$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e0ae0175-f350-4493-ae35-4deb479e034e.roa File: e0ae0175-f350-4493-ae35-4deb479e034e.roa (raw, json) Hash identifier: 4orwqHloLSHs6ncYaaiqjLCT/wHn+idkzmVaeyeAxBQ= Subject key identifier: 2F:B0:70:F5:FD:22:CD:75:B0:C0:C2:C3:6E:45:9B:7A:CF:CD:97:74 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3B5FBB3BAE8D3FBA337C8B32EFDFD129279FE5E9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e0ae0175-f350-4493-ae35-4deb479e034e.roa Signing time: Tue 28 Apr 2026 00:00:03 +0000 ROA not before: Tue 28 Apr 2026 00:00:03 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:da24:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:5f:bb:3b:ae:8d:3f:ba:33:7c:8b:32:ef:df:d1:29:27:9f:e5:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 28 00:00:03 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=eae2a745b414911eab81c03589d58536490a208adad044b0567b8d25fa015c41, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:10:38:4b:a3:8d:9c:9a:48:b6:d7:94:5a:f2: f5:ca:61:be:ad:55:24:8c:84:bc:63:38:4a:38:85: 8e:d7:ee:75:3c:6a:79:2d:f2:b7:07:32:d9:35:09: 3d:58:b8:38:f7:33:77:14:1e:c2:79:73:0d:cc:f8: bc:9f:88:97:92:f5:62:1e:48:22:75:0b:36:e4:c9: 54:ab:51:f3:f3:f0:20:d1:4e:94:b9:87:b0:f9:60: cb:55:ca:f2:0e:4f:e8:21:63:61:d7:2c:29:ec:a7: 97:e5:52:3b:6f:a2:9e:90:4f:48:c1:e7:2b:91:e0: c1:9c:e1:b0:da:86:e0:96:4a:af:04:b4:21:25:62: 96:a7:96:4c:a3:86:9d:00:06:e7:6f:1d:f2:f9:7b: 22:fe:a4:9c:57:10:56:a5:cc:89:9e:d2:9c:5b:5c: 09:55:83:47:00:2f:d7:9f:33:48:32:06:e9:36:64: 25:82:7d:46:35:45:e9:0b:2d:2f:01:cd:75:12:0a: 6c:ba:35:33:5d:f9:f5:7e:a5:f5:4e:24:0b:35:7b: f8:d5:b5:1e:88:2d:4a:d8:be:ef:9f:4c:17:1c:2f: df:4e:42:52:dd:5b:97:51:25:5a:51:97:ec:af:cc: 82:7b:07:8c:4b:c7:cc:7a:f7:ea:68:d3:9a:c6:bd: dc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B0:70:F5:FD:22:CD:75:B0:C0:C2:C3:6E:45:9B:7A:CF:CD:97:74 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e0ae0175-f350-4493-ae35-4deb479e034e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da24:8000::/36 Signature Algorithm: sha256WithRSAEncryption 2b:8c:77:54:3c:03:6e:12:45:ab:b4:ee:60:b8:24:93:4d:b5: 31:09:33:1a:6f:7f:3a:f9:4d:01:d6:b0:37:6f:c2:0b:7a:6c: 0b:7a:57:f3:5d:a4:fd:9a:b4:22:2a:b1:c5:3f:c0:14:c9:59: 32:ae:c7:36:80:07:ae:19:75:dc:a5:19:7f:09:1a:ff:bb:0f: 20:5e:f4:97:33:f9:31:c0:b5:88:e3:8b:8c:a0:3c:40:b5:01: 6d:f4:54:3d:11:4a:74:44:5a:85:48:95:29:65:de:d9:be:3d: 0b:e4:71:b7:01:14:4c:b2:4c:c6:19:a7:e9:99:51:d8:b4:b1: 52:82:13:27:29:de:71:0a:90:73:d7:06:bf:81:b2:42:9a:2b: ca:c3:ad:e6:5f:58:8e:27:7d:c3:e4:f1:d2:f1:df:f5:83:e2: 7f:f3:27:e9:b1:94:02:ad:72:67:4d:c4:dc:d5:3d:0f:6c:1a: 85:98:04:29:a1:4a:cc:c1:8d:38:dd:81:b0:2a:e3:a0:ae:c6: e9:2c:97:80:15:d2:69:20:af:c3:b9:d0:8b:bd:07:4d:27:e8: 7a:1b:e6:48:53:42:bb:cb:0e:66:7f:a0:c7:52:c2:37:a6:55: 6a:8c:cd:fd:21:ec:05:bc:ed:a7:1d:71:ef:10:e2:c1:e0:10: 8c:a0:be:ce -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUO1+7O66NP7ozfIsy79/RKSef5ekwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDQyODAwMDAwM1oX DTI2MDcyNzIzNTk1OVowejFJMEcGA1UEBRNAZWFlMmE3NDViNDE0OTExZWFiODFj MDM1ODlkNTg1MzY0OTBhMjA4YWRhZDA0NGIwNTY3YjhkMjVmYTAxNWM0MTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBA4S6ONnJpItteUWvL1ymG+rVUk jIS8YzhKOIWO1+51PGp5LfK3BzLZNQk9WLg49zN3FB7CeXMNzPi8n4iXkvViHkgi dQs25MlUq1Hz8/Ag0U6UuYew+WDLVcryDk/oIWNh1ywp7KeX5VI7b6KekE9Iwecr keDBnOGw2obglkqvBLQhJWKWp5ZMo4adAAbnbx3y+Xsi/qScVxBWpcyJntKcW1wJ VYNHAC/XnzNIMgbpNmQlgn1GNUXpCy0vAc11EgpsujUzXfn1fqX1TiQLNXv41bUe iC1K2L7vn0wXHC/fTkJS3VuXUSVaUZfsr8yCeweMS8fMevfqaNOaxr3crwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFC+wcPX9Is11sMDCw25Fm3rPzZd0MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2UwYWUwMTc1LWYzNTAtNDQ5My1hZTM1LTRkZWI0NzllMDM0ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaJIAwDQYJKoZIhvcNAQELBQADggEBACuMd1Q8A24SRau07mC4 JJNNtTEJMxpvfzr5TQHWsDdvwgt6bAt6V/NdpP2atCIqscU/wBTJWTKuxzaAB64Z ddylGX8JGv+7DyBe9Jcz+THAtYjji4ygPEC1AW30VD0RSnREWoVIlSll3tm+PQvk cbcBFEyyTMYZp+mZUdi0sVKCEycp3nEKkHPXBr+BskKaK8rDreZfWI4nfcPk8dLx 3/WD4n/zJ+mxlAKtcmdNxNzVPQ9sGoWYBCmhSszBjTjdgbAq46Cuxuksl4AV0mkg r8O50Iu9B00n6Hob5khTQrvLDmZ/oMdSwjemVWqMzf0h7AW87acdce8Q4sHgEIyg vs4= -----END CERTIFICATE-----Generated at Wed May 13 00:23:58 2026 by rpki-client