$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9c7da266-a0f7-4bdd-805d-e6ae1385a509.roa File: 9c7da266-a0f7-4bdd-805d-e6ae1385a509.roa (raw, json) Hash identifier: VFHa3ecTXY6AdAm1bUj8iNXkqhZguLtMSD/pPk8uKzk= Subject key identifier: DB:6E:C7:F0:06:47:BB:0E:64:7E:63:5A:4A:DC:7C:B9:EC:66:E2:CE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 24EA151B27CBB2A5AC92CD0C6C3EAC577DBDEA06 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9c7da266-a0f7-4bdd-805d-e6ae1385a509.roa Signing time: Fri 03 Apr 2026 00:00:51 +0000 ROA not before: Fri 03 Apr 2026 00:00:51 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daeb:8800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 21:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:ea:15:1b:27:cb:b2:a5:ac:92:cd:0c:6c:3e:ac:57:7d:bd:ea:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 3 00:00:51 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=6574a465548ad076ef51874bc036ab67d1231463c40b14091a09a9dc9f1eb6ed, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2b:1b:24:60:fd:9e:a5:b7:b6:a1:7f:94:34: ee:b3:45:50:f1:32:d1:fe:dd:a9:a6:aa:68:b6:a2: db:d5:6b:49:b4:90:f9:62:31:cc:90:80:7b:20:04: 03:9b:ec:cc:ba:27:3a:6c:bf:12:ad:5d:f1:86:7a: d9:78:9c:b5:9a:13:47:8e:b8:16:9e:52:fc:7d:3d: 4a:8a:5b:c2:48:79:c7:a0:fb:63:bf:6f:1c:38:16: 85:d4:36:a5:72:2c:de:84:1b:4c:bf:48:e2:a0:27: 40:8b:a2:3f:cf:f7:ef:f5:c9:fd:20:ec:7d:c8:e8: b9:f9:d7:0f:79:f0:24:19:5f:5d:e5:8d:25:35:ab: 9d:3c:49:42:27:7f:b0:f3:d3:d8:8c:91:0d:4f:5a: 1e:a9:e8:20:09:c4:ba:66:a6:0c:94:83:db:35:30: d0:55:57:91:2c:4c:9c:1c:3d:17:e7:d4:65:8a:5b: 86:33:c3:76:9d:69:f5:38:0e:c2:eb:71:ac:0d:d8: 6b:c1:37:0c:94:c2:17:31:cc:ee:de:5e:23:18:38: 53:0c:c1:8d:90:0b:a5:57:63:a1:82:50:33:01:a0: 00:45:6d:a5:7f:5a:59:7d:ac:17:42:fd:37:27:e5: 5d:56:29:8c:b4:5f:b1:7c:a5:99:ad:3c:8f:55:42: 29:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:6E:C7:F0:06:47:BB:0E:64:7E:63:5A:4A:DC:7C:B9:EC:66:E2:CE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9c7da266-a0f7-4bdd-805d-e6ae1385a509.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daeb:8800::/40 Signature Algorithm: sha256WithRSAEncryption 03:24:d3:36:6c:2a:46:58:2c:79:89:4a:79:80:f9:fd:01:a8: d7:84:ef:4a:ed:95:d1:c8:44:29:7a:23:ce:2b:a6:ed:52:62: af:49:2f:b6:3a:f1:1d:4f:16:e1:75:a2:cf:05:5c:53:95:75: 30:8b:d0:fd:ad:89:6e:d4:e0:eb:30:04:88:6d:da:2f:2c:c0: 7f:9b:66:5a:ab:35:31:87:44:60:2a:0a:bc:10:6b:24:30:2a: 25:e1:09:38:d7:ff:8d:f0:82:1b:62:97:06:16:06:ce:82:05: df:1c:4b:9a:40:3a:b3:a7:68:1d:91:b0:b7:c4:d7:82:39:ac: be:82:5a:c0:2c:08:b4:ad:b2:cf:69:de:d0:4e:01:13:bc:99: cc:cf:a2:a8:27:49:1c:aa:81:2d:e6:0f:2a:8d:fd:11:f3:7b: 2e:14:79:13:48:a8:94:f7:b3:2e:9c:eb:e3:8e:70:50:1c:a3: f3:49:6b:0e:32:f4:da:1b:dc:24:3f:5e:04:40:c1:25:e7:7a: 13:3f:78:1b:b1:4a:fd:ec:3d:10:1a:5b:32:63:fa:36:cc:e9: c0:6a:b4:60:80:65:99:d4:f2:17:85:62:de:71:cc:a4:11:45: ba:38:9f:0b:47:59:0c:6c:88:b7:4d:18:16:8f:58:02:95:40: b3:25:29:54 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJOoVGyfLsqWsks0MbD6sV3296gYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDQwMzAwMDA1MVoX DTI2MDcwMjIzNTk1OVowejFJMEcGA1UEBRNANjU3NGE0NjU1NDhhZDA3NmVmNTE4 NzRiYzAzNmFiNjdkMTIzMTQ2M2M0MGIxNDA5MWEwOWE5ZGM5ZjFlYjZlZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzysbJGD9nqW3tqF/lDTus0VQ8TLR /t2ppqpotqLb1WtJtJD5YjHMkIB7IAQDm+zMuic6bL8SrV3xhnrZeJy1mhNHjrgW nlL8fT1KilvCSHnHoPtjv28cOBaF1DalcizehBtMv0jioCdAi6I/z/fv9cn9IOx9 yOi5+dcPefAkGV9d5Y0lNaudPElCJ3+w89PYjJENT1oeqeggCcS6ZqYMlIPbNTDQ VVeRLEycHD0X59RliluGM8N2nWn1OA7C63GsDdhrwTcMlMIXMczu3l4jGDhTDMGN kAulV2OhglAzAaAARW2lf1pZfawXQv03J+VdVimMtF+xfKWZrTyPVUIp5wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNtux/AGR7sOZH5jWkrcfLnsZuLOMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzljN2RhMjY2LWEwZjctNGJkZC04MDVkLWU2YWUxMzg1YTUwOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba64gwDQYJKoZIhvcNAQELBQADggEBAAMk0zZsKkZYLHmJSnmA +f0BqNeE70rtldHIRCl6I84rpu1SYq9JL7Y68R1PFuF1os8FXFOVdTCL0P2tiW7U 4OswBIht2i8swH+bZlqrNTGHRGAqCrwQayQwKiXhCTjX/43wghtilwYWBs6CBd8c S5pAOrOnaB2RsLfE14I5rL6CWsAsCLStss9p3tBOARO8mczPoqgnSRyqgS3mDyqN /RHzey4UeRNIqJT3sy6c6+OOcFAco/NJaw4y9Nob3CQ/XgRAwSXnehM/eBuxSv3s PRAaWzJj+jbM6cBqtGCAZZnU8heFYt5xzKQRRbo4nwtHWQxsiLdNGBaPWAKVQLMl KVQ= -----END CERTIFICATE-----Generated at Fri Apr 17 05:56:56 2026 by rpki-client