$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/699e1901-6701-4fae-ba1b-680131cc39df.roa File: 699e1901-6701-4fae-ba1b-680131cc39df.roa (raw, json) Hash identifier: LtNqDiLTxm8s8ZTDGfC2lFxBO3WOPnJl4HKI0zRRlmA= Subject key identifier: 5E:DD:56:79:BD:AF:B6:3B:76:3C:74:C3:78:2F:CA:37:F7:36:8F:B2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 615B782DE28F203067B512D28B425B85491A0D42 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/699e1901-6701-4fae-ba1b-680131cc39df.roa Signing time: Wed 13 May 2026 00:11:10 +0000 ROA not before: Wed 13 May 2026 00:11:10 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1b::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:5b:78:2d:e2:8f:20:30:67:b5:12:d2:8b:42:5b:85:49:1a:0d:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:11:10 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=c1c7b206a28f1892c59254533a69fa89c016f1522b096d92e4e393dfb0515efe, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5f:96:7b:be:af:27:3c:d9:7a:39:5f:b0:ab: 6a:ac:18:0f:d8:39:c3:28:40:5c:2c:9d:38:03:ef: 7b:ed:62:0e:ff:88:6d:63:e3:c3:27:0f:22:b9:50: 64:ff:45:f2:88:65:06:d4:51:b8:eb:88:fd:8c:ee: 9a:27:56:94:f7:ee:72:3c:39:e2:f6:c9:e1:a1:1d: 8c:19:67:cf:ae:ca:07:8f:2c:7b:42:a0:10:c1:be: ba:81:4c:1d:ee:29:15:47:b1:85:56:ed:13:56:a2: 24:06:3e:1a:f3:d4:aa:d7:47:08:9d:ee:80:31:38: 35:54:21:94:89:06:b7:11:09:7c:ad:60:e4:34:52: 91:bb:f7:19:11:08:52:cb:ae:2a:38:4d:3a:a5:ae: 8e:2a:10:ec:af:1a:5b:44:6f:a3:97:0b:62:f9:ec: a5:45:4b:16:de:4d:a7:81:db:93:18:84:de:01:8f: b7:33:02:a3:59:93:37:ca:43:05:52:2d:f1:aa:2e: e8:4d:da:3e:1a:c0:be:9c:2e:85:f6:60:fe:e6:b7: d0:3f:74:3e:8c:46:4b:26:88:0f:20:7f:71:7e:f8: 17:93:13:d0:ca:66:ff:79:96:9f:7a:91:15:ff:79: 87:e1:bc:89:a5:1c:39:92:5b:8e:6e:8d:53:11:40: 0d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:DD:56:79:BD:AF:B6:3B:76:3C:74:C3:78:2F:CA:37:F7:36:8F:B2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/699e1901-6701-4fae-ba1b-680131cc39df.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1b::/38 Signature Algorithm: sha256WithRSAEncryption 91:39:3d:d6:4d:04:db:0b:09:da:78:0a:34:34:bf:74:05:b9: a3:f9:75:9f:67:52:ab:29:80:47:67:36:61:7a:99:d0:e3:69: 7e:57:d2:af:55:4f:c7:fc:91:60:8c:c3:b4:9a:e1:b4:b2:a5: 4f:ed:57:a6:6f:0e:19:9f:ba:a8:d4:71:6a:4f:0d:a6:5d:c1: e5:10:9c:3f:c0:06:29:52:c6:c2:2d:0e:c6:bb:df:d9:95:29: 2c:37:55:a0:70:30:9d:ba:2a:f6:c6:99:bd:4e:af:41:89:a1: 7d:78:27:6b:aa:56:30:36:1b:d9:87:2e:91:7f:8a:33:75:f7: 85:34:07:bd:dd:0b:6d:d2:bc:9c:f5:46:0d:59:cc:53:ab:f5: 76:4a:8d:4e:e7:1f:36:d4:6b:1a:07:bd:ac:0e:b3:1e:a3:52: 79:cf:b0:5c:df:ef:43:61:9e:c2:0e:eb:75:c8:0a:05:8b:15: e2:08:e7:32:69:d7:60:06:96:db:da:81:d5:84:75:f7:58:0d: ff:0a:4c:28:fe:28:e2:40:67:0d:2f:77:6f:4e:c5:da:f5:bc: fd:99:61:c7:61:6f:26:ef:53:31:8d:21:27:2c:8d:41:9c:57: 19:df:81:85:96:1a:16:71:87:3e:43:0b:a7:dd:3f:fd:0a:1b: d8:0d:cc:d8 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYVt4LeKPIDBntRLSi0JbhUkaDUIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMTExMFoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAYzFjN2IyMDZhMjhmMTg5MmM1OTI1 NDUzM2E2OWZhODljMDE2ZjE1MjJiMDk2ZDkyZTRlMzkzZGZiMDUxNWVmZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1+We76vJzzZejlfsKtqrBgP2DnD KEBcLJ04A+977WIO/4htY+PDJw8iuVBk/0XyiGUG1FG464j9jO6aJ1aU9+5yPDni 9snhoR2MGWfPrsoHjyx7QqAQwb66gUwd7ikVR7GFVu0TVqIkBj4a89Sq10cIne6A MTg1VCGUiQa3EQl8rWDkNFKRu/cZEQhSy64qOE06pa6OKhDsrxpbRG+jlwti+eyl RUsW3k2ngduTGITeAY+3MwKjWZM3ykMFUi3xqi7oTdo+GsC+nC6F9mD+5rfQP3Q+ jEZLJogPIH9xfvgXkxPQymb/eZafepEV/3mH4byJpRw5kluObo1TEUANyQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFF7dVnm9r7Y7djx0w3gvyjf3No+yMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzY5OWUxOTAxLTY3MDEtNGZhZS1iYTFiLTY4MDEzMWNjMzlkZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaGwAwDQYJKoZIhvcNAQELBQADggEBAJE5PdZNBNsLCdp4CjQ0 v3QFuaP5dZ9nUqspgEdnNmF6mdDjaX5X0q9VT8f8kWCMw7Sa4bSypU/tV6ZvDhmf uqjUcWpPDaZdweUQnD/ABilSxsItDsa739mVKSw3VaBwMJ26KvbGmb1Or0GJoX14 J2uqVjA2G9mHLpF/ijN194U0B73dC23SvJz1Rg1ZzFOr9XZKjU7nHzbUaxoHvawO sx6jUnnPsFzf70NhnsIO63XICgWLFeII5zJp12AGltvagdWEdfdYDf8KTCj+KOJA Zw0vd29Oxdr1vP2ZYcdhbybvUzGNIScsjUGcVxnfgYWWGhZxhz5DC6fdP/0KG9gN zNg= -----END CERTIFICATE-----Generated at Sun May 24 12:22:42 2026 by rpki-client