$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d5f74125-db8b-4584-80cb-ea57db1765ad.roa File: d5f74125-db8b-4584-80cb-ea57db1765ad.roa (raw, json) Hash identifier: ovg56HXnnmi1T9ZUNSsmN2KNqr0yH9CMKSTm51gCl4s= Subject key identifier: E8:10:5E:DD:DD:F2:E6:E6:01:A3:88:F6:B1:B3:CC:CC:93:45:E4:A5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6B017AF3AE8ED1085222872D47B3DC68A52919E9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d5f74125-db8b-4584-80cb-ea57db1765ad.roa Signing time: Sun 31 May 2026 00:00:40 +0000 ROA not before: Sun 31 May 2026 00:00:40 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dae9:c0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:01:7a:f3:ae:8e:d1:08:52:22:87:2d:47:b3:dc:68:a5:29:19:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:00:40 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=c29e08ef7d56ea1b1cb927520bb2c7437416bc6ee1f88272021256e6e72b883a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:82:54:81:c6:c1:da:33:76:59:a2:fd:74: 64:68:48:f5:9d:9f:ec:34:78:83:79:2c:7a:55:79: d1:bd:58:59:50:3e:20:a3:55:79:03:3a:8d:1d:8f: a2:e2:23:ab:c2:0b:6b:6f:5d:3f:e3:26:c7:06:c6: cd:f9:f2:53:a7:83:12:2d:38:96:20:61:f7:d8:b1: 54:b8:3e:9d:6d:6e:a5:ac:dc:d6:d6:0f:6d:d6:dd: b8:1a:f1:10:87:07:6a:90:52:4d:00:80:27:30:77: cc:48:be:ab:43:9d:c8:bb:90:36:3d:4c:bf:b7:eb: 76:5c:07:7f:c4:b5:db:b8:a4:c0:4d:19:a7:eb:8b: c3:f8:75:30:b0:9e:f6:91:37:51:51:24:dc:c5:83: 6e:a5:4a:0d:2d:ac:6d:50:dd:f6:38:f3:59:ca:87: 5a:1f:a8:7d:65:6e:21:3f:b4:5a:ab:ff:46:db:de: 14:f5:13:d8:3e:90:02:6c:06:0c:d7:f4:ea:f1:e9: a2:75:34:65:38:91:c3:f2:fb:41:46:ef:16:9e:87: b6:00:a2:b0:d7:0d:6b:f1:40:ea:bf:3a:8d:29:99: 3a:9b:91:53:25:d8:35:c3:24:20:3d:c5:47:92:d7: 6a:21:64:f3:90:fd:63:27:0e:79:16:14:cf:4c:a6: 35:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:10:5E:DD:DD:F2:E6:E6:01:A3:88:F6:B1:B3:CC:CC:93:45:E4:A5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d5f74125-db8b-4584-80cb-ea57db1765ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dae9:c0c0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:7c:b0:9e:cb:46:f2:44:1d:f2:bb:55:d1:1b:8b:f6:8f:82: 06:38:3b:9b:a7:a6:39:e0:12:54:e8:73:3e:f9:fb:b6:fa:29: a7:45:c5:1c:58:e0:60:9e:a4:4c:18:45:21:87:ce:21:5f:ac: d5:c8:65:22:41:0b:90:db:33:05:51:34:8e:c2:a5:d5:04:29: a6:39:0d:29:25:47:0a:12:1a:57:39:02:e6:da:64:70:8a:7b: 26:7c:b0:ae:26:96:46:1b:2c:e3:f4:bf:12:7d:43:fb:4b:5b: 57:75:c6:94:a0:c8:7c:8d:64:d2:99:ed:06:60:e3:08:59:82: b7:43:7c:a1:02:78:d9:7b:9f:14:6f:d1:63:d2:b8:ba:44:3d: 68:f9:b6:0f:a0:ec:48:ec:8f:de:d7:37:5a:38:42:c0:23:f5: f8:03:6d:a9:0b:e5:09:20:ca:92:71:ee:8f:e2:6e:da:ac:26: e5:af:43:0b:2e:a2:9d:e6:05:55:32:81:0a:f8:57:db:f7:1b: 04:df:3b:c9:44:92:e1:eb:61:16:55:c2:dc:b2:2d:93:ce:f1: 30:b8:eb:5a:d2:62:a1:b5:d6:11:2a:4e:3a:dd:96:67:0a:7a: 7f:4f:1b:88:4b:c4:84:8a:fa:d8:29:c4:9a:31:bc:7e:f7:f6: 29:c0:03:e9 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUawF6866O0QhSIoctR7PcaKUpGekwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMDA0MFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAYzI5ZTA4ZWY3ZDU2ZWExYjFjYjky NzUyMGJiMmM3NDM3NDE2YmM2ZWUxZjg4MjcyMDIxMjU2ZTZlNzJiODgzYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJ2CVIHGwdozdlmi/XRkaEj1nZ/s NHiDeSx6VXnRvVhZUD4go1V5AzqNHY+i4iOrwgtrb10/4ybHBsbN+fJTp4MSLTiW IGH32LFUuD6dbW6lrNzW1g9t1t24GvEQhwdqkFJNAIAnMHfMSL6rQ53Iu5A2PUy/ t+t2XAd/xLXbuKTATRmn64vD+HUwsJ72kTdRUSTcxYNupUoNLaxtUN32OPNZyoda H6h9ZW4hP7Raq/9G294U9RPYPpACbAYM1/Tq8emidTRlOJHD8vtBRu8Wnoe2AKKw 1w1r8UDqvzqNKZk6m5FTJdg1wyQgPcVHktdqIWTzkP1jJw55FhTPTKY1qwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFOgQXt3d8ubmAaOI9rGzzMyTReSlMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q1Zjc0MTI1LWRiOGItNDU4NC04MGNiLWVhNTdkYjE3NjVhZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6cDAMA0GCSqGSIb3DQEBCwUAA4IBAQA/fLCey0byRB3yu1XR G4v2j4IGODubp6Y54BJU6HM++fu2+imnRcUcWOBgnqRMGEUhh84hX6zVyGUiQQuQ 2zMFUTSOwqXVBCmmOQ0pJUcKEhpXOQLm2mRwinsmfLCuJpZGGyzj9L8SfUP7S1tX dcaUoMh8jWTSme0GYOMIWYK3Q3yhAnjZe58Ub9Fj0ri6RD1o+bYPoOxI7I/e1zda OELAI/X4A22pC+UJIMqSce6P4m7arCblr0MLLqKd5gVVMoEK+Ffb9xsE3zvJRJLh 62EWVcLcsi2TzvEwuOta0mKhtdYRKk463ZZnCnp/TxuIS8SEivrYKcSaMbx+9/Yp wAPp -----END CERTIFICATE-----Generated at Sat Jun 13 09:15:51 2026 by rpki-client