$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/91d77916-88a8-437e-b451-0d53bdaea4bd.roa File: 91d77916-88a8-437e-b451-0d53bdaea4bd.roa (raw, json) Hash identifier: G2tHpYxx9pZSD7vaw1JlRUJelbG0K0JCJV2n4vbEs/w= Subject key identifier: 38:CB:9C:3D:E1:44:2C:EA:18:93:72:68:62:F8:9E:86:C1:88:0B:69 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 577846FFCA81F92F5F79F01570FB4EE7A37807F6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/91d77916-88a8-437e-b451-0d53bdaea4bd.roa Signing time: Mon 11 May 2026 00:20:08 +0000 ROA not before: Mon 11 May 2026 00:20:08 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:a0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:78:46:ff:ca:81:f9:2f:5f:79:f0:15:70:fb:4e:e7:a3:78:07:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:20:08 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=f08c760ab174b8db18f3ca0409b5b600ebc47524302ff3a7b8a2cb34de750ce4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3e:a6:8c:a8:69:84:28:f0:2b:a9:ce:9d:2d: 6b:9b:c3:5d:1a:61:d8:19:10:34:f8:8e:5a:f3:08: 71:e6:65:14:99:db:c4:4f:89:40:2d:cf:32:2c:e8: 6b:41:2b:58:0f:4b:f2:94:88:fb:0e:34:72:42:5f: 9a:72:0e:d3:d4:c2:f6:fa:45:54:55:69:ab:42:96: 53:da:bb:89:eb:08:02:8c:99:f6:0c:d6:cd:25:ee: a2:51:83:43:e1:63:51:e0:64:eb:5d:3e:db:39:33: b6:2d:07:e8:4d:2b:03:fc:ce:c4:6f:20:b3:ed:7b: bf:fe:3a:ef:8c:ab:8e:c4:19:54:d2:07:f1:12:a6: 83:0e:d0:73:84:5e:fa:a2:90:09:7c:f8:6f:d4:e0: a7:55:cd:a8:44:11:86:46:81:21:8b:68:bd:2a:f5: 23:c4:4a:5a:f5:60:ef:7e:21:c6:d7:cc:21:75:2f: 34:e3:65:bb:ad:82:b4:da:d2:62:50:40:60:dc:ff: d3:71:97:26:0b:e6:73:8c:9a:cd:17:6a:9e:da:08: a4:fc:41:27:c2:c3:12:59:64:d0:63:f7:6a:12:41: 8d:3f:47:f6:bd:bc:2f:dd:87:93:d1:6b:78:9e:28: 9c:d6:ae:6c:91:01:0c:f7:22:3c:84:76:77:2c:4a: c3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CB:9C:3D:E1:44:2C:EA:18:93:72:68:62:F8:9E:86:C1:88:0B:69 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/91d77916-88a8-437e-b451-0d53bdaea4bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:a0c0::/48 Signature Algorithm: sha256WithRSAEncryption 82:3b:8f:48:56:d5:ff:01:c3:63:fa:75:7e:a5:6b:2f:1a:78: dd:b1:87:17:e7:40:01:80:8a:50:23:44:e9:d5:53:b6:ba:db: b8:80:e8:7b:92:1d:a9:98:9d:84:0c:2a:b7:fe:b4:a3:60:5a: f6:d5:71:34:8d:e9:ff:57:c6:d5:47:ae:c8:03:bd:56:17:3e: 00:2d:93:26:91:c8:0f:b6:42:c4:24:cc:30:54:75:2e:40:a2: a7:42:22:1d:ce:e8:64:b5:8b:43:2c:ff:fc:c8:c4:13:e4:43: 9f:70:42:05:ba:eb:a9:0e:67:6d:96:20:02:de:bd:44:a5:16: 48:7f:9c:ff:a2:96:1d:11:33:b2:23:12:0e:65:ca:43:dc:94: 4f:46:69:a4:7e:37:ea:c2:a9:04:42:af:24:7e:f7:7b:55:b7: 6c:c9:07:09:d4:bf:f9:31:5d:c9:7e:ec:ad:69:05:40:88:1c: 2d:2e:ba:a4:fa:82:5e:38:8e:7e:be:e3:31:f8:93:e5:27:e0: f2:65:a5:1b:fb:ff:2e:cc:a3:66:22:5c:32:f9:68:ed:36:f9: 1d:ce:0e:08:89:f9:d6:ac:14:9f:71:3e:f7:60:17:91:15:06: 0d:63:82:98:1f:45:19:3b:68:87:42:21:61:7e:e9:2e:16:17: 6e:07:b3:f0 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUV3hG/8qB+S9fefAVcPtO56N4B/YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMjAwOFoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAZjA4Yzc2MGFiMTc0YjhkYjE4ZjNj YTA0MDliNWI2MDBlYmM0NzUyNDMwMmZmM2E3YjhhMmNiMzRkZTc1MGNlNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtj6mjKhphCjwK6nOnS1rm8NdGmHY GRA0+I5a8whx5mUUmdvET4lALc8yLOhrQStYD0vylIj7DjRyQl+acg7T1ML2+kVU VWmrQpZT2ruJ6wgCjJn2DNbNJe6iUYND4WNR4GTrXT7bOTO2LQfoTSsD/M7EbyCz 7Xu//jrvjKuOxBlU0gfxEqaDDtBzhF76opAJfPhv1OCnVc2oRBGGRoEhi2i9KvUj xEpa9WDvfiHG18whdS8042W7rYK02tJiUEBg3P/TcZcmC+ZzjJrNF2qe2gik/EEn wsMSWWTQY/dqEkGNP0f2vbwv3YeT0Wt4niic1q5skQEM9yI8hHZ3LErDywIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDjLnD3hRCzqGJNyaGL4nobBiAtpMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkxZDc3OTE2LTg4YTgtNDM3ZS1iNDUxLTBkNTNiZGFlYTRiZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAKDAMA0GCSqGSIb3DQEBCwUAA4IBAQCCO49IVtX/AcNj+nV+ pWsvGnjdsYcX50ABgIpQI0Tp1VO2utu4gOh7kh2pmJ2EDCq3/rSjYFr21XE0jen/ V8bVR67IA71WFz4ALZMmkcgPtkLEJMwwVHUuQKKnQiIdzuhktYtDLP/8yMQT5EOf cEIFuuupDmdtliAC3r1EpRZIf5z/opYdETOyIxIOZcpD3JRPRmmkfjfqwqkEQq8k fvd7VbdsyQcJ1L/5MV3JfuytaQVAiBwtLrqk+oJeOI5+vuMx+JPlJ+DyZaUb+/8u zKNmIlwy+WjtNvkdzg4IifnWrBSfcT73YBeRFQYNY4KYH0UZO2iHQiFhfukuFhdu B7Pw -----END CERTIFICATE-----Generated at Tue May 12 23:47:06 2026 by rpki-client