$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5d5cb49-ec19-4933-b36e-be6e51b97a92.roa File: e5d5cb49-ec19-4933-b36e-be6e51b97a92.roa (raw, json) Hash identifier: 8xGAFf99oELvvHZaMCnDoraYfOXOXzP0UjDOFZfRP3k= Subject key identifier: B0:7A:FD:09:F9:2E:40:B3:E5:FE:AF:91:1E:D9:61:55:B5:44:61:1E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7DA57AD83DE5416C7534AFA265AD853B98C8F7C9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5d5cb49-ec19-4933-b36e-be6e51b97a92.roa Signing time: Mon 11 May 2026 00:00:36 +0000 ROA not before: Mon 11 May 2026 00:00:36 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:2840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:a5:7a:d8:3d:e5:41:6c:75:34:af:a2:65:ad:85:3b:98:c8:f7:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:00:36 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=8bd638b24ddfa93345471a033c6fb5ba04492aaf3425b79a8459c8ddc989eaea, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:21:9e:31:72:03:20:9a:20:c8:81:c7:62:92: 19:22:b0:b4:59:40:54:7a:c7:48:89:26:c0:fc:b0: 36:35:56:62:5e:1f:e5:d1:03:c6:fc:c3:ae:e5:76: 4a:14:9e:72:c6:55:2d:0b:bf:0c:9b:a5:70:e8:ce: 8d:08:8d:b3:f3:71:f7:93:68:8e:49:ca:fb:ff:a1: 95:c4:b8:bc:ae:cc:a1:19:d1:cc:3b:f4:94:2d:48: c7:f1:dd:44:d5:36:d5:9c:f9:45:83:63:cd:b4:e8: 67:84:44:2f:46:fb:85:57:3e:db:e2:b7:a2:6c:b6: ff:3b:58:db:38:fa:54:3e:6b:23:ea:39:b2:0c:98: 64:8a:6a:46:b5:fb:ef:23:fa:2f:d9:76:cb:c3:e0: 7a:96:4a:fd:aa:92:ef:bb:6a:40:c7:31:03:86:05: 08:c3:5d:92:68:1e:4e:d1:83:ae:41:05:8e:48:73: 76:17:a6:49:c9:5d:35:57:2c:cc:ea:3d:3e:e3:87: 4c:e3:b5:4b:72:f6:65:3d:05:68:ec:b2:f7:0f:9c: ef:21:ba:1a:90:5d:12:81:93:4e:59:66:84:14:bc: fa:0b:56:cb:c7:53:bf:08:a0:0a:16:a2:ff:af:b4: 2d:af:98:7c:24:23:9b:ce:0c:2b:20:d5:c3:f8:21: 16:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:7A:FD:09:F9:2E:40:B3:E5:FE:AF:91:1E:D9:61:55:B5:44:61:1E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5d5cb49-ec19-4933-b36e-be6e51b97a92.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:2840::/48 Signature Algorithm: sha256WithRSAEncryption 38:39:1c:99:ae:56:f8:24:eb:6c:d2:7e:b3:39:af:59:c9:aa: 46:8d:f5:7d:3c:4d:c9:73:db:d8:1b:42:21:c9:c3:56:93:25: 54:4c:01:54:50:e7:1c:b8:69:cf:95:0e:26:af:ff:9b:ef:aa: 53:27:a2:f4:de:9e:b6:d5:2a:07:14:17:84:49:18:0a:17:ea: 6f:ce:eb:dc:71:c0:6a:72:50:75:03:bd:bb:b6:79:5e:ff:1e: 1f:af:41:44:9d:ac:a6:99:42:d8:71:77:d9:a2:3c:58:5f:18: cf:9b:a4:db:c9:17:7d:7d:e8:86:be:50:eb:92:22:45:59:12: 36:67:5d:84:92:ed:89:d2:ed:78:b2:f3:56:4a:ea:06:a4:a4: dc:28:f3:bd:cc:46:cf:a3:46:a4:26:9c:dd:0f:06:7b:87:ce: 91:e7:b9:9a:aa:5d:bd:5a:64:e9:16:99:a2:ac:b1:32:6c:d7: 1d:5d:9c:ee:3a:6a:23:c5:74:c3:b5:17:c1:48:75:7f:a8:c9: 5a:bb:8b:a8:19:0e:77:da:44:9a:22:eb:db:8f:9e:c1:5c:0a: 3f:5a:3c:6c:c5:d1:7a:eb:70:48:8d:28:88:34:ee:0d:ed:f0: b1:71:38:a5:3d:39:5a:0c:41:96:15:2c:2a:1d:42:f4:d2:35: ce:b4:5b:68 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUfaV62D3lQWx1NK+iZa2FO5jI98kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMDAzNloX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAOGJkNjM4YjI0ZGRmYTkzMzQ1NDcx YTAzM2M2ZmI1YmEwNDQ5MmFhZjM0MjViNzlhODQ1OWM4ZGRjOTg5ZWFlYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyGeMXIDIJogyIHHYpIZIrC0WUBU esdIiSbA/LA2NVZiXh/l0QPG/MOu5XZKFJ5yxlUtC78Mm6Vw6M6NCI2z83H3k2iO Scr7/6GVxLi8rsyhGdHMO/SULUjH8d1E1TbVnPlFg2PNtOhnhEQvRvuFVz7b4rei bLb/O1jbOPpUPmsj6jmyDJhkimpGtfvvI/ov2XbLw+B6lkr9qpLvu2pAxzEDhgUI w12SaB5O0YOuQQWOSHN2F6ZJyV01VyzM6j0+44dM47VLcvZlPQVo7LL3D5zvIboa kF0SgZNOWWaEFLz6C1bLx1O/CKAKFqL/r7Qtr5h8JCObzgwrINXD+CEWFwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLB6/Qn5LkCz5f6vkR7ZYVW1RGEeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U1ZDVjYjQ5LWVjMTktNDkzMy1iMzZlLWJlNmU1MWI5N2E5Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaOChAMA0GCSqGSIb3DQEBCwUAA4IBAQA4ORyZrlb4JOts0n6z Oa9ZyapGjfV9PE3Jc9vYG0IhycNWkyVUTAFUUOccuGnPlQ4mr/+b76pTJ6L03p62 1SoHFBeESRgKF+pvzuvcccBqclB1A727tnle/x4fr0FEnaymmULYcXfZojxYXxjP m6TbyRd9feiGvlDrkiJFWRI2Z12Eku2J0u14svNWSuoGpKTcKPO9zEbPo0akJpzd DwZ7h86R57maql29WmTpFpmirLEybNcdXZzuOmojxXTDtRfBSHV/qMlau4uoGQ53 2kSaIuvbj57BXAo/WjxsxdF663BIjSiINO4N7fCxcTilPTlaDEGWFSwqHUL00jXO tFto -----END CERTIFICATE-----Generated at Tue May 12 23:30:48 2026 by rpki-client