$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6edf2912-47ba-4d32-af54-cfec67c5a726.roa File: 6edf2912-47ba-4d32-af54-cfec67c5a726.roa (raw, json) Hash identifier: CIVA4jRXAO+1J3qIsERRmZwGhHh/mQDGcpyj6Hyo2n4= Subject key identifier: 47:EA:72:59:01:80:FE:CA:6D:C3:E0:E8:C4:83:C9:63:DD:F7:3E:E4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3C1C05A0E5D08ED089462C988B2665A77DD5266B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6edf2912-47ba-4d32-af54-cfec67c5a726.roa Signing time: Wed 13 May 2026 00:11:07 +0000 ROA not before: Wed 13 May 2026 00:11:07 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:1c:05:a0:e5:d0:8e:d0:89:46:2c:98:8b:26:65:a7:7d:d5:26:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:11:07 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=4c43ad4be25f139b7dc75bb1984862b264e43d3c5b85f244382bf8bbb8f5d5b0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0f:87:3d:e7:bf:37:02:4c:da:fb:c6:ee:21: 86:e7:ea:9b:62:4d:01:1b:57:d2:d9:90:55:0a:8a: cc:0e:66:4b:f5:f7:f9:a3:27:a7:3b:b3:a5:09:f8: 2f:f6:ba:8f:ba:c4:20:8f:35:15:61:a0:00:4b:9d: e3:cc:06:2e:92:8c:d5:2b:ad:ed:60:3b:18:47:01: 0a:36:d0:a2:6a:62:59:46:19:12:25:ca:1a:7d:e4: 2c:bf:17:23:de:61:c1:87:74:68:37:e0:00:a0:a9: 2b:5d:45:86:14:98:e3:3a:8f:f4:de:68:fc:dd:50: 20:20:f2:8c:48:b2:d3:71:5e:b1:b4:7e:c2:3f:6c: 90:1c:13:bb:33:5a:d9:5b:7a:8b:3c:1a:5f:40:39: 4a:c2:9d:11:32:f1:dc:9e:04:85:67:f0:e8:77:90: bd:44:9a:a1:6c:22:64:c4:c2:85:7b:9d:62:dc:48: c9:b7:40:53:67:92:b4:b1:5d:6a:10:ac:f6:9a:1d: cc:38:3c:01:f3:10:4f:56:f5:e5:82:f6:f7:8e:8f: 4b:05:68:d2:81:fd:58:64:47:7e:aa:1d:52:71:e6: a5:f3:e0:d0:22:18:c0:b5:38:e2:92:16:a2:c0:68: 39:1a:da:37:6c:5a:bc:d5:dc:0a:bf:0e:16:b5:82: e0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:EA:72:59:01:80:FE:CA:6D:C3:E0:E8:C4:83:C9:63:DD:F7:3E:E4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6edf2912-47ba-4d32-af54-cfec67c5a726.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:800::/40 Signature Algorithm: sha256WithRSAEncryption 5f:b6:0e:6c:da:6c:ed:30:f3:20:a9:d4:bd:b9:41:47:1d:aa: e1:ec:23:25:08:86:7a:a5:15:98:95:ea:df:b4:fc:53:4e:d4: c8:71:f0:9d:52:4a:88:16:e0:43:c7:8b:b3:cb:bf:d7:c8:f8: 7f:79:de:56:5f:03:50:cf:90:11:da:33:fd:5d:1d:ea:8a:ec: d0:fb:fc:50:dc:44:00:97:80:e9:c3:a0:34:42:c1:64:ac:d5: 4f:d6:63:60:8e:e8:23:44:43:44:a4:3f:f9:59:03:63:40:2c: d3:05:d3:eb:e2:9f:66:85:36:70:54:54:a8:a5:60:df:ac:10: 13:1b:be:12:fa:f4:1f:9b:2e:61:92:1e:c8:ac:2b:ab:2a:dc: 41:25:32:56:01:a8:c7:15:69:27:c1:49:bd:a9:6e:a9:ab:bd: b4:0b:6f:4d:56:5d:26:eb:a5:d8:90:28:4e:95:32:f5:a7:45: f2:1e:9a:e5:47:8c:7d:ef:2a:e7:ba:29:e6:e0:ff:ae:bd:f8: 37:d8:c2:44:ff:a4:69:06:b9:b1:81:0c:84:47:a2:71:3f:6e: e3:4f:3f:5b:af:53:53:00:b5:b2:7e:8b:f3:f8:0f:af:e0:ca: ae:d9:2d:95:72:32:18:a4:eb:4b:e4:36:b2:3a:80:5b:07:a9: 67:a9:81:b7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPBwFoOXQjtCJRiyYiyZlp33VJmswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMTEwN1oX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNANGM0M2FkNGJlMjVmMTM5YjdkYzc1 YmIxOTg0ODYyYjI2NGU0M2QzYzViODVmMjQ0MzgyYmY4YmJiOGY1ZDViMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxg+HPee/NwJM2vvG7iGG5+qbYk0B G1fS2ZBVCorMDmZL9ff5oyenO7OlCfgv9rqPusQgjzUVYaAAS53jzAYukozVK63t YDsYRwEKNtCiamJZRhkSJcoafeQsvxcj3mHBh3RoN+AAoKkrXUWGFJjjOo/03mj8 3VAgIPKMSLLTcV6xtH7CP2yQHBO7M1rZW3qLPBpfQDlKwp0RMvHcngSFZ/Dod5C9 RJqhbCJkxMKFe51i3EjJt0BTZ5K0sV1qEKz2mh3MODwB8xBPVvXlgvb3jo9LBWjS gf1YZEd+qh1Sceal8+DQIhjAtTjikhaiwGg5Gto3bFq81dwKvw4WtYLgmwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEfqclkBgP7KbcPg6MSDyWPd9z7kMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZlZGYyOTEyLTQ3YmEtNGQzMi1hZjU0LWNmZWM2N2M1YTcyNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacAgwDQYJKoZIhvcNAQELBQADggEBAF+2DmzabO0w8yCp1L25 QUcdquHsIyUIhnqlFZiV6t+0/FNO1Mhx8J1SSogW4EPHi7PLv9fI+H953lZfA1DP kBHaM/1dHeqK7ND7/FDcRACXgOnDoDRCwWSs1U/WY2CO6CNEQ0SkP/lZA2NALNMF 0+vin2aFNnBUVKilYN+sEBMbvhL69B+bLmGSHsisK6sq3EElMlYBqMcVaSfBSb2p bqmrvbQLb01WXSbrpdiQKE6VMvWnRfIemuVHjH3vKue6Kebg/669+DfYwkT/pGkG ubGBDIRHonE/buNPP1uvU1MAtbJ+i/P4D6/gyq7ZLZVyMhik60vkNrI6gFsHqWep gbc= -----END CERTIFICATE-----Generated at Sat Jun 13 08:03:44 2026 by rpki-client