$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/49a679dd-b6ba-4b54-beeb-b3e83302b998.roa File: 49a679dd-b6ba-4b54-beeb-b3e83302b998.roa (raw, json) Hash identifier: nJ3YtplU7vJVu7zeu1501dt4MNX/8MstFtbiU4lkFJI= Subject key identifier: 4D:C2:B9:E8:B0:49:E5:2C:0D:B6:18:64:48:F7:11:9B:C6:3C:57:0F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1F22BB77E14554BF05DBA6EE7940774F4F412DE0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/49a679dd-b6ba-4b54-beeb-b3e83302b998.roa Signing time: Fri 15 May 2026 00:00:14 +0000 ROA not before: Fri 15 May 2026 00:00:14 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf1:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:22:bb:77:e1:45:54:bf:05:db:a6:ee:79:40:77:4f:4f:41:2d:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 15 00:00:14 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=f2a3c3fa210df39f6c2161f7959751900ce766c469fe3ebfc773a193c04b4d3c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:32:90:58:e9:56:2b:37:68:08:37:95:5f:a3: 47:50:e1:97:4e:6f:1e:98:c9:67:c5:27:92:96:7f: f8:07:eb:06:0e:e7:5d:c8:31:c0:55:54:a1:78:09: a2:f9:ed:26:3b:d3:75:1a:01:21:da:94:c2:7d:a3: 15:93:fa:4d:00:55:25:ae:21:08:e5:f1:fd:79:6d: 21:66:5f:59:b7:39:de:e1:b6:48:75:b0:08:60:48: dc:e9:ce:2f:d1:61:9c:32:74:d6:9e:74:26:44:e7: 07:7d:57:2e:42:1c:4b:36:1a:c0:de:ea:b5:1a:6a: 5e:22:8c:6e:44:ec:4a:9d:4c:88:af:59:88:90:88: 89:88:bc:7e:32:bd:37:c9:f5:0a:8b:f6:c0:8d:0c: 95:e3:ce:fa:1f:5b:47:ff:3e:92:3c:10:02:d6:e8: c6:6e:16:c1:4f:c7:a5:e1:a0:a9:e7:00:69:ad:cf: 31:18:02:9c:b4:00:ce:9b:b0:10:9c:3c:0e:79:b8: 6a:43:4a:d8:f4:9b:c3:30:2a:69:1c:15:56:52:eb: 33:7e:fe:6e:88:3f:cf:20:65:84:db:6f:34:09:7d: a8:ec:44:1d:b2:2e:87:14:30:59:ca:b3:36:7d:ba: 8a:bf:a7:33:ca:66:bb:79:ae:c2:5f:d4:e7:1c:9d: 9f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C2:B9:E8:B0:49:E5:2C:0D:B6:18:64:48:F7:11:9B:C6:3C:57:0F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/49a679dd-b6ba-4b54-beeb-b3e83302b998.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf1:800::/40 Signature Algorithm: sha256WithRSAEncryption 81:5b:3a:b1:45:30:24:d0:5f:fd:92:16:a1:99:4e:06:18:1a: 9f:52:63:10:91:71:af:a9:b5:85:cb:31:7e:98:bc:3f:74:18: ce:db:cb:8e:a3:da:92:1d:4c:b2:f3:dc:34:ce:dc:36:f9:28: 40:8f:96:0e:3c:cf:1d:0b:b9:3d:ea:33:ce:9e:b5:15:d5:fe: 0e:5f:ba:c6:73:57:d5:f9:c8:8d:a8:2b:0f:15:41:f8:63:24: a0:db:d7:17:b6:d0:eb:3a:ef:ff:a9:e8:a4:be:0f:f5:e8:46: 86:0b:4a:2d:c5:bd:ff:7d:75:4f:62:f6:b4:d9:a4:77:ce:01: 56:dc:1d:b9:e3:2f:3d:ed:3e:84:b4:ce:25:d4:b9:71:f2:2b: 15:52:dd:40:da:06:70:c4:a3:20:cb:5a:04:1e:c7:eb:12:2d: 3d:51:98:73:26:30:f8:a2:74:2d:ad:2b:53:bb:8e:dd:0d:86: 57:fa:aa:8d:e3:0c:0d:be:c9:82:b0:2d:11:2b:39:81:22:0e: 47:70:ca:a2:16:47:0f:d6:90:62:17:99:6e:83:f3:43:74:ac: 10:d0:9e:22:9c:f1:58:b5:a7:6b:de:02:2d:4f:65:0f:89:70: 62:86:94:4e:ff:f4:11:d6:9c:3f:ec:25:a5:42:38:5a:dc:d8: 54:cb:e1:0d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUHyK7d+FFVL8F26bueUB3T09BLeAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNTAwMDAxNFoX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAZjJhM2MzZmEyMTBkZjM5ZjZjMjE2 MWY3OTU5NzUxOTAwY2U3NjZjNDY5ZmUzZWJmYzc3M2ExOTNjMDRiNGQzYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjKQWOlWKzdoCDeVX6NHUOGXTm8e mMlnxSeSln/4B+sGDuddyDHAVVSheAmi+e0mO9N1GgEh2pTCfaMVk/pNAFUlriEI 5fH9eW0hZl9Ztzne4bZIdbAIYEjc6c4v0WGcMnTWnnQmROcHfVcuQhxLNhrA3uq1 GmpeIoxuROxKnUyIr1mIkIiJiLx+Mr03yfUKi/bAjQyV4876H1tH/z6SPBAC1ujG bhbBT8el4aCp5wBprc8xGAKctADOm7AQnDwOebhqQ0rY9JvDMCppHBVWUuszfv5u iD/PIGWE2280CX2o7EQdsi6HFDBZyrM2fbqKv6czyma7ea7CX9TnHJ2faQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFE3CueiwSeUsDbYYZEj3EZvGPFcPMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzQ5YTY3OWRkLWI2YmEtNGI1NC1iZWViLWIzZTgzMzAyYjk5OC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8QgwDQYJKoZIhvcNAQELBQADggEBAIFbOrFFMCTQX/2SFqGZ TgYYGp9SYxCRca+ptYXLMX6YvD90GM7by46j2pIdTLLz3DTO3Db5KECPlg48zx0L uT3qM86etRXV/g5fusZzV9X5yI2oKw8VQfhjJKDb1xe20Os67/+p6KS+D/XoRoYL Si3Fvf99dU9i9rTZpHfOAVbcHbnjLz3tPoS0ziXUuXHyKxVS3UDaBnDEoyDLWgQe x+sSLT1RmHMmMPiidC2tK1O7jt0Nhlf6qo3jDA2+yYKwLRErOYEiDkdwyqIWRw/W kGIXmW6D80N0rBDQniKc8Vi1p2veAi1PZQ+JcGKGlE7/9BHWnD/sJaVCOFrc2FTL 4Q0= -----END CERTIFICATE-----Generated at Sat Jun 13 09:15:41 2026 by rpki-client