$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8dba85b7-4730-4c28-98df-3c8484e0f1cc.roa File: 8dba85b7-4730-4c28-98df-3c8484e0f1cc.roa (raw, json) Hash identifier: Z7JnumwR9ObcwbH1iO5tc9WJznatF425l1bwXFNCqRk= Subject key identifier: 83:0B:11:4E:9A:F6:1E:24:6B:06:FA:8A:B4:23:0A:8D:6F:50:5F:B3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 79A969DB5739CEAF70430503606BC84285AB10A7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8dba85b7-4730-4c28-98df-3c8484e0f1cc.roa Signing time: Mon 11 May 2026 00:10:05 +0000 ROA not before: Mon 11 May 2026 00:10:05 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:c840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:a9:69:db:57:39:ce:af:70:43:05:03:60:6b:c8:42:85:ab:10:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:10:05 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=cac57ae8fd252a19eb1aa18270fc6c5c2284343f42696ef3d0b688e5fdffca60, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e3:15:6c:ca:40:be:d6:12:09:76:96:ad:e5: d6:88:73:8d:4b:6e:5c:00:84:3f:ad:be:57:35:14: 59:92:a3:e8:03:c2:d5:ba:29:b9:2d:00:26:6e:f1: 6a:13:f5:0c:87:9c:fc:bb:7b:c9:1e:f9:d4:56:6c: f1:7f:d5:6e:4a:1c:e7:b6:b1:e3:ab:88:63:40:79: 06:51:fd:f8:ce:98:49:a6:a5:20:ea:7a:f9:7f:fa: 0a:b3:7b:06:b7:4d:50:b9:70:e8:33:a0:c8:06:69: ab:c2:bb:6e:3c:39:c0:36:f0:22:2a:f3:59:31:7d: 4a:46:3c:e9:ce:7b:a8:0c:70:27:ec:9b:1f:06:16: 22:8e:df:9f:bd:35:cb:84:19:39:fe:75:d7:f1:ec: f0:7c:1a:7e:74:1f:a0:4a:6e:53:69:3b:99:03:8c: 34:82:dc:df:d5:74:74:98:59:81:e3:ec:b0:43:80: 21:f1:e8:ea:76:5a:c8:3a:d7:f0:dc:9f:68:ce:c3: bf:4a:5e:7b:4e:c8:ef:09:f2:32:76:75:dd:7d:83: 03:83:a4:7d:65:cc:38:30:82:05:80:70:23:05:35: 0b:c1:6e:1b:00:18:a0:d6:f6:f7:e5:ee:d3:e6:fa: 32:db:92:21:6a:28:1d:42:17:35:2b:d4:f3:fa:e3: 71:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:0B:11:4E:9A:F6:1E:24:6B:06:FA:8A:B4:23:0A:8D:6F:50:5F:B3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8dba85b7-4730-4c28-98df-3c8484e0f1cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:c840::/48 Signature Algorithm: sha256WithRSAEncryption 25:28:b5:74:af:56:ce:99:02:9c:c6:bb:4f:89:f2:29:4c:07: 5e:e8:4d:c7:af:0e:0e:04:35:60:e2:bd:e7:4f:77:17:7b:72: 20:b6:c6:95:e1:a1:dc:d6:1f:32:f2:36:fa:30:b9:e6:0e:c5: 11:a0:c1:7b:f5:6b:96:ff:65:5f:5d:a8:e1:23:71:f1:73:4f: 4f:17:eb:7b:ec:7d:b3:d0:f3:df:6a:00:49:b2:e6:9b:d0:5f: 57:1a:a3:e2:70:60:9c:11:4f:a3:34:30:84:24:a0:5a:90:05: 7d:69:99:6b:39:75:b2:8b:d7:68:9d:54:7f:95:43:5c:82:69: 4f:ba:29:ac:00:e8:b1:8a:79:37:b0:8b:59:e9:92:e6:d4:50: 3f:40:3a:f4:7e:32:d6:9f:0e:1f:4c:1e:7b:92:52:47:ef:79: 15:6f:30:e8:0f:c4:2e:93:ae:10:70:fa:fc:ec:01:39:31:2c: 74:54:9f:00:3b:32:bc:80:3f:ae:05:20:65:f1:4f:26:83:c3: 0e:08:8e:78:37:b2:18:35:0a:81:30:16:c3:76:30:f9:05:2e: 21:e1:70:d2:ce:fe:51:b8:27:1f:63:79:04:42:1d:9f:3d:b8: 0b:26:08:f7:1e:b0:31:3a:fb:b1:9e:e6:16:40:23:5c:5a:5d: 1d:2a:b0:6c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUealp21c5zq9wQwUDYGvIQoWrEKcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMTAwNVoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAY2FjNTdhZThmZDI1MmExOWViMWFh MTgyNzBmYzZjNWMyMjg0MzQzZjQyNjk2ZWYzZDBiNjg4ZTVmZGZmY2E2MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueMVbMpAvtYSCXaWreXWiHONS25c AIQ/rb5XNRRZkqPoA8LVuim5LQAmbvFqE/UMh5z8u3vJHvnUVmzxf9VuShzntrHj q4hjQHkGUf34zphJpqUg6nr5f/oKs3sGt01QuXDoM6DIBmmrwrtuPDnANvAiKvNZ MX1KRjzpznuoDHAn7JsfBhYijt+fvTXLhBk5/nXX8ezwfBp+dB+gSm5TaTuZA4w0 gtzf1XR0mFmB4+ywQ4Ah8ejqdlrIOtfw3J9ozsO/Sl57TsjvCfIydnXdfYMDg6R9 Zcw4MIIFgHAjBTULwW4bABig1vb35e7T5voy25IhaigdQhc1K9Tz+uNxtwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFIMLEU6a9h4kawb6irQjCo1vUF+zMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhkYmE4NWI3LTQ3MzAtNGMyOC05OGRmLTNjODQ4NGUwZjFjYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8shAMA0GCSqGSIb3DQEBCwUAA4IBAQAlKLV0r1bOmQKcxrtP ifIpTAde6E3Hrw4OBDVg4r3nT3cXe3IgtsaV4aHc1h8y8jb6MLnmDsURoMF79WuW /2VfXajhI3Hxc09PF+t77H2z0PPfagBJsuab0F9XGqPicGCcEU+jNDCEJKBakAV9 aZlrOXWyi9donVR/lUNcgmlPuimsAOixink3sItZ6ZLm1FA/QDr0fjLWnw4fTB57 klJH73kVbzDoD8Quk64QcPr87AE5MSx0VJ8AOzK8gD+uBSBl8U8mg8MOCI54N7IY NQqBMBbDdjD5BS4h4XDSzv5RuCcfY3kEQh2fPbgLJgj3HrAxOvuxnuYWQCNcWl0d KrBs -----END CERTIFICATE-----Generated at Wed May 13 00:15:14 2026 by rpki-client