$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0d0474f-3a63-4312-ba91-4caeffc8b819.roa File: a0d0474f-3a63-4312-ba91-4caeffc8b819.roa (raw, json) Hash identifier: 7Qn5vbKkCerL6AC7azZyV+1MtPqJ+SRMqPcbpJqxbhc= Subject key identifier: 37:E2:05:23:DF:E2:C3:82:BD:6B:6B:A4:1F:5C:67:C6:F9:DF:B2:5E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 139A80C9B9F52EA84C04005BF720142943D6C94D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0d0474f-3a63-4312-ba91-4caeffc8b819.roa Signing time: Wed 13 May 2026 00:10:07 +0000 ROA not before: Wed 13 May 2026 00:10:07 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:4800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 00:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:9a:80:c9:b9:f5:2e:a8:4c:04:00:5b:f7:20:14:29:43:d6:c9:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:10:07 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=25ad55318c684e7ce2493f385570bc309413e3ce1c634607ac5eb71a843db343, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:4b:7c:ea:f8:df:45:ab:c1:07:a2:2e:8e:af: 53:2c:ca:c8:13:b8:46:ad:e2:2d:15:63:93:51:cb: 92:2a:8a:19:0a:65:91:e4:d5:0e:06:c0:65:bd:66: 6b:be:35:3d:0a:14:1e:20:8d:15:f4:a9:6a:5c:cd: 8b:97:dc:9d:24:d2:4b:05:11:bc:df:2b:10:4d:35: cd:60:48:1b:3d:0a:af:88:df:ab:b2:28:c5:dc:3a: 42:75:a7:4a:4a:87:b7:bc:ca:60:ed:19:d3:86:c7: 79:d5:a8:40:ad:d9:d5:d0:3c:a5:73:d1:ef:58:02: ab:f3:17:ba:9c:68:0c:e1:59:47:5f:aa:2b:c4:f7: 53:31:a6:10:5d:15:40:51:d9:07:53:92:9d:dc:b2: 66:67:20:0e:37:86:6c:30:f1:9c:e4:11:07:75:45: 85:53:4b:da:28:94:3c:b8:55:0c:86:8a:ed:72:17: b0:b4:ce:14:36:72:cf:61:40:ac:9a:4c:10:50:61: 21:2b:6a:f3:a8:48:b2:44:9d:50:17:63:51:8d:7d: 73:64:c6:2e:a6:8f:96:25:7b:72:d8:51:a7:1a:08: b8:2b:95:18:41:32:f0:97:cd:8f:ac:d3:bf:5f:36: 0a:a9:49:0a:ee:f6:a9:b4:f0:af:0d:f3:79:cb:b6: 8e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E2:05:23:DF:E2:C3:82:BD:6B:6B:A4:1F:5C:67:C6:F9:DF:B2:5E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0d0474f-3a63-4312-ba91-4caeffc8b819.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:4800::/40 Signature Algorithm: sha256WithRSAEncryption 82:44:4c:ba:56:09:1b:a2:d5:72:9b:38:d4:34:d1:05:71:63: 0f:93:f6:ac:64:54:5f:52:be:7c:c6:7b:36:e1:83:b9:45:53: 93:e3:68:16:68:a5:6d:cf:ec:2b:e2:36:3b:ad:c4:d5:3b:90: ce:2a:31:b2:09:b8:80:14:ab:f6:75:f0:c7:c6:01:85:d1:97: 35:06:ef:7f:0b:89:51:aa:fc:19:8b:69:c3:65:05:6b:f4:a2: 7d:ca:98:17:70:f6:cf:2d:35:97:9c:44:4f:16:ee:8d:d3:e7: 8a:a3:b5:ac:07:8f:b1:0b:8d:53:82:21:62:81:9d:ee:55:07: 3e:54:f9:e2:4e:8e:ae:63:6d:d1:0d:e9:23:ca:0d:7c:ff:a8: 92:bc:5e:71:43:1d:e0:6d:7b:0c:a1:a0:9f:6a:d3:03:0d:7b: 68:86:e8:ad:fb:11:be:8d:a4:e7:4d:94:bc:77:65:c0:35:ba: b6:dd:d2:05:01:0b:e7:14:c9:10:03:e7:9b:04:16:c5:5e:19: db:86:fb:28:e0:f1:8e:3d:82:23:27:f3:0a:6f:83:17:57:e2: 45:16:bf:a5:04:1a:10:3c:d3:73:ab:32:af:99:c5:a1:ea:22: 08:90:4f:2b:66:2d:dd:2f:41:e4:37:e2:9b:0b:6c:ef:34:e8: f9:3b:f7:f5 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUE5qAybn1LqhMBABb9yAUKUPWyU0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMTAwN1oX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAMjVhZDU1MzE4YzY4NGU3Y2UyNDkz ZjM4NTU3MGJjMzA5NDEzZTNjZTFjNjM0NjA3YWM1ZWI3MWE4NDNkYjM0MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlUt86vjfRavBB6Iujq9TLMrIE7hG reItFWOTUcuSKooZCmWR5NUOBsBlvWZrvjU9ChQeII0V9KlqXM2Ll9ydJNJLBRG8 3ysQTTXNYEgbPQqviN+rsijF3DpCdadKSoe3vMpg7RnThsd51ahArdnV0Dylc9Hv WAKr8xe6nGgM4VlHX6orxPdTMaYQXRVAUdkHU5Kd3LJmZyAON4ZsMPGc5BEHdUWF U0vaKJQ8uFUMhortchewtM4UNnLPYUCsmkwQUGEhK2rzqEiyRJ1QF2NRjX1zZMYu po+WJXty2FGnGgi4K5UYQTLwl82PrNO/XzYKqUkK7vaptPCvDfN5y7aOvQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDfiBSPf4sOCvWtrpB9cZ8b537JeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EwZDA0NzRmLTNhNjMtNDMxMi1iYTkxLTRjYWVmZmM4YjgxOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacEgwDQYJKoZIhvcNAQELBQADggEBAIJETLpWCRui1XKbONQ0 0QVxYw+T9qxkVF9SvnzGezbhg7lFU5PjaBZopW3P7CviNjutxNU7kM4qMbIJuIAU q/Z18MfGAYXRlzUG738LiVGq/BmLacNlBWv0on3KmBdw9s8tNZecRE8W7o3T54qj tawHj7ELjVOCIWKBne5VBz5U+eJOjq5jbdEN6SPKDXz/qJK8XnFDHeBtewyhoJ9q 0wMNe2iG6K37Eb6NpOdNlLx3ZcA1urbd0gUBC+cUyRAD55sEFsVeGduG+yjg8Y49 giMn8wpvgxdX4kUWv6UEGhA803OrMq+ZxaHqIgiQTytmLd0vQeQ34psLbO806Pk7 9/U= -----END CERTIFICATE-----Generated at Wed Jun 17 08:54:59 2026 by rpki-client