$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa File: ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa (raw, json) Hash identifier: 4hi2kQDabiwFwDBjXoOJoWCxSJL/pHC/OHc7cBmORSo= Subject key identifier: 6F:2A:70:2E:F1:AB:36:C2:5D:BF:4E:42:96:DE:E2:E1:45:46:83:10 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 229119B039191B342CB44523A453A98C22EFBC24 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa Signing time: Fri 08 May 2026 00:01:03 +0000 ROA not before: Fri 08 May 2026 00:01:03 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:f000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:91:19:b0:39:19:1b:34:2c:b4:45:23:a4:53:a9:8c:22:ef:bc:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 8 00:01:03 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=118a7574d0b0b0469c1f1702aa45ab01eeddccb258e141b3e5068e53d574c9de, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4d:db:e1:02:02:3e:a5:43:6e:4d:be:3a:c6: 23:fa:b9:9d:df:cf:f9:c7:ab:7f:bb:18:c0:22:36: c0:09:9b:ee:94:e3:7b:f6:c3:cd:29:e4:f2:d0:f0: e3:ae:8c:2b:2a:03:90:74:5f:e0:8d:cc:97:88:e1: 14:54:d8:a4:91:4b:8c:98:99:9c:f9:28:cd:7b:8b: 45:0e:1e:69:86:23:2a:95:06:bb:d3:ac:ab:22:0d: bb:da:12:ba:4a:a6:42:aa:e0:54:4d:69:80:af:fd: ce:83:e9:fb:01:29:56:48:be:01:ff:1d:16:b6:ec: 2a:41:f1:87:54:84:fe:fb:41:04:65:32:4b:bd:8d: 2f:12:db:9b:5e:5c:f7:10:61:12:eb:0d:d6:47:64: f2:23:87:c2:b5:d5:65:d6:d7:37:a2:4e:ed:8e:20: 75:e7:7e:b1:53:45:c0:30:af:75:d3:65:6d:73:12: e7:f4:0c:c0:cf:f6:2f:43:71:52:84:62:b5:07:bb: 9f:69:c3:10:be:cc:c4:16:00:75:0e:c4:23:87:0d: d7:5c:f1:da:94:30:7f:00:25:ca:56:d3:65:1d:36: 49:84:31:8e:b5:e6:68:6b:65:2b:4f:5d:78:9d:20: ba:c0:29:fa:e7:93:f7:69:82:ee:e9:15:c2:c3:cd: 23:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:2A:70:2E:F1:AB:36:C2:5D:BF:4E:42:96:DE:E2:E1:45:46:83:10 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:f000::/48 Signature Algorithm: sha256WithRSAEncryption 50:b3:8e:ab:6e:92:19:5c:88:38:a3:12:6f:45:ad:2e:8c:4e: a8:6b:78:39:94:44:30:67:dc:6b:b3:d1:e8:5b:7a:fb:08:89: 79:71:71:da:f1:ec:b8:f0:7c:93:39:ca:7e:68:97:1b:ea:8f: bd:97:51:81:0a:06:93:48:c2:73:d0:29:33:a7:4a:49:54:61: b4:fc:1c:3f:35:ca:1f:b9:e6:b8:49:ae:e9:c2:bd:f8:51:8f: 38:7f:e8:04:77:85:92:4f:8f:db:f8:20:70:15:92:f3:9c:b2: 3c:8f:db:19:d0:32:69:e4:36:be:71:0f:88:ab:f6:00:b0:9a: cc:76:3c:e0:3b:14:9b:02:7c:a3:e9:c0:95:8b:5a:1f:41:bd: 4a:04:c3:80:94:44:77:25:fc:e1:60:2b:6f:4d:38:68:e9:b6: b4:55:05:de:b5:ae:68:2d:62:2b:a9:fe:0e:b6:ff:2f:b1:d5: c8:6f:cc:e9:09:ef:f9:63:cc:7d:84:a0:61:97:9b:72:5b:3e: 59:c6:ef:e9:85:2a:65:bf:10:c6:e3:24:12:75:cd:4c:8d:b0: 50:a8:9b:9a:88:b5:b3:0e:80:19:55:ca:00:b2:67:ca:ec:56: 63:d6:f8:01:d5:bc:ac:70:aa:75:84:61:71:ba:77:56:0d:b9: f5:c7:84:05 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUIpEZsDkZGzQstEUjpFOpjCLvvCQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwODAwMDEwM1oX DTI2MDgwNjIzNTk1OVowejFJMEcGA1UEBRNAMTE4YTc1NzRkMGIwYjA0NjljMWYx NzAyYWE0NWFiMDFlZWRkY2NiMjU4ZTE0MWIzZTUwNjhlNTNkNTc0YzlkZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmk3b4QICPqVDbk2+OsYj+rmd38/5 x6t/uxjAIjbACZvulON79sPNKeTy0PDjrowrKgOQdF/gjcyXiOEUVNikkUuMmJmc +SjNe4tFDh5phiMqlQa706yrIg272hK6SqZCquBUTWmAr/3Og+n7ASlWSL4B/x0W tuwqQfGHVIT++0EEZTJLvY0vEtubXlz3EGES6w3WR2TyI4fCtdVl1tc3ok7tjiB1 536xU0XAMK9102VtcxLn9AzAz/YvQ3FShGK1B7ufacMQvszEFgB1DsQjhw3XXPHa lDB/ACXKVtNlHTZJhDGOteZoa2UrT114nSC6wCn655P3aYLu6RXCw80jiQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFG8qcC7xqzbCXb9OQpbe4uFFRoMQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2NlNjM0M2Q5LTQ2NDctNDIwMS1iMWE2LThjYTdlZTRjYzZiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9vAAMA0GCSqGSIb3DQEBCwUAA4IBAQBQs46rbpIZXIg4oxJv Ra0ujE6oa3g5lEQwZ9xrs9HoW3r7CIl5cXHa8ey48HyTOcp+aJcb6o+9l1GBCgaT SMJz0Ckzp0pJVGG0/Bw/Ncofuea4Sa7pwr34UY84f+gEd4WST4/b+CBwFZLznLI8 j9sZ0DJp5Da+cQ+Iq/YAsJrMdjzgOxSbAnyj6cCVi1ofQb1KBMOAlER3JfzhYCtv TTho6ba0VQXeta5oLWIrqf4Otv8vsdXIb8zpCe/5Y8x9hKBhl5tyWz5Zxu/phSpl vxDG4yQSdc1MjbBQqJuaiLWzDoAZVcoAsmfK7FZj1vgB1byscKp1hGFxundWDbn1 x4QF -----END CERTIFICATE-----Generated at Wed May 13 00:01:29 2026 by rpki-client