$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ebb9d1e8-268d-459a-ae9a-4271747623c0.roa File: ebb9d1e8-268d-459a-ae9a-4271747623c0.roa (raw, json) Hash identifier: 2cYhwNCuwn7/+FnNp2b5408IWy5fdeTmEPKpOAs1RqE= Subject key identifier: 2A:0C:37:A9:CE:A8:55:21:4B:98:FA:9F:C4:73:53:79:C3:6D:E4:33 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 374BCB221ABC1E9739CB42AF57851EC23F9D2197 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ebb9d1e8-268d-459a-ae9a-4271747623c0.roa Signing time: Sun 31 May 2026 00:00:54 +0000 ROA not before: Sun 31 May 2026 00:00:54 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dae9:b0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:4b:cb:22:1a:bc:1e:97:39:cb:42:af:57:85:1e:c2:3f:9d:21:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:00:54 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=72ba4604ce9577e6b2da7d5599d3d0ec42ec583b7a01b9dceee6d187ef1eadfd, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b6:da:65:86:c0:b5:26:75:46:10:fa:e8:93: a7:cb:f5:b0:08:de:4e:33:67:52:9d:78:b2:24:b0: cb:65:5b:f0:b1:f9:ce:21:40:ce:5d:40:30:a4:e6: 25:1d:58:99:0e:e2:fc:11:6b:54:bb:cd:8f:87:ac: 0b:23:7f:ae:ff:60:b8:b5:f4:89:b5:a8:da:0b:de: 93:95:ac:da:f1:54:3b:f9:37:79:52:8c:77:f8:ed: 48:5b:af:38:78:b7:e1:f1:f4:3b:6e:55:e3:46:82: 60:7b:9d:a3:9c:1d:a0:c6:95:8d:1c:a6:db:23:55: 8f:da:8a:2e:7b:d8:79:41:32:ba:4d:f2:dc:47:da: 6f:7d:4d:25:c5:4e:63:21:fc:02:65:66:df:2a:d4: c9:40:ae:b1:3d:4b:15:95:d6:43:93:70:9a:c2:21: 5c:2d:3f:c4:6a:ad:1b:48:e1:6d:b9:60:e0:88:67: 9b:47:7f:a1:8c:8f:fe:a1:3e:70:e6:0f:b0:2c:57: 1a:9f:f4:dd:4f:5b:2c:cd:53:59:44:71:19:ef:c6: 7e:61:4f:d5:34:bf:10:67:38:e2:a2:79:84:8f:db: 19:73:9f:77:f9:ba:ca:df:c1:9d:18:6c:b4:b7:ee: 90:b4:9d:ed:c7:04:a4:cc:5e:86:01:50:d4:13:6a: 4e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0C:37:A9:CE:A8:55:21:4B:98:FA:9F:C4:73:53:79:C3:6D:E4:33 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ebb9d1e8-268d-459a-ae9a-4271747623c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dae9:b0c0::/48 Signature Algorithm: sha256WithRSAEncryption 96:77:a6:ef:60:43:d7:9d:8d:96:ac:29:3f:f5:86:ad:54:d2: 00:2c:2d:a1:37:9a:cf:4d:9a:e3:1f:70:84:fa:90:e5:ef:9d: 6d:28:a1:fc:d1:5e:b4:a5:fe:49:b2:5a:53:be:39:32:b9:32: a2:05:28:08:55:b8:4c:ba:4e:71:47:c2:8d:ba:93:fb:e9:45: ca:56:43:33:2a:12:c1:95:dc:c2:3e:e3:a1:6f:d6:0c:42:80: 1c:b2:cb:b0:f5:33:c4:f8:3e:08:63:32:8a:15:e9:bb:76:ba: 50:8f:aa:68:37:ee:f0:f5:cf:e2:8a:c7:ec:7e:ae:04:8e:15: 2c:52:95:e8:12:de:aa:25:9d:6c:8b:ef:82:22:9a:1d:12:65: 8f:0b:62:26:cb:29:ea:3f:4a:c0:66:6a:64:c3:4f:e6:5f:f5: 10:57:9e:14:39:bf:a5:94:5e:6d:57:ff:9d:bb:ef:fd:61:fc: 32:7f:7d:f7:24:ad:47:95:15:e5:b4:e7:33:54:f6:96:79:6c: 61:d9:7d:12:a7:07:29:3c:4a:99:55:ac:88:06:53:f1:29:7c: df:ca:95:f1:8f:b2:0b:90:1a:17:c6:3d:4b:e0:31:71:c3:55: 71:8a:42:94:4c:97:c2:e2:6a:f5:9c:a9:88:a6:28:79:93:35: f5:dc:17:5b -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUN0vLIhq8Hpc5y0KvV4Uewj+dIZcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMDA1NFoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNANzJiYTQ2MDRjZTk1NzdlNmIyZGE3 ZDU1OTlkM2QwZWM0MmVjNTgzYjdhMDFiOWRjZWVlNmQxODdlZjFlYWRmZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbbaZYbAtSZ1RhD66JOny/WwCN5O M2dSnXiyJLDLZVvwsfnOIUDOXUAwpOYlHViZDuL8EWtUu82Ph6wLI3+u/2C4tfSJ tajaC96Tlaza8VQ7+Td5Uox3+O1IW684eLfh8fQ7blXjRoJge52jnB2gxpWNHKbb I1WP2ooue9h5QTK6TfLcR9pvfU0lxU5jIfwCZWbfKtTJQK6xPUsVldZDk3CawiFc LT/Eaq0bSOFtuWDgiGebR3+hjI/+oT5w5g+wLFcan/TdT1sszVNZRHEZ78Z+YU/V NL8QZzjionmEj9sZc593+brK38GdGGy0t+6QtJ3txwSkzF6GAVDUE2pOLQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCoMN6nOqFUhS5j6n8RzU3nDbeQzMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ViYjlkMWU4LTI2OGQtNDU5YS1hZTlhLTQyNzE3NDc2MjNjMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6bDAMA0GCSqGSIb3DQEBCwUAA4IBAQCWd6bvYEPXnY2WrCk/ 9YatVNIALC2hN5rPTZrjH3CE+pDl751tKKH80V60pf5JslpTvjkyuTKiBSgIVbhM uk5xR8KNupP76UXKVkMzKhLBldzCPuOhb9YMQoAcssuw9TPE+D4IYzKKFem7drpQ j6poN+7w9c/iisfsfq4EjhUsUpXoEt6qJZ1si++CIpodEmWPC2ImyynqP0rAZmpk w0/mX/UQV54UOb+llF5tV/+du+/9Yfwyf333JK1HlRXltOczVPaWeWxh2X0Spwcp PEqZVayIBlPxKXzfypXxj7ILkBoXxj1L4DFxw1VxikKUTJfC4mr1nKmIpih5kzX1 3Bdb -----END CERTIFICATE-----Generated at Sat Jun 13 10:29:00 2026 by rpki-client