$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa File: b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa (raw, json) Hash identifier: 4HXc0VOx/vhWVlj+cOBIu1upZ/raBH0BMf6GAn4BbFE= Subject key identifier: 68:24:F6:C1:C4:C2:1A:DE:DC:2C:3E:82:BC:B3:51:FD:3E:C8:8B:C8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1492A42BBE15307659FE6A32707ED310983A8487 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa Signing time: Wed 06 May 2026 00:00:40 +0000 ROA not before: Wed 06 May 2026 00:00:40 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:7000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:92:a4:2b:be:15:30:76:59:fe:6a:32:70:7e:d3:10:98:3a:84:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 6 00:00:40 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=cb45481254e503a6bec0b4e5828c44fdc8df1d4f4d2d0172cc66dfd9c3070570, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:30:2c:b3:ed:50:89:de:6c:d3:3f:0a:22:6c: f3:56:4a:b6:b5:78:ec:01:f3:37:62:7f:17:47:3d: 3a:da:04:19:25:41:e3:04:a9:74:b9:6e:f0:6c:e5: 56:18:50:b8:bb:8f:05:76:9c:da:82:dd:32:a4:37: d5:27:03:46:06:a9:79:0c:15:aa:2f:9e:bc:6e:4f: 4b:8f:5e:1f:53:f4:c6:e7:c1:29:27:fd:d5:1a:b1: 6a:74:81:e0:21:6c:1d:de:43:ff:9c:9f:fd:f9:77: 2b:af:01:e9:a7:5a:29:73:ef:fa:0f:42:95:f7:f5: 0e:c6:49:97:5a:2b:3a:07:d5:7c:4d:ee:c8:c7:17: 9d:f3:d2:64:d0:5e:3e:b3:29:64:ba:55:dc:fc:16: 37:ff:89:f4:b3:74:74:d6:9a:5b:64:e5:e0:af:3b: da:59:f1:30:8e:a9:ff:d6:cd:79:ba:bc:b2:a2:14: 62:4c:40:19:d1:de:6d:a7:7f:41:fd:3e:8e:1f:eb: 06:b2:2f:29:20:2c:54:e7:f1:42:5e:10:ff:48:9c: 64:63:fa:5e:85:ed:81:b2:00:ed:8b:f3:4c:fb:d9: 94:87:78:a6:80:1b:c9:9a:2e:78:52:a7:1a:71:c7: d8:3b:d8:95:64:00:f5:b4:3c:eb:a2:13:44:55:02: 11:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:24:F6:C1:C4:C2:1A:DE:DC:2C:3E:82:BC:B3:51:FD:3E:C8:8B:C8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:7000::/48 Signature Algorithm: sha256WithRSAEncryption 72:10:f4:7c:b3:89:61:7f:a2:9e:09:a6:a2:22:0f:50:44:4b: dd:4c:c5:2f:95:91:e3:aa:32:1c:bb:0b:7b:6b:db:ca:81:ab: 02:be:53:3c:1a:ab:e3:7b:e6:65:47:68:79:14:03:cb:42:bf: e2:dd:9c:8e:02:12:8f:40:45:31:f7:61:9a:1d:7d:58:49:1f: 34:c9:f0:1e:8f:e5:b5:80:c5:bd:18:0f:d1:fb:b0:22:84:a4: 73:56:0d:5e:f1:52:00:46:bb:a2:61:5b:b0:bc:6a:9e:52:39: 22:21:57:d5:85:04:ed:af:de:9e:8c:8e:5e:e9:2f:b2:39:8e: 8b:e2:1a:72:99:c4:ba:d0:b0:a9:fb:e2:ad:a7:c1:33:0c:a4: 3d:f2:ca:68:86:db:30:10:fe:72:78:d6:35:bd:f6:74:41:77: 72:ca:76:ea:e2:33:98:d5:5f:ea:c3:dc:a1:7c:60:5a:1a:d3: 83:f7:95:67:51:e6:00:09:97:50:61:36:02:bc:0b:5d:83:9d: ac:25:f9:d8:03:51:25:7d:57:26:f6:36:e3:a7:b1:f0:2f:74: a4:96:a6:31:89:9d:d1:fa:f6:47:a0:af:5d:58:d8:52:f0:c4: 52:c2:89:91:09:97:43:d2:0b:7d:d4:44:26:50:e9:89:a3:f8: 0a:2f:a9:52 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUFJKkK74VMHZZ/moycH7TEJg6hIcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwNjAwMDA0MFoX DTI2MDgwNDIzNTk1OVowejFJMEcGA1UEBRNAY2I0NTQ4MTI1NGU1MDNhNmJlYzBi NGU1ODI4YzQ0ZmRjOGRmMWQ0ZjRkMmQwMTcyY2M2NmRmZDljMzA3MDU3MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzAss+1Qid5s0z8KImzzVkq2tXjs AfM3Yn8XRz062gQZJUHjBKl0uW7wbOVWGFC4u48Fdpzagt0ypDfVJwNGBql5DBWq L568bk9Lj14fU/TG58EpJ/3VGrFqdIHgIWwd3kP/nJ/9+XcrrwHpp1opc+/6D0KV 9/UOxkmXWis6B9V8Te7Ixxed89Jk0F4+sylkulXc/BY3/4n0s3R01ppbZOXgrzva WfEwjqn/1s15uryyohRiTEAZ0d5tp39B/T6OH+sGsi8pICxU5/FCXhD/SJxkY/pe he2BsgDti/NM+9mUh3imgBvJmi54UqcaccfYO9iVZAD1tDzrohNEVQIRWwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGgk9sHEwhre3Cw+gryzUf0+yIvIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2I3NzJmNDU5LTcyZmUtNGM3ZC04ZjhjLTYxY2NlNWE5NDRjMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9nAAMA0GCSqGSIb3DQEBCwUAA4IBAQByEPR8s4lhf6KeCaai Ig9QREvdTMUvlZHjqjIcuwt7a9vKgasCvlM8Gqvje+ZlR2h5FAPLQr/i3ZyOAhKP QEUx92GaHX1YSR80yfAej+W1gMW9GA/R+7AihKRzVg1e8VIARruiYVuwvGqeUjki IVfVhQTtr96ejI5e6S+yOY6L4hpymcS60LCp++Ktp8EzDKQ98spohtswEP5yeNY1 vfZ0QXdyynbq4jOY1V/qw9yhfGBaGtOD95VnUeYACZdQYTYCvAtdg52sJfnYA1El fVcm9jbjp7HwL3SklqYxiZ3R+vZHoK9dWNhS8MRSwomRCZdD0gt91EQmUOmJo/gK L6lS -----END CERTIFICATE-----Generated at Wed May 13 00:01:16 2026 by rpki-client