$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b95ed28-78dc-4a87-8241-9602df8787d4.roa File: 6b95ed28-78dc-4a87-8241-9602df8787d4.roa (raw, json) Hash identifier: ZRvslA6kPJAzX4FW2OH/9tfyhFp+/e2skTwq6yq+2Vo= Subject key identifier: D2:54:D3:DB:67:B6:CD:0E:36:31:DC:3C:2C:74:8D:B1:2D:46:D9:C8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3D68B6764CA05EA6F8B431B2212F57BC911DAD1E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b95ed28-78dc-4a87-8241-9602df8787d4.roa Signing time: Tue 12 May 2026 00:01:34 +0000 ROA not before: Tue 12 May 2026 00:01:34 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:c800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:68:b6:76:4c:a0:5e:a6:f8:b4:31:b2:21:2f:57:bc:91:1d:ad:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 12 00:01:34 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=b29692800aeb312c81a287e7cd3c6520ff44f0f00f09d07cdfba47b04b55cc17, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:96:fd:db:42:d0:38:05:b3:a7:d9:ad:4f:fd: 5d:be:99:9b:cc:2d:2d:7e:b5:a4:36:5c:8e:7b:f9: e0:a7:dd:d3:19:08:fe:d6:01:6b:d0:ac:96:64:81: 4a:87:26:ce:84:9f:37:4d:73:63:dd:8c:28:1a:3e: 22:29:72:fb:a8:66:0d:18:d8:4d:43:41:d9:82:20: 47:dc:bf:a3:91:09:3a:52:2d:21:62:70:4a:96:06: f4:3b:53:38:47:bd:e8:9e:b6:fe:da:22:ae:30:e7: 7a:a1:66:2a:b1:81:39:b9:90:8b:dc:02:01:d2:d2: 27:88:ad:fa:76:ae:31:a7:25:4d:d3:2c:9f:a3:b3: 42:f2:e6:d0:4f:47:7c:b2:e7:9e:d8:61:d8:80:41: 1f:c0:b4:6e:63:cc:85:91:d7:50:bf:7d:d2:5f:2a: 0e:c2:c0:cf:6e:a7:28:e1:00:bc:c2:33:fd:01:43: 32:55:37:18:61:24:4b:29:36:68:24:39:48:7a:ed: 6f:63:a6:ae:41:a1:81:dd:e3:fe:05:1a:10:d3:e8: 00:10:06:04:d7:e4:89:4f:55:85:c6:ae:73:89:c7: d8:20:06:8d:83:d6:42:4b:8c:2d:d2:d0:2a:a7:bf: fa:19:0f:e7:82:ba:aa:3e:14:ad:72:b9:56:d4:c2: 17:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:54:D3:DB:67:B6:CD:0E:36:31:DC:3C:2C:74:8D:B1:2D:46:D9:C8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b95ed28-78dc-4a87-8241-9602df8787d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:c800::/40 Signature Algorithm: sha256WithRSAEncryption 19:04:b2:c3:f7:14:c8:a3:52:3c:ce:32:9d:2d:d0:d5:a1:f2: a5:02:72:90:de:78:10:97:06:49:62:9e:8b:74:d8:e1:84:00: 65:62:d2:31:22:44:d3:60:68:e0:ac:2e:16:d8:6d:ac:95:63: 35:d8:ef:6e:64:08:39:df:ac:aa:13:58:2e:b4:6b:81:9e:09: 62:45:2b:e9:10:77:20:6f:51:70:c4:56:bd:b6:ad:43:4b:7b: ef:e2:24:f4:10:7a:e3:1a:3e:42:23:27:67:a8:b8:7e:72:52: 99:36:af:91:ca:50:95:2b:11:5f:32:bf:ba:02:c1:b8:79:d2: 78:3d:56:a4:b2:1d:23:87:bc:dd:6c:ce:55:20:20:c7:61:63: 81:a2:4d:04:00:5b:ea:17:3c:85:8c:ff:87:4d:01:7b:70:a6: fb:53:d2:e5:6b:47:b2:89:67:d7:e3:39:3e:fc:7f:8a:9a:bb: 2f:8b:37:c4:8e:5c:54:14:98:d5:ef:84:aa:64:91:72:69:58: 2e:d9:57:d6:05:4e:40:3e:56:71:e5:12:bf:93:82:2a:1f:0a: 17:63:2c:76:7b:f3:e0:cc:77:59:79:3d:5f:7c:82:22:94:86: 7e:ae:10:ee:18:f1:ea:c4:e4:cd:a7:a7:b6:18:46:7c:8f:d4: 09:b8:39:10 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPWi2dkygXqb4tDGyIS9XvJEdrR4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMjAwMDEzNFoX DTI2MDgxMDIzNTk1OVowejFJMEcGA1UEBRNAYjI5NjkyODAwYWViMzEyYzgxYTI4 N2U3Y2QzYzY1MjBmZjQ0ZjBmMDBmMDlkMDdjZGZiYTQ3YjA0YjU1Y2MxNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJb920LQOAWzp9mtT/1dvpmbzC0t frWkNlyOe/ngp93TGQj+1gFr0KyWZIFKhybOhJ83TXNj3YwoGj4iKXL7qGYNGNhN Q0HZgiBH3L+jkQk6Ui0hYnBKlgb0O1M4R73onrb+2iKuMOd6oWYqsYE5uZCL3AIB 0tIniK36dq4xpyVN0yyfo7NC8ubQT0d8suee2GHYgEEfwLRuY8yFkddQv33SXyoO wsDPbqco4QC8wjP9AUMyVTcYYSRLKTZoJDlIeu1vY6auQaGB3eP+BRoQ0+gAEAYE 1+SJT1WFxq5zicfYIAaNg9ZCS4wt0tAqp7/6GQ/ngrqqPhStcrlW1MIX9QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNJU09tnts0ONjHcPCx0jbEtRtnIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZiOTVlZDI4LTc4ZGMtNGE4Ny04MjQxLTk2MDJkZjg3ODdkNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaacgwDQYJKoZIhvcNAQELBQADggEBABkEssP3FMijUjzOMp0t 0NWh8qUCcpDeeBCXBklinot02OGEAGVi0jEiRNNgaOCsLhbYbayVYzXY725kCDnf rKoTWC60a4GeCWJFK+kQdyBvUXDEVr22rUNLe+/iJPQQeuMaPkIjJ2eouH5yUpk2 r5HKUJUrEV8yv7oCwbh50ng9VqSyHSOHvN1szlUgIMdhY4GiTQQAW+oXPIWM/4dN AXtwpvtT0uVrR7KJZ9fjOT78f4qauy+LN8SOXFQUmNXvhKpkkXJpWC7ZV9YFTkA+ VnHlEr+TgiofChdjLHZ78+DMd1l5PV98giKUhn6uEO4Y8erE5M2np7YYRnyP1Am4 ORA= -----END CERTIFICATE-----Generated at Wed May 13 00:07:56 2026 by rpki-client