$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/90570a0e-67ef-4f08-bf15-1ca7df062e62.roa File: 90570a0e-67ef-4f08-bf15-1ca7df062e62.roa (raw, json) Hash identifier: A4/GM6AZEefrhFV9EVpVTOi6CWObhyAm+NrsowGDUIE= Subject key identifier: E1:EE:16:0C:E1:DE:33:D3:B8:F9:CB:66:BF:9B:F0:AF:4D:B1:5A:0B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 635FC3AE17F7AD04BE84BAB7B151721C264BAB48 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/90570a0e-67ef-4f08-bf15-1ca7df062e62.roa Signing time: Wed 13 May 2026 00:10:04 +0000 ROA not before: Wed 13 May 2026 00:10:04 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1e:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:5f:c3:ae:17:f7:ad:04:be:84:ba:b7:b1:51:72:1c:26:4b:ab:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:10:04 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=75d701a7c9610d3d9ead4917cfd1536b416df18db8205c3897b3a52979400fc0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:64:d4:02:cb:64:ce:ca:e0:84:17:ef:fb:27: 64:2c:56:c2:9a:83:c3:d2:db:5b:8d:51:6a:6b:e5: 92:46:5b:37:1b:1a:d6:ef:80:b8:8e:5f:c8:24:60: 30:21:b3:ef:b2:40:56:ac:a0:21:1a:2b:fc:67:c7: e8:53:21:98:ff:d0:ad:b2:eb:9d:ce:ee:16:c0:37: 5b:ec:4f:e8:27:b3:f9:90:fb:a0:ce:5d:c0:d4:83: d5:67:2f:e7:37:13:06:f5:18:54:29:6d:51:a8:14: 00:b8:59:f8:d6:55:d4:59:2d:5e:57:09:00:69:d2: b5:ba:c0:ee:24:08:2b:e5:04:87:10:bb:dd:a4:0b: 28:a7:2b:b8:06:bc:0e:3e:c4:4f:49:f0:9a:cf:f8: f9:5f:35:21:30:fb:4e:f6:ec:18:f1:de:6b:65:95: 77:a8:7f:98:1e:ae:ec:06:61:9f:d1:f0:1d:c7:8c: de:c4:42:9c:d8:59:ee:b3:93:56:50:59:9d:c5:08: 88:17:13:e8:1b:b2:09:30:69:ac:7c:7e:6c:32:29: e0:ee:97:37:8a:bd:36:ed:aa:b4:25:5f:67:fb:81: ec:02:ed:bf:9e:9e:9a:b3:08:8f:24:70:25:c1:4c: 8f:8f:0f:95:e7:eb:81:df:c0:f1:46:01:12:28:3f: 43:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:EE:16:0C:E1:DE:33:D3:B8:F9:CB:66:BF:9B:F0:AF:4D:B1:5A:0B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/90570a0e-67ef-4f08-bf15-1ca7df062e62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1e:c00::/38 Signature Algorithm: sha256WithRSAEncryption 6e:10:59:10:2f:c2:5a:0a:f6:b7:fa:7d:7b:b5:9f:15:89:2b: 76:83:4a:98:9f:d8:7b:bc:d0:c4:74:1f:fc:82:a0:00:f2:aa: f8:83:af:1b:6f:b3:cf:7d:52:8f:a9:82:c8:59:d8:b9:29:e9: 70:b6:4d:ac:3e:45:e4:ee:0a:8c:6a:cb:91:5a:b1:1d:a8:1c: 8f:2a:27:e8:48:ec:88:1c:a3:1c:e7:f5:12:84:3d:5e:1f:19: 5e:bb:e7:4a:64:bc:7b:6f:f3:57:1a:58:15:e6:4e:6d:29:e1: 2b:ed:95:b8:ad:4a:21:bb:44:14:97:b2:e7:ba:5c:27:61:90: c4:be:ea:24:a3:13:c0:d4:43:cc:56:e4:8c:71:2a:5a:ed:af: 0d:74:dd:ef:c3:b8:0b:b3:8a:6d:a4:41:f2:20:0c:d5:5a:28: 31:15:91:90:14:8f:24:32:a9:98:42:78:5e:4f:37:26:cc:48: aa:6f:6b:ce:75:9d:19:37:6f:0b:48:c9:61:18:49:59:3a:99: fa:99:18:3f:28:f7:ab:66:61:c8:c5:16:80:f9:a8:76:0f:68: fd:96:75:95:75:bc:fb:6e:76:af:6e:d2:3c:0b:91:5e:ce:a2: 70:d4:b4:6d:aa:89:d0:29:1a:65:5f:33:e4:d3:b9:72:1d:52: 77:8a:1c:ae -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUY1/Drhf3rQS+hLq3sVFyHCZLq0gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMTAwNFoX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNANzVkNzAxYTdjOTYxMGQzZDllYWQ0 OTE3Y2ZkMTUzNmI0MTZkZjE4ZGI4MjA1YzM4OTdiM2E1Mjk3OTQwMGZjMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmTUAstkzsrghBfv+ydkLFbCmoPD 0ttbjVFqa+WSRls3GxrW74C4jl/IJGAwIbPvskBWrKAhGiv8Z8foUyGY/9Ctsuud zu4WwDdb7E/oJ7P5kPugzl3A1IPVZy/nNxMG9RhUKW1RqBQAuFn41lXUWS1eVwkA adK1usDuJAgr5QSHELvdpAsopyu4BrwOPsRPSfCaz/j5XzUhMPtO9uwY8d5rZZV3 qH+YHq7sBmGf0fAdx4zexEKc2Fnus5NWUFmdxQiIFxPoG7IJMGmsfH5sMing7pc3 ir027aq0JV9n+4HsAu2/np6aswiPJHAlwUyPjw+V5+uB38DxRgESKD9DgQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOHuFgzh3jPTuPnLZr+b8K9NsVoLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkwNTcwYTBlLTY3ZWYtNGYwOC1iZjE1LTFjYTdkZjA2MmU2Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaHgwwDQYJKoZIhvcNAQELBQADggEBAG4QWRAvwloK9rf6fXu1 nxWJK3aDSpif2Hu80MR0H/yCoADyqviDrxtvs899Uo+pgshZ2Lkp6XC2Taw+ReTu Coxqy5FasR2oHI8qJ+hI7Igcoxzn9RKEPV4fGV6750pkvHtv81caWBXmTm0p4Svt lbitSiG7RBSXsue6XCdhkMS+6iSjE8DUQ8xW5IxxKlrtrw103e/DuAuzim2kQfIg DNVaKDEVkZAUjyQyqZhCeF5PNybMSKpva851nRk3bwtIyWEYSVk6mfqZGD8o96tm YcjFFoD5qHYPaP2WdZV1vPtudq9u0jwLkV7OonDUtG2qidApGmVfM+TTuXIdUneK HK4= -----END CERTIFICATE-----Generated at Sun May 24 12:21:59 2026 by rpki-client