$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e1567509-f31d-4739-a7a6-ed24530c598b.roa File: e1567509-f31d-4739-a7a6-ed24530c598b.roa (raw, json) Hash identifier: ER6ZGDNBvcsqbC2Pq2zsW+fcYPfI6VCOwyqb4ofAg/g= Subject key identifier: 6F:83:0F:5F:A3:9D:54:AF:48:81:96:E7:99:1B:90:E7:1F:63:17:99 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7EEA08454E35CA8ED89D129B99A0A936D2542A20 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e1567509-f31d-4739-a7a6-ed24530c598b.roa Signing time: Mon 04 May 2026 00:00:05 +0000 ROA not before: Mon 04 May 2026 00:00:05 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 00:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:ea:08:45:4e:35:ca:8e:d8:9d:12:9b:99:a0:a9:36:d2:54:2a:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 4 00:00:05 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=588529583632ff3308057219c6bf89d3af7db932ba609a719384d79aed38ba01, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:38:76:2b:d3:9e:9c:28:3a:21:7f:3d:e0:b7: 40:2c:bf:21:16:32:3f:00:e4:8c:fe:bc:1a:5f:44: 44:6e:79:00:54:b8:62:55:73:18:87:29:36:28:af: 36:32:3b:10:0b:b8:91:db:c3:91:52:bf:ee:e8:b2: 46:31:99:e7:d2:78:fe:8e:88:b0:ab:c8:8e:df:d6: 7c:74:e6:77:cd:4b:f0:2e:b2:a3:f8:ca:0b:ed:3a: e4:23:f6:9e:58:96:61:d0:78:c6:e1:a9:4e:cc:05: 05:33:41:ef:c9:de:ff:55:95:cb:b6:b8:50:7f:42: 4c:dc:c1:de:66:51:16:cb:e7:05:9b:46:59:b3:8c: f3:21:39:05:5f:b5:f2:dc:75:47:b1:1e:78:59:45: ec:32:6a:30:1a:30:ca:03:3e:7c:d9:0d:c8:42:76: 8d:c2:8e:bc:1d:e0:4b:b1:59:cd:c4:e8:42:dc:0e: 19:e5:40:3a:0c:65:73:34:0e:9c:3d:5f:e2:94:b7: 27:ef:d2:4b:df:57:21:22:59:fd:c2:69:d0:6f:17: 6d:11:7f:d6:d8:0d:bb:f5:8f:2f:96:ca:a2:43:d5: d3:c5:be:35:45:9a:ad:23:0a:75:9a:5c:35:5d:41: 80:42:11:53:65:02:b9:d9:24:0d:57:08:cc:f7:6a: b7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:83:0F:5F:A3:9D:54:AF:48:81:96:E7:99:1B:90:E7:1F:63:17:99 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e1567509-f31d-4739-a7a6-ed24530c598b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:c000::/40 Signature Algorithm: sha256WithRSAEncryption 89:d6:0e:1e:b0:25:2e:d7:f6:33:a1:39:c4:3c:1f:60:93:f1: 93:d0:e9:70:19:e7:c0:35:6c:84:18:c4:82:f0:7b:1a:73:32: 8f:b9:70:de:d6:be:71:b2:c4:49:51:4f:6c:a8:67:01:e1:6e: af:81:b2:ba:ea:3c:b5:38:90:db:6c:a1:86:3e:e5:cb:cc:bc: 8a:04:a8:31:78:2d:3c:e6:8f:22:20:5c:20:f5:58:73:80:62: c9:65:1a:cc:9b:b9:92:56:78:cc:ea:9d:d4:76:ac:d6:f5:43: c6:62:8d:5a:e3:9f:9d:15:97:c5:aa:22:8e:00:e4:36:0d:1a: 9c:ee:8d:2e:76:7d:15:28:3e:c9:da:00:6a:a4:ac:26:61:1c: e2:8c:62:b9:27:59:fd:eb:bb:35:db:53:fe:48:25:1c:92:40: 55:9f:de:3c:b3:df:8a:b4:ab:54:e2:da:0e:c0:8d:24:d7:56: f8:7a:bd:c9:88:b4:9c:7d:83:20:3e:ad:c7:70:98:f3:2b:d1: e5:7e:9b:57:66:88:32:0a:09:f0:6e:b9:4a:24:a5:d0:c4:34: 34:e8:0c:af:f2:9e:ff:02:89:2f:d3:48:89:2f:b1:c7:2a:a7: 07:0f:2a:31:1f:b7:97:63:b6:41:07:c8:66:c0:de:fa:6e:d8: 49:99:bd:d3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUfuoIRU41yo7YnRKbmaCpNtJUKiAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwNDAwMDAwNVoX DTI2MDgwMjIzNTk1OVowejFJMEcGA1UEBRNANTg4NTI5NTgzNjMyZmYzMzA4MDU3 MjE5YzZiZjg5ZDNhZjdkYjkzMmJhNjA5YTcxOTM4NGQ3OWFlZDM4YmEwMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjh2K9OenCg6IX894LdALL8hFjI/ AOSM/rwaX0REbnkAVLhiVXMYhyk2KK82MjsQC7iR28ORUr/u6LJGMZnn0nj+joiw q8iO39Z8dOZ3zUvwLrKj+MoL7TrkI/aeWJZh0HjG4alOzAUFM0Hvyd7/VZXLtrhQ f0JM3MHeZlEWy+cFm0ZZs4zzITkFX7Xy3HVHsR54WUXsMmowGjDKAz582Q3IQnaN wo68HeBLsVnNxOhC3A4Z5UA6DGVzNA6cPV/ilLcn79JL31chIln9wmnQbxdtEX/W 2A279Y8vlsqiQ9XTxb41RZqtIwp1mlw1XUGAQhFTZQK52SQNVwjM92q3RQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFG+DD1+jnVSvSIGW55kbkOcfYxeZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2UxNTY3NTA5LWYzMWQtNDczOS1hN2E2LWVkMjQ1MzBjNTk4Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9cAwDQYJKoZIhvcNAQELBQADggEBAInWDh6wJS7X9jOhOcQ8 H2CT8ZPQ6XAZ58A1bIQYxILwexpzMo+5cN7WvnGyxElRT2yoZwHhbq+BsrrqPLU4 kNtsoYY+5cvMvIoEqDF4LTzmjyIgXCD1WHOAYsllGsybuZJWeMzqndR2rNb1Q8Zi jVrjn50Vl8WqIo4A5DYNGpzujS52fRUoPsnaAGqkrCZhHOKMYrknWf3ruzXbU/5I JRySQFWf3jyz34q0q1Ti2g7AjSTXVvh6vcmItJx9gyA+rcdwmPMr0eV+m1dmiDIK CfBuuUokpdDENDToDK/ynv8CiS/TSIkvsccqpwcPKjEft5djtkEHyGbA3vpu2EmZ vdM= -----END CERTIFICATE-----Generated at Wed May 13 03:13:30 2026 by rpki-client