$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1da204b5-0e3f-4900-a99d-d43a795ecf89.roa File: 1da204b5-0e3f-4900-a99d-d43a795ecf89.roa (raw, json) Hash identifier: lMx/IDL6cLNy1KrzSFpZyMYBKgskVOswES69nWvn7QI= Subject key identifier: A1:7B:8D:83:8F:DF:1D:75:3B:04:92:5B:B7:3A:41:36:2E:F4:9F:A2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5C5D676F39BC0DEAD429CAB6BEA0F6172AB33E03 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1da204b5-0e3f-4900-a99d-d43a795ecf89.roa Signing time: Wed 13 May 2026 00:30:12 +0000 ROA not before: Wed 13 May 2026 00:30:12 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1c:8400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:5d:67:6f:39:bc:0d:ea:d4:29:ca:b6:be:a0:f6:17:2a:b3:3e:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:30:12 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=c8bf75a5c07562df614fdacace4956af88773598447f2dd4ab722ae071a17718, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a1:4f:31:dd:50:9e:b4:ea:3c:a5:4b:f3:ff: 4e:20:39:18:4f:11:fb:87:26:f8:ea:5d:c1:4a:7b: 0a:2a:9a:3a:59:c3:a2:dc:e4:22:44:1f:b6:be:8d: 64:bd:ff:b7:8f:45:90:16:e6:01:ba:b9:be:d8:1e: 56:8b:25:37:d9:fc:a2:8e:ae:3f:56:af:f8:97:cc: 1f:7f:a2:da:7e:22:0d:fb:fd:d7:93:8e:eb:a6:91: d0:02:89:14:84:7f:33:9f:78:d3:02:77:19:3f:7f: 2b:ea:ef:ed:97:a0:50:a3:e3:1c:cf:97:ae:0b:be: 0e:f7:ee:4d:38:b3:5e:be:64:08:cb:d1:a0:61:e1: b7:bd:b2:d2:08:1c:be:08:85:d4:87:15:ec:e0:10: 71:87:e4:9f:54:42:72:69:f3:77:cf:24:ff:12:88: 1d:df:99:eb:ac:ad:4e:e4:cd:ad:5f:26:af:d7:1b: 81:d1:d9:c6:a1:17:54:cb:1a:71:cc:95:9d:6a:c4: 41:15:ca:dc:ed:12:ed:6c:23:c3:de:15:dd:49:d2: 8b:81:2b:d2:d4:d9:79:c8:e4:c0:d8:e4:31:ca:5b: 5e:8c:42:2c:86:c8:3a:0b:fb:e4:91:82:50:07:33: 24:7f:23:12:98:6b:a6:54:b8:6b:56:fb:47:e2:41: 33:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:7B:8D:83:8F:DF:1D:75:3B:04:92:5B:B7:3A:41:36:2E:F4:9F:A2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1da204b5-0e3f-4900-a99d-d43a795ecf89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1c:8400::/38 Signature Algorithm: sha256WithRSAEncryption 2e:55:8a:93:35:f7:be:d7:29:ba:c5:b4:c2:d2:e7:fe:00:92: ee:de:75:c9:28:d7:48:61:86:59:ac:a4:fc:a5:57:1f:b7:06: 50:25:41:86:a4:bb:53:5b:6a:4a:3e:91:37:b8:a1:bf:5c:f8: dd:25:28:38:cd:a0:db:24:04:4e:79:85:b9:be:90:5a:a1:84: 87:af:ce:20:81:dc:34:13:00:e0:28:9c:da:89:49:ed:41:cf: 02:5f:a9:e0:42:ea:57:ca:84:d4:a4:d2:93:c4:35:a9:85:9b: 03:95:67:08:78:5d:17:55:89:c2:62:38:b8:61:75:45:73:1f: ee:66:e6:e8:4b:10:78:5d:5c:21:41:d3:52:a6:84:72:73:b3: 8d:a9:ce:43:a6:9d:20:be:9b:a2:96:23:66:ff:2f:35:e0:ed: 72:3d:c6:c2:e1:a2:84:5f:89:20:14:1e:ff:9b:69:6a:17:48: 98:8b:f0:1a:7a:0a:af:1f:ca:e6:56:7c:2e:0c:43:80:b1:4c: 7c:ff:85:0b:38:61:15:66:40:b3:7e:39:fc:ef:4a:9b:9e:69: f6:a2:a4:cb:16:65:fb:08:e2:fe:ff:ad:7d:7e:83:08:c6:3d: 09:a7:91:ee:0b:9b:48:1e:65:b4:66:15:74:ef:3f:f5:2c:ac: 28:0b:b1:72 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUXF1nbzm8DerUKcq2vqD2FyqzPgMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMzAxMloX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAYzhiZjc1YTVjMDc1NjJkZjYxNGZk YWNhY2U0OTU2YWY4ODc3MzU5ODQ0N2YyZGQ0YWI3MjJhZTA3MWExNzcxODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7KFPMd1QnrTqPKVL8/9OIDkYTxH7 hyb46l3BSnsKKpo6WcOi3OQiRB+2vo1kvf+3j0WQFuYBurm+2B5WiyU32fyijq4/ Vq/4l8wff6LafiIN+/3Xk47rppHQAokUhH8zn3jTAncZP38r6u/tl6BQo+Mcz5eu C74O9+5NOLNevmQIy9GgYeG3vbLSCBy+CIXUhxXs4BBxh+SfVEJyafN3zyT/Eogd 35nrrK1O5M2tXyav1xuB0dnGoRdUyxpxzJWdasRBFcrc7RLtbCPD3hXdSdKLgSvS 1Nl5yOTA2OQxyltejEIshsg6C/vkkYJQBzMkfyMSmGumVLhrVvtH4kEzZQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKF7jYOP3x11OwSSW7c6QTYu9J+iMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFkYTIwNGI1LTBlM2YtNDkwMC1hOTlkLWQ0M2E3OTVlY2Y4OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaHIQwDQYJKoZIhvcNAQELBQADggEBAC5VipM1977XKbrFtMLS 5/4Aku7edcko10hhhlmspPylVx+3BlAlQYaku1Nbako+kTe4ob9c+N0lKDjNoNsk BE55hbm+kFqhhIevziCB3DQTAOAonNqJSe1BzwJfqeBC6lfKhNSk0pPENamFmwOV Zwh4XRdVicJiOLhhdUVzH+5m5uhLEHhdXCFB01KmhHJzs42pzkOmnSC+m6KWI2b/ LzXg7XI9xsLhooRfiSAUHv+baWoXSJiL8Bp6Cq8fyuZWfC4MQ4CxTHz/hQs4YRVm QLN+OfzvSpueafaipMsWZfsI4v7/rX1+gwjGPQmnke4Lm0geZbRmFXTvP/UsrCgL sXI= -----END CERTIFICATE-----Generated at Sat Jun 13 09:15:24 2026 by rpki-client