$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/edb40068-fd10-40a0-8d8f-84f481389d4b.roa File: edb40068-fd10-40a0-8d8f-84f481389d4b.roa (raw, json) Hash identifier: Mc6FmS7jTh/lOgNNC0P4T92VIFMtKfd7pQtwYBsnuZs= Subject key identifier: 29:9D:8E:92:52:C0:2C:CB:EC:B2:BD:45:21:86:CE:A0:6C:48:97:E7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5328586BC588EA16A603217CEB5F3E2CC5E4D426 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/edb40068-fd10-40a0-8d8f-84f481389d4b.roa Signing time: Wed 13 May 2026 00:00:42 +0000 ROA not before: Wed 13 May 2026 00:00:42 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab9:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:28:58:6b:c5:88:ea:16:a6:03:21:7c:eb:5f:3e:2c:c5:e4:d4:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:00:42 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=e4917da6273ae791a8f133132a390a4b1473a4b356a902ab9f507ab3be7f3264, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:72:f1:56:98:d8:9d:6b:bc:f6:b3:10:ec:b1: fb:49:6d:7a:c1:aa:83:ac:e3:56:78:f6:13:28:5f: ca:2a:f1:31:bd:91:49:70:96:bb:a5:64:ea:8e:90: 4e:cb:6e:11:fa:36:c4:5b:e1:dc:04:8a:ed:e0:da: dc:5c:fb:83:f4:85:a4:d7:b6:17:d0:a1:68:01:f0: 31:cc:50:71:7e:5f:22:e8:fb:d6:c5:50:b7:93:97: 2f:1f:49:ed:04:9a:ba:68:4c:fb:3e:c4:cf:f6:8f: 92:c3:08:f2:83:98:4a:1e:90:73:f3:7e:53:ee:ca: 44:c8:a3:c2:1c:23:b4:86:72:54:69:bd:3d:87:82: fd:cb:54:91:36:fb:a5:7f:40:90:cf:26:30:c6:d1: ee:9b:17:fa:03:1b:6c:56:fe:bf:13:48:a9:bb:29: dd:7d:1b:e3:b9:c5:0b:d9:6c:c0:18:ca:ae:54:72: f2:d5:44:be:94:13:b6:42:48:4a:df:4c:f9:3c:de: ad:8a:06:f4:11:40:69:82:f3:d5:1f:fa:3d:59:61: d9:39:c4:17:4b:cb:ec:84:17:b0:6c:a3:33:d7:29: 80:a5:74:e3:e5:0e:4f:92:b8:31:1a:41:e8:55:25: 1d:8e:a3:8c:bd:93:9d:bd:55:67:15:b6:ff:68:78: e4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:9D:8E:92:52:C0:2C:CB:EC:B2:BD:45:21:86:CE:A0:6C:48:97:E7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/edb40068-fd10-40a0-8d8f-84f481389d4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:8000::/40 Signature Algorithm: sha256WithRSAEncryption 81:f9:b1:cf:b9:21:fa:6f:4f:65:05:fd:d3:ca:a1:4a:57:65: 10:8c:82:d7:ba:0f:6d:2d:18:a7:bb:bc:01:5d:d7:00:7c:19: 32:dd:c2:a0:92:36:ea:60:92:32:e6:91:47:9a:fd:f5:e0:74: 7c:6d:32:ec:42:72:f8:cf:92:08:18:d6:cf:cd:12:a0:f3:68: 08:72:97:bd:a4:ce:ab:5c:da:a4:24:46:1c:51:93:c1:9e:47: 89:f8:59:9e:45:c9:f0:f5:b7:ab:85:79:29:f4:52:a4:ca:46: 78:f9:42:59:d5:b2:d1:0e:7c:09:43:6c:4e:85:38:b7:ed:a4: 0b:17:f8:f1:5f:a5:d5:d5:98:ab:3e:ce:5c:d5:1e:0a:b5:4f: d5:49:2b:bc:d6:e7:5b:b1:85:1e:c7:ec:94:c8:c0:99:44:55: 44:38:09:af:c3:3c:c7:b1:ea:f7:e2:4f:28:ce:50:2f:85:fd: 08:f3:46:50:67:05:d7:39:c2:fa:8b:6b:92:3e:04:53:f0:63: 49:f8:1c:ba:cf:39:6e:c1:16:35:0d:71:5f:0a:f7:67:b8:c7: 42:43:69:80:2c:74:0a:ac:75:82:23:9f:4c:73:aa:3c:7a:47: 01:da:ff:1e:21:38:15:a1:84:a9:55:a3:46:71:a1:a6:25:38: a2:f8:e1:47 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUyhYa8WI6hamAyF8618+LMXk1CYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMDA0MloX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAZTQ5MTdkYTYyNzNhZTc5MWE4ZjEz MzEzMmEzOTBhNGIxNDczYTRiMzU2YTkwMmFiOWY1MDdhYjNiZTdmMzI2NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHLxVpjYnWu89rMQ7LH7SW16waqD rONWePYTKF/KKvExvZFJcJa7pWTqjpBOy24R+jbEW+HcBIrt4NrcXPuD9IWk17YX 0KFoAfAxzFBxfl8i6PvWxVC3k5cvH0ntBJq6aEz7PsTP9o+Swwjyg5hKHpBz835T 7spEyKPCHCO0hnJUab09h4L9y1SRNvulf0CQzyYwxtHumxf6AxtsVv6/E0ipuynd fRvjucUL2WzAGMquVHLy1US+lBO2QkhK30z5PN6tigb0EUBpgvPVH/o9WWHZOcQX S8vshBewbKMz1ymApXTj5Q5PkrgxGkHoVSUdjqOMvZOdvVVnFbb/aHjkGwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCmdjpJSwCzL7LK9RSGGzqBsSJfnMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VkYjQwMDY4LWZkMTAtNDBhMC04ZDhmLTg0ZjQ4MTM4OWQ0Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauYAwDQYJKoZIhvcNAQELBQADggEBAIH5sc+5IfpvT2UF/dPK oUpXZRCMgte6D20tGKe7vAFd1wB8GTLdwqCSNupgkjLmkUea/fXgdHxtMuxCcvjP kggY1s/NEqDzaAhyl72kzqtc2qQkRhxRk8GeR4n4WZ5FyfD1t6uFeSn0UqTKRnj5 QlnVstEOfAlDbE6FOLftpAsX+PFfpdXVmKs+zlzVHgq1T9VJK7zW51uxhR7H7JTI wJlEVUQ4Ca/DPMex6vfiTyjOUC+F/QjzRlBnBdc5wvqLa5I+BFPwY0n4HLrPOW7B FjUNcV8K92e4x0JDaYAsdAqsdYIjn0xzqjx6RwHa/x4hOBWhhKlVo0ZxoaYlOKL4 4Uc= -----END CERTIFICATE-----Generated at Sat Jun 13 09:15:15 2026 by rpki-client