$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa File: 9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa (raw, json) Hash identifier: XUZubH5VxSzM1+2ZY6X9wSw/0h1+7DHi77iXVPhjxts= Subject key identifier: 38:C6:5C:F8:EE:16:A1:5E:A8:6F:AC:39:FA:E2:4E:A5:94:C4:FA:9E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 622CBD225ED0FA05BA190D8CED9123B46C6FCEDD Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa Signing time: Wed 13 May 2026 00:20:12 +0000 ROA not before: Wed 13 May 2026 00:20:12 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da10:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:2c:bd:22:5e:d0:fa:05:ba:19:0d:8c:ed:91:23:b4:6c:6f:ce:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:20:12 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=d0bde292a7a4dc6d15ebd9e142dfd21f5c5c484f11c8d0273421ec1b48252b3f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f6:04:56:70:db:23:19:d4:2d:6d:b1:70:6f: 54:f9:58:56:22:a7:31:82:3e:6c:85:b8:54:f5:f0: 17:30:f2:cf:da:83:c6:f1:fd:d0:bf:3f:da:45:2c: 08:ef:47:53:cd:53:0f:92:f4:01:f6:19:55:02:75: 7b:6d:3c:e4:09:1e:07:fd:df:5b:2c:25:8c:89:58: d5:4e:1e:fb:40:c8:4e:02:03:8b:d3:ca:20:49:17: e1:56:fd:a5:27:9e:3c:36:80:a9:db:76:cc:30:b3: 3a:73:c8:a3:a2:38:df:be:ac:bc:ab:16:15:ed:a5: 39:94:62:f5:ac:3c:a9:49:ad:d0:8d:f3:02:0a:66: d4:ba:c1:1a:01:a9:38:6d:29:a8:e3:68:96:e2:32: 1b:b3:95:00:94:5c:a0:48:a9:e8:4b:b0:b6:73:02: 29:85:57:41:19:e0:b2:93:82:fe:b2:0f:0f:07:7c: e3:7d:54:0a:92:8d:97:7e:f9:6f:03:32:1d:0b:07: db:84:d1:86:8f:24:12:3a:3f:54:97:c2:80:5c:97: 95:d3:5c:2b:69:57:09:bb:a7:6c:05:f9:12:c7:59: 10:a7:3a:57:ae:ec:54:4f:4e:c9:0c:6e:4b:c1:85: 01:19:03:02:bc:3e:49:f9:4e:95:44:d6:f8:4c:83: 2e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C6:5C:F8:EE:16:A1:5E:A8:6F:AC:39:FA:E2:4E:A5:94:C4:FA:9E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da10:8000::/36 Signature Algorithm: sha256WithRSAEncryption a5:5e:2b:af:f1:d2:2f:1f:63:00:47:9b:65:c2:f4:e1:30:01: 92:42:52:4e:5b:a4:97:31:ad:62:ca:b1:7a:5d:53:92:65:db: 0e:d2:25:8c:d8:10:73:15:5a:ca:c9:00:76:fd:c4:1a:63:ee: 8b:2c:dd:61:7b:e3:4d:ac:5a:42:03:87:b0:d5:ac:b8:46:fa: 56:b0:fd:da:03:40:49:12:cf:19:82:af:f2:8d:03:69:37:b2: 5b:36:ee:75:83:5c:bc:97:1b:b6:04:a3:a6:0b:2c:38:ec:fd: 81:35:2d:90:e0:0e:90:98:5f:17:f3:a7:b4:08:b5:73:a8:ea: 61:55:d9:1d:02:d3:ff:e6:2f:ae:a6:a5:9d:99:27:82:15:76: 92:73:92:b5:b9:8e:27:b1:d5:a9:b2:48:9a:6f:43:7c:64:3d: e3:94:6d:78:ee:e3:15:f0:2c:0b:bc:69:6b:8d:0a:f0:97:5f: 1d:10:f4:2f:9b:be:fd:b6:86:3f:1c:49:cc:08:4e:6e:30:24: 46:12:05:fb:04:86:ca:62:08:4e:e8:ae:b0:bd:c1:d3:cd:4f: 1b:ef:31:48:5a:86:65:2b:78:a4:a9:49:c0:56:5a:75:2a:81: 3d:f2:d4:61:a2:c1:e2:97:39:2c:fc:b3:b8:f8:72:2f:3e:c3: 84:1e:e0:ac -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYiy9Il7Q+gW6GQ2M7ZEjtGxvzt0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMjAxMloX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAZDBiZGUyOTJhN2E0ZGM2ZDE1ZWJk OWUxNDJkZmQyMWY1YzVjNDg0ZjExYzhkMDI3MzQyMWVjMWI0ODI1MmIzZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PYEVnDbIxnULW2xcG9U+VhWIqcx gj5shbhU9fAXMPLP2oPG8f3Qvz/aRSwI70dTzVMPkvQB9hlVAnV7bTzkCR4H/d9b LCWMiVjVTh77QMhOAgOL08ogSRfhVv2lJ548NoCp23bMMLM6c8ijojjfvqy8qxYV 7aU5lGL1rDypSa3QjfMCCmbUusEaAak4bSmo42iW4jIbs5UAlFygSKnoS7C2cwIp hVdBGeCyk4L+sg8PB3zjfVQKko2XfvlvAzIdCwfbhNGGjyQSOj9Ul8KAXJeV01wr aVcJu6dsBfkSx1kQpzpXruxUT07JDG5LwYUBGQMCvD5J+U6VRNb4TIMuAwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDjGXPjuFqFeqG+sOfriTqWUxPqeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlkY2Y1ZjhmLTk5NDEtNGM1Ny05M2M2LTZkZjM0NDBkMDBhMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaEIAwDQYJKoZIhvcNAQELBQADggEBAKVeK6/x0i8fYwBHm2XC 9OEwAZJCUk5bpJcxrWLKsXpdU5Jl2w7SJYzYEHMVWsrJAHb9xBpj7oss3WF7402s WkIDh7DVrLhG+law/doDQEkSzxmCr/KNA2k3sls27nWDXLyXG7YEo6YLLDjs/YE1 LZDgDpCYXxfzp7QItXOo6mFV2R0C0//mL66mpZ2ZJ4IVdpJzkrW5jiex1amySJpv Q3xkPeOUbXju4xXwLAu8aWuNCvCXXx0Q9C+bvv22hj8cScwITm4wJEYSBfsEhspi CE7orrC9wdPNTxvvMUhahmUreKSpScBWWnUqgT3y1GGiweKXOSz8s7j4ci8+w4Qe 4Kw= -----END CERTIFICATE-----Generated at Sat Jun 13 08:00:08 2026 by rpki-client