$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6a974a6b-26a9-410e-b4c9-e99a4047c190.roa File: 6a974a6b-26a9-410e-b4c9-e99a4047c190.roa (raw, json) Hash identifier: PFiDpR1tkyMDP2VG3XveeH0mvaZh3M3QRZfTjp1J5jg= Subject key identifier: 9A:12:10:09:62:87:72:D2:3E:70:E9:F3:CC:80:63:99:40:44:9D:E8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 37A4D1BAF003FBEFA30CA8E3FA281485D3022926 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6a974a6b-26a9-410e-b4c9-e99a4047c190.roa Signing time: Sun 31 May 2026 00:00:02 +0000 ROA not before: Sun 31 May 2026 00:00:02 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dae9:70c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:a4:d1:ba:f0:03:fb:ef:a3:0c:a8:e3:fa:28:14:85:d3:02:29:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:00:02 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=04c6b42c695b49c93dd5b220941455353c968baec14016acad27ef5516acd8dc, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c0:f4:04:09:60:ab:3c:90:fa:41:d2:2a:aa: 3b:b1:5e:f3:6f:e4:f5:13:41:bf:69:b9:40:c6:3f: d0:fe:4d:9f:df:f9:14:d7:d4:19:8c:81:64:a9:7f: c6:8c:71:ff:01:a6:a8:da:04:9a:00:b6:87:ac:1f: 18:3e:a0:49:a4:9d:95:cb:0b:24:81:61:e0:ce:d9: 49:95:0b:86:67:9d:f9:e3:d6:5a:d8:8a:82:f6:ba: d0:39:60:68:e4:3d:a2:f2:e6:ae:c9:70:c6:44:76: 12:fe:94:2b:41:b3:27:a2:f6:45:e7:0b:5b:dc:b1: b0:c1:d4:01:5d:10:c1:9d:0b:93:a5:8f:1e:15:ed: 8e:ad:2f:b3:74:40:82:cc:ce:d4:19:c9:1d:b1:9b: 25:f7:4b:6c:57:75:07:6f:8b:39:5c:7e:ce:6f:5c: f2:59:68:1c:9c:41:36:f6:df:c9:0d:19:10:25:a2: 3d:cb:ef:3b:ce:10:7e:56:f0:df:d6:5e:1d:9c:f9: 94:1d:ca:5f:b2:cd:64:5e:26:81:72:62:bf:a5:8c: a1:54:f5:b9:58:a0:58:e0:96:69:d4:62:3d:7c:09: 7a:9a:da:0f:a4:d2:2b:56:e2:99:01:59:2f:cc:eb: bd:95:10:48:f2:41:4a:18:5b:73:a5:57:31:17:c0: f7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:12:10:09:62:87:72:D2:3E:70:E9:F3:CC:80:63:99:40:44:9D:E8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6a974a6b-26a9-410e-b4c9-e99a4047c190.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dae9:70c0::/48 Signature Algorithm: sha256WithRSAEncryption 03:e4:76:e1:fa:e2:92:df:44:1f:67:64:6d:ed:85:7d:2b:94: 41:c5:6e:db:eb:d0:c1:36:5d:b2:e9:60:55:ee:b7:63:d1:e8: cf:0c:52:1f:5a:9b:7a:14:fb:d1:3a:5a:8d:8c:24:25:1d:87: a1:4b:a4:e2:ac:b6:14:8a:c2:7a:05:44:2f:11:22:54:05:0c: 05:dd:87:da:00:dd:f0:55:96:29:4e:7c:7e:ea:f1:25:e5:08: 53:a5:09:b3:81:ec:0c:46:e8:ce:27:f1:11:20:d8:58:93:9c: a1:5c:60:37:24:4f:28:c2:8c:69:53:75:be:42:5e:fc:32:eb: 4f:ac:28:6f:a2:ab:99:c2:9f:61:1c:9d:66:8c:43:70:36:6c: 92:f4:8d:b8:14:6d:56:1c:9c:64:92:11:41:b9:ed:3a:0d:6f: 14:41:08:ae:ea:3e:35:eb:51:b2:5a:52:f2:da:31:2a:c2:52: f2:8a:70:fc:7a:82:df:0d:ba:62:c3:4e:f1:31:68:92:08:16: fb:21:a9:6f:cb:01:3d:79:f7:8b:ff:a9:82:2f:38:f4:e9:43: 84:7f:18:53:f9:7e:5a:16:90:be:bf:d5:b4:25:8e:69:3f:af: 36:84:60:33:51:71:95:ed:8a:d0:ff:5e:de:ea:b2:b1:a2:45: 48:1f:e6:5e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUN6TRuvAD+++jDKjj+igUhdMCKSYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMDAwMloX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAMDRjNmI0MmM2OTViNDljOTNkZDVi MjIwOTQxNDU1MzUzYzk2OGJhZWMxNDAxNmFjYWQyN2VmNTUxNmFjZDhkYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA68D0BAlgqzyQ+kHSKqo7sV7zb+T1 E0G/ablAxj/Q/k2f3/kU19QZjIFkqX/GjHH/Aaao2gSaALaHrB8YPqBJpJ2Vywsk gWHgztlJlQuGZ53549Za2IqC9rrQOWBo5D2i8uauyXDGRHYS/pQrQbMnovZF5wtb 3LGwwdQBXRDBnQuTpY8eFe2OrS+zdECCzM7UGckdsZsl90tsV3UHb4s5XH7Ob1zy WWgcnEE29t/JDRkQJaI9y+87zhB+VvDf1l4dnPmUHcpfss1kXiaBcmK/pYyhVPW5 WKBY4JZp1GI9fAl6mtoPpNIrVuKZAVkvzOu9lRBI8kFKGFtzpVcxF8D3KwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJoSEAlih3LSPnDp88yAY5lARJ3oMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZhOTc0YTZiLTI2YTktNDEwZS1iNGM5LWU5OWE0MDQ3YzE5MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6XDAMA0GCSqGSIb3DQEBCwUAA4IBAQAD5Hbh+uKS30QfZ2Rt 7YV9K5RBxW7b69DBNl2y6WBV7rdj0ejPDFIfWpt6FPvROlqNjCQlHYehS6TirLYU isJ6BUQvESJUBQwF3YfaAN3wVZYpTnx+6vEl5QhTpQmzgewMRujOJ/ERINhYk5yh XGA3JE8owoxpU3W+Ql78MutPrChvoquZwp9hHJ1mjENwNmyS9I24FG1WHJxkkhFB ue06DW8UQQiu6j4161GyWlLy2jEqwlLyinD8eoLfDbpiw07xMWiSCBb7IalvywE9 efeL/6mCLzj06UOEfxhT+X5aFpC+v9W0JY5pP682hGAzUXGV7YrQ/17e6rKxokVI H+Ze -----END CERTIFICATE-----Generated at Sat Jun 13 09:15:49 2026 by rpki-client