.roa Signing time: Mon 04 May 2026 00:00:06 +0000 ROA not before: Mon 04 May 2026 00:00:06 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da29::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:be:0c:c2:96:99:a4:75:86:00:46:e9:75:12:a1:42:2c:8d:da:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 4 00:00:06 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=b5fbd10af8d6844a3613aedf750e8786c58cee57e70c67b7ea948e2bc46f288c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:21:12:1a:8b:4f:f6:22:28:14:a3:6b:9b:08: 3c:f5:88:35:94:94:dd:0d:b1:43:f5:21:79:88:dc: 20:15:f2:a9:09:88:2e:1e:59:5a:10:7d:1e:4f:ad: 58:b0:02:88:56:2a:4a:45:dc:2a:d0:4a:80:d6:8c: 87:f1:00:cf:08:46:b2:0e:c1:75:86:b5:03:65:bb: b8:be:60:32:86:64:05:bb:20:97:8d:63:ca:f3:ba: a5:31:6c:0e:b8:1b:1a:27:bf:17:58:fc:91:4a:03: 5a:88:0b:ae:46:60:75:db:a5:e7:98:77:c0:39:d3: c7:89:4f:9b:02:5a:92:0d:e2:00:cf:4f:ca:66:d4: 1c:c1:2a:b4:43:1e:09:bb:7b:17:96:8c:5c:3a:bd: 40:cc:20:7c:10:d6:b9:37:4a:d5:c5:f0:7c:3b:8e: e8:bc:09:cf:3b:fc:b7:1e:fd:14:01:9b:42:d7:2d: c6:25:64:74:45:92:dd:e7:57:7f:ff:c8:c6:3c:77: 6d:04:e2:c0:af:b9:94:9e:eb:8d:d7:47:e1:74:aa: b6:c4:13:65:69:ee:c7:a6:4d:f2:1a:90:c0:ce:bb: 6b:6e:85:6e:7e:c7:85:ff:cf:9a:ee:12:cf:98:68: 4e:9e:ec:65:f7:49:2c:39:7e:6b:38:64:96:9b:18: 72:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CB:4B:72:A7:44:40:4C:02:96:09:92:0E:3E:D0:1D:5C:70:08:7E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/635b223e-f641-496e-be0c-3d916b763149.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da29::/36 Signature Algorithm: sha256WithRSAEncryption 31:be:65:47:63:fc:13:40:fb:6e:a3:33:54:58:84:71:b8:f0: 43:8b:3b:16:50:fa:a2:3f:ff:bd:37:ac:e2:50:c1:76:46:50: f5:ab:ef:c3:18:9d:da:e9:63:7b:b3:34:f3:60:4a:5b:92:c0: 77:d4:ca:c8:9e:bb:73:f0:8c:f1:1a:59:35:d3:9a:86:ed:78: 14:f9:a7:66:9f:ec:56:fd:f7:aa:04:0c:0c:c4:78:69:d7:27: c2:a0:02:80:ac:1c:97:a7:10:56:df:eb:d6:51:d1:b3:77:48: ee:ad:7d:9b:e1:ef:2c:dd:29:da:2f:b3:d5:dc:fe:68:d9:4c: fa:84:51:a1:e5:f7:ba:63:63:7e:aa:a2:60:5d:ea:b5:d2:91: 47:99:b4:dd:fb:c8:1a:a4:2d:2c:a6:4e:d0:5e:e4:5f:f3:c7: ac:c9:56:aa:88:c4:44:06:1f:e1:d8:45:5d:95:eb:99:a1:a2: 1a:e2:ee:ab:7b:bb:fc:29:c9:93:9c:cc:8a:3d:f7:a3:fe:d7: 4b:e0:c9:86:b1:62:98:bb:75:c4:61:6e:33:61:41:cd:8e:3e: 26:07:15:e2:b6:77:67:b7:df:90:4b:98:a3:5b:81:e5:cc:da: 59:2d:83:53:f5:53:84:9b:11:6d:eb:3e:06:fa:b0:59:a6:c1: f2:26:a6:58 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUVL4MwpaZpHWGAEbpdRKhQiyN2mowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwNDAwMDAwNloX DTI2MDgwMjIzNTk1OVowejFJMEcGA1UEBRNAYjVmYmQxMGFmOGQ2ODQ0YTM2MTNh ZWRmNzUwZTg3ODZjNThjZWU1N2U3MGM2N2I3ZWE5NDhlMmJjNDZmMjg4YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoiESGotP9iIoFKNrmwg89Yg1lJTd DbFD9SF5iNwgFfKpCYguHllaEH0eT61YsAKIVipKRdwq0EqA1oyH8QDPCEayDsF1 hrUDZbu4vmAyhmQFuyCXjWPK87qlMWwOuBsaJ78XWPyRSgNaiAuuRmB126XnmHfA OdPHiU+bAlqSDeIAz0/KZtQcwSq0Qx4Ju3sXloxcOr1AzCB8ENa5N0rVxfB8O47o vAnPO/y3Hv0UAZtC1y3GJWR0RZLd51d//8jGPHdtBOLAr7mUnuuN10fhdKq2xBNl ae7Hpk3yGpDAzrtrboVufseF/8+a7hLPmGhOnuxl90ksOX5rOGSWmxhybwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGzLS3KnREBMApYJkg4+0B1ccAh+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYzNWIyMjNlLWY2NDEtNDk2ZS1iZTBjLTNkOTE2Yjc2MzE0OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaKQAwDQYJKoZIhvcNAQELBQADggEBADG+ZUdj/BNA+26jM1RY hHG48EOLOxZQ+qI//703rOJQwXZGUPWr78MYndrpY3uzNPNgSluSwHfUysieu3Pw jPEaWTXTmobteBT5p2af7Fb996oEDAzEeGnXJ8KgAoCsHJenEFbf69ZR0bN3SO6t fZvh7yzdKdovs9Xc/mjZTPqEUaHl97pjY36qomBd6rXSkUeZtN37yBqkLSymTtBe 5F/zx6zJVqqIxEQGH+HYRV2V65mhohri7qt7u/wpyZOczIo996P+10vgyYaxYpi7 dcRhbjNhQc2OPiYHFeK2d2e335BLmKNbgeXM2lktg1P1U4SbEW3rPgb6sFmmwfIm plg= -----END CERTIFICATE-----Generated at Wed May 13 00:55:53 2026 by rpki-client