$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d8ebfb4d-f771-4efb-821c-cd11d5a24a47.roa File: d8ebfb4d-f771-4efb-821c-cd11d5a24a47.roa (raw, json) Hash identifier: 3rcQDF6rXcib76iF4CE8OF9RLheedr8YMUGaKqLAVvM= Subject key identifier: B6:3D:EE:C7:E5:59:D8:BB:A3:4D:4F:FA:F4:57:64:BF:09:C7:A5:C6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 634E4765865AEAF6967FF29BDE363A942A82EC25 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d8ebfb4d-f771-4efb-821c-cd11d5a24a47.roa Signing time: Sat 09 May 2026 00:00:59 +0000 ROA not before: Sat 09 May 2026 00:00:59 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:c080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:4e:47:65:86:5a:ea:f6:96:7f:f2:9b:de:36:3a:94:2a:82:ec:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 9 00:00:59 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=408865e4707befd0fc1bf27dd49720381f61fa98fbe35435065cefbc04c8c8cf, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:84:02:8c:11:ee:b2:7d:30:6b:a0:a4:4a:ae: 9e:25:58:4a:8b:d1:53:47:d8:42:d0:14:fe:cf:7f: a0:c4:f6:0f:42:79:b5:b5:fd:1a:75:d9:19:01:f2: 0f:84:1b:98:2f:56:7b:39:53:3b:28:4e:21:49:18: 51:e9:96:ab:19:2d:1e:0a:96:c6:5f:91:ed:29:1d: 18:ec:52:76:77:06:de:85:c3:97:5a:b9:83:75:6b: bb:ab:f9:95:14:2a:85:c1:96:cc:a4:9d:2a:1e:ff: 09:92:73:3f:8c:09:66:c3:11:0a:30:e2:ee:9d:63: 7b:80:3d:db:a9:2e:c3:ec:a1:52:ef:19:ee:7a:0f: d0:4f:f8:3c:eb:ec:bb:66:83:8b:70:37:0f:a0:ef: 95:5e:5e:5d:55:32:71:26:10:c4:3a:74:2e:e3:90: 78:16:51:55:9f:70:d0:c8:36:17:bd:9c:21:28:7e: 27:8a:e9:96:f1:78:a4:cb:c9:d7:72:3d:1f:a5:81: 2b:de:41:34:b8:8a:87:de:b4:0b:96:57:3b:c3:07: 4f:6c:05:52:5d:77:e7:82:10:bb:cc:7f:f3:29:48: 44:de:a7:95:87:00:fc:34:a1:f5:18:06:7b:92:37: 6a:ea:58:b2:65:92:bb:4c:49:86:a5:94:d9:85:89: b7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3D:EE:C7:E5:59:D8:BB:A3:4D:4F:FA:F4:57:64:BF:09:C7:A5:C6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d8ebfb4d-f771-4efb-821c-cd11d5a24a47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:c080::/48 Signature Algorithm: sha256WithRSAEncryption b5:68:37:e4:a6:3e:35:af:78:20:32:7d:82:d5:34:fb:ed:1a: e1:b0:80:03:f6:ad:77:b0:ef:b8:2b:6c:dd:16:49:23:67:d5: c5:35:b2:2e:ef:8e:51:fc:0c:d7:b1:92:fc:6c:ee:69:23:2d: f1:8a:d2:f0:d0:4d:8c:ff:2d:39:c2:4a:08:e4:bf:81:00:49: 4a:71:b1:f9:d2:7b:a9:50:a0:62:4a:69:b4:40:90:cc:44:16: 39:f6:1d:88:3a:ef:cc:74:86:80:49:5f:cc:1c:e6:83:ee:bf: 37:61:78:cc:1a:9e:df:a2:37:e6:a4:15:a2:05:6c:9f:5c:24: e9:23:43:b4:64:b7:12:e4:78:aa:45:10:f3:6c:30:47:1f:22: 79:54:35:99:9a:a8:72:9d:11:b1:65:91:7e:b1:c1:6e:e8:e6: 04:91:18:e4:a2:20:6d:bc:9d:09:2f:bf:9a:ea:12:dd:e3:5e: 39:b9:b8:dc:ce:ac:38:20:93:10:91:b9:a4:a8:9c:b2:91:79: 3f:fb:a4:fb:f9:c3:43:fc:37:0a:87:11:21:c8:43:7b:9a:7d: e2:05:ce:72:3b:2b:09:f1:49:12:3e:b8:1f:95:4b:d2:2e:2a: 7b:da:d8:60:40:89:09:b4:c1:6a:38:0e:fd:3d:66:4d:cf:9a: 74:79:71:18 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUY05HZYZa6vaWf/Kb3jY6lCqC7CUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwOTAwMDA1OVoX DTI2MDgwNzIzNTk1OVowejFJMEcGA1UEBRNANDA4ODY1ZTQ3MDdiZWZkMGZjMWJm MjdkZDQ5NzIwMzgxZjYxZmE5OGZiZTM1NDM1MDY1Y2VmYmMwNGM4YzhjZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiIQCjBHusn0wa6CkSq6eJVhKi9FT R9hC0BT+z3+gxPYPQnm1tf0addkZAfIPhBuYL1Z7OVM7KE4hSRhR6ZarGS0eCpbG X5HtKR0Y7FJ2dwbehcOXWrmDdWu7q/mVFCqFwZbMpJ0qHv8JknM/jAlmwxEKMOLu nWN7gD3bqS7D7KFS7xnueg/QT/g86+y7ZoOLcDcPoO+VXl5dVTJxJhDEOnQu45B4 FlFVn3DQyDYXvZwhKH4niumW8Xiky8nXcj0fpYEr3kE0uIqH3rQLllc7wwdPbAVS XXfnghC7zH/zKUhE3qeVhwD8NKH1GAZ7kjdq6liyZZK7TEmGpZTZhYm3vQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLY97sflWdi7o01P+vRXZL8Jx6XGMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q4ZWJmYjRkLWY3NzEtNGVmYi04MjFjLWNkMTFkNWEyNGE0Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYcCAMA0GCSqGSIb3DQEBCwUAA4IBAQC1aDfkpj41r3ggMn2C 1TT77RrhsIAD9q13sO+4K2zdFkkjZ9XFNbIu745R/AzXsZL8bO5pIy3xitLw0E2M /y05wkoI5L+BAElKcbH50nupUKBiSmm0QJDMRBY59h2IOu/MdIaASV/MHOaD7r83 YXjMGp7fojfmpBWiBWyfXCTpI0O0ZLcS5HiqRRDzbDBHHyJ5VDWZmqhynRGxZZF+ scFu6OYEkRjkoiBtvJ0JL7+a6hLd4145ubjczqw4IJMQkbmkqJyykXk/+6T7+cND /DcKhxEhyEN7mn3iBc5yOysJ8UkSPrgflUvSLip72thgQIkJtMFqOA79PWZNz5p0 eXEY -----END CERTIFICATE-----Generated at Tue May 12 23:42:59 2026 by rpki-client