$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b2265854-ac1c-4e5a-a794-d4ce1e5833ad.roa File: b2265854-ac1c-4e5a-a794-d4ce1e5833ad.roa (raw, json) Hash identifier: G4labudfv29bfTy7dOkYh835lLF16HVLdlZtZ6XOMDQ= Subject key identifier: 97:F9:7D:27:9C:BD:E7:D6:79:D3:23:AC:95:21:65:50:7B:C0:61:2D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 056BC9968AB9FA44CD10767E0A3C9F543220A07E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b2265854-ac1c-4e5a-a794-d4ce1e5833ad.roa Signing time: Mon 11 May 2026 00:00:05 +0000 ROA not before: Mon 11 May 2026 00:00:05 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:8800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:6b:c9:96:8a:b9:fa:44:cd:10:76:7e:0a:3c:9f:54:32:20:a0:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:00:05 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=dd21b644eacd237a674802d1e32c43a75d9cc9bfc64208ff88b3c01f502f1c37, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:56:b6:fe:8e:39:2f:d4:88:34:d9:4e:2e:8a: d2:c7:a6:46:0b:c4:34:83:ff:c3:2f:71:27:ec:18: b1:60:57:34:dd:03:9c:d6:e6:2d:76:fa:1e:e5:46: 7e:64:fc:fb:a8:1f:54:3b:99:6d:7a:60:59:0b:00: 9d:3f:49:b5:59:27:a4:45:ca:00:13:4c:12:17:a2: 2f:ec:f9:70:85:78:8a:90:e4:a6:7f:6f:b9:a7:60: fc:18:4c:b0:c2:44:7a:32:37:7c:f3:f0:fb:0a:8d: 79:ae:e0:68:97:8e:ca:d7:9f:5c:20:80:92:6e:fd: 7c:e5:7d:17:07:7c:94:a5:e7:8e:cd:61:f8:2d:cb: 96:44:9d:1b:cd:ae:29:72:44:0c:f0:a4:d4:9a:02: 1f:92:7d:3f:f7:fa:ad:0e:fa:56:d2:6a:6b:35:59: 63:48:30:f6:1c:83:ce:66:23:44:e3:fd:70:ac:9a: 5b:96:cc:86:50:49:a6:ea:b4:75:0e:68:93:9a:78: a3:87:36:6b:1a:ca:e6:9a:ce:95:b5:2f:03:95:16: 9b:05:a9:0e:cf:e5:a6:0f:e5:88:83:0d:48:c8:e9: 30:ff:14:d5:32:be:18:50:d8:6a:39:3a:6c:3c:ed: 58:09:8f:b2:23:76:24:b3:38:67:f2:cb:c1:6e:e7: 18:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F9:7D:27:9C:BD:E7:D6:79:D3:23:AC:95:21:65:50:7B:C0:61:2D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b2265854-ac1c-4e5a-a794-d4ce1e5833ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:8800::/40 Signature Algorithm: sha256WithRSAEncryption 3d:be:10:39:ca:68:ef:f9:0a:4d:2d:08:2d:5d:75:7f:06:f3: 9d:b8:90:09:f7:25:6e:9c:d5:5f:5b:48:2c:d9:57:68:5d:af: dd:21:2e:4b:d9:f3:78:a0:80:b0:49:2e:48:a6:ad:34:1b:75: 07:fb:f4:3e:d0:85:c5:b5:5d:42:ff:34:b1:b0:7d:24:d2:3e: 32:7d:3f:bf:67:6b:ad:2c:d0:c9:95:94:c9:73:a3:d9:0f:a8: 29:5d:24:d6:6d:dc:18:c2:3b:ff:df:3c:e7:9c:0e:df:81:c8: 71:4e:77:f6:f7:5d:49:2d:e9:04:83:15:40:a6:4d:16:fe:94: 3b:a7:fe:a9:72:59:ab:23:08:52:26:ce:eb:7b:aa:fa:b0:f2: 3d:ac:d2:79:6f:5e:c5:e6:1c:94:2f:9d:43:45:31:8f:fa:dd: 5c:35:a2:24:ab:20:4c:7b:9d:02:06:30:66:6f:ca:63:ff:06: 42:b3:dd:6b:12:b7:a2:7e:6b:61:4a:36:0d:10:33:30:70:89: 35:b7:eb:d4:63:47:59:97:73:a8:34:d2:4b:38:58:f0:9e:e6: e5:ba:22:ae:cc:11:d4:51:19:4a:f3:c3:d9:ad:e0:85:9e:87: 1a:0a:4a:04:8b:e0:44:30:bf:e0:b7:9b:7e:48:9c:75:31:ae: 91:ed:d9:df -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUBWvJloq5+kTNEHZ+CjyfVDIgoH4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMDAwNVoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAZGQyMWI2NDRlYWNkMjM3YTY3NDgw MmQxZTMyYzQzYTc1ZDljYzliZmM2NDIwOGZmODhiM2MwMWY1MDJmMWMzNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxla2/o45L9SINNlOLorSx6ZGC8Q0 g//DL3En7BixYFc03QOc1uYtdvoe5UZ+ZPz7qB9UO5ltemBZCwCdP0m1WSekRcoA E0wSF6Iv7PlwhXiKkOSmf2+5p2D8GEywwkR6Mjd88/D7Co15ruBol47K159cIICS bv185X0XB3yUpeeOzWH4LcuWRJ0bza4pckQM8KTUmgIfkn0/9/qtDvpW0mprNVlj SDD2HIPOZiNE4/1wrJpblsyGUEmm6rR1DmiTmnijhzZrGsrmms6VtS8DlRabBakO z+WmD+WIgw1IyOkw/xTVMr4YUNhqOTpsPO1YCY+yI3Ykszhn8svBbucYoQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJf5fSecvefWedMjrJUhZVB7wGEtMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2IyMjY1ODU0LWFjMWMtNGU1YS1hNzk0LWQ0Y2UxZTU4MzNhZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOIgwDQYJKoZIhvcNAQELBQADggEBAD2+EDnKaO/5Ck0tCC1d dX8G8524kAn3JW6c1V9bSCzZV2hdr90hLkvZ83iggLBJLkimrTQbdQf79D7QhcW1 XUL/NLGwfSTSPjJ9P79na60s0MmVlMlzo9kPqCldJNZt3BjCO//fPOecDt+ByHFO d/b3XUkt6QSDFUCmTRb+lDun/qlyWasjCFImzut7qvqw8j2s0nlvXsXmHJQvnUNF MY/63Vw1oiSrIEx7nQIGMGZvymP/BkKz3WsSt6J+a2FKNg0QMzBwiTW369RjR1mX c6g00ks4WPCe5uW6Iq7MEdRRGUrzw9mt4IWehxoKSgSL4EQwv+C3m35InHUxrpHt 2d8= -----END CERTIFICATE-----Generated at Tue May 12 23:30:50 2026 by rpki-client