$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d50e303a-6697-4780-b749-2eb970425fe8.roa File: d50e303a-6697-4780-b749-2eb970425fe8.roa (raw, json) Hash identifier: L5zhq/4Dzx/neK1ht0z1pat8BmqQaBEomaRceMSaQ2g= Subject key identifier: 7C:B4:67:B6:F7:97:A9:22:67:B6:6E:8E:30:36:4F:B8:48:35:A9:4A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 304B5EF62FB94B7095F1E01FF9F6C7C5838E8457 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d50e303a-6697-4780-b749-2eb970425fe8.roa Signing time: Wed 06 May 2026 00:00:09 +0000 ROA not before: Wed 06 May 2026 00:00:09 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:7000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:4b:5e:f6:2f:b9:4b:70:95:f1:e0:1f:f9:f6:c7:c5:83:8e:84:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 6 00:00:09 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=fbd6ced7e58d7a47d29a73c5845d926a06cce25f4bf512a59007614f078908c4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:12:65:fe:3d:c0:95:b6:55:ae:00:08:b1:1d: 8c:73:5e:09:a4:20:ba:88:a0:e8:05:63:9c:a3:c5: f5:d4:95:10:da:0f:0f:27:bd:a7:c1:7a:5d:85:5a: ae:b8:49:39:f2:d6:a2:a9:f4:8c:42:ad:36:a1:a6: e3:06:58:5a:b8:6e:3f:9c:bf:94:46:d8:96:00:00: 68:32:13:3d:8e:22:01:64:d8:6c:ff:8c:a0:91:ac: a1:64:f8:31:74:9f:09:01:cc:8e:0e:73:60:5f:c8: d0:10:07:20:b0:a3:f6:b4:5b:53:47:8f:a8:48:e5: c9:62:a3:d1:f3:e4:39:bc:66:da:34:32:ba:3a:eb: 66:75:16:53:2a:f0:83:91:75:18:aa:11:1d:65:de: 4a:e1:3e:b1:2e:11:24:b9:a8:54:a1:42:3f:b2:9d: 35:e6:88:2a:66:c9:4d:02:75:07:48:82:0e:42:7a: 81:cf:d8:77:63:6c:86:84:66:3e:62:3c:4b:af:09: 26:e5:ff:e6:f5:03:a3:c6:c6:4b:83:06:95:02:2b: c4:8e:2d:9a:e3:94:e1:49:2f:7c:f7:31:b5:69:43: 74:44:19:c6:a5:34:e4:52:a3:2a:c3:15:29:06:50: b9:8e:7a:02:26:a9:30:62:2c:94:8f:04:12:49:9d: b6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:B4:67:B6:F7:97:A9:22:67:B6:6E:8E:30:36:4F:B8:48:35:A9:4A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d50e303a-6697-4780-b749-2eb970425fe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:7000::/40 Signature Algorithm: sha256WithRSAEncryption 51:3a:0a:7d:65:cc:5a:3d:a0:e2:65:fe:f2:87:e2:4f:12:b6: 94:00:60:39:df:b8:c5:6e:3c:63:65:10:78:e6:31:d2:20:9a: f1:6d:be:1d:db:0e:04:e4:93:a6:21:87:a0:d9:51:31:44:4c: 97:45:f2:38:31:34:e8:53:f0:30:5c:d7:28:2d:8c:d3:10:b2: bf:7d:bb:68:ed:10:70:e2:33:6c:3f:97:de:54:e7:06:19:17: 4e:a0:6c:bc:b1:a9:22:56:31:f6:25:0b:d3:c5:33:83:4a:6f: 83:3e:ee:61:e6:46:13:e0:1d:78:db:72:b4:2b:4e:74:86:87: a6:31:12:54:5c:3f:40:f2:b6:eb:36:b1:91:70:a9:1a:53:43: 41:83:72:92:23:b6:14:9e:99:e7:f9:83:d4:2f:74:2d:78:08: 25:59:2e:1f:e2:5d:21:cd:a1:01:88:b5:bd:17:6f:fc:9e:c7: 03:c5:3f:e3:ff:62:82:2d:3c:e6:11:cf:13:87:40:61:f9:c9: bb:f3:49:7c:78:61:a8:19:c9:bd:fd:c5:49:15:c8:9c:87:01: 94:2c:04:b6:ee:f2:75:1a:af:02:0c:39:03:f9:14:4c:a4:f5: 7a:42:d1:57:79:ca:0d:b2:15:4a:ca:21:90:bc:56:2c:45:ce: ec:9e:a3:d0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMEte9i+5S3CV8eAf+fbHxYOOhFcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwNjAwMDAwOVoX DTI2MDgwNDIzNTk1OVowejFJMEcGA1UEBRNAZmJkNmNlZDdlNThkN2E0N2QyOWE3 M2M1ODQ1ZDkyNmEwNmNjZTI1ZjRiZjUxMmE1OTAwNzYxNGYwNzg5MDhjNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RJl/j3AlbZVrgAIsR2Mc14JpCC6 iKDoBWOco8X11JUQ2g8PJ72nwXpdhVquuEk58taiqfSMQq02oabjBlhauG4/nL+U RtiWAABoMhM9jiIBZNhs/4ygkayhZPgxdJ8JAcyODnNgX8jQEAcgsKP2tFtTR4+o SOXJYqPR8+Q5vGbaNDK6OutmdRZTKvCDkXUYqhEdZd5K4T6xLhEkuahUoUI/sp01 5ogqZslNAnUHSIIOQnqBz9h3Y2yGhGY+YjxLrwkm5f/m9QOjxsZLgwaVAivEji2a 45ThSS989zG1aUN0RBnGpTTkUqMqwxUpBlC5jnoCJqkwYiyUjwQSSZ22/wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHy0Z7b3l6kiZ7ZujjA2T7hINalKMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q1MGUzMDNhLTY2OTctNDc4MC1iNzQ5LTJlYjk3MDQyNWZlOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9nAwDQYJKoZIhvcNAQELBQADggEBAFE6Cn1lzFo9oOJl/vKH 4k8StpQAYDnfuMVuPGNlEHjmMdIgmvFtvh3bDgTkk6Yhh6DZUTFETJdF8jgxNOhT 8DBc1ygtjNMQsr99u2jtEHDiM2w/l95U5wYZF06gbLyxqSJWMfYlC9PFM4NKb4M+ 7mHmRhPgHXjbcrQrTnSGh6YxElRcP0Dytus2sZFwqRpTQ0GDcpIjthSemef5g9Qv dC14CCVZLh/iXSHNoQGItb0Xb/yexwPFP+P/YoItPOYRzxOHQGH5ybvzSXx4YagZ yb39xUkVyJyHAZQsBLbu8nUarwIMOQP5FEyk9XpC0Vd5yg2yFUrKIZC8VixFzuye o9A= -----END CERTIFICATE-----Generated at Wed May 13 00:06:19 2026 by rpki-client