$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63168e8f-aa04-4b72-8e0f-264d1f2740b7.roa File: 63168e8f-aa04-4b72-8e0f-264d1f2740b7.roa (raw, json) Hash identifier: Wj2n1xLpMYBT4ZyVHB5hD2HX73yyV9sS0k0lVMyf/io= Subject key identifier: 2A:5F:29:5B:7C:3B:FB:D5:53:14:1A:8E:F6:6D:AA:AC:9D:4D:FD:97 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1B4675D0C14D1AEAC35F994257B7D9792BA39033 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63168e8f-aa04-4b72-8e0f-264d1f2740b7.roa Signing time: Sun 31 May 2026 00:11:04 +0000 ROA not before: Sun 31 May 2026 00:11:04 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da33:b000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 00:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:46:75:d0:c1:4d:1a:ea:c3:5f:99:42:57:b7:d9:79:2b:a3:90:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:11:04 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=6e908df53dc987eccb4269cba8959b512d005ee0496202c204d2bab2cae06dbc, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:bf:b2:c5:0e:44:e0:ad:6e:f7:bd:f8:c2:ec: 99:50:40:cc:44:64:08:25:a7:20:34:ef:8b:a0:19: 4a:15:68:c0:2f:cd:bb:bc:c1:2d:5b:21:66:ef:e0: ab:df:e6:f9:7b:9f:43:56:d5:02:5d:68:04:d7:64: 76:a3:3e:2e:ee:c8:33:85:7a:41:a0:2e:09:48:22: c9:f7:74:bc:e1:61:bd:c1:a3:15:92:8a:34:b9:27: 87:65:d9:b7:9f:41:23:f6:ae:e4:cf:a2:8d:44:51: 16:ab:23:25:cb:5e:3c:e8:c0:50:e6:32:4a:6d:2d: 82:27:8e:8a:e4:79:5b:b1:9a:93:1f:de:8e:ea:14: ac:85:40:c4:76:8a:36:fa:49:7e:ec:a9:19:e1:c9: 2a:8a:f7:00:bc:94:7e:1d:cb:bc:05:21:2d:b1:26: d5:ee:76:db:90:2c:80:f0:de:34:86:00:eb:66:01: 76:ac:14:f6:da:25:9d:3f:c4:fc:b2:4d:6b:1a:7f: 77:7e:5f:67:f0:28:07:9b:1b:ed:37:66:4b:a5:8e: 05:1a:fe:0d:5c:ac:ab:fd:1b:43:b0:53:fb:c7:0d: 86:31:84:34:8f:2f:a3:7b:e3:7e:1f:9c:9c:2e:32: 77:81:99:dc:ef:1f:82:55:25:c5:68:fc:b0:4c:41: 60:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5F:29:5B:7C:3B:FB:D5:53:14:1A:8E:F6:6D:AA:AC:9D:4D:FD:97 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63168e8f-aa04-4b72-8e0f-264d1f2740b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da33:b000::/40 Signature Algorithm: sha256WithRSAEncryption 81:69:b3:98:97:48:5c:0e:5c:30:48:fa:aa:ae:c8:06:37:ad: ef:54:d7:a5:0e:e3:1f:50:c5:5c:6e:d0:eb:e9:2c:d0:47:36: 53:3a:c9:36:6e:09:71:a4:cc:35:da:7b:ce:d3:fa:f8:8d:00: 5d:7c:3f:31:76:51:83:2f:f3:4e:d4:ef:89:5f:26:33:cd:bd: e1:a0:65:19:9c:06:8c:c3:e2:8a:91:0e:d4:b6:22:b3:79:c3: 02:e4:b8:57:14:25:2c:81:91:ee:e3:c5:fe:b8:b6:1c:f6:3d: f8:47:c9:b5:db:f5:e0:86:c5:ab:9e:a8:c8:88:7f:0c:86:e2: 11:07:2a:12:dd:b0:3a:1a:b8:d9:ff:b1:0a:ab:f9:e3:3f:6f: 3f:a4:b5:e2:bd:76:25:00:4c:6e:17:1c:5e:23:50:7d:f5:56: 4a:07:32:a6:54:7f:ef:be:0f:3a:2f:dd:e4:4e:3e:0b:f0:09: 56:6c:59:49:0b:45:e0:13:e4:63:e5:17:2c:12:b2:0a:0b:7d: 6a:cb:24:b8:37:e6:46:09:41:67:07:a9:3f:58:17:2b:43:33: ce:7a:f6:d8:e0:e0:02:4f:5c:cc:d8:0e:0a:7d:83:8b:21:7e: 38:da:5e:b3:68:af:72:59:c9:e9:3c:de:d7:28:4c:66:dd:9f: ef:00:06:8d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUG0Z10MFNGurDX5lCV7fZeSujkDMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMTEwNFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNANmU5MDhkZjUzZGM5ODdlY2NiNDI2 OWNiYTg5NTliNTEyZDAwNWVlMDQ5NjIwMmMyMDRkMmJhYjJjYWUwNmRiYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5b+yxQ5E4K1u9734wuyZUEDMRGQI JacgNO+LoBlKFWjAL827vMEtWyFm7+Cr3+b5e59DVtUCXWgE12R2oz4u7sgzhXpB oC4JSCLJ93S84WG9waMVkoo0uSeHZdm3n0Ej9q7kz6KNRFEWqyMly1486MBQ5jJK bS2CJ46K5HlbsZqTH96O6hSshUDEdoo2+kl+7KkZ4ckqivcAvJR+Hcu8BSEtsSbV 7nbbkCyA8N40hgDrZgF2rBT22iWdP8T8sk1rGn93fl9n8CgHmxvtN2ZLpY4FGv4N XKyr/RtDsFP7xw2GMYQ0jy+je+N+H5ycLjJ3gZnc7x+CVSXFaPywTEFgXQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCpfKVt8O/vVUxQajvZtqqydTf2XMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYzMTY4ZThmLWFhMDQtNGI3Mi04ZTBmLTI2NGQxZjI3NDBiNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaM7AwDQYJKoZIhvcNAQELBQADggEBAIFps5iXSFwOXDBI+qqu yAY3re9U16UO4x9QxVxu0OvpLNBHNlM6yTZuCXGkzDXae87T+viNAF18PzF2UYMv 807U74lfJjPNveGgZRmcBozD4oqRDtS2IrN5wwLkuFcUJSyBke7jxf64thz2PfhH ybXb9eCGxaueqMiIfwyG4hEHKhLdsDoauNn/sQqr+eM/bz+kteK9diUATG4XHF4j UH31VkoHMqZUf+++Dzov3eROPgvwCVZsWUkLReAT5GPlFywSsgoLfWrLJLg35kYJ QWcHqT9YFytDM8569tjg4AJPXMzYDgp9g4shfjjaXrNor3JZyek83tcoTGbdn+8A Bo0= -----END CERTIFICATE-----Generated at Wed Jun 17 08:59:10 2026 by rpki-client