$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710ed6f2-597f-48a7-930b-32584c274e6f.roa File: 710ed6f2-597f-48a7-930b-32584c274e6f.roa (raw, json) Hash identifier: 09NHOJblHuyMeFMV3zJibou+FoJ1wuQOsojmo8SC+cM= Subject key identifier: AA:52:77:2F:1B:2E:EA:36:44:DC:BB:69:33:1B:AF:66:8E:D3:D6:F9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 57CEAC70CE1B7643CF98CEF5D3EF7F3BB3D2CABC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710ed6f2-597f-48a7-930b-32584c274e6f.roa Signing time: Tue 19 May 2026 00:00:11 +0000 ROA not before: Tue 19 May 2026 00:00:11 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daef:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ce:ac:70:ce:1b:76:43:cf:98:ce:f5:d3:ef:7f:3b:b3:d2:ca:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 19 00:00:11 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=5245710de07d55bf87162f1de5dd365078e1c6db3feef940e17ce96ddf434813, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:dc:5e:f2:84:6f:d6:0f:ef:b6:8c:97:d7:11: 99:94:d1:bd:94:30:ae:6b:6f:fa:74:3b:f8:9a:46: 65:df:ac:24:db:6a:e5:4b:86:ae:93:e5:8d:76:ba: d2:c4:28:29:ff:d9:f6:55:39:cd:d6:f2:e0:92:c1: 91:cd:3f:7d:81:74:f4:ca:6f:f8:ef:3e:f8:df:b5: 25:59:8b:30:45:8c:ba:31:fe:91:d7:7b:29:2c:6a: 6d:e2:1d:fd:e0:68:01:8b:50:48:99:90:c1:c4:51: 2f:f9:15:33:c1:98:4b:36:90:b0:54:b6:8a:1d:69: 6d:70:4a:87:b1:1c:d0:b6:21:c1:98:82:2c:db:83: b6:40:a2:10:0d:e1:39:44:c0:d1:ee:ff:69:d2:2c: ba:4a:14:f7:e3:b7:fd:ae:e5:20:3a:28:ce:e1:3a: ef:e8:53:9d:7b:28:da:3d:09:99:e5:62:d9:60:48: f5:e8:54:8b:0b:5e:f9:f0:5c:ac:86:f2:af:83:82: f8:6d:52:8f:90:d1:50:90:e2:47:92:33:65:f6:2c: 0e:89:cf:54:5c:e9:ac:fe:ae:b9:fc:62:b7:02:6a: dc:1f:7b:cb:07:f6:94:4c:2f:b2:8a:03:12:fb:ab: 26:07:2e:ba:b0:c4:f5:95:c9:9f:b9:43:1a:61:49: 0d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:52:77:2F:1B:2E:EA:36:44:DC:BB:69:33:1B:AF:66:8E:D3:D6:F9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710ed6f2-597f-48a7-930b-32584c274e6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daef:8000::/40 Signature Algorithm: sha256WithRSAEncryption bb:ad:9d:e9:6c:92:3c:03:7e:b5:e6:26:06:a2:a5:7f:f5:5d: 9d:be:50:d0:27:f4:49:bf:87:88:df:f4:e7:90:8b:63:7d:b8: 50:22:6d:43:e5:8f:23:f4:41:9d:e5:07:66:91:ae:31:f2:27: 9b:c1:a0:7b:40:bd:c9:3e:87:32:e6:8b:da:57:59:56:e2:9a: cb:6a:fe:21:01:c6:99:8c:86:38:45:a1:54:ba:7d:63:a4:60: f3:84:90:8c:8a:95:4e:2a:b3:13:73:32:32:e3:c1:ec:bd:13: d2:8c:d2:d9:d7:9c:2c:17:2c:1d:a4:d5:ec:9a:e6:44:0b:f2: a5:ff:3e:3f:d4:a0:dd:b8:2d:79:f1:6a:f3:c5:2c:18:b1:3b: d0:37:1d:6a:8d:32:86:c6:ca:a4:2f:1c:61:fb:d1:9a:d1:0b: c3:80:9c:f3:68:cf:de:de:c6:60:09:e8:d5:ce:96:8c:a1:d9: 27:b2:09:f5:6d:7c:b4:20:44:49:46:bd:e6:a3:e5:2d:94:2b: 4c:d3:c5:77:45:45:5f:43:f2:b8:eb:82:b7:6e:81:7a:71:fd: 43:8d:1a:cc:09:9f:82:60:44:76:50:99:9f:a0:b8:77:9f:a8: 0d:ca:7e:26:6c:37:09:40:02:58:a5:14:3b:e7:e2:f9:b1:8e: 22:64:c2:4f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUV86scM4bdkPPmM710+9/O7PSyrwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxOTAwMDAxMVoX DTI2MDgxNzIzNTk1OVowejFJMEcGA1UEBRNANTI0NTcxMGRlMDdkNTViZjg3MTYy ZjFkZTVkZDM2NTA3OGUxYzZkYjNmZWVmOTQwZTE3Y2U5NmRkZjQzNDgxMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29xe8oRv1g/vtoyX1xGZlNG9lDCu a2/6dDv4mkZl36wk22rlS4auk+WNdrrSxCgp/9n2VTnN1vLgksGRzT99gXT0ym/4 7z7437UlWYswRYy6Mf6R13spLGpt4h394GgBi1BImZDBxFEv+RUzwZhLNpCwVLaK HWltcEqHsRzQtiHBmIIs24O2QKIQDeE5RMDR7v9p0iy6ShT347f9ruUgOijO4Trv 6FOdeyjaPQmZ5WLZYEj16FSLC1758FyshvKvg4L4bVKPkNFQkOJHkjNl9iwOic9U XOms/q65/GK3AmrcH3vLB/aUTC+yigMS+6smBy66sMT1lcmfuUMaYUkNXwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKpSdy8bLuo2RNy7aTMbr2aO09b5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcxMGVkNmYyLTU5N2YtNDhhNy05MzBiLTMyNTg0YzI3NGU2Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba74AwDQYJKoZIhvcNAQELBQADggEBALutnelskjwDfrXmJgai pX/1XZ2+UNAn9Em/h4jf9OeQi2N9uFAibUPljyP0QZ3lB2aRrjHyJ5vBoHtAvck+ hzLmi9pXWVbimstq/iEBxpmMhjhFoVS6fWOkYPOEkIyKlU4qsxNzMjLjwey9E9KM 0tnXnCwXLB2k1eya5kQL8qX/Pj/UoN24LXnxavPFLBixO9A3HWqNMobGyqQvHGH7 0ZrRC8OAnPNoz97exmAJ6NXOloyh2SeyCfVtfLQgRElGveaj5S2UK0zTxXdFRV9D 8rjrgrdugXpx/UONGswJn4JgRHZQmZ+guHefqA3KfiZsNwlAAlilFDvn4vmxjiJk wk8= -----END CERTIFICATE-----Generated at Sat Jun 13 10:28:49 2026 by rpki-client