$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7fbd42aa-d252-487d-808d-23e478a07d5e.roa File: 7fbd42aa-d252-487d-808d-23e478a07d5e.roa (raw, json) Hash identifier: nNUTa68wjytCrMQpkNit0LOsJUJ4YbcMAmocUKWjwR8= Subject key identifier: 80:13:77:D3:37:CD:1C:82:14:0E:98:87:56:4A:71:DC:C7:85:E0:B3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 49736A03C6EC4C8B545C45216E1CE811F1FBECD0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7fbd42aa-d252-487d-808d-23e478a07d5e.roa Signing time: Tue 12 May 2026 00:10:46 +0000 ROA not before: Tue 12 May 2026 00:10:46 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:b080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:73:6a:03:c6:ec:4c:8b:54:5c:45:21:6e:1c:e8:11:f1:fb:ec:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 12 00:10:46 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=45d40c54b0d07c4be08c6b2f0fc658533c0de409847840c2391718e60d7c3bf7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:47:2a:6a:c4:8e:6b:ad:f9:84:84:2e:46:2c: 82:61:ed:a2:c3:e2:84:d4:b1:97:88:6e:ff:d4:13: 9f:42:2d:b9:e0:6f:f2:26:d5:63:34:c3:fd:9f:3a: 2c:56:07:4b:73:f7:2e:99:32:86:dd:f1:af:cc:c0: 32:8e:59:2f:c0:54:da:fb:2e:e9:5f:9c:a0:96:06: 8f:35:ea:5b:a3:c6:20:81:4c:68:4d:85:89:37:79: 8c:1b:a4:ec:43:1c:64:52:b7:06:4e:1c:b7:03:1b: d6:ac:04:38:a8:f5:dd:c8:6b:4e:15:0b:2e:a6:96: 04:36:99:6b:21:5b:d3:90:b4:0f:fd:54:8d:09:03: 38:03:19:95:0c:80:ed:54:79:b6:cd:56:db:c6:5b: 8c:2f:02:a2:00:22:ea:2a:1e:ec:be:3b:a4:b1:54: aa:d9:0e:1f:49:5a:71:6d:28:ed:33:53:28:8a:60: 7e:c4:49:45:0c:b8:a3:25:f0:0a:7e:3c:41:86:4a: f6:b9:32:85:d4:24:46:8a:42:8d:57:8a:b9:23:e9: 73:ec:79:3f:13:a5:a2:7a:14:70:0f:7f:0b:4d:27: 20:97:fa:9b:fe:8c:cf:91:dc:25:d6:34:12:83:c0: c6:fe:e8:e4:04:1b:bb:0b:5f:21:d6:01:11:26:4a: 5e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:13:77:D3:37:CD:1C:82:14:0E:98:87:56:4A:71:DC:C7:85:E0:B3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7fbd42aa-d252-487d-808d-23e478a07d5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:b080::/48 Signature Algorithm: sha256WithRSAEncryption 32:e8:e5:01:a7:62:12:0c:bc:8f:ec:81:fd:8e:c4:28:d7:d0: ac:9e:30:a2:10:ff:be:cb:82:3f:6f:20:6b:87:15:11:b9:5a: 77:92:32:3f:94:c1:07:0c:33:88:7c:5b:22:a1:55:54:75:58: f8:3f:e8:f6:5f:51:21:30:06:5d:ab:b7:e3:f6:b2:cc:04:f8: c5:bb:b4:a8:b1:d4:70:93:2c:68:1f:a3:c8:fa:d2:d3:f3:8d: 21:f5:d4:df:9a:04:b6:0f:cc:3e:9f:a9:4f:76:f9:a0:c8:33: 63:49:de:31:aa:60:e6:4f:26:d8:f4:94:c3:a0:f9:80:81:c0: 22:26:f8:1b:bc:8e:01:9d:81:0e:9e:20:7d:b2:03:e5:1f:bb: 67:dc:dc:38:6a:d7:12:4e:13:89:43:9a:90:dd:24:7b:6b:37: cb:c0:82:11:4b:ac:37:0a:86:3d:c9:49:5d:05:aa:84:5c:08: c9:a2:5d:88:8e:fb:10:6f:6f:bc:39:66:1c:2c:c6:23:a3:42: c8:dc:ff:72:4c:d3:3f:ef:23:1a:26:0a:55:ec:44:8a:0f:5e: b3:57:04:ff:8f:d5:23:41:c7:83:aa:07:47:4a:0e:9f:00:bc: b0:84:b2:79:a3:1a:cd:d9:8f:49:3b:e4:21:b8:10:39:db:f1: 21:49:60:3f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUSXNqA8bsTItUXEUhbhzoEfH77NAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMjAwMTA0NloX DTI2MDgxMDIzNTk1OVowejFJMEcGA1UEBRNANDVkNDBjNTRiMGQwN2M0YmUwOGM2 YjJmMGZjNjU4NTMzYzBkZTQwOTg0Nzg0MGMyMzkxNzE4ZTYwZDdjM2JmNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0cqasSOa635hIQuRiyCYe2iw+KE 1LGXiG7/1BOfQi254G/yJtVjNMP9nzosVgdLc/cumTKG3fGvzMAyjlkvwFTa+y7p X5yglgaPNepbo8YggUxoTYWJN3mMG6TsQxxkUrcGThy3AxvWrAQ4qPXdyGtOFQsu ppYENplrIVvTkLQP/VSNCQM4AxmVDIDtVHm2zVbbxluMLwKiACLqKh7svjuksVSq 2Q4fSVpxbSjtM1MoimB+xElFDLijJfAKfjxBhkr2uTKF1CRGikKNV4q5I+lz7Hk/ E6WiehRwD38LTScgl/qb/ozPkdwl1jQSg8DG/ujkBBu7C18h1gERJkpedQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFIATd9M3zRyCFA6Yh1ZKcdzHheCzMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdmYmQ0MmFhLWQyNTItNDg3ZC04MDhkLTIzZTQ3OGEwN2Q1ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYbCAMA0GCSqGSIb3DQEBCwUAA4IBAQAy6OUBp2ISDLyP7IH9 jsQo19CsnjCiEP++y4I/byBrhxURuVp3kjI/lMEHDDOIfFsioVVUdVj4P+j2X1Eh MAZdq7fj9rLMBPjFu7SosdRwkyxoH6PI+tLT840h9dTfmgS2D8w+n6lPdvmgyDNj Sd4xqmDmTybY9JTDoPmAgcAiJvgbvI4BnYEOniB9sgPlH7tn3Nw4atcSThOJQ5qQ 3SR7azfLwIIRS6w3CoY9yUldBaqEXAjJol2IjvsQb2+8OWYcLMYjo0LI3P9yTNM/ 7yMaJgpV7ESKD16zVwT/j9UjQceDqgdHSg6fALywhLJ5oxrN2Y9JO+QhuBA52/Eh SWA/ -----END CERTIFICATE-----Generated at Wed May 13 00:10:08 2026 by rpki-client