$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1ec8e30b-3c80-41f9-b79f-1b3cfb3d9134.roa File: 1ec8e30b-3c80-41f9-b79f-1b3cfb3d9134.roa (raw, json) Hash identifier: Lv09955IxZcv0yBj8dqpgKrIWtx68kdeThpOHaYMs4s= Subject key identifier: 2D:84:8A:93:A0:C3:45:E1:7F:C8:7C:35:3A:FB:32:D1:CF:E8:0D:92 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 23BBFE2C11E0DF84D451EF105B1717F44EFD0F28 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1ec8e30b-3c80-41f9-b79f-1b3cfb3d9134.roa Signing time: Fri 22 May 2026 17:01:24 +0000 ROA not before: Fri 22 May 2026 17:01:24 +0000 ROA not after: Thu 20 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dae8:28c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:bb:fe:2c:11:e0:df:84:d4:51:ef:10:5b:17:17:f4:4e:fd:0f:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 22 17:01:24 2026 GMT Not After : Aug 20 23:59:59 2026 GMT Subject: serialNumber=b4d71a6245677e308961a45812823bd2a77b49694404c54a3895cdf1743a9b87, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0f:28:fa:10:db:ac:21:2b:ef:ec:39:4a:c2: 0e:8f:3a:39:f6:23:5d:79:60:d4:74:dc:62:29:75: b2:bf:2b:99:bd:c0:7b:4d:12:5b:24:5c:82:96:94: cf:0a:f8:84:a4:80:6d:7e:5e:2c:a5:c0:28:6f:24: 1c:c5:1f:e2:44:62:ab:07:c0:40:1d:d4:cb:89:18: 42:4e:37:09:70:b0:30:63:65:7c:e7:65:95:69:5b: 36:f9:d0:b4:68:44:38:d3:5d:bf:91:45:ce:12:eb: 97:ea:c7:3f:b4:d7:f3:e1:55:40:91:7f:89:47:41: e0:99:9f:a0:bc:98:56:68:76:05:de:16:f3:1c:a6: 07:94:2f:27:4a:7d:a6:ae:4b:c4:8e:ca:bf:00:52: ed:5f:b7:be:fd:2a:49:6f:d1:cc:78:9a:a1:ee:46: cb:de:74:37:fd:19:d1:ea:47:dd:a7:ce:1a:67:bb: cc:96:7b:d0:8b:46:4c:1e:95:de:17:2e:61:8a:8f: 09:9b:9c:8a:0a:e5:12:bf:a6:92:18:16:75:dc:62: b4:93:ec:bd:06:0b:f4:d5:2f:ed:89:4f:f1:16:40: 66:28:a8:65:f8:4c:ed:dd:fe:f9:73:b4:1a:0d:d4: 77:75:8c:f7:7c:30:57:c2:5c:99:c5:16:9f:64:71: 39:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:84:8A:93:A0:C3:45:E1:7F:C8:7C:35:3A:FB:32:D1:CF:E8:0D:92 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1ec8e30b-3c80-41f9-b79f-1b3cfb3d9134.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dae8:28c0::/48 Signature Algorithm: sha256WithRSAEncryption 2f:f3:1d:26:d9:df:de:8a:0e:b8:12:53:c7:25:c9:58:30:2b: e2:b3:bb:12:a7:44:61:67:66:5c:83:e0:24:f2:81:d1:3c:38: 9f:d7:3e:6d:e6:dc:c6:51:c9:6e:bd:22:80:00:4c:0e:16:94: b0:16:cd:43:68:9d:24:65:3f:2a:b1:f4:51:7d:1b:10:91:fb: 69:3e:8c:9a:07:ce:df:58:9b:cf:d4:64:9d:b3:9e:4f:cb:01: 8d:a8:55:82:9c:3b:87:05:4d:c4:8b:4b:c0:37:6a:9c:a0:7b: 32:69:3b:a8:9a:b2:a2:46:5e:8a:82:04:f5:ad:38:c6:dc:1a: 2b:10:64:57:23:08:88:4d:25:08:c9:73:af:aa:80:7b:d2:d3: 7e:48:3e:97:09:bf:9f:e4:de:b9:f7:8c:12:f8:5c:67:35:91: d8:99:26:27:be:dc:b3:eb:ca:20:59:1a:7d:81:b0:ff:0a:1e: 82:28:1e:ec:70:98:ce:c8:72:fe:91:12:4a:b2:e4:16:b1:8f: 19:ca:64:d5:61:df:bd:ed:92:ce:7a:6d:ae:fc:b8:67:a0:c1: f3:63:0f:0d:be:2e:1f:ae:96:fc:4c:ea:af:21:6d:85:57:6d: 8e:14:28:fc:4d:e1:0c:00:0f:f6:4d:75:43:98:3f:a1:a0:79: 64:11:1c:09 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUI7v+LBHg34TUUe8QWxcX9E79DygwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUyMjE3MDEyNFoX DTI2MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAYjRkNzFhNjI0NTY3N2UzMDg5NjFh NDU4MTI4MjNiZDJhNzdiNDk2OTQ0MDRjNTRhMzg5NWNkZjE3NDNhOWI4NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnw8o+hDbrCEr7+w5SsIOjzo59iNd eWDUdNxiKXWyvyuZvcB7TRJbJFyClpTPCviEpIBtfl4spcAobyQcxR/iRGKrB8BA HdTLiRhCTjcJcLAwY2V852WVaVs2+dC0aEQ4012/kUXOEuuX6sc/tNfz4VVAkX+J R0HgmZ+gvJhWaHYF3hbzHKYHlC8nSn2mrkvEjsq/AFLtX7e+/SpJb9HMeJqh7kbL 3nQ3/RnR6kfdp84aZ7vMlnvQi0ZMHpXeFy5hio8Jm5yKCuUSv6aSGBZ13GK0k+y9 Bgv01S/tiU/xFkBmKKhl+Ezt3f75c7QaDdR3dYz3fDBXwlyZxRafZHE54QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFC2EipOgw0Xhf8h8NTr7MtHP6A2SMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFlYzhlMzBiLTNjODAtNDFmOS1iNzlmLTFiM2NmYjNkOTEzNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6CjAMA0GCSqGSIb3DQEBCwUAA4IBAQAv8x0m2d/eig64ElPH JclYMCvis7sSp0RhZ2Zcg+Ak8oHRPDif1z5t5tzGUcluvSKAAEwOFpSwFs1DaJ0k ZT8qsfRRfRsQkftpPoyaB87fWJvP1GSds55PywGNqFWCnDuHBU3Ei0vAN2qcoHsy aTuomrKiRl6KggT1rTjG3BorEGRXIwiITSUIyXOvqoB70tN+SD6XCb+f5N6594wS +FxnNZHYmSYnvtyz68ogWRp9gbD/Ch6CKB7scJjOyHL+kRJKsuQWsY8ZymTVYd+9 7ZLOem2u/LhnoMHzYw8Nvi4frpb8TOqvIW2FV22OFCj8TeEMAA/2TXVDmD+hoHlk ERwJ -----END CERTIFICATE-----Generated at Sun May 24 12:18:53 2026 by rpki-client