$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5c92d86f-d096-414c-bd9a-599ba8ca213f.roa File: 5c92d86f-d096-414c-bd9a-599ba8ca213f.roa (raw, json) Hash identifier: JLUkCkSlrkX0u68NSRVJm6/cKLTi44lZxlYlYFOjJ9Y= Subject key identifier: 66:42:E8:E0:69:05:0E:C0:A8:5D:13:9F:EA:E4:21:CF:B7:8D:B9:5A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 02766C03A0B4DE892A1A144DD697AAF91BA0116A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5c92d86f-d096-414c-bd9a-599ba8ca213f.roa Signing time: Wed 13 May 2026 00:20:35 +0000 ROA not before: Wed 13 May 2026 00:20:35 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:2800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:76:6c:03:a0:b4:de:89:2a:1a:14:4d:d6:97:aa:f9:1b:a0:11:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:20:35 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=f49e9ffea3ccbf972afc60769b46149fbe902f1f879830f6f880ddcb3aaad1eb, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e4:47:75:5e:6b:b6:10:6e:28:57:78:14:cc: 9f:54:2c:68:19:0e:21:fe:0b:e0:d5:a6:d6:01:de: 9b:49:79:87:88:8b:ad:f2:c0:9e:0a:a8:4a:3d:9f: 9b:7e:9c:87:17:08:7f:53:e9:98:31:c9:63:e3:91: 01:23:0a:09:02:3e:bc:e8:c8:66:6a:31:ce:4b:1e: d2:6b:22:2e:0b:7c:e2:73:4f:3d:1f:8d:57:02:13: 30:4f:d9:27:7b:ca:2f:0b:95:f8:a4:c1:c3:51:d7: df:d7:f9:fb:dd:03:0b:43:16:e7:1d:82:3f:fd:92: 70:01:c2:21:05:fb:19:ab:98:d1:45:3a:c8:b2:dd: 42:28:d9:64:9e:21:8c:12:ea:d7:bb:a1:f8:03:38: 9e:1c:cb:48:ee:e5:aa:b7:73:a5:ef:45:95:fb:95: 68:ba:8e:c3:0e:a0:8c:d8:12:9a:1c:78:00:b8:8f: 23:a1:45:db:79:7b:99:72:7a:73:75:b9:6b:fd:22: 8d:27:fb:71:2f:03:b1:1a:d5:46:aa:93:13:16:3d: 4d:27:fa:cb:92:18:82:f7:ff:c1:09:0c:f2:e1:b1: ba:5c:78:3d:b3:3c:60:6c:5f:3e:05:de:e7:d3:ed: 01:4b:d3:19:b9:32:50:dd:45:a9:7d:ed:22:cc:15: 5a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:42:E8:E0:69:05:0E:C0:A8:5D:13:9F:EA:E4:21:CF:B7:8D:B9:5A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5c92d86f-d096-414c-bd9a-599ba8ca213f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:2800::/40 Signature Algorithm: sha256WithRSAEncryption 0a:62:0e:5a:bb:27:e3:a7:1c:42:57:4d:3c:9c:8c:6e:78:f3: 85:f8:ee:37:65:2b:b1:58:ea:11:09:9a:25:12:4c:d2:f8:40: 50:7d:1c:f5:2c:f5:72:34:53:60:e7:98:be:bd:09:80:53:7f: da:4a:b4:08:18:f8:e5:2c:1f:b9:52:29:01:f3:ee:e5:94:46: 8c:45:12:8a:43:4f:fd:ca:7e:2a:b6:01:54:d2:f4:f9:36:6a: 68:97:84:3b:a8:ad:a2:dd:c6:a7:0b:b1:67:42:04:09:bd:26: 54:cc:1b:63:db:19:71:19:92:ee:a2:6b:04:f5:09:dd:43:8a: e6:05:fe:e1:dc:85:2a:c9:3a:06:c6:a0:89:bf:5e:c3:3e:0d: 5b:12:5a:7a:08:6e:0c:d7:c9:62:b1:ab:49:25:28:ab:2f:be: bf:45:00:6a:cc:e4:0b:6b:ea:7b:ac:76:d0:28:9c:b2:ab:8f: 96:7c:2a:d5:fb:9c:de:68:b1:96:f4:00:bf:e2:ee:53:df:56: eb:bb:cc:61:2a:73:5e:fd:cd:b9:65:8a:af:dd:2e:7a:c3:51: b9:01:37:7e:eb:7a:23:b4:04:80:0a:89:c7:30:aa:46:8a:e9: 2c:4d:3f:08:48:a0:93:34:c4:17:c9:69:97:4e:3f:e0:6a:7b: ce:ba:96:5c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUAnZsA6C03okqGhRN1peq+RugEWowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMjAzNVoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAZjQ5ZTlmZmVhM2NjYmY5NzJhZmM2 MDc2OWI0NjE0OWZiZTkwMmYxZjg3OTgzMGY2Zjg4MGRkY2IzYWFhZDFlYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+RHdV5rthBuKFd4FMyfVCxoGQ4h /gvg1abWAd6bSXmHiIut8sCeCqhKPZ+bfpyHFwh/U+mYMclj45EBIwoJAj686Mhm ajHOSx7SayIuC3zic089H41XAhMwT9kne8ovC5X4pMHDUdff1/n73QMLQxbnHYI/ /ZJwAcIhBfsZq5jRRTrIst1CKNlkniGMEurXu6H4AzieHMtI7uWqt3Ol70WV+5Vo uo7DDqCM2BKaHHgAuI8joUXbeXuZcnpzdblr/SKNJ/txLwOxGtVGqpMTFj1NJ/rL khiC9//BCQzy4bG6XHg9szxgbF8+Bd7n0+0BS9MZuTJQ3UWpfe0izBVa7QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGZC6OBpBQ7AqF0Tn+rkIc+3jblaMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVjOTJkODZmLWQwOTYtNDE0Yy1iZDlhLTU5OWJhOGNhMjEzZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacCgwDQYJKoZIhvcNAQELBQADggEBAApiDlq7J+OnHEJXTTyc jG5484X47jdlK7FY6hEJmiUSTNL4QFB9HPUs9XI0U2DnmL69CYBTf9pKtAgY+OUs H7lSKQHz7uWURoxFEopDT/3Kfiq2AVTS9Pk2amiXhDuoraLdxqcLsWdCBAm9JlTM G2PbGXEZku6iawT1Cd1DiuYF/uHchSrJOgbGoIm/XsM+DVsSWnoIbgzXyWKxq0kl KKsvvr9FAGrM5Atr6nusdtAonLKrj5Z8KtX7nN5osZb0AL/i7lPfVuu7zGEqc179 zblliq/dLnrDUbkBN37reiO0BIAKiccwqkaK6SxNPwhIoJM0xBfJaZdOP+Bqe866 llw= -----END CERTIFICATE-----Generated at Sun May 24 12:22:41 2026 by rpki-client