$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c6637a68-db4c-46ed-bb42-09323c6ad680.roa File: c6637a68-db4c-46ed-bb42-09323c6ad680.roa (raw, json) Hash identifier: 6McyHyOZEoPUUNxrkIR8qe9aNC+34WWo0H15Ba2JTik= Subject key identifier: 9D:1B:2A:12:3B:A9:AA:9D:5C:7D:88:CD:17:05:70:D7:DA:9A:0A:5F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 37353B5203C6F19EA2684DCEF1DE341954CF1D0C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c6637a68-db4c-46ed-bb42-09323c6ad680.roa Signing time: Wed 13 May 2026 00:11:05 +0000 ROA not before: Wed 13 May 2026 00:11:05 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf8:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:35:3b:52:03:c6:f1:9e:a2:68:4d:ce:f1:de:34:19:54:cf:1d:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:11:05 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=b836e9084b45af36bd665acd3a59fe0c62c4858cb40d0b0f5150278c6d088963, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:de:b0:23:f8:82:8d:b4:8b:f2:06:9b:bf:12: 2f:37:fc:4a:d2:c3:74:fb:a2:5a:4b:aa:af:83:4b: e2:f2:60:00:29:08:c6:23:6b:12:fd:56:dd:7e:90: 8a:c3:32:93:35:8f:ac:59:09:f1:2d:72:cd:d3:68: 5a:88:cb:37:e3:89:21:97:ad:ce:3a:bc:4b:69:91: 25:42:a4:b7:8a:a2:13:34:2e:65:05:b3:c1:67:ff: af:70:fd:36:d4:39:ec:ef:4a:26:ac:3f:d0:c6:fd: b8:02:b9:54:8d:fa:a4:1a:7d:ef:a5:f7:49:8a:68: 9e:91:3a:80:43:ab:60:07:d0:b1:69:a2:25:58:4d: bd:0e:89:2c:62:80:a0:c4:27:ab:b2:e6:1a:86:78: 86:74:74:82:66:2b:65:9e:14:d4:78:bd:8e:fb:6e: 8b:98:73:94:1d:78:75:28:68:72:af:97:fa:83:94: 18:22:02:02:3c:0e:0e:f8:f6:75:ef:9e:c0:ce:71: 67:f5:62:21:39:3f:92:29:56:ac:6d:3b:76:2e:ca: ca:1c:dc:7e:2f:f4:29:ce:d7:ad:17:10:6a:84:29: 1f:8a:2b:8b:62:f9:5e:48:5f:7c:00:83:db:e0:71: 73:ce:0a:98:75:e0:6f:60:9b:7e:0f:41:26:30:97: 31:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:1B:2A:12:3B:A9:AA:9D:5C:7D:88:CD:17:05:70:D7:DA:9A:0A:5F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c6637a68-db4c-46ed-bb42-09323c6ad680.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf8:c000::/40 Signature Algorithm: sha256WithRSAEncryption 73:3a:00:0a:7d:7b:21:38:59:10:40:01:94:9a:c4:f1:92:ff: eb:ea:8d:4a:9a:b8:b4:7a:ba:96:6a:73:16:fa:a0:1f:35:92: b9:29:ce:6e:4e:7c:ce:9a:ac:75:9a:52:9c:8a:c4:86:58:0a: 65:4d:bf:2c:73:81:62:b3:dc:82:b0:d4:be:2d:25:94:8f:12: 5c:c9:f4:67:96:fe:a1:ed:ad:2f:a8:50:16:c2:c4:41:8e:57: a8:4e:f0:dc:1e:46:95:0a:c6:18:6e:7d:41:a4:2a:1f:17:c7: 03:25:0e:e2:da:16:7b:61:46:a2:8f:e3:5e:37:aa:3f:88:f9: 14:71:4b:ce:af:fd:f3:19:44:50:1e:32:02:32:67:a9:78:78: be:36:22:57:4d:d1:cf:a4:25:da:f9:43:2c:5c:e8:fa:ae:88: 37:83:dc:de:12:ac:d4:a1:f3:fd:b0:d9:1a:53:a0:84:05:f8: ac:4d:9c:18:d3:0d:a5:a1:35:74:05:db:45:ac:0c:21:8d:c1: e0:e3:75:cb:59:85:79:f6:6f:0d:6b:d8:fc:00:c8:7f:ee:d5: a7:9d:09:bf:6a:0f:31:74:0f:a9:e6:31:96:4f:23:00:1f:c2: dd:06:e8:65:65:e4:f3:78:09:ee:ee:9f:f6:7a:61:20:e0:2e: a6:eb:9a:2a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNzU7UgPG8Z6iaE3O8d40GVTPHQwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMTEwNVoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAYjgzNmU5MDg0YjQ1YWYzNmJkNjY1 YWNkM2E1OWZlMGM2MmM0ODU4Y2I0MGQwYjBmNTE1MDI3OGM2ZDA4ODk2MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo96wI/iCjbSL8gabvxIvN/xK0sN0 +6JaS6qvg0vi8mAAKQjGI2sS/VbdfpCKwzKTNY+sWQnxLXLN02haiMs344khl63O OrxLaZElQqS3iqITNC5lBbPBZ/+vcP021Dns70omrD/Qxv24ArlUjfqkGn3vpfdJ imiekTqAQ6tgB9CxaaIlWE29DoksYoCgxCersuYahniGdHSCZitlnhTUeL2O+26L mHOUHXh1KGhyr5f6g5QYIgICPA4O+PZ1757AznFn9WIhOT+SKVasbTt2LsrKHNx+ L/QpztetFxBqhCkfiiuLYvleSF98AIPb4HFzzgqYdeBvYJt+D0EmMJcxkwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJ0bKhI7qaqdXH2IzRcFcNfamgpfMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M2NjM3YTY4LWRiNGMtNDZlZC1iYjQyLTA5MzIzYzZhZDY4MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+MAwDQYJKoZIhvcNAQELBQADggEBAHM6AAp9eyE4WRBAAZSa xPGS/+vqjUqauLR6upZqcxb6oB81krkpzm5OfM6arHWaUpyKxIZYCmVNvyxzgWKz 3IKw1L4tJZSPElzJ9GeW/qHtrS+oUBbCxEGOV6hO8NweRpUKxhhufUGkKh8XxwMl DuLaFnthRqKP4143qj+I+RRxS86v/fMZRFAeMgIyZ6l4eL42IldN0c+kJdr5Qyxc 6PquiDeD3N4SrNSh8/2w2RpToIQF+KxNnBjTDaWhNXQF20WsDCGNweDjdctZhXn2 bw1r2PwAyH/u1aedCb9qDzF0D6nmMZZPIwAfwt0G6GVl5PN4Ce7un/Z6YSDgLqbr mio= -----END CERTIFICATE-----Generated at Sat Jun 13 10:28:42 2026 by rpki-client