$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa File: b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa (raw, json) Hash identifier: 0qEXHnpkdjpBRmgBDfDDL/cueEEx68ihHHDmXLpkBLo= Subject key identifier: 4D:40:A3:B6:6C:64:8F:8D:9E:91:48:B6:E7:3B:6D:C0:39:38:69:DB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1FAB50AF934576D384C34260C92B5E1B1A82664F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa Signing time: Sat 09 May 2026 00:01:02 +0000 ROA not before: Sat 09 May 2026 00:01:02 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:4840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ab:50:af:93:45:76:d3:84:c3:42:60:c9:2b:5e:1b:1a:82:66:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 9 00:01:02 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=084b430c62f4ba32383448186f8792cabf78c06cb7c2bbf9070cedbd117cdae7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:4b:51:0f:86:ae:09:00:20:9c:61:3b:c3:46: b0:e4:9f:3d:f2:00:50:d8:31:27:7c:b9:2d:44:45: 14:0b:b1:e7:7f:ec:34:1f:92:f2:a6:9a:f3:2d:83: 2f:3c:6d:96:a1:cb:bb:aa:82:86:95:46:5e:4a:1d: 16:13:f9:51:65:c2:b3:09:f0:9c:78:b4:7f:d3:f0: cb:a9:77:bf:b2:72:e8:54:e7:82:f3:88:51:50:79: fd:f8:1b:14:1c:c7:9c:00:20:bf:02:dc:ff:f9:f6: ab:18:a7:0f:e6:88:11:bb:93:d0:5a:42:b0:9b:63: ca:29:ba:00:b1:7c:2f:fd:34:e4:df:bd:34:52:8f: 82:1b:d1:cb:c5:1f:1c:fc:19:df:d7:af:62:31:f2: 80:9a:7c:0e:ac:ed:70:8a:a4:96:89:a6:37:44:b1: 76:c7:af:6a:45:b6:a1:c0:c0:04:30:11:b9:26:20: c2:d5:32:62:c4:c6:d9:2c:c2:7b:48:19:32:57:fe: 15:fb:f4:7e:22:83:b9:2c:f1:9f:f5:33:b5:71:28: e2:85:e2:28:6f:9d:ef:65:02:64:c6:22:ae:2f:b8: 6c:53:af:90:1e:67:e8:24:e3:d9:9b:6a:06:72:7e: b0:5c:e8:b0:b8:d4:09:04:32:d8:a6:d8:6a:49:c4: 5b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:40:A3:B6:6C:64:8F:8D:9E:91:48:B6:E7:3B:6D:C0:39:38:69:DB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:4840::/48 Signature Algorithm: sha256WithRSAEncryption 80:60:8b:32:21:23:f5:68:ff:f4:5a:5c:df:5f:d8:b4:b9:6f: 32:67:0f:c6:bb:ff:84:70:54:41:7b:46:b5:eb:f6:85:88:88: 91:1a:81:fd:28:39:02:0d:42:78:cc:16:07:9b:56:fd:1e:a6: 85:5c:97:f1:c1:82:7a:a2:af:c0:1a:97:b6:b8:d2:46:13:08: 33:fa:6d:42:45:40:57:62:1e:47:04:ed:d8:22:57:92:0c:ea: 60:c5:e5:a5:d4:be:20:a3:c3:2b:65:34:33:dc:74:35:5c:a5: de:df:86:1f:d3:5b:c2:d0:14:99:31:0c:40:cc:8e:33:8c:4e: b9:8c:b3:44:96:a0:1a:47:82:01:6b:a7:d6:5d:aa:69:9e:8a: 07:2b:c4:43:2a:09:67:11:50:78:a9:02:80:a7:51:db:21:30: bf:db:91:dd:96:0a:3b:2a:2b:60:0e:9a:67:1f:b8:e3:57:52: 25:48:c1:f1:ed:dd:9f:08:63:c8:71:2d:13:40:19:e3:57:60: 8d:1e:b4:08:5c:de:5e:fe:1b:c9:5c:52:f3:b8:ca:ff:2e:1a: 15:0c:5f:f8:e9:e3:d3:9c:85:f0:c4:46:72:46:3a:e9:29:c1: 7a:68:83:01:cb:3f:bb:bb:1b:ee:33:64:a1:e2:6a:00:b0:93: 62:0a:c1:25 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUH6tQr5NFdtOEw0JgySteGxqCZk8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwOTAwMDEwMloX DTI2MDgwNzIzNTk1OVowejFJMEcGA1UEBRNAMDg0YjQzMGM2MmY0YmEzMjM4MzQ0 ODE4NmY4NzkyY2FiZjc4YzA2Y2I3YzJiYmY5MDcwY2VkYmQxMTdjZGFlNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUtRD4auCQAgnGE7w0aw5J898gBQ 2DEnfLktREUUC7Hnf+w0H5LypprzLYMvPG2Wocu7qoKGlUZeSh0WE/lRZcKzCfCc eLR/0/DLqXe/snLoVOeC84hRUHn9+BsUHMecACC/Atz/+farGKcP5ogRu5PQWkKw m2PKKboAsXwv/TTk3700Uo+CG9HLxR8c/Bnf169iMfKAmnwOrO1wiqSWiaY3RLF2 x69qRbahwMAEMBG5JiDC1TJixMbZLMJ7SBkyV/4V+/R+IoO5LPGf9TO1cSjiheIo b53vZQJkxiKuL7hsU6+QHmfoJOPZm2oGcn6wXOiwuNQJBDLYpthqScRb1QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFE1Ao7ZsZI+NnpFItuc7bcA5OGnbMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2IzMzRmY2EyLWIyYmMtNGRiNS05NTZjLWUzZmY4ZDk3NWI1MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8khAMA0GCSqGSIb3DQEBCwUAA4IBAQCAYIsyISP1aP/0Wlzf X9i0uW8yZw/Gu/+EcFRBe0a16/aFiIiRGoH9KDkCDUJ4zBYHm1b9HqaFXJfxwYJ6 oq/AGpe2uNJGEwgz+m1CRUBXYh5HBO3YIleSDOpgxeWl1L4go8MrZTQz3HQ1XKXe 34Yf01vC0BSZMQxAzI4zjE65jLNElqAaR4IBa6fWXappnooHK8RDKglnEVB4qQKA p1HbITC/25Hdlgo7KitgDppnH7jjV1IlSMHx7d2fCGPIcS0TQBnjV2CNHrQIXN5e /hvJXFLzuMr/LhoVDF/46ePTnIXwxEZyRjrpKcF6aIMByz+7uxvuM2Sh4moAsJNi CsEl -----END CERTIFICATE-----Generated at Wed May 13 00:38:38 2026 by rpki-client