$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/76af285b-3e24-4799-964a-44155381c367.roa File: 76af285b-3e24-4799-964a-44155381c367.roa (raw, json) Hash identifier: tpFJnFZaZ9MALMSYCW6BGDrJqPIvYZU2lH7jesp3Mlw= Subject key identifier: B4:AB:12:08:F8:CF:A5:F7:D6:D3:E7:08:53:29:57:B0:53:79:2F:ED Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3DA91545E23BCBE5D4E46BE3185414D55A117C78 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/76af285b-3e24-4799-964a-44155381c367.roa Signing time: Fri 22 May 2026 16:52:15 +0000 ROA not before: Fri 22 May 2026 16:52:15 +0000 ROA not after: Thu 20 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dae0:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a9:15:45:e2:3b:cb:e5:d4:e4:6b:e3:18:54:14:d5:5a:11:7c:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 22 16:52:15 2026 GMT Not After : Aug 20 23:59:59 2026 GMT Subject: serialNumber=344535387da9e19947ac8fc96a8a394b3e472e7f81adfe6cbeffa07a37f26c0b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:75:47:d6:33:b4:49:f4:ec:40:6b:91:54:8d: d2:90:f1:09:03:44:05:4f:2b:23:76:9c:77:74:d9: 21:24:22:8c:23:75:63:99:ab:de:ab:b7:b2:07:eb: 62:86:db:96:de:a8:bc:67:b2:44:bc:a1:93:d4:50: 9b:dc:bd:76:2b:b7:8c:da:2c:d8:1e:12:a8:72:95: 9d:65:93:47:47:a5:fd:6f:57:1d:62:19:02:dc:84: ff:6a:12:a0:14:f5:f2:31:db:80:3e:82:a9:15:f0: f7:42:43:e4:74:7d:2b:36:fa:de:36:90:ad:f8:3f: c0:1c:c8:5b:63:7b:97:c2:20:f9:c1:10:de:57:fc: ab:1d:b2:4a:1e:f0:7d:41:77:cf:94:5e:65:00:2f: 43:5f:bd:e7:82:19:58:15:80:3a:60:9c:d1:8b:cb: ac:dd:98:04:74:2e:9b:36:29:f3:58:ab:03:1c:d0: d9:dc:f6:34:6a:1c:64:ae:bb:eb:0a:d9:9d:ce:6b: 5a:58:80:53:0b:c0:e4:22:dd:2d:40:cc:a2:a5:01: 75:ed:cc:8d:2c:90:da:55:9d:d0:65:0c:ac:60:a6: 4c:f7:e4:e8:90:a8:a1:90:88:a3:53:ef:4e:fa:35: 58:9c:c4:18:36:fc:55:5d:30:03:ac:8d:f0:67:6e: e2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:AB:12:08:F8:CF:A5:F7:D6:D3:E7:08:53:29:57:B0:53:79:2F:ED X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/76af285b-3e24-4799-964a-44155381c367.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dae0:2000::/40 Signature Algorithm: sha256WithRSAEncryption 12:eb:c7:81:cb:c1:73:5a:1e:4a:a3:8e:b0:41:0e:3a:fa:80: 64:70:fc:85:d3:19:2b:35:43:74:0c:e7:cc:0f:2a:a1:74:b7: 3f:1b:92:91:18:ce:31:de:f2:93:42:46:48:7d:fd:13:fc:b4: d9:4f:22:99:4c:0a:2e:98:5b:a9:f3:56:34:fd:f6:af:83:1f: 7f:4e:30:70:a3:54:87:87:24:44:62:59:9e:4d:a5:9b:5a:ab: 80:8f:5b:1e:92:e3:e2:e1:82:02:05:66:49:9b:70:0d:88:04: 2a:71:fb:6d:e8:4f:65:9e:5b:f4:61:36:77:5b:9a:39:c2:84: 7a:45:14:b7:78:12:ed:4d:15:e6:4a:07:ce:7a:6d:29:67:b9: 19:45:c0:d9:08:ac:77:72:fe:5a:36:86:65:2c:e8:28:d7:12: 6b:44:6c:44:1b:ef:18:ac:3a:e5:96:d2:ba:26:9d:ce:13:00: 5f:40:2b:ca:5b:ff:4c:d6:f6:65:81:83:1d:6b:46:4d:e3:0a: 49:6a:43:55:4a:04:b9:e0:df:4f:bf:a6:92:63:5f:06:ce:9e: d6:05:26:1d:f6:c7:48:11:00:9b:f4:88:8c:41:57:37:16:51: c4:b7:9a:0a:42:ca:f9:6b:a5:1d:57:68:70:01:ea:2b:e6:79: 67:05:fe:42 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPakVReI7y+XU5GvjGFQU1VoRfHgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUyMjE2NTIxNVoX DTI2MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAMzQ0NTM1Mzg3ZGE5ZTE5OTQ3YWM4 ZmM5NmE4YTM5NGIzZTQ3MmU3ZjgxYWRmZTZjYmVmZmEwN2EzN2YyNmMwYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3VH1jO0SfTsQGuRVI3SkPEJA0QF Tysjdpx3dNkhJCKMI3Vjmaveq7eyB+tihtuW3qi8Z7JEvKGT1FCb3L12K7eM2izY HhKocpWdZZNHR6X9b1cdYhkC3IT/ahKgFPXyMduAPoKpFfD3QkPkdH0rNvreNpCt +D/AHMhbY3uXwiD5wRDeV/yrHbJKHvB9QXfPlF5lAC9DX73nghlYFYA6YJzRi8us 3ZgEdC6bNinzWKsDHNDZ3PY0ahxkrrvrCtmdzmtaWIBTC8DkIt0tQMyipQF17cyN LJDaVZ3QZQysYKZM9+TokKihkIijU+9O+jVYnMQYNvxVXTADrI3wZ27iqQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLSrEgj4z6X31tPnCFMpV7BTeS/tMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc2YWYyODViLTNlMjQtNDc5OS05NjRhLTQ0MTU1MzgxYzM2Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba4CAwDQYJKoZIhvcNAQELBQADggEBABLrx4HLwXNaHkqjjrBB Djr6gGRw/IXTGSs1Q3QM58wPKqF0tz8bkpEYzjHe8pNCRkh9/RP8tNlPIplMCi6Y W6nzVjT99q+DH39OMHCjVIeHJERiWZ5NpZtaq4CPWx6S4+LhggIFZkmbcA2IBCpx +23oT2WeW/RhNndbmjnChHpFFLd4Eu1NFeZKB856bSlnuRlFwNkIrHdy/lo2hmUs 6CjXEmtEbEQb7xisOuWW0romnc4TAF9AK8pb/0zW9mWBgx1rRk3jCklqQ1VKBLng 30+/ppJjXwbOntYFJh32x0gRAJv0iIxBVzcWUcS3mgpCyvlrpR1XaHAB6ivmeWcF /kI= -----END CERTIFICATE-----Generated at Sun May 24 12:19:40 2026 by rpki-client