$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c5a1a1a0-4f4f-473d-bfac-fd46ff826004.roa File: c5a1a1a0-4f4f-473d-bfac-fd46ff826004.roa (raw, json) Hash identifier: 7KSMr73oiZ6zsruAhTvppso1vRgrF43hYY3n0HWezds= Subject key identifier: 15:F1:A8:E4:DB:3C:46:AE:EB:80:25:23:B8:E7:05:05:1C:4A:96:4C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 773D0199874E4ED6A223FAB1AB03763038C67F4D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c5a1a1a0-4f4f-473d-bfac-fd46ff826004.roa Signing time: Wed 13 May 2026 00:21:29 +0000 ROA not before: Wed 13 May 2026 00:21:29 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da12:8400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:3d:01:99:87:4e:4e:d6:a2:23:fa:b1:ab:03:76:30:38:c6:7f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:21:29 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=da4f699233be9892f7ad15dac959def37f23ee1b491305547bb907d48fb0cf30, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f4:df:63:4f:76:8d:bd:21:46:23:30:fe:9c: bd:8a:d9:e5:db:81:f9:13:e5:5e:f7:bc:64:e7:5c: 31:03:f6:e4:ef:fd:51:df:85:6f:57:e9:39:02:6e: 19:d2:49:1a:26:73:36:ce:ec:8d:c6:12:c0:1a:0f: f9:4b:b1:8e:dd:4f:48:6e:d6:22:7e:28:98:3e:ec: e7:cf:98:a0:6a:17:0d:f3:30:c8:52:b3:85:6f:33: 36:45:de:3a:6c:90:5c:b1:20:f2:e0:4f:79:2b:6b: b3:69:50:53:5e:9a:c6:4f:b4:c8:37:2e:37:de:78: 93:57:a2:e9:95:e6:ee:38:3a:d6:10:35:09:d7:88: ad:5c:7b:7a:3a:e0:0d:41:83:f1:d8:d6:a7:92:6b: f4:27:3b:b2:8f:6c:43:df:52:9b:5a:47:c3:5d:0b: 30:3c:87:67:1d:ff:eb:37:2d:7e:c4:09:22:19:51: ab:3a:e6:19:2a:b4:1d:33:94:dd:41:03:b7:cb:2d: aa:b6:40:99:40:16:8d:fa:ee:c6:35:35:5b:ff:20: 7d:bc:ef:51:65:a9:9e:f2:08:9e:b8:0d:13:b8:3f: d8:6c:57:bb:b7:1f:97:92:ec:45:c0:62:16:0f:98: c9:46:71:c9:68:9d:50:03:dc:a2:b2:14:a8:1f:81: 0a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F1:A8:E4:DB:3C:46:AE:EB:80:25:23:B8:E7:05:05:1C:4A:96:4C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c5a1a1a0-4f4f-473d-bfac-fd46ff826004.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da12:8400::/38 Signature Algorithm: sha256WithRSAEncryption 15:90:9a:1c:94:ff:70:53:ae:11:76:ba:88:18:ea:21:7c:c2: 0f:a3:25:1b:59:c9:7a:60:48:43:11:90:ba:f4:36:ef:a5:41: 57:f1:cd:e9:ca:cf:5f:9d:89:71:a4:af:7a:be:f3:ff:64:e9: 29:c2:0b:c9:87:5a:71:f5:82:82:44:70:4e:82:d6:b4:02:36: 61:7d:c3:65:d6:40:78:6e:78:89:aa:48:0a:a4:f5:4c:14:db: 28:b6:30:1a:d4:10:0b:de:b3:2b:2e:45:55:4e:48:ec:d3:5b: 37:1a:c2:35:56:00:66:8d:da:08:86:4b:80:06:c0:8b:11:e1: 87:4d:44:5f:7f:1b:f0:92:e1:f1:08:0b:e0:a3:7f:bf:0d:8f: c5:dd:d9:11:71:b3:40:06:10:94:f2:ca:f0:d0:ee:be:80:fa: e5:fe:93:38:ce:0a:6c:0b:67:be:5b:f5:18:20:f9:62:ef:04: 54:6b:57:0c:78:37:5b:20:0e:5e:70:0e:fd:15:cd:82:7c:d0: 69:e9:6e:2c:73:f1:59:9d:3c:22:a5:e2:3f:e8:bf:e2:55:69: f7:0f:c6:3d:84:c2:f4:ea:be:ad:75:f5:c1:a5:f7:4b:22:6c: b4:22:99:33:b9:29:03:7b:04:41:f5:75:7a:95:63:b1:eb:4e: 79:31:81:0c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUdz0BmYdOTtaiI/qxqwN2MDjGf00wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMjEyOVoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAZGE0ZjY5OTIzM2JlOTg5MmY3YWQx NWRhYzk1OWRlZjM3ZjIzZWUxYjQ5MTMwNTU0N2JiOTA3ZDQ4ZmIwY2YzMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2/TfY092jb0hRiMw/py9itnl24H5 E+Ve97xk51wxA/bk7/1R34VvV+k5Am4Z0kkaJnM2zuyNxhLAGg/5S7GO3U9IbtYi fiiYPuznz5igahcN8zDIUrOFbzM2Rd46bJBcsSDy4E95K2uzaVBTXprGT7TINy43 3niTV6LplebuODrWEDUJ14itXHt6OuANQYPx2Nankmv0Jzuyj2xD31KbWkfDXQsw PIdnHf/rNy1+xAkiGVGrOuYZKrQdM5TdQQO3yy2qtkCZQBaN+u7GNTVb/yB9vO9R Zame8gieuA0TuD/YbFe7tx+XkuxFwGIWD5jJRnHJaJ1QA9yishSoH4EKaQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBXxqOTbPEau64AlI7jnBQUcSpZMMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M1YTFhMWEwLTRmNGYtNDczZC1iZmFjLWZkNDZmZjgyNjAwNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaEoQwDQYJKoZIhvcNAQELBQADggEBABWQmhyU/3BTrhF2uogY 6iF8wg+jJRtZyXpgSEMRkLr0Nu+lQVfxzenKz1+diXGkr3q+8/9k6SnCC8mHWnH1 goJEcE6C1rQCNmF9w2XWQHhueImqSAqk9UwU2yi2MBrUEAvesysuRVVOSOzTWzca wjVWAGaN2giGS4AGwIsR4YdNRF9/G/CS4fEIC+Cjf78Nj8Xd2RFxs0AGEJTyyvDQ 7r6A+uX+kzjOCmwLZ75b9Rgg+WLvBFRrVwx4N1sgDl5wDv0VzYJ80Gnpbixz8Vmd PCKl4j/ov+JVafcPxj2EwvTqvq119cGl90sibLQimTO5KQN7BEH1dXqVY7HrTnkx gQw= -----END CERTIFICATE-----Generated at Sat Jun 13 09:15:17 2026 by rpki-client