$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/69b62cdf-1adc-4227-8782-99cecf187e33.roa File: 69b62cdf-1adc-4227-8782-99cecf187e33.roa (raw, json) Hash identifier: RJY/j2JA1HkbBLixl0+7LUoLcjWlwHrVQHZ0bALa4hU= Subject key identifier: 24:69:8C:FB:C5:96:F3:41:8E:23:F6:52:84:F0:C3:2E:8A:AF:FB:E1 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 45B4FC88FC6D5A966F8A560556A4F5E627686011 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/69b62cdf-1adc-4227-8782-99cecf187e33.roa Signing time: Mon 11 May 2026 00:10:03 +0000 ROA not before: Mon 11 May 2026 00:10:03 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:7080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:b4:fc:88:fc:6d:5a:96:6f:8a:56:05:56:a4:f5:e6:27:68:60:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:10:03 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=668a8d8fb40aeeee5730a5015bed9a5eedafae89ba697b3416639c32fa194d6a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:d3:2d:62:b4:8c:f6:b1:aa:1d:fc:e7:6f: b9:f2:01:ee:45:95:33:45:41:6d:c5:83:68:cf:df: df:dd:4d:51:3d:87:9d:97:e7:7e:ce:5d:e6:6d:69: 53:4d:b0:fa:11:4a:33:46:be:a8:5b:5d:4c:d9:db: 07:d3:80:25:d2:03:72:89:c6:0e:12:99:91:d5:d0: 1e:8b:2f:0e:51:7c:d2:7e:e2:1a:d0:d5:84:d0:93: 32:dd:32:1e:23:0f:84:9a:e3:70:e9:ac:88:69:83: 44:39:7a:ef:84:5e:f4:51:df:57:40:ce:7b:5f:ee: 08:bc:2c:66:39:96:1f:eb:bc:22:e9:c2:bc:da:f0: cb:c8:67:5e:5c:34:3a:1a:90:94:7d:69:90:21:ec: bb:4c:be:9a:eb:4c:80:46:b6:10:66:c4:ad:82:74: b1:7c:93:b7:91:06:d9:cd:1c:21:62:35:53:86:af: 43:60:9f:a9:4f:83:29:da:c0:7d:a3:e3:86:aa:65: 99:8a:ce:27:ab:0c:ef:ce:f4:56:60:f2:9c:14:1b: fc:e4:78:51:cf:09:ee:7a:af:34:1f:03:b6:ca:e5: 3b:95:cd:e6:b7:17:c2:47:b1:fe:d8:e8:b2:d4:d0: f3:7b:01:a0:92:0c:eb:50:da:03:db:fa:47:c0:c2: ba:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:69:8C:FB:C5:96:F3:41:8E:23:F6:52:84:F0:C3:2E:8A:AF:FB:E1 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/69b62cdf-1adc-4227-8782-99cecf187e33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:7080::/48 Signature Algorithm: sha256WithRSAEncryption c0:31:2b:af:1a:a8:d2:c3:76:9e:4e:fa:d2:0d:12:91:2f:fb: 84:3a:bb:c6:be:56:af:dc:eb:86:74:e6:ef:c0:eb:22:8b:a8: 5b:ff:e4:51:2c:18:db:dd:8a:cb:ff:0a:df:d2:fe:8e:e7:4b: 43:08:62:94:c0:2d:bd:3a:6d:ad:2d:74:17:22:a8:9f:a3:d6: 80:02:27:f0:de:7b:4b:2f:6e:8f:27:d7:2c:33:f2:44:85:22: d8:07:25:75:55:2a:f0:3b:e5:fd:95:3e:cd:99:31:03:4c:8b: 53:30:b5:f7:84:b2:ae:a4:b8:a7:33:af:08:a3:7b:66:fc:81: 42:79:55:cc:32:a6:ad:64:f9:a9:dc:3a:9c:b8:b0:aa:19:97: 0e:de:e5:10:f2:df:42:b9:a2:bd:fb:8f:05:56:b0:22:fc:4e: 69:6f:6b:60:45:7b:44:88:a9:ae:0e:43:81:f2:86:f9:df:71: 1e:63:e6:08:d4:a7:63:31:70:f8:3a:5e:14:7c:d7:cf:b2:a9: a5:b3:5d:e8:e4:84:f8:e9:fb:f1:f0:7e:a0:95:20:ce:f0:b3: 9e:da:3e:56:5c:b1:c7:85:bc:55:a9:5d:e8:04:a6:38:ea:73: de:b3:37:d7:c4:52:61:20:09:40:12:78:66:7e:60:49:5a:4f: d2:2a:90:77 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURbT8iPxtWpZvilYFVqT15idoYBEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMTAwM1oX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNANjY4YThkOGZiNDBhZWVlZTU3MzBh NTAxNWJlZDlhNWVlZGFmYWU4OWJhNjk3YjM0MTY2MzljMzJmYTE5NGQ2YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBzTLWK0jPaxqh3852+58gHuRZUz RUFtxYNoz9/f3U1RPYedl+d+zl3mbWlTTbD6EUozRr6oW11M2dsH04Al0gNyicYO EpmR1dAeiy8OUXzSfuIa0NWE0JMy3TIeIw+EmuNw6ayIaYNEOXrvhF70Ud9XQM57 X+4IvCxmOZYf67wi6cK82vDLyGdeXDQ6GpCUfWmQIey7TL6a60yARrYQZsStgnSx fJO3kQbZzRwhYjVThq9DYJ+pT4Mp2sB9o+OGqmWZis4nqwzvzvRWYPKcFBv85HhR zwnueq80HwO2yuU7lc3mtxfCR7H+2Oiy1NDzewGgkgzrUNoD2/pHwMK6UQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCRpjPvFlvNBjiP2UoTwwy6Kr/vhMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzY5YjYyY2RmLTFhZGMtNDIyNy04NzgyLTk5Y2VjZjE4N2UzMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8nCAMA0GCSqGSIb3DQEBCwUAA4IBAQDAMSuvGqjSw3aeTvrS DRKRL/uEOrvGvlav3OuGdObvwOsii6hb/+RRLBjb3YrL/wrf0v6O50tDCGKUwC29 Om2tLXQXIqifo9aAAifw3ntLL26PJ9csM/JEhSLYByV1VSrwO+X9lT7NmTEDTItT MLX3hLKupLinM68Io3tm/IFCeVXMMqatZPmp3DqcuLCqGZcO3uUQ8t9CuaK9+48F VrAi/E5pb2tgRXtEiKmuDkOB8ob533EeY+YI1KdjMXD4Ol4UfNfPsqmls13o5IT4 6fvx8H6glSDO8LOe2j5WXLHHhbxVqV3oBKY46nPeszfXxFJhIAlAEnhmfmBJWk/S KpB3 -----END CERTIFICATE-----Generated at Tue May 12 23:43:00 2026 by rpki-client