$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d57e8e3c-8605-46f3-8465-e0a444cd661d.roa File: d57e8e3c-8605-46f3-8465-e0a444cd661d.roa (raw, json) Hash identifier: sjQdJgEszR1unQLhPH3Ljlv/622KoOZhBw7MISFBebI= Subject key identifier: 0E:B0:9F:7B:8B:28:DA:2E:18:A5:5D:A3:A2:A9:F1:18:1D:D8:D0:C7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5C4BE93F37B3A16A8FE5A1CE9854F35148B80ACF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d57e8e3c-8605-46f3-8465-e0a444cd661d.roa Signing time: Tue 19 May 2026 00:01:02 +0000 ROA not before: Tue 19 May 2026 00:01:02 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:4b:e9:3f:37:b3:a1:6a:8f:e5:a1:ce:98:54:f3:51:48:b8:0a:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 19 00:01:02 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=c86538afc813fdbdbbd9eb751dd4311010ad3cfa1db010fe70aa785247b242b3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c3:5a:d9:07:be:68:5c:b9:2c:a1:13:04:4d: 61:8e:c9:ad:96:24:25:b4:86:7e:13:e7:8f:03:41: 91:1e:d2:3e:56:4e:79:55:b0:e1:d8:df:7d:56:52: e2:59:b2:e1:74:99:6b:d7:3d:eb:1f:94:61:cd:96: 8c:20:e3:9e:00:ac:7e:7e:64:48:0c:64:b5:f4:06: 48:7e:2d:66:72:29:54:53:55:a2:8e:0c:14:62:bd: b4:84:3f:0e:31:81:71:6d:5f:23:fb:6d:57:1e:7e: 47:01:a4:9c:91:81:6a:b2:82:48:70:41:84:19:e9: 8a:76:a3:55:3d:a7:23:00:44:33:23:4b:4c:cb:db: 88:d0:07:4e:a3:60:12:d5:7c:5e:5a:80:03:c0:ee: ab:97:f8:31:86:4c:aa:c1:5b:92:03:0a:9b:5d:b4: bc:1f:42:8b:b9:2a:9a:b9:5d:85:e9:b1:0b:2e:7a: 2e:4b:7e:d6:79:f1:c5:e0:7b:02:f0:1f:3f:01:66: ff:be:fa:2b:97:73:3a:a2:bc:6f:c6:9e:b6:46:64: 60:c3:de:e3:bb:8c:c0:79:4d:b5:2f:b4:7a:04:3a: 56:5d:8d:82:c3:a1:02:40:1d:06:0b:51:fd:1a:19: 38:f4:b1:54:c7:69:33:7d:24:8a:0a:85:0c:7a:a1: 4b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B0:9F:7B:8B:28:DA:2E:18:A5:5D:A3:A2:A9:F1:18:1D:D8:D0:C7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d57e8e3c-8605-46f3-8465-e0a444cd661d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:8800::/40 Signature Algorithm: sha256WithRSAEncryption 96:16:19:5b:c9:7f:7d:d0:cf:4b:d6:7e:ad:a6:55:cf:a3:6d: 7f:cc:7c:39:8d:d7:42:15:e7:e1:5d:47:8d:f2:67:0f:85:28: d2:76:7f:de:92:03:57:c2:53:7a:62:f6:80:3f:36:15:34:20: 24:d1:df:83:f3:61:de:8d:63:b4:89:a6:75:af:b7:67:0f:b3: a4:19:4a:b5:30:3a:0d:2b:08:07:77:ff:96:fa:3e:37:e6:86: 51:77:23:89:a9:db:bf:d9:9d:0b:0d:0e:17:d6:5e:0e:e5:51: 6e:77:b8:b6:d8:b2:6c:df:65:3e:7c:f7:86:0b:00:7d:06:e3: 8a:4b:58:d1:14:d5:ee:a5:75:6f:0b:ac:d5:8f:83:0a:17:ef: f0:b2:12:6b:df:a4:cb:99:7c:c8:9f:7e:8b:26:e8:22:b3:49: 8f:69:cd:7e:e2:36:1e:df:dd:37:0e:43:50:1c:50:4c:48:3c: e0:1e:92:bc:df:ca:fc:3d:d9:ea:da:8c:27:3a:f4:38:8d:58: e8:cc:d3:f5:a4:19:ad:c2:be:a3:bc:41:4c:3c:4d:0d:06:f7: 78:4d:89:46:04:f1:1b:eb:f2:79:24:26:5a:54:78:c4:8c:fc: 30:83:a9:4f:fc:b9:63:1b:c5:93:2f:83:4e:fe:fe:61:19:a8: 50:19:e4:ce -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUXEvpPzezoWqP5aHOmFTzUUi4Cs8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxOTAwMDEwMloX DTI2MDgxNzIzNTk1OVowejFJMEcGA1UEBRNAYzg2NTM4YWZjODEzZmRiZGJiZDll Yjc1MWRkNDMxMTAxMGFkM2NmYTFkYjAxMGZlNzBhYTc4NTI0N2IyNDJiMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA58Na2Qe+aFy5LKETBE1hjsmtliQl tIZ+E+ePA0GRHtI+Vk55VbDh2N99VlLiWbLhdJlr1z3rH5RhzZaMIOOeAKx+fmRI DGS19AZIfi1mcilUU1WijgwUYr20hD8OMYFxbV8j+21XHn5HAaSckYFqsoJIcEGE GemKdqNVPacjAEQzI0tMy9uI0AdOo2AS1XxeWoADwO6rl/gxhkyqwVuSAwqbXbS8 H0KLuSqauV2F6bELLnouS37WefHF4HsC8B8/AWb/vvorl3M6orxvxp62RmRgw97j u4zAeU21L7R6BDpWXY2Cw6ECQB0GC1H9Ghk49LFUx2kzfSSKCoUMeqFLwQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFA6wn3uLKNouGKVdo6Kp8Rgd2NDHMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q1N2U4ZTNjLTg2MDUtNDZmMy04NDY1LWUwYTQ0NGNkNjYxZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaIgwDQYJKoZIhvcNAQELBQADggEBAJYWGVvJf33Qz0vWfq2m Vc+jbX/MfDmN10IV5+FdR43yZw+FKNJ2f96SA1fCU3pi9oA/NhU0ICTR34PzYd6N Y7SJpnWvt2cPs6QZSrUwOg0rCAd3/5b6PjfmhlF3I4mp27/ZnQsNDhfWXg7lUW53 uLbYsmzfZT5894YLAH0G44pLWNEU1e6ldW8LrNWPgwoX7/CyEmvfpMuZfMiffosm 6CKzSY9pzX7iNh7f3TcOQ1AcUExIPOAekrzfyvw92erajCc69DiNWOjM0/WkGa3C vqO8QUw8TQ0G93hNiUYE8Rvr8nkkJlpUeMSM/DCDqU/8uWMbxZMvg07+/mEZqFAZ 5M4= -----END CERTIFICATE-----Generated at Sat Jun 13 10:26:04 2026 by rpki-client