$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/36a61bb0-d5ee-40f9-b3eb-0fa1d1a4956c.roa File: 36a61bb0-d5ee-40f9-b3eb-0fa1d1a4956c.roa (raw, json) Hash identifier: 4XFZnjiEpj8FtHAJ3qUZQtCEGKfgpnXopUs/wYFTqbk= Subject key identifier: 14:8B:D3:4D:2C:A4:2E:0E:5E:AE:1F:43:6D:12:9A:B7:7D:0F:BD:FE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6321E2230C3B92FC132C57CBAF1A167DCC433DD3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/36a61bb0-d5ee-40f9-b3eb-0fa1d1a4956c.roa Signing time: Thu 14 May 2026 00:00:33 +0000 ROA not before: Thu 14 May 2026 00:00:33 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da36::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:21:e2:23:0c:3b:92:fc:13:2c:57:cb:af:1a:16:7d:cc:43:3d:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 14 00:00:33 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=a51e1e412b20f19d7529ee601d0901b3583792e4f251b4d0b2e3a979f6f255eb, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:22:44:87:be:f9:b2:9d:54:18:ab:8a:21:60: 5f:9b:0b:ab:31:e7:5a:b3:b0:0c:76:15:3d:29:af: 6a:68:8e:24:16:1f:d3:91:0c:aa:fa:c1:42:de:e5: a3:ab:05:4e:8b:62:2a:b0:a4:44:14:63:56:dc:5c: c0:ec:fc:38:63:e2:a4:c0:04:1a:37:2b:4e:3c:b0: fc:b1:65:89:bc:b8:b0:92:57:9b:a2:02:fe:06:57: 8c:7e:e0:50:e8:ec:3c:c5:dd:e7:b1:73:ad:10:72: 20:48:93:a0:c7:0b:ed:8a:df:a2:dd:30:ae:e7:9b: de:b3:89:2b:cd:34:7b:6c:b2:0f:c5:41:ad:88:ac: 76:9e:78:48:eb:d1:ff:47:c8:fb:c9:33:bf:73:4c: dc:08:7e:3f:76:30:66:92:df:cd:0e:f9:4c:bc:97: 7a:31:b5:28:22:d3:83:10:4a:85:32:f8:98:b0:c2: 6a:ef:33:37:e3:b2:7e:fb:35:8e:39:ff:31:78:6e: 7f:dc:e8:b1:f1:78:db:14:03:a9:ff:a2:af:c0:71: 62:22:a2:88:62:a2:3e:c3:28:83:41:ef:8a:a0:af: a2:1f:91:f3:b5:bf:e9:6b:ff:12:ca:ee:47:b8:df: c8:b3:7a:b5:ff:21:dd:7d:84:40:e7:e4:18:97:92: 7d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8B:D3:4D:2C:A4:2E:0E:5E:AE:1F:43:6D:12:9A:B7:7D:0F:BD:FE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/36a61bb0-d5ee-40f9-b3eb-0fa1d1a4956c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da36::/32 Signature Algorithm: sha256WithRSAEncryption 13:30:e9:a2:59:d2:68:0c:a5:81:6a:70:23:bc:3e:94:c6:8b: 4f:ea:db:64:e9:e7:37:4c:f5:d7:32:e8:1a:b6:4f:87:a6:b5: e6:19:65:c7:2c:39:32:9c:52:29:4c:2c:f5:7e:62:8e:5c:02: 7e:39:62:57:a0:e2:69:56:95:5b:cc:3e:a9:99:8e:cf:ea:56: 10:ae:fb:61:e7:64:28:f6:fe:21:d7:81:dc:f7:f7:41:86:29: 49:b9:89:28:9c:02:e6:e6:8b:b8:05:34:cd:66:11:26:82:4a: cd:3b:77:11:79:c7:90:58:92:67:4a:c0:9b:f8:1c:42:2e:ea: 50:63:6e:c1:e5:2a:84:87:1b:2c:bc:d7:f3:c8:af:02:1d:bb: 8a:69:fb:ea:e8:95:20:cb:30:4c:89:2b:fc:dd:10:b9:ee:6d: 6b:b1:a0:33:16:fe:fd:6a:9d:bb:77:7f:6e:ce:57:98:6c:09: e4:98:d2:2b:09:ca:bb:14:35:37:3e:52:4d:4d:85:46:5b:85: ed:2a:31:e1:b5:c8:fe:6e:18:b7:53:bf:56:4f:08:28:49:a7: 72:55:53:a8:c2:5d:3d:4e:2d:8f:e3:fa:55:d0:e2:98:92:2d: c3:82:19:48:cf:71:50:f4:a8:9e:98:ee:f5:1b:f1:18:20:5e: c3:23:db:ea -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUYyHiIww7kvwTLFfLrxoWfcxDPdMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNDAwMDAzM1oX DTI2MDgxMjIzNTk1OVowejFJMEcGA1UEBRNAYTUxZTFlNDEyYjIwZjE5ZDc1Mjll ZTYwMWQwOTAxYjM1ODM3OTJlNGYyNTFiNGQwYjJlM2E5NzlmNmYyNTVlYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSJEh775sp1UGKuKIWBfmwurMeda s7AMdhU9Ka9qaI4kFh/TkQyq+sFC3uWjqwVOi2IqsKREFGNW3FzA7Pw4Y+KkwAQa NytOPLD8sWWJvLiwklebogL+BleMfuBQ6Ow8xd3nsXOtEHIgSJOgxwvtit+i3TCu 55ves4krzTR7bLIPxUGtiKx2nnhI69H/R8j7yTO/c0zcCH4/djBmkt/NDvlMvJd6 MbUoItODEEqFMviYsMJq7zM347J++zWOOf8xeG5/3Oix8XjbFAOp/6KvwHFiIqKI YqI+wyiDQe+KoK+iH5Hztb/pa/8Syu5HuN/Is3q1/yHdfYRA5+QYl5J98wIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFBSL000spC4OXq4fQ20Smrd9D73+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM2YTYxYmIwLWQ1ZWUtNDBmOS1iM2ViLTBmYTFkMWE0OTU2Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAbaNjANBgkqhkiG9w0BAQsFAAOCAQEAEzDpolnSaAylgWpwI7w+ lMaLT+rbZOnnN0z11zLoGrZPh6a15hllxyw5MpxSKUws9X5ijlwCfjliV6DiaVaV W8w+qZmOz+pWEK77YedkKPb+IdeB3Pf3QYYpSbmJKJwC5uaLuAU0zWYRJoJKzTt3 EXnHkFiSZ0rAm/gcQi7qUGNuweUqhIcbLLzX88ivAh27imn76uiVIMswTIkr/N0Q ue5ta7GgMxb+/Wqdu3d/bs5XmGwJ5JjSKwnKuxQ1Nz5STU2FRluF7Sox4bXI/m4Y t1O/Vk8IKEmnclVTqMJdPU4tj+P6VdDimJItw4IZSM9xUPSonpju9RvxGCBewyPb 6g== -----END CERTIFICATE-----Generated at Sat Jun 13 08:02:01 2026 by rpki-client