$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5b22d77-3182-4224-8e47-32ca7c3d3373.roa File: e5b22d77-3182-4224-8e47-32ca7c3d3373.roa (raw, json) Hash identifier: g+b7E319lrxMFJtdhTxjNBCyOv9mkMRII4U2Yc+yuck= Subject key identifier: 4C:92:4F:21:96:A6:1F:7C:AE:ED:CF:7F:B5:7D:65:4E:7A:CC:69:2D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 01FC3108848C2BE212EF5308F47E7D6A85C6B3E3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5b22d77-3182-4224-8e47-32ca7c3d3373.roa Signing time: Mon 11 May 2026 00:10:08 +0000 ROA not before: Mon 11 May 2026 00:10:08 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:f0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:fc:31:08:84:8c:2b:e2:12:ef:53:08:f4:7e:7d:6a:85:c6:b3:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:10:08 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=73d19bf2721e943b90b3393683ac21c81cb2034d059dbe9c6fcb99cf099b36cf, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:71:dd:53:7d:b4:f4:0e:2f:81:ff:40:88:04: 14:8a:49:3d:f7:71:ec:e9:6d:a4:f7:ee:ad:6d:21: ef:37:cd:aa:d3:0a:ce:a4:e1:5b:ac:96:8b:27:8a: 7d:eb:bb:57:80:40:87:70:95:8c:fa:a0:34:48:ca: 08:da:e8:87:0a:88:e4:46:ab:a7:4b:c4:8d:66:bb: 9d:6f:4d:dd:30:e7:9c:13:ff:a2:ac:6c:ee:9a:5f: e1:c1:ab:27:13:37:5a:d1:ae:90:90:40:38:7e:06: 1b:f2:45:33:a8:aa:3e:24:71:b4:5a:bd:57:8e:34: a1:75:dd:71:66:d7:37:36:13:50:48:c5:33:4c:86: 69:90:b4:29:14:12:b5:97:61:f3:f9:06:6f:3c:92: 25:94:3f:96:59:41:79:2a:8b:9c:39:06:30:5a:c0: 41:26:1c:08:5c:39:5f:b4:83:02:92:70:9f:1b:0f: e0:b9:9b:31:a3:55:f0:7b:4d:59:74:62:67:b9:c4: 1d:62:16:7c:33:60:04:52:de:ff:a7:e7:29:22:9f: 3d:09:1c:13:51:e0:cf:6f:11:db:ee:a1:d7:c8:ef: bf:55:ef:24:d1:80:73:08:a9:0a:32:5c:45:54:39: 59:f4:7d:8a:92:cd:32:24:06:e1:08:4f:90:51:73: 1e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:92:4F:21:96:A6:1F:7C:AE:ED:CF:7F:B5:7D:65:4E:7A:CC:69:2D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5b22d77-3182-4224-8e47-32ca7c3d3373.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:f0c0::/48 Signature Algorithm: sha256WithRSAEncryption 35:eb:2d:63:d4:2d:2c:a8:e3:44:5c:6e:c1:f4:5f:62:62:26: 9e:aa:ad:48:52:a4:60:6b:7b:2e:2c:72:b5:6c:cb:fe:39:b9: d3:cc:89:ee:cb:9e:7b:41:14:cd:50:48:41:f0:e8:1e:26:ff: 34:7f:42:e3:81:c2:11:fd:73:3a:e1:84:b6:90:1d:cf:1c:21: c9:bf:f9:72:9e:02:ac:a8:2d:98:58:85:29:21:3d:cc:9c:8d: 77:69:de:65:ef:9c:3d:64:2f:cc:b9:8a:db:64:4f:0e:e1:ed: c0:2c:eb:86:a5:3b:df:45:01:51:ef:8e:ab:8e:db:1c:54:2f: 75:9e:dd:c4:b4:d8:cd:03:9c:31:3f:58:f6:84:85:51:2b:5a: 3c:21:73:07:c1:87:28:1b:cd:f8:86:db:c6:91:76:01:76:7f: 7c:16:7b:65:d8:03:a5:b8:df:c5:b7:fe:b3:42:8c:cc:5a:a2: 3c:d5:1f:ce:ca:62:ba:5f:6a:73:c3:d3:d0:db:27:a8:a1:a2: d1:e0:93:a4:72:13:20:90:07:17:f3:93:17:ba:d6:d0:ac:4a: 88:7b:95:0a:2c:e5:cb:93:d5:d5:98:28:84:b5:b1:94:a4:dd: 1f:06:19:7f:08:4d:68:09:e8:fb:3b:fd:e7:2f:f7:4e:ce:9e: 00:22:e0:cb -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUAfwxCISMK+IS71MI9H59aoXGs+MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMTAwOFoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNANzNkMTliZjI3MjFlOTQzYjkwYjMz OTM2ODNhYzIxYzgxY2IyMDM0ZDA1OWRiZTljNmZjYjk5Y2YwOTliMzZjZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHHdU3209A4vgf9AiAQUikk993Hs 6W2k9+6tbSHvN82q0wrOpOFbrJaLJ4p967tXgECHcJWM+qA0SMoI2uiHCojkRqun S8SNZrudb03dMOecE/+irGzuml/hwasnEzda0a6QkEA4fgYb8kUzqKo+JHG0Wr1X jjShdd1xZtc3NhNQSMUzTIZpkLQpFBK1l2Hz+QZvPJIllD+WWUF5KoucOQYwWsBB JhwIXDlftIMCknCfGw/guZsxo1Xwe01ZdGJnucQdYhZ8M2AEUt7/p+cpIp89CRwT UeDPbxHb7qHXyO+/Ve8k0YBzCKkKMlxFVDlZ9H2Kks0yJAbhCE+QUXMelQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEySTyGWph98ru3Pf7V9ZU56zGktMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U1YjIyZDc3LTMxODItNDIyNC04ZTQ3LTMyY2E3YzNkMzM3My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8vDAMA0GCSqGSIb3DQEBCwUAA4IBAQA16y1j1C0sqONEXG7B 9F9iYiaeqq1IUqRga3suLHK1bMv+ObnTzInuy557QRTNUEhB8OgeJv80f0LjgcIR /XM64YS2kB3PHCHJv/lyngKsqC2YWIUpIT3MnI13ad5l75w9ZC/MuYrbZE8O4e3A LOuGpTvfRQFR746rjtscVC91nt3EtNjNA5wxP1j2hIVRK1o8IXMHwYcoG834htvG kXYBdn98Fntl2AOluN/Ft/6zQozMWqI81R/OymK6X2pzw9PQ2yeooaLR4JOkchMg kAcX85MXutbQrEqIe5UKLOXLk9XVmCiEtbGUpN0fBhl/CE1oCej7O/3nL/dOzp4A IuDL -----END CERTIFICATE-----Generated at Tue May 12 23:57:22 2026 by rpki-client