$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/cb10cdbe-9ac9-4775-9f9f-391f8a17a78e.roa File: cb10cdbe-9ac9-4775-9f9f-391f8a17a78e.roa (raw, json) Hash identifier: UpX+whx1hEJ3QfvyptqEPGQXHfTjtDT589fCqkFea0o= Subject key identifier: F7:D4:CB:55:B8:FB:AC:F1:0D:F0:3F:4E:A9:72:17:E8:CE:62:3C:7C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2C9AA0BF43B6C73CE0D7D175954EE8E7029427C2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/cb10cdbe-9ac9-4775-9f9f-391f8a17a78e.roa Signing time: Sun 31 May 2026 00:20:53 +0000 ROA not before: Sun 31 May 2026 00:20:53 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da33:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:9a:a0:bf:43:b6:c7:3c:e0:d7:d1:75:95:4e:e8:e7:02:94:27:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:20:53 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=ea25f1eb4322a95237dfadf72be5eafe99ccbd90c36307a89b2403f99ce0a777, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:86:17:01:3b:4d:b5:9e:74:a9:f1:92:e1:1a: f3:8b:c1:37:70:fc:51:74:83:02:04:4c:b5:17:48: c2:7f:70:b7:e1:92:77:72:af:d0:b8:51:44:cf:0d: f6:0f:3b:d4:fb:e4:ad:fc:b0:b2:f9:46:e2:c4:3c: ce:86:1e:bc:3a:0f:f3:b5:63:26:91:ff:3b:07:18: 36:47:12:f1:b8:e5:d0:9b:61:09:cc:3a:a5:cd:c6: 65:b9:58:b4:58:db:e6:2b:6f:6f:71:79:93:6f:18: eb:52:eb:7b:c3:68:61:53:b4:8b:24:df:11:6b:d5: b2:b1:48:6d:2f:07:1e:8c:3f:f2:88:7d:dc:5a:cc: a8:82:ab:fa:33:6b:92:60:2e:ab:82:83:4e:aa:5b: b3:94:2f:12:8e:44:2e:fd:44:2e:67:99:90:19:f0: 07:03:de:db:15:81:7e:16:df:c2:d8:a9:7a:fe:94: 8f:4a:e5:7e:f4:25:16:09:2b:7e:49:2d:fb:cc:a3: e6:fb:c3:74:22:ac:ca:df:ed:b3:e0:44:68:af:be: 53:80:ec:e7:b3:ea:7d:2d:cf:2d:8f:46:66:64:fd: 96:c1:f2:60:95:1f:00:38:55:62:4d:fb:18:59:90: 1f:f3:54:e4:a8:1b:6a:19:7e:0c:ff:26:0c:cc:fe: cc:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D4:CB:55:B8:FB:AC:F1:0D:F0:3F:4E:A9:72:17:E8:CE:62:3C:7C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/cb10cdbe-9ac9-4775-9f9f-391f8a17a78e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da33:e000::/40 Signature Algorithm: sha256WithRSAEncryption 0e:a3:ad:3d:dc:db:e2:56:31:57:ea:97:ff:fc:18:2c:ef:6b: 81:a2:25:92:82:10:be:a7:85:8d:26:75:89:2c:cf:62:2b:79: 54:f9:3d:ad:32:04:c1:7a:ff:7c:d5:54:e9:03:16:9d:fb:9d: 50:b4:19:bd:83:23:ad:0e:1a:3e:53:72:07:f9:0b:dd:d0:15: 2d:8a:c7:00:e4:6f:53:06:13:ec:71:14:dd:7c:9a:8d:25:fc: 87:3e:f2:32:15:cb:63:f1:b2:28:12:fe:50:6e:c6:64:4f:64: 49:4f:b1:fc:85:24:9b:e2:fe:0a:2c:01:43:3d:f1:49:70:71: 47:f9:35:37:1f:c2:90:c0:e6:94:5d:23:43:91:99:e7:7b:06: de:73:15:9e:35:cd:c2:d2:99:c1:a8:fd:f0:1a:20:05:46:22: e1:58:32:64:0a:32:11:1a:d7:99:88:be:5a:b6:09:2c:ba:b1: 1d:7a:f8:65:18:75:56:70:94:04:2b:33:84:4e:97:71:4d:86: 60:37:df:e2:c5:94:47:90:ec:03:af:af:90:fd:b1:27:1a:5f: 73:13:0a:45:76:32:ca:39:55:5b:25:5e:f1:3d:90:ed:0c:71: 2b:19:66:54:48:37:6b:bc:62:13:d8:43:41:75:2a:d8:30:d2: e0:4b:b2:a2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIULJqgv0O2xzzg19F1lU7o5wKUJ8IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMjA1M1oX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAZWEyNWYxZWI0MzIyYTk1MjM3ZGZh ZGY3MmJlNWVhZmU5OWNjYmQ5MGMzNjMwN2E4OWIyNDAzZjk5Y2UwYTc3NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooYXATtNtZ50qfGS4Rrzi8E3cPxR dIMCBEy1F0jCf3C34ZJ3cq/QuFFEzw32DzvU++St/LCy+UbixDzOhh68Og/ztWMm kf87Bxg2RxLxuOXQm2EJzDqlzcZluVi0WNvmK29vcXmTbxjrUut7w2hhU7SLJN8R a9WysUhtLwcejD/yiH3cWsyogqv6M2uSYC6rgoNOqluzlC8SjkQu/UQuZ5mQGfAH A97bFYF+Ft/C2Kl6/pSPSuV+9CUWCSt+SS37zKPm+8N0IqzK3+2z4ERor75TgOzn s+p9Lc8tj0ZmZP2WwfJglR8AOFViTfsYWZAf81TkqBtqGX4M/yYMzP7MTwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPfUy1W4+6zxDfA/TqlyF+jOYjx8MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2NiMTBjZGJlLTlhYzktNDc3NS05ZjlmLTM5MWY4YTE3YTc4ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaM+AwDQYJKoZIhvcNAQELBQADggEBAA6jrT3c2+JWMVfql//8 GCzva4GiJZKCEL6nhY0mdYksz2IreVT5Pa0yBMF6/3zVVOkDFp37nVC0Gb2DI60O Gj5Tcgf5C93QFS2KxwDkb1MGE+xxFN18mo0l/Ic+8jIVy2PxsigS/lBuxmRPZElP sfyFJJvi/gosAUM98UlwcUf5NTcfwpDA5pRdI0ORmed7Bt5zFZ41zcLSmcGo/fAa IAVGIuFYMmQKMhEa15mIvlq2CSy6sR16+GUYdVZwlAQrM4ROl3FNhmA33+LFlEeQ 7AOvr5D9sScaX3MTCkV2Mso5VVslXvE9kO0McSsZZlRIN2u8YhPYQ0F1Ktgw0uBL sqI= -----END CERTIFICATE-----Generated at Sat Jun 13 08:01:17 2026 by rpki-client