$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4e9beec2-4dab-4f31-b0cb-ad6a3a5761b2.roa File: 4e9beec2-4dab-4f31-b0cb-ad6a3a5761b2.roa (raw, json) Hash identifier: IRMs2BKVx0we06d4tO7RPzTKvCxJrSOl/N0/Hp9SIus= Subject key identifier: B7:AD:76:C3:CA:DB:FC:7B:E6:BF:58:2D:EB:12:3E:EF:DC:9A:DF:5E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 08E78853070794FE5A4211A9DB76130AA6D36970 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4e9beec2-4dab-4f31-b0cb-ad6a3a5761b2.roa Signing time: Fri 15 May 2026 00:10:32 +0000 ROA not before: Fri 15 May 2026 00:10:32 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafa:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:e7:88:53:07:07:94:fe:5a:42:11:a9:db:76:13:0a:a6:d3:69:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 15 00:10:32 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=ab5177f5fce80dab3383b29bb3af261b43f4ed7f4a54d62f4340e77fede8011d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:73:c9:ec:01:3d:5b:d5:d8:32:43:aa:9c:eb: 81:40:4f:82:f3:55:74:b9:f5:6c:fe:c4:e1:7c:b1: c9:08:ae:b3:95:d5:51:21:4f:2d:8d:95:30:21:29: 66:bc:51:27:cc:36:07:ae:d8:ad:10:bf:87:d1:5e: 50:ed:5e:e1:69:6b:41:a2:8a:f4:51:b4:6e:75:74: bc:32:ca:23:54:c8:51:db:3d:ef:5c:b1:52:46:49: 8d:85:5d:0a:b1:a0:d5:6f:87:94:db:3c:a1:fe:a8: b7:97:81:98:e5:a7:e5:82:43:d9:9a:2e:cd:e0:41: 5e:78:eb:10:30:84:62:d5:60:aa:e4:36:63:b9:dc: d7:de:43:85:09:58:e7:33:11:69:53:72:b1:7a:63: 55:fa:62:36:d4:1f:76:42:03:9f:cb:4f:18:92:9d: f6:2f:d0:d7:e0:8a:2d:86:bf:e3:21:47:74:b5:74: 3a:87:b7:15:ee:20:99:27:28:47:42:3b:e2:7d:81: 81:d2:d2:f1:db:2b:30:08:bf:a3:da:06:c6:cc:ff: 98:74:e1:36:cf:97:93:8f:a2:f5:d6:b5:bf:b8:d4: 7d:ab:bc:06:85:d4:97:30:92:f9:7b:1c:a0:b5:90: 4b:19:03:fa:8d:92:55:6d:26:18:0b:46:7d:fd:37: d6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:AD:76:C3:CA:DB:FC:7B:E6:BF:58:2D:EB:12:3E:EF:DC:9A:DF:5E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4e9beec2-4dab-4f31-b0cb-ad6a3a5761b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafa:c000::/40 Signature Algorithm: sha256WithRSAEncryption 8a:98:d2:8f:4e:21:c1:89:9a:19:18:04:9d:e5:ef:05:96:6b: ed:aa:00:a3:73:d4:3d:a7:0a:22:de:ed:02:03:de:38:1b:6d: ce:99:22:3a:77:0e:c2:ec:5b:30:31:b7:55:3c:25:d0:9a:31: 79:e7:a9:9a:97:57:23:9b:86:eb:09:0e:ae:79:7a:05:19:cb: 58:e6:ca:b4:aa:8d:3b:b9:d6:a8:be:95:e8:bb:e7:d4:39:b2: bb:da:e8:13:b5:33:d0:3a:cf:a6:e7:c8:94:0b:1f:d9:b5:9d: e3:05:0a:9d:65:c7:69:c6:88:68:c3:26:16:b5:1e:eb:35:63: 24:f6:77:d0:61:59:a3:16:99:05:cc:09:9b:12:89:69:6a:db: 65:0d:36:dc:ec:e8:e0:75:ea:d8:c3:2e:ee:c4:e6:bb:d4:7d: b2:25:1e:47:91:d9:d2:f8:82:f9:8c:84:9c:89:04:8c:a2:3d: 0a:fd:64:54:5b:83:c2:26:9f:59:12:ca:35:be:54:3e:09:19: a6:33:d2:af:f2:77:00:eb:ca:ab:b1:31:e9:18:31:6a:93:dd: c9:c7:2c:f2:0f:13:1a:b6:2f:6f:ea:f0:b2:24:f9:b9:17:12: 3c:30:ec:67:db:09:6b:d8:8d:96:76:d9:d6:1d:60:0c:1e:72: c5:15:86:bb -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCOeIUwcHlP5aQhGp23YTCqbTaXAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxNTAwMTAzMloX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAYWI1MTc3ZjVmY2U4MGRhYjMzODNi MjliYjNhZjI2MWI0M2Y0ZWQ3ZjRhNTRkNjJmNDM0MGU3N2ZlZGU4MDExZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzXPJ7AE9W9XYMkOqnOuBQE+C81V0 ufVs/sThfLHJCK6zldVRIU8tjZUwISlmvFEnzDYHrtitEL+H0V5Q7V7haWtBoor0 UbRudXS8MsojVMhR2z3vXLFSRkmNhV0KsaDVb4eU2zyh/qi3l4GY5aflgkPZmi7N 4EFeeOsQMIRi1WCq5DZjudzX3kOFCVjnMxFpU3KxemNV+mI21B92QgOfy08Ykp32 L9DX4Iothr/jIUd0tXQ6h7cV7iCZJyhHQjvifYGB0tLx2yswCL+j2gbGzP+YdOE2 z5eTj6L11rW/uNR9q7wGhdSXMJL5exygtZBLGQP6jZJVbSYYC0Z9/TfWMwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLetdsPK2/x75r9YLesSPu/cmt9eMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRlOWJlZWMyLTRkYWItNGYzMS1iMGNiLWFkNmEzYTU3NjFiMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+sAwDQYJKoZIhvcNAQELBQADggEBAIqY0o9OIcGJmhkYBJ3l 7wWWa+2qAKNz1D2nCiLe7QID3jgbbc6ZIjp3DsLsWzAxt1U8JdCaMXnnqZqXVyOb husJDq55egUZy1jmyrSqjTu51qi+lei759Q5srva6BO1M9A6z6bnyJQLH9m1neMF Cp1lx2nGiGjDJha1Hus1YyT2d9BhWaMWmQXMCZsSiWlq22UNNtzs6OB16tjDLu7E 5rvUfbIlHkeR2dL4gvmMhJyJBIyiPQr9ZFRbg8Imn1kSyjW+VD4JGaYz0q/ydwDr yquxMekYMWqT3cnHLPIPExq2L2/q8LIk+bkXEjww7GfbCWvYjZZ22dYdYAwecsUV hrs= -----END CERTIFICATE-----Generated at Sat Jun 13 13:42:56 2026 by rpki-client