$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/38ae37ad-50db-4547-8df2-8cdcc56e5ca1.roa File: 38ae37ad-50db-4547-8df2-8cdcc56e5ca1.roa (raw, json) Hash identifier: 700ZXOpVNJ2Q6tbtnbgpacCAZp0j+bCXhNxrRzG/f64= Subject key identifier: BC:99:43:93:F9:06:D2:6F:0D:4F:59:22:39:4A:27:9F:4D:20:CC:0B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5C9E49B35C79EFE6AC229DCCF22798E4C99B7731 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/38ae37ad-50db-4547-8df2-8cdcc56e5ca1.roa Signing time: Wed 13 May 2026 00:20:33 +0000 ROA not before: Wed 13 May 2026 00:20:33 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da32::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:9e:49:b3:5c:79:ef:e6:ac:22:9d:cc:f2:27:98:e4:c9:9b:77:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:20:33 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=738721c91fe5586f5aa9c83e9e445d1a4adebacfea4000ce93cee157256445b0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:09:cb:44:93:78:ce:1f:03:27:d6:24:cb:50: 74:92:ad:2c:c7:d3:e9:a3:c7:35:97:90:b1:82:c6: d8:a9:66:0e:6c:9d:c8:42:ec:4d:4f:59:1e:95:f3: eb:5b:2d:b9:2e:d9:7a:db:2c:6f:66:fe:fb:7f:10: 6c:26:57:b8:b6:b5:2f:1e:56:1a:72:be:71:0d:c4: 7d:72:14:49:d9:f4:e3:f3:bb:3e:a7:ef:0a:11:8e: ef:cd:00:e6:fe:b9:b5:a2:ac:57:85:10:dc:d4:dd: 97:fd:31:d9:11:ed:d2:04:da:a2:25:ca:86:67:7b: 2e:2b:b9:c3:32:29:8e:08:01:0c:1e:9d:b4:93:5a: b4:2a:cf:2c:db:b5:0c:38:99:47:d3:85:b6:01:c2: f7:87:c6:6d:5a:29:9d:38:af:62:19:e1:64:54:14: fd:1b:70:26:f9:5c:fa:1c:55:0b:16:fc:3c:29:ed: 1a:2b:20:86:1a:a1:a7:22:06:0b:a3:b5:36:18:fc: f7:9b:cf:ac:64:0c:a3:34:5f:4d:21:0b:9c:c9:c2: fb:c1:bf:e9:82:c0:eb:34:59:4d:45:fb:62:a4:fd: 08:03:cf:ab:32:c6:99:8c:40:79:5a:ad:1b:d5:b2: f4:4d:2e:67:94:d8:b6:fb:9b:a6:1c:78:84:ab:ee: 43:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:99:43:93:F9:06:D2:6F:0D:4F:59:22:39:4A:27:9F:4D:20:CC:0B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/38ae37ad-50db-4547-8df2-8cdcc56e5ca1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da32::/32 Signature Algorithm: sha256WithRSAEncryption 36:7f:09:9e:c4:a6:53:a2:d6:8b:32:fb:84:28:3e:61:d6:0c: 87:c3:0b:a1:2e:2e:e2:7a:f6:00:e4:91:2d:54:39:cf:10:ec: 32:14:29:48:9d:59:df:c3:98:48:77:65:be:5c:7f:d4:73:e3: 28:28:7a:1b:d5:db:51:9d:fd:13:ab:d0:4a:b6:10:72:9b:19: e0:72:85:b9:7b:b0:0d:b4:7e:71:69:7d:00:2b:ae:5f:6b:69: 75:94:82:1a:7c:84:64:18:fd:47:6b:e7:02:fb:e2:2f:dc:5a: 81:23:6c:7f:d0:89:7b:be:4a:80:4c:2d:64:e1:7f:2d:f7:27: e8:2f:67:e3:44:c0:1f:9c:da:99:20:9e:32:ec:ff:41:b6:3e: b5:4b:5e:7e:36:c1:5a:a5:41:7c:32:9d:30:81:b4:ee:79:ed: 97:eb:51:c6:dd:98:52:26:86:16:2d:b1:e5:9c:70:a6:7c:0e: 73:f2:4f:2d:b6:0f:7b:c8:90:c8:63:ec:f6:14:4a:ac:c5:57: 01:d1:e8:92:1f:5d:18:99:95:a6:f3:fb:4e:6f:3d:36:0a:7d: 47:99:7c:2a:90:b0:01:b4:8f:81:29:6a:d6:55:90:00:5a:4f: 6c:5a:ec:7f:2d:45:4e:d3:21:d7:11:26:0b:bc:bf:4b:50:4b: d6:cf:93:ba -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUXJ5Js1x57+asIp3M8ieY5MmbdzEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMjAzM1oX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNANzM4NzIxYzkxZmU1NTg2ZjVhYTlj ODNlOWU0NDVkMWE0YWRlYmFjZmVhNDAwMGNlOTNjZWUxNTcyNTY0NDViMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswnLRJN4zh8DJ9Yky1B0kq0sx9Pp o8c1l5CxgsbYqWYObJ3IQuxNT1kelfPrWy25Ltl62yxvZv77fxBsJle4trUvHlYa cr5xDcR9chRJ2fTj87s+p+8KEY7vzQDm/rm1oqxXhRDc1N2X/THZEe3SBNqiJcqG Z3suK7nDMimOCAEMHp20k1q0Ks8s27UMOJlH04W2AcL3h8ZtWimdOK9iGeFkVBT9 G3Am+Vz6HFULFvw8Ke0aKyCGGqGnIgYLo7U2GPz3m8+sZAyjNF9NIQucycL7wb/p gsDrNFlNRftipP0IA8+rMsaZjEB5Wq0b1bL0TS5nlNi2+5umHHiEq+5DMwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFLyZQ5P5BtJvDU9ZIjlKJ59NIMwLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM4YWUzN2FkLTUwZGItNDU0Ny04ZGYyLThjZGNjNTZlNWNhMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAbaMjANBgkqhkiG9w0BAQsFAAOCAQEANn8JnsSmU6LWizL7hCg+ YdYMh8MLoS4u4nr2AOSRLVQ5zxDsMhQpSJ1Z38OYSHdlvlx/1HPjKCh6G9XbUZ39 E6vQSrYQcpsZ4HKFuXuwDbR+cWl9ACuuX2tpdZSCGnyEZBj9R2vnAvviL9xagSNs f9CJe75KgEwtZOF/Lfcn6C9n40TAH5zamSCeMuz/QbY+tUtefjbBWqVBfDKdMIG0 7nntl+tRxt2YUiaGFi2x5ZxwpnwOc/JPLbYPe8iQyGPs9hRKrMVXAdHokh9dGJmV pvP7Tm89Ngp9R5l8KpCwAbSPgSlq1lWQAFpPbFrsfy1FTtMh1xEmC7y/S1BL1s+T ug== -----END CERTIFICATE-----Generated at Sat Jun 13 08:02:51 2026 by rpki-client