$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/817269f2-96fa-459a-a02d-a57162c8041a.roa File: 817269f2-96fa-459a-a02d-a57162c8041a.roa (raw, json) Hash identifier: WTpsEFyRCoZ8pZEbC0aNT/lUDLt66e4FrIi9q402rOI= Subject key identifier: 80:4A:E8:5F:0E:8D:B1:1C:03:1F:D9:FD:29:F6:C1:03:58:32:87:8C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 65F1725CABD8A7BE4277402BACC215F1FB17E77A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/817269f2-96fa-459a-a02d-a57162c8041a.roa Signing time: Wed 13 May 2026 00:01:02 +0000 ROA not before: Wed 13 May 2026 00:01:02 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:f1:72:5c:ab:d8:a7:be:42:77:40:2b:ac:c2:15:f1:fb:17:e7:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:01:02 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=3ea8d37eb1f88a34e4b9000405fec81ed262b600b396fd502a55b43bd6ce437a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:64:cb:54:53:4f:15:0b:55:7b:4d:27:5d:a2: e3:bd:7a:64:c2:9a:93:c8:e0:54:08:a1:13:c9:12: d8:65:0f:cd:61:56:9d:96:9f:71:b8:94:9a:93:bf: 76:1c:7b:8d:61:41:41:48:2d:3a:e3:c8:a6:f3:17: d6:1e:35:f4:7b:56:19:9a:40:c0:ee:c7:07:36:63: ae:9a:79:5f:45:50:1d:3a:e2:fb:e9:46:f7:f9:94: 6d:d6:49:dc:35:62:da:6b:d7:41:44:ea:4b:bb:40: 3a:db:59:da:2f:50:b1:9e:a9:b1:e3:cf:0b:18:05: 08:fd:a4:bf:9c:d8:6e:4a:9b:30:c4:48:13:a2:14: e9:d4:9c:6c:ea:c7:dd:51:ac:2b:00:f2:88:65:ad: 84:65:5e:bd:6c:b0:46:13:5c:95:7a:48:14:c4:cd: e3:06:df:7e:2d:8a:09:4e:80:4e:94:f1:92:46:a5: d9:25:52:85:a1:b3:fc:d1:8d:4c:be:62:00:36:df: ea:71:3e:56:07:aa:e9:56:e6:97:c3:90:c4:d2:46: a2:43:cf:90:84:d1:30:5c:e7:71:b3:e5:dd:ec:61: 79:63:bd:73:e6:31:c0:e8:68:b6:9d:68:00:40:9d: aa:3b:d3:d0:e9:eb:c5:1f:42:3e:16:7a:41:ed:57: eb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:4A:E8:5F:0E:8D:B1:1C:03:1F:D9:FD:29:F6:C1:03:58:32:87:8C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/817269f2-96fa-459a-a02d-a57162c8041a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1e::/32 Signature Algorithm: sha256WithRSAEncryption 90:10:dc:11:90:0a:38:78:13:fb:55:c0:76:44:4c:1d:c9:2a: a3:44:19:5b:33:e6:04:3d:25:ab:e1:f5:ae:69:27:d3:11:73: e8:dd:1f:36:82:80:5e:57:5f:5d:10:4b:55:c0:9d:1e:f5:7e: 30:bc:71:ff:1a:70:2e:de:a6:0e:81:46:e9:ed:db:0b:2a:72: 94:d7:da:46:c1:a1:88:99:38:9a:fc:77:29:0e:aa:85:62:d2: 9f:b8:8a:f9:41:0a:0f:97:27:4c:b5:13:b3:05:af:ac:2b:cb: ce:06:b4:89:e6:fb:d3:4b:8e:86:06:09:1f:5f:eb:8c:59:e5: 75:9b:32:14:be:9a:78:3a:87:19:b3:5e:31:2c:99:ad:b1:3d: a7:26:6e:dc:69:db:85:a4:5b:0d:60:ec:2f:48:63:c8:e2:d6: 2b:f8:50:22:42:17:a4:64:0c:05:fb:17:c8:40:5f:69:88:e5: b4:c0:e8:db:d7:b1:d8:7f:a5:3f:e5:ae:70:d0:ae:6e:27:fd: a2:eb:05:c3:5a:21:48:51:e5:ad:18:05:bf:ef:da:be:0a:e5: 54:b8:11:26:27:5b:33:a7:ee:57:e4:b3:3b:6f:f9:18:f3:44: ac:f9:bd:a1:01:27:2e:e3:2c:42:0f:a1:cc:30:3f:77:6c:c9: b0:b9:d5:fd -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUZfFyXKvYp75Cd0ArrMIV8fsX53owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMDEwMloX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAM2VhOGQzN2ViMWY4OGEzNGU0Yjkw MDA0MDVmZWM4MWVkMjYyYjYwMGIzOTZmZDUwMmE1NWI0M2JkNmNlNDM3YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWTLVFNPFQtVe00nXaLjvXpkwpqT yOBUCKETyRLYZQ/NYVadlp9xuJSak792HHuNYUFBSC0648im8xfWHjX0e1YZmkDA 7scHNmOumnlfRVAdOuL76Ub3+ZRt1kncNWLaa9dBROpLu0A621naL1Cxnqmx488L GAUI/aS/nNhuSpswxEgTohTp1Jxs6sfdUawrAPKIZa2EZV69bLBGE1yVekgUxM3j Bt9+LYoJToBOlPGSRqXZJVKFobP80Y1MvmIANt/qcT5WB6rpVuaXw5DE0kaiQ8+Q hNEwXOdxs+Xd7GF5Y71z5jHA6Gi2nWgAQJ2qO9PQ6evFH0I+FnpB7VfrdwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFIBK6F8OjbEcAx/Z/Sn2wQNYMoeMMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzgxNzI2OWYyLTk2ZmEtNDU5YS1hMDJkLWE1NzE2MmM4MDQxYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAbaHjANBgkqhkiG9w0BAQsFAAOCAQEAkBDcEZAKOHgT+1XAdkRM Hckqo0QZWzPmBD0lq+H1rmkn0xFz6N0fNoKAXldfXRBLVcCdHvV+MLxx/xpwLt6m DoFG6e3bCypylNfaRsGhiJk4mvx3KQ6qhWLSn7iK+UEKD5cnTLUTswWvrCvLzga0 ieb700uOhgYJH1/rjFnldZsyFL6aeDqHGbNeMSyZrbE9pyZu3GnbhaRbDWDsL0hj yOLWK/hQIkIXpGQMBfsXyEBfaYjltMDo29ex2H+lP+WucNCubif9ousFw1ohSFHl rRgFv+/avgrlVLgRJidbM6fuV+SzO2/5GPNErPm9oQEnLuMsQg+hzDA/d2zJsLnV /Q== -----END CERTIFICATE-----Generated at Sat Jun 13 10:28:29 2026 by rpki-client