$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/816ad31f-2d8f-4d66-bb8b-94fe1601e296.roa File: 816ad31f-2d8f-4d66-bb8b-94fe1601e296.roa (raw, json) Hash identifier: YUlYGVtMIk3KodiedL3+lPc9aX4pkh23BJ9vqoJrGDQ= Subject key identifier: 74:8C:29:59:6F:4B:22:A9:AA:A4:9F:CC:F5:BA:6B:EA:9E:67:56:14 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 29EA00D2AEE6404E04EAA22B20A254068B8CEC3D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/816ad31f-2d8f-4d66-bb8b-94fe1601e296.roa Signing time: Sun 31 May 2026 00:00:58 +0000 ROA not before: Sun 31 May 2026 00:00:58 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daba:7000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 00:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ea:00:d2:ae:e6:40:4e:04:ea:a2:2b:20:a2:54:06:8b:8c:ec:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:00:58 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=b8e50af5e958fbc119bfdea2c25a1c357d53b5a7b000e8429f332111bb8c6686, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:17:f2:3f:97:2d:6d:9c:28:de:64:c5:3a:56: da:f7:a1:ac:22:06:06:ac:ee:26:00:39:7e:32:b5: e0:c3:d9:77:6a:d2:e5:5e:4f:1d:c2:be:6c:05:8e: fc:e8:3a:55:ac:cf:ed:fc:6d:37:a7:cd:c8:c0:0d: b4:1d:d3:d4:c6:a8:d3:bd:da:d1:69:cb:1f:1f:7a: 37:c5:c4:97:cf:cc:d8:b4:06:7c:ad:d9:32:18:27: a1:76:de:04:1d:fa:36:92:b4:6e:48:85:b5:34:02: fb:42:1f:52:2c:dc:b6:4e:dd:cc:46:f7:40:a6:7e: 3b:ed:0c:ab:38:15:d1:91:04:c0:f4:8b:60:77:9c: 24:d1:cf:fa:de:cd:f2:d2:31:f8:53:57:0a:06:93: 53:1f:84:53:53:b5:62:39:56:c6:d9:66:15:c1:d2: 13:87:df:93:0e:d9:ff:b6:ce:c6:b5:34:aa:bc:66: a7:47:c6:c4:80:b8:d7:7b:fa:dc:a1:c8:a2:8a:60: 16:fd:a9:cd:7b:b6:6d:38:3c:5c:26:02:5c:f1:87: e8:fc:41:3b:00:08:b1:2f:e7:97:2f:7f:17:5b:bf: cc:64:9f:44:d3:7f:1e:88:60:bb:32:78:0d:d1:99: 42:d4:fb:75:b1:6c:db:3e:a8:df:37:1b:94:60:37: a3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:8C:29:59:6F:4B:22:A9:AA:A4:9F:CC:F5:BA:6B:EA:9E:67:56:14 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/816ad31f-2d8f-4d66-bb8b-94fe1601e296.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daba:7000::/40 Signature Algorithm: sha256WithRSAEncryption 93:bc:96:a1:f6:8a:ef:86:5e:76:69:ca:f1:b5:8a:aa:0d:0e: 64:34:34:e7:b7:79:33:04:02:9f:eb:c6:40:75:5e:5b:59:2d: 4d:4d:b9:ab:9a:52:f2:75:02:5e:22:1d:e5:5c:22:f2:b9:83: a9:fd:d9:35:4b:14:5a:47:d4:7c:74:fe:f0:30:a7:08:60:51: 20:3f:05:04:1e:c9:b1:4e:79:43:af:08:c0:2a:63:9b:ff:ce: 39:07:d2:47:13:bd:86:d9:cd:39:0b:be:f9:90:4f:db:a9:e6: 9f:68:49:d3:62:17:ba:d4:4c:b9:7f:f8:eb:6d:e8:98:30:e2: 7f:ed:5a:eb:98:af:0a:59:9d:fc:ff:f7:50:6b:64:bc:62:0a: aa:12:63:10:d4:72:8f:1f:e5:60:b8:01:76:26:8c:1a:bb:7f: 01:69:9b:c1:af:2f:66:a2:fe:18:a7:f3:80:d3:dd:ff:e0:f8: 9c:4f:a7:2a:8f:bd:e9:a9:22:78:4b:e9:4f:e3:94:80:a1:a0: 9c:9e:29:81:f1:a6:c2:fb:40:c7:a2:fa:3d:a0:85:7a:50:7b: 4b:65:a8:8c:89:51:e6:19:2a:b5:3f:79:5f:21:6d:52:e8:74: 05:48:82:63:f5:7f:df:3d:7f:f1:05:77:90:e8:9a:80:ac:a5: e6:d5:20:54 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUKeoA0q7mQE4E6qIrIKJUBouM7D0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMDA1OFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAYjhlNTBhZjVlOTU4ZmJjMTE5YmZk ZWEyYzI1YTFjMzU3ZDUzYjVhN2IwMDBlODQyOWYzMzIxMTFiYjhjNjY4NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBfyP5ctbZwo3mTFOlba96GsIgYG rO4mADl+MrXgw9l3atLlXk8dwr5sBY786DpVrM/t/G03p83IwA20HdPUxqjTvdrR acsfH3o3xcSXz8zYtAZ8rdkyGCehdt4EHfo2krRuSIW1NAL7Qh9SLNy2Tt3MRvdA pn477QyrOBXRkQTA9Itgd5wk0c/63s3y0jH4U1cKBpNTH4RTU7ViOVbG2WYVwdIT h9+TDtn/ts7GtTSqvGanR8bEgLjXe/rcociiimAW/anNe7ZtODxcJgJc8Yfo/EE7 AAixL+eXL38XW7/MZJ9E038eiGC7MngN0ZlC1Pt1sWzbPqjfNxuUYDejkwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHSMKVlvSyKpqqSfzPW6a+qeZ1YUMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzgxNmFkMzFmLTJkOGYtNGQ2Ni1iYjhiLTk0ZmUxNjAxZTI5Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaunAwDQYJKoZIhvcNAQELBQADggEBAJO8lqH2iu+GXnZpyvG1 iqoNDmQ0NOe3eTMEAp/rxkB1XltZLU1NuauaUvJ1Al4iHeVcIvK5g6n92TVLFFpH 1Hx0/vAwpwhgUSA/BQQeybFOeUOvCMAqY5v/zjkH0kcTvYbZzTkLvvmQT9up5p9o SdNiF7rUTLl/+Ott6Jgw4n/tWuuYrwpZnfz/91BrZLxiCqoSYxDUco8f5WC4AXYm jBq7fwFpm8GvL2ai/hin84DT3f/g+JxPpyqPvempInhL6U/jlIChoJyeKYHxpsL7 QMei+j2ghXpQe0tlqIyJUeYZKrU/eV8hbVLodAVIgmP1f989f/EFd5DomoCspebV IFQ= -----END CERTIFICATE-----Generated at Wed Jun 17 09:46:16 2026 by rpki-client