$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/026980fd-23cc-4d88-9f03-a9803c8bce71.roa File: 026980fd-23cc-4d88-9f03-a9803c8bce71.roa (raw, json) Hash identifier: t57wrchmziqUJBvKwj9Nmau08cp29guh+8WRjVR6qBE= Subject key identifier: 7A:D1:57:E5:35:F7:93:1F:D6:E6:8C:1B:18:29:4F:79:27:9B:6E:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6367CAF9DF1BFF4455A7485BEACDAE22C7927C26 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/026980fd-23cc-4d88-9f03-a9803c8bce71.roa Signing time: Sun 31 May 2026 00:20:30 +0000 ROA not before: Sun 31 May 2026 00:20:30 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dae9:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:67:ca:f9:df:1b:ff:44:55:a7:48:5b:ea:cd:ae:22:c7:92:7c:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:20:30 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=3f11af4f5cd4ffae2afb7ab709df22d00bcee81126dba859d10b20f9482d2cc9, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:97:d9:6d:ca:f2:0e:cd:46:be:96:19:22:61: 52:79:85:4d:1b:5c:fb:14:84:78:ef:41:ac:35:ee: ad:9d:3b:51:52:6a:26:dd:80:a4:83:3f:22:48:f2: 3a:fa:a1:40:75:a0:29:e9:cf:41:ae:b4:7a:34:1f: 50:5f:ce:85:40:a7:75:7a:80:33:9a:98:3b:5c:68: aa:1f:13:4a:01:e1:39:1a:54:82:6b:84:6d:44:c1: 82:c8:b1:67:a3:52:b3:9f:b0:4b:18:c2:66:86:06: df:d4:15:10:d0:88:9e:1f:f0:84:55:e5:64:79:42: 6f:64:aa:55:0c:52:ad:23:fd:57:68:03:b2:e7:d7: bd:67:e8:5d:fb:81:31:72:98:22:9a:f6:ef:55:22: 9e:21:c4:ea:e5:b1:2d:d3:4a:7e:04:7d:c5:09:5f: b8:78:ae:c4:9b:69:7f:37:96:60:40:77:d4:d5:4d: 59:44:a4:a6:ae:78:ec:59:07:95:c1:60:4e:62:ab: f7:8f:42:0f:f5:54:68:31:16:dc:9c:6f:89:6e:68: 87:60:6b:ec:f7:e6:26:4e:d3:f4:5a:3d:18:34:1a: f7:4c:fc:64:65:65:00:f3:eb:c1:68:08:e3:a4:7e: 42:be:ea:3a:73:f0:34:4e:fe:2b:95:15:20:d7:99: 9b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D1:57:E5:35:F7:93:1F:D6:E6:8C:1B:18:29:4F:79:27:9B:6E:E7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/026980fd-23cc-4d88-9f03-a9803c8bce71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dae9:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 16:f4:56:0e:60:c3:89:0f:9c:4f:2d:c0:ad:1f:25:2a:52:bd: 6c:1a:b7:7b:3e:65:f1:4b:ef:ea:fd:12:2a:ca:d5:9c:89:7c: bd:0a:4f:23:3b:34:29:6c:5e:f3:96:4f:32:fb:b9:c5:7d:5a: b8:55:c8:79:55:67:09:b3:12:a4:96:36:f9:b4:4b:22:02:f0: a6:90:ed:0f:22:c8:20:39:07:57:d5:d9:4e:db:b7:e4:8d:92: 98:db:ba:d7:82:36:aa:20:07:56:fc:09:d6:25:40:ae:b7:41: a7:63:ce:e5:3a:8d:27:d4:48:d4:94:57:0f:ee:7f:7b:0b:44: a9:ff:74:41:22:9e:c5:9c:0e:54:41:12:53:ae:a8:e2:7e:06: 70:53:b4:cd:fa:b7:d9:c4:e9:50:15:45:5e:d8:b5:d9:4e:25: 09:be:61:84:92:7d:06:93:d5:ca:ef:92:ef:7d:21:12:68:76: 62:3b:31:4b:4c:17:23:a9:30:99:8e:62:2c:19:52:79:27:5d: b4:6c:e0:4a:ec:08:7c:ab:6b:7f:c3:6d:40:8b:70:7f:3a:ad: d9:3e:ee:6e:cd:db:8a:f0:7b:3f:05:44:58:1b:11:23:af:8c: 0a:2c:04:45:6e:4b:2a:07:b6:61:83:e7:3f:58:b5:45:35:0f: f2:f0:0d:97 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUY2fK+d8b/0RVp0hb6s2uIseSfCYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMjAzMFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAM2YxMWFmNGY1Y2Q0ZmZhZTJhZmI3 YWI3MDlkZjIyZDAwYmNlZTgxMTI2ZGJhODU5ZDEwYjIwZjk0ODJkMmNjOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZfZbcryDs1GvpYZImFSeYVNG1z7 FIR470GsNe6tnTtRUmom3YCkgz8iSPI6+qFAdaAp6c9BrrR6NB9QX86FQKd1eoAz mpg7XGiqHxNKAeE5GlSCa4RtRMGCyLFno1Kzn7BLGMJmhgbf1BUQ0IieH/CEVeVk eUJvZKpVDFKtI/1XaAOy59e9Z+hd+4ExcpgimvbvVSKeIcTq5bEt00p+BH3FCV+4 eK7Em2l/N5ZgQHfU1U1ZRKSmrnjsWQeVwWBOYqv3j0IP9VRoMRbcnG+JbmiHYGvs 9+YmTtP0Wj0YNBr3TPxkZWUA8+vBaAjjpH5Cvuo6c/A0Tv4rlRUg15mbCQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHrRV+U195Mf1uaMGxgpT3knm27nMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzAyNjk4MGZkLTIzY2MtNGQ4OC05ZjAzLWE5ODAzYzhiY2U3MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6YDAMA0GCSqGSIb3DQEBCwUAA4IBAQAW9FYOYMOJD5xPLcCt HyUqUr1sGrd7PmXxS+/q/RIqytWciXy9Ck8jOzQpbF7zlk8y+7nFfVq4Vch5VWcJ sxKkljb5tEsiAvCmkO0PIsggOQdX1dlO27fkjZKY27rXgjaqIAdW/AnWJUCut0Gn Y87lOo0n1EjUlFcP7n97C0Sp/3RBIp7FnA5UQRJTrqjifgZwU7TN+rfZxOlQFUVe 2LXZTiUJvmGEkn0Gk9XK75LvfSESaHZiOzFLTBcjqTCZjmIsGVJ5J120bOBK7Ah8 q2t/w21Ai3B/Oq3ZPu5uzduK8Hs/BURYGxEjr4wKLARFbksqB7Zhg+c/WLVFNQ/y 8A2X -----END CERTIFICATE-----Generated at Sat Jun 13 09:15:21 2026 by rpki-client