$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ad687119-97d7-4e73-b18b-f594dcc3c8b1.roa File: ad687119-97d7-4e73-b18b-f594dcc3c8b1.roa (raw, json) Hash identifier: 0x3sB1FbX+eikMHqJ/1o0AkvQj5lDFdKdJSZLcNFQqk= Subject key identifier: 2C:A5:6A:2B:B2:38:BD:AF:70:80:33:F5:0C:19:ED:B8:9E:D3:8D:D6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 74B9DDF2858597982E88C6AE9EE61F5DF42524BE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ad687119-97d7-4e73-b18b-f594dcc3c8b1.roa Signing time: Fri 08 May 2026 00:00:14 +0000 ROA not before: Fri 08 May 2026 00:00:14 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:daf4:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b9:dd:f2:85:85:97:98:2e:88:c6:ae:9e:e6:1f:5d:f4:25:24:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 8 00:00:14 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=1cbfe98a5eb03aa76a013c72940c77f1556b73662f450089cc45328764302a02, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:30:46:f9:a2:38:0c:d2:b2:a0:d2:88:24:cf: 72:cb:b4:77:0c:0e:f6:2b:07:dd:a4:fd:ae:5c:01: 73:ff:17:90:7f:73:0d:53:47:d3:ca:1a:4a:0e:37: 8d:de:fc:7e:94:80:b8:da:6a:c3:01:d6:13:db:1d: 4d:e7:4b:59:6d:07:6e:58:00:da:c6:da:62:16:7a: 4d:83:d3:2b:74:35:d5:00:11:53:cd:d8:10:ab:bd: 57:ef:73:93:db:49:cc:bb:8a:6d:54:24:bb:75:dd: fc:66:36:a5:b8:2d:35:78:b1:dc:2e:fc:bb:7e:a7: b8:42:d0:f8:19:ca:fa:d8:d7:80:23:9b:77:5a:d5: 8f:ef:5b:33:32:22:49:35:80:d0:be:1e:a9:72:a3: fe:4c:94:74:1f:a5:cd:c0:60:0c:52:5d:6a:70:87: 25:3f:21:e1:7d:a5:63:90:1f:e2:30:c3:1e:ef:f3: 3c:50:7e:36:13:38:6a:4f:70:24:5d:6b:bb:a2:fc: 7d:30:93:b3:f2:eb:fc:dc:6f:07:df:76:07:21:c3: 77:b0:9b:5e:e8:40:62:c0:2e:4d:64:a6:40:15:c8: fe:08:78:bd:8b:87:75:e9:7a:7f:31:43:a1:c4:d6: 73:ee:90:1c:e2:ec:ba:ac:e3:bc:7b:37:7f:ef:5f: ba:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A5:6A:2B:B2:38:BD:AF:70:80:33:F5:0C:19:ED:B8:9E:D3:8D:D6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ad687119-97d7-4e73-b18b-f594dcc3c8b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf4:8000::/40 Signature Algorithm: sha256WithRSAEncryption 7d:ac:f6:da:ef:19:44:95:49:8e:5c:54:3e:45:f7:47:55:14: 2f:cd:b8:61:a2:41:17:da:a6:86:94:95:ad:92:6b:4f:92:8d: 44:79:cb:ee:a7:f0:d0:3f:61:2e:f9:fb:c7:c4:cb:a2:09:fa: 47:2c:df:24:e5:32:03:31:3f:8b:78:10:0a:54:f9:fc:c5:7a: f1:f7:3e:32:f2:80:ae:c0:91:c2:df:e5:9a:31:5a:9f:58:16: 08:bf:54:48:1c:69:06:44:38:e5:54:17:74:ee:38:28:10:04: 6c:96:27:9d:e1:c5:df:4e:3e:e5:45:18:f8:f1:64:01:65:2e: f4:07:65:8c:d1:db:80:33:b2:70:2d:83:55:a3:5c:95:df:c8: 8c:34:eb:1b:6c:7b:93:af:f2:25:2b:b7:5f:d9:a0:60:41:e7: 3f:0e:cc:41:cb:1c:94:5f:1e:3e:28:8f:49:f6:0e:9a:ae:b6: 54:93:49:bb:39:ac:7d:45:3e:c8:d9:41:df:d3:cd:ce:07:c8: dd:fa:33:3a:86:26:71:85:84:ca:13:6b:b8:06:26:a6:58:a0: be:4a:38:ed:67:6e:b1:92:fc:72:42:db:3c:03:61:6e:6b:bc: 80:25:58:21:1b:79:85:51:b1:a6:13:ce:d5:19:7a:fa:93:c3: 7b:00:28:c9 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUdLnd8oWFl5guiMaunuYfXfQlJL4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwODAwMDAxNFoX DTI2MDgwNjIzNTk1OVowejFJMEcGA1UEBRNAMWNiZmU5OGE1ZWIwM2FhNzZhMDEz YzcyOTQwYzc3ZjE1NTZiNzM2NjJmNDUwMDg5Y2M0NTMyODc2NDMwMmEwMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTBG+aI4DNKyoNKIJM9yy7R3DA72 KwfdpP2uXAFz/xeQf3MNU0fTyhpKDjeN3vx+lIC42mrDAdYT2x1N50tZbQduWADa xtpiFnpNg9MrdDXVABFTzdgQq71X73OT20nMu4ptVCS7dd38ZjaluC01eLHcLvy7 fqe4QtD4Gcr62NeAI5t3WtWP71szMiJJNYDQvh6pcqP+TJR0H6XNwGAMUl1qcIcl PyHhfaVjkB/iMMMe7/M8UH42EzhqT3AkXWu7ovx9MJOz8uv83G8H33YHIcN3sJte 6EBiwC5NZKZAFcj+CHi9i4d16Xp/MUOhxNZz7pAc4uy6rOO8ezd/71+69QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCylaiuyOL2vcIAz9QwZ7bie043WMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FkNjg3MTE5LTk3ZDctNGU3My1iMThiLWY1OTRkY2MzYzhiMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9IAwDQYJKoZIhvcNAQELBQADggEBAH2s9trvGUSVSY5cVD5F 90dVFC/NuGGiQRfapoaUla2Sa0+SjUR5y+6n8NA/YS75+8fEy6IJ+kcs3yTlMgMx P4t4EApU+fzFevH3PjLygK7AkcLf5ZoxWp9YFgi/VEgcaQZEOOVUF3TuOCgQBGyW J53hxd9OPuVFGPjxZAFlLvQHZYzR24AzsnAtg1WjXJXfyIw06xtse5Ov8iUrt1/Z oGBB5z8OzEHLHJRfHj4oj0n2DpqutlSTSbs5rH1FPsjZQd/Tzc4HyN36MzqGJnGF hMoTa7gGJqZYoL5KOO1nbrGS/HJC2zwDYW5rvIAlWCEbeYVRsaYTztUZevqTw3sA KMk= -----END CERTIFICATE-----Generated at Tue May 12 22:57:46 2026 by rpki-client