$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c327d37-0e2d-447d-aa31-66e378c4d35d.roa File: 7c327d37-0e2d-447d-aa31-66e378c4d35d.roa (raw, json) Hash identifier: Ngr3BwYqKy5/5CbPWHZ9ueQrr8x1MsN/Blilm2p/RDY= Subject key identifier: 1D:77:52:25:5C:59:98:FA:32:43:B2:E8:E3:D0:65:63:57:FB:3F:BD Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 56F61013D89A64440C83C5AE18B07F7E4CCF9342 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c327d37-0e2d-447d-aa31-66e378c4d35d.roa Signing time: Sat 02 May 2026 00:10:50 +0000 ROA not before: Sat 02 May 2026 00:10:50 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:b080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f6:10:13:d8:9a:64:44:0c:83:c5:ae:18:b0:7f:7e:4c:cf:93:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 2 00:10:50 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=dadfe90f348229ebbbf418113696087ac7fb1a23e07caadbe018a5e48f3e0411, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:dd:9c:b9:af:c4:a6:12:2d:79:76:eb:1f:57: 8a:7a:fd:b8:0c:34:71:2a:3d:3c:0d:05:07:25:aa: c2:04:b4:fa:14:b2:4b:c2:0f:14:32:73:29:3d:ad: ae:4c:2e:82:c2:f9:5a:af:41:e6:e4:b0:b3:cf:48: 6f:55:20:2c:93:9b:dd:7e:6e:8a:37:3a:66:e2:f0: c3:70:fa:87:42:f4:ed:23:20:1c:0d:39:61:f6:aa: 8c:d1:c4:68:8e:81:bd:93:ae:0f:b4:01:8c:ec:e0: 56:6a:10:82:31:c0:eb:ce:51:fc:e6:cb:2b:47:98: e5:58:6c:76:b4:8d:f9:3d:6e:d0:b8:9d:d2:f9:b3: cb:fa:2a:49:a2:0d:0c:a8:76:31:63:05:c0:c5:48: d6:c1:12:0d:92:5a:60:61:aa:7f:b5:84:d7:dc:a8: 33:fb:90:80:1f:8d:d1:54:25:09:f7:9a:07:b9:44: ad:58:59:7b:9e:0e:8d:3a:6e:96:cf:b2:e7:0f:46: 2c:95:51:47:c1:7f:14:01:32:47:88:43:4c:9d:21: bc:4f:8f:dd:40:33:f4:75:69:e2:68:82:89:2b:83: 94:6f:e1:af:ca:e4:87:c5:3e:88:c9:56:09:e9:d2: 7c:6d:45:b2:45:15:cb:8c:8a:43:fb:d0:9a:8e:02: b2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:77:52:25:5C:59:98:FA:32:43:B2:E8:E3:D0:65:63:57:FB:3F:BD X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c327d37-0e2d-447d-aa31-66e378c4d35d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:b080::/46 Signature Algorithm: sha256WithRSAEncryption 7d:3b:32:30:d4:fc:65:f5:3f:06:1a:8f:1b:2c:70:91:b0:27: af:7f:24:61:85:5c:ec:a5:3a:d4:2a:e3:34:37:2a:be:b9:fa: f8:82:10:ad:9f:f0:6b:70:25:56:d0:01:02:bb:e7:a5:79:94: 6c:f7:55:5d:b5:00:18:d6:14:53:7b:f5:ae:0f:d1:46:78:26: c6:ff:06:5b:d0:74:e1:88:42:3f:27:e1:fb:96:67:38:c4:28: ef:e1:79:29:46:95:59:ea:98:ea:ed:49:8b:f7:3a:66:51:eb: 26:a6:a2:84:b6:2b:e2:b5:d5:d1:f1:09:10:61:57:7e:c8:f6: 51:ed:d4:fe:6e:ed:aa:ba:8d:1c:56:d4:8d:23:b6:14:f2:f9: 05:2f:84:c8:92:0d:e7:a1:98:6e:b5:c6:36:29:3d:e7:04:bd: f0:9d:22:b6:5f:d4:f7:4f:cb:9a:37:bd:63:af:e4:c7:d4:38: 68:e8:b2:73:33:11:07:40:37:6c:26:2a:2a:09:67:3d:b5:8c: 1b:b2:1a:46:2b:cd:33:4a:e8:d9:1a:e6:aa:bf:68:08:58:82: bc:f0:8c:34:dc:0c:6a:36:d3:11:7a:0e:18:a5:ad:27:39:22: 47:1c:a4:21:cd:18:2d:e4:e2:6f:e3:77:16:0d:3e:44:0b:8b: a6:0a:41:9a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUVvYQE9iaZEQMg8WuGLB/fkzPk0IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwMjAwMTA1MFoX DTI2MDczMTIzNTk1OVowejFJMEcGA1UEBRNAZGFkZmU5MGYzNDgyMjllYmJiZjQx ODExMzY5NjA4N2FjN2ZiMWEyM2UwN2NhYWRiZTAxOGE1ZTQ4ZjNlMDQxMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm92cua/EphIteXbrH1eKev24DDRx Kj08DQUHJarCBLT6FLJLwg8UMnMpPa2uTC6Cwvlar0Hm5LCzz0hvVSAsk5vdfm6K Nzpm4vDDcPqHQvTtIyAcDTlh9qqM0cRojoG9k64PtAGM7OBWahCCMcDrzlH85ssr R5jlWGx2tI35PW7QuJ3S+bPL+ipJog0MqHYxYwXAxUjWwRINklpgYap/tYTX3Kgz +5CAH43RVCUJ95oHuUStWFl7ng6NOm6Wz7LnD0YslVFHwX8UATJHiENMnSG8T4/d QDP0dWniaIKJK4OUb+GvyuSHxT6IyVYJ6dJ8bUWyRRXLjIpD+9CajgKy3wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFB13UiVcWZj6MkOy6OPQZWNX+z+9MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdjMzI3ZDM3LTBlMmQtNDQ3ZC1hYTMxLTY2ZTM3OGM0ZDM1ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba87CAMA0GCSqGSIb3DQEBCwUAA4IBAQB9OzIw1Pxl9T8GGo8b LHCRsCevfyRhhVzspTrUKuM0Nyq+ufr4ghCtn/BrcCVW0AECu+eleZRs91VdtQAY 1hRTe/WuD9FGeCbG/wZb0HThiEI/J+H7lmc4xCjv4XkpRpVZ6pjq7UmL9zpmUesm pqKEtivitdXR8QkQYVd+yPZR7dT+bu2quo0cVtSNI7YU8vkFL4TIkg3noZhutcY2 KT3nBL3wnSK2X9T3T8uaN71jr+TH1Dho6LJzMxEHQDdsJioqCWc9tYwbshpGK80z SujZGuaqv2gIWIK88Iw03AxqNtMReg4Ypa0nOSJHHKQhzRgt5OJv43cWDT5EC4um CkGa -----END CERTIFICATE-----Generated at Sun May 3 15:24:34 2026 by rpki-client