$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/79ba9821-d14e-49be-8c14-14b05768de4e.roa File: 79ba9821-d14e-49be-8c14-14b05768de4e.roa (raw, json) Hash identifier: eWW4Mm3Q1r7ZZ5C+M/MBx3LNQ8Lx9RETprsxIeiCvZQ= Subject key identifier: A0:6F:4A:AA:9E:CB:8A:42:FB:4D:D4:F2:96:C8:B4:CE:79:3F:27:51 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 373D1671E544A9E84A81F87F231A328199371B76 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/79ba9821-d14e-49be-8c14-14b05768de4e.roa Signing time: Fri 22 May 2026 16:53:59 +0000 ROA not before: Fri 22 May 2026 16:53:59 +0000 ROA not after: Thu 20 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dae2:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:3d:16:71:e5:44:a9:e8:4a:81:f8:7f:23:1a:32:81:99:37:1b:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 22 16:53:59 2026 GMT Not After : Aug 20 23:59:59 2026 GMT Subject: serialNumber=173779ba88efcadec34c17b9067b60943348798b06d161d016ad1b7890a39d45, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:35:3c:23:fa:d1:23:ef:c5:5e:99:98:c2:74: 2b:d3:72:74:cd:bb:c8:4c:3e:2a:ed:4d:6e:8c:9c: c1:95:53:ed:76:80:42:04:32:c9:52:78:59:6c:f3: 02:5f:18:77:f9:e3:38:7c:73:7b:17:20:5b:c0:c7: e3:9c:e2:d6:aa:71:d7:9d:82:9d:ba:83:e7:9e:51: bf:90:41:50:00:eb:16:36:9e:c4:52:ca:f1:b3:d4: af:2f:4c:e7:04:2a:81:47:4f:8e:c8:e2:f8:1c:bb: dd:d9:01:dc:e7:46:62:69:1b:d5:e4:e4:3d:69:26: 07:e7:3c:b2:b3:91:b2:0a:b2:af:41:dd:a1:5d:a8: 28:83:3b:53:83:12:ce:69:bd:f5:10:65:0b:66:a1: 4a:60:c9:af:db:89:d3:bc:6f:d5:b8:9c:dc:eb:50: e1:94:d3:31:60:b5:6e:7f:79:43:7a:5c:e7:5c:d7: 09:c6:38:57:8d:8f:27:84:b1:cd:9b:44:ad:57:36: ee:ba:41:29:93:4c:60:54:ad:ed:7f:24:25:13:f5: 86:6e:36:fa:6b:e2:86:2b:e9:82:bc:6c:42:3d:5c: 77:b6:49:58:c1:6f:01:93:50:9e:61:6c:80:6b:eb: f5:8d:1c:5b:11:9d:81:c7:2d:07:6d:fe:80:18:09: b8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6F:4A:AA:9E:CB:8A:42:FB:4D:D4:F2:96:C8:B4:CE:79:3F:27:51 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/79ba9821-d14e-49be-8c14-14b05768de4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dae2:a000::/40 Signature Algorithm: sha256WithRSAEncryption a9:97:33:19:53:e4:b8:3c:d2:13:db:ea:ea:1e:bf:a9:a7:3b: 1d:a2:4a:8b:61:2d:9d:c4:4f:8a:d7:74:6b:f0:10:82:f1:18: 38:2b:9b:80:f4:6c:4f:75:f7:c5:ab:36:52:e5:eb:1e:51:49: 9d:fa:22:e3:45:e0:59:3c:f1:82:74:0f:f3:4e:5d:71:a7:ba: c5:9f:49:39:92:c8:6b:eb:35:40:bd:ec:81:72:c3:62:e4:47: 1e:71:66:34:59:80:a7:e5:d3:27:12:11:80:a5:e1:0f:14:21: ef:36:e0:9c:27:e8:04:e6:a1:91:c1:06:47:1a:a8:a5:fd:c8: 29:05:bd:30:2c:2f:6d:f7:13:04:69:81:79:ed:e9:80:11:42: 37:09:f7:c8:b0:93:3d:c6:ea:55:d0:55:85:8c:a7:34:c6:00: b4:4f:e1:9f:6c:9c:1a:73:a7:78:82:53:88:cf:14:1e:cb:6f: 85:1a:4f:1a:e9:fb:fd:23:9d:cb:4e:eb:02:bd:8f:f2:47:0c: 04:0a:a2:d0:55:ab:01:48:6d:2e:7e:e5:dd:03:c9:ff:8c:e7: 04:de:ee:c6:76:1c:38:32:3c:25:4b:10:b4:45:bb:c6:2d:62: 00:e6:c7:d9:d6:5c:6c:31:ae:e3:d3:de:f4:4f:1b:0f:44:23: e9:65:21:21 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNz0WceVEqehKgfh/IxoygZk3G3YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUyMjE2NTM1OVoX DTI2MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAMTczNzc5YmE4OGVmY2FkZWMzNGMx N2I5MDY3YjYwOTQzMzQ4Nzk4YjA2ZDE2MWQwMTZhZDFiNzg5MGEzOWQ0NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1DU8I/rRI+/FXpmYwnQr03J0zbvI TD4q7U1ujJzBlVPtdoBCBDLJUnhZbPMCXxh3+eM4fHN7FyBbwMfjnOLWqnHXnYKd uoPnnlG/kEFQAOsWNp7EUsrxs9SvL0znBCqBR0+OyOL4HLvd2QHc50ZiaRvV5OQ9 aSYH5zyys5GyCrKvQd2hXagogztTgxLOab31EGULZqFKYMmv24nTvG/VuJzc61Dh lNMxYLVuf3lDelznXNcJxjhXjY8nhLHNm0StVzbuukEpk0xgVK3tfyQlE/WGbjb6 a+KGK+mCvGxCPVx3tklYwW8Bk1CeYWyAa+v1jRxbEZ2Bxy0Hbf6AGAm4YwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKBvSqqey4pC+03U8pbItM55PydRMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc5YmE5ODIxLWQxNGUtNDliZS04YzE0LTE0YjA1NzY4ZGU0ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba4qAwDQYJKoZIhvcNAQELBQADggEBAKmXMxlT5Lg80hPb6uoe v6mnOx2iSothLZ3ET4rXdGvwEILxGDgrm4D0bE9198WrNlLl6x5RSZ36IuNF4Fk8 8YJ0D/NOXXGnusWfSTmSyGvrNUC97IFyw2LkRx5xZjRZgKfl0ycSEYCl4Q8UIe82 4Jwn6ATmoZHBBkcaqKX9yCkFvTAsL233EwRpgXnt6YARQjcJ98iwkz3G6lXQVYWM pzTGALRP4Z9snBpzp3iCU4jPFB7Lb4UaTxrp+/0jnctO6wK9j/JHDAQKotBVqwFI bS5+5d0Dyf+M5wTe7sZ2HDgyPCVLELRFu8YtYgDmx9nWXGwxruPT3vRPGw9EI+ll ISE= -----END CERTIFICATE-----Generated at Sun May 24 12:19:08 2026 by rpki-client