$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8df78414-7d68-4c68-825b-b1dea16e9436.roa File: 8df78414-7d68-4c68-825b-b1dea16e9436.roa (raw, json) Hash identifier: iPEdD/jqQ4hmCzWNYKdSUgjXG3rlFJEjkE3EbMjJAik= Subject key identifier: 24:B0:6C:DB:06:25:13:66:73:4D:3B:3F:91:DB:B1:39:6F:55:70:63 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 79AD72AB45C321D9C61AEBCF7D4D5CBD3A1925BB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8df78414-7d68-4c68-825b-b1dea16e9436.roa Signing time: Sun 31 May 2026 00:10:10 +0000 ROA not before: Sun 31 May 2026 00:10:10 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daba:4020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:ad:72:ab:45:c3:21:d9:c6:1a:eb:cf:7d:4d:5c:bd:3a:19:25:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:10:10 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=16194adb2af0ae58e95ada9ff1f0785e38451cd61809aaccf317b40b00b43cbc, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:eb:fa:7c:5e:67:8c:1a:69:bc:c8:ce:2b:18: d3:3f:c4:44:54:15:53:4c:51:25:41:71:68:3a:c5: 5b:78:e8:92:bc:bd:d8:6c:8e:1d:43:94:33:60:2d: e6:f4:be:5d:91:6e:3a:7d:a0:55:26:b9:b2:8b:89: bb:e2:73:59:08:2e:08:6f:3e:35:51:03:83:57:94: 32:77:55:21:18:60:4a:ca:e8:ba:48:71:d0:91:26: 20:07:01:86:24:08:fc:ce:e8:b8:fe:ce:1b:9c:2a: c0:f7:37:af:8f:ef:a7:0a:f9:08:77:dc:2f:2d:d9: 8a:bf:0c:d4:2a:17:1f:36:c6:2a:52:b9:3a:7b:44: d5:5f:92:56:f0:de:65:8f:ee:02:60:1b:14:bb:25: af:64:29:12:66:f9:17:4b:fe:f1:78:cf:e8:1d:4f: 8c:11:55:e7:cc:90:52:04:2c:1f:15:4c:0f:f8:3d: 4e:eb:5e:1d:c9:e0:17:4f:2a:98:c8:6a:73:07:3d: 18:05:72:52:bc:0a:d7:7f:93:94:49:ce:d0:b0:72: 50:c8:12:df:2e:af:15:54:df:3e:0f:07:05:16:a4: 59:87:80:24:c9:a6:b8:02:0f:fe:e9:a9:af:f4:62: 63:12:e3:89:b9:5e:36:89:41:ed:38:79:73:d5:5e: 92:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B0:6C:DB:06:25:13:66:73:4D:3B:3F:91:DB:B1:39:6F:55:70:63 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8df78414-7d68-4c68-825b-b1dea16e9436.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daba:4020::/48 Signature Algorithm: sha256WithRSAEncryption cb:a5:a6:20:6d:3f:6e:66:e4:ca:06:62:cf:f8:bf:ef:c2:6b: a1:d7:6e:2a:fa:8a:ac:cd:11:ed:79:7b:1b:85:a8:f5:52:22: 8c:c1:7f:df:0b:50:6f:54:02:35:95:e9:61:62:98:8e:12:70: a3:c5:3c:c8:a1:b5:35:1b:23:b7:f1:35:b2:de:58:f5:71:1e: f2:4e:eb:6f:3f:72:48:9a:37:0a:da:53:70:ba:b4:7e:5a:7b: b3:e6:28:93:b1:ef:66:86:90:05:7c:04:b5:7c:5a:fe:f2:dd: 5d:62:9b:c5:a6:13:e2:a3:1f:93:b0:f4:3b:fc:e3:26:07:14: d6:b2:05:61:53:81:51:e3:e4:94:d9:3c:f4:e7:f6:3f:6c:cb: 77:b3:96:13:75:78:a8:94:3d:61:b8:da:df:52:ce:d7:20:37: ce:d6:12:f3:f3:dd:71:07:58:b7:3a:e2:fa:b3:7d:79:aa:a7: bd:eb:aa:43:5c:83:93:d1:1b:c0:0b:b7:a8:f3:9c:d5:43:da: 34:3c:46:76:26:b9:c6:91:48:9f:59:42:31:0c:84:35:92:58: 45:7c:28:8e:be:c2:35:22:ac:b8:58:15:10:a9:a1:e4:c5:e5: 01:30:cd:08:99:fd:56:34:6c:fb:d0:f4:8b:f0:60:3c:07:f1: ad:d7:a8:23 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUea1yq0XDIdnGGuvPfU1cvToZJbswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMTAxMFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAMTYxOTRhZGIyYWYwYWU1OGU5NWFk YTlmZjFmMDc4NWUzODQ1MWNkNjE4MDlhYWNjZjMxN2I0MGIwMGI0M2NiYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+v6fF5njBppvMjOKxjTP8REVBVT TFElQXFoOsVbeOiSvL3YbI4dQ5QzYC3m9L5dkW46faBVJrmyi4m74nNZCC4Ibz41 UQODV5Qyd1UhGGBKyui6SHHQkSYgBwGGJAj8zui4/s4bnCrA9zevj++nCvkId9wv LdmKvwzUKhcfNsYqUrk6e0TVX5JW8N5lj+4CYBsUuyWvZCkSZvkXS/7xeM/oHU+M EVXnzJBSBCwfFUwP+D1O614dyeAXTyqYyGpzBz0YBXJSvArXf5OUSc7QsHJQyBLf Lq8VVN8+DwcFFqRZh4Akyaa4Ag/+6amv9GJjEuOJuV42iUHtOHlz1V6SawIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCSwbNsGJRNmc007P5HbsTlvVXBjMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhkZjc4NDE0LTdkNjgtNGM2OC04MjViLWIxZGVhMTZlOTQzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaukAgMA0GCSqGSIb3DQEBCwUAA4IBAQDLpaYgbT9uZuTKBmLP +L/vwmuh124q+oqszRHteXsbhaj1UiKMwX/fC1BvVAI1lelhYpiOEnCjxTzIobU1 GyO38TWy3lj1cR7yTutvP3JImjcK2lNwurR+Wnuz5iiTse9mhpAFfAS1fFr+8t1d YpvFphPiox+TsPQ7/OMmBxTWsgVhU4FR4+SU2Tz05/Y/bMt3s5YTdXiolD1huNrf Us7XIDfO1hLz891xB1i3OuL6s315qqe966pDXIOT0RvAC7eo85zVQ9o0PEZ2JrnG kUifWUIxDIQ1klhFfCiOvsI1Iqy4WBUQqaHkxeUBMM0Imf1WNGz70PSL8GA8B/Gt 16gj -----END CERTIFICATE-----Generated at Sat Jun 13 09:16:08 2026 by rpki-client