$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9bc90260-d4dc-4b54-951c-aa9167f8f99b.roa File: 9bc90260-d4dc-4b54-951c-aa9167f8f99b.roa (raw, json) Hash identifier: qj0OQyr9c5mmYXu1IDyrazp6JBQsFFniQfjvgC5HpwM= Subject key identifier: 23:0A:91:C9:5A:EA:31:0D:05:F9:A8:22:17:E5:E5:03:CC:4A:0A:24 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4C7AB81DD7306B0624553DAF8B56D53E9E9FB69E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9bc90260-d4dc-4b54-951c-aa9167f8f99b.roa Signing time: Tue 19 May 2026 00:00:12 +0000 ROA not before: Tue 19 May 2026 00:00:12 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:daef:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:7a:b8:1d:d7:30:6b:06:24:55:3d:af:8b:56:d5:3e:9e:9f:b6:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 19 00:00:12 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=893c394ec8f7bdf4ab87840313517545e7c74c2a6e352db73054fd44a4028eb7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:c6:ce:0e:55:71:09:d0:65:46:f0:6f:d3:54: 1c:c9:8f:f2:c6:e6:73:90:fd:18:f4:3b:86:86:e9: 8c:9f:dc:6f:89:99:69:51:59:8d:dc:79:37:52:77: 49:33:ad:ca:3c:90:ae:38:a6:bc:f8:26:1f:f7:cf: 58:7d:dd:8a:f3:65:a6:48:e3:0c:9f:6a:65:53:43: 8a:fb:3c:a0:06:cf:76:df:d4:e7:36:e7:b4:5c:4b: 9a:cc:f8:f0:4f:43:e1:1d:4a:73:6d:d9:98:0c:bd: 53:4a:4e:43:6a:75:e5:34:8e:e5:0f:82:a2:7c:ae: 48:15:b8:79:38:d4:ca:72:2c:8b:a5:67:76:11:c5: 6f:d7:77:82:f6:f0:e3:3f:07:ae:f0:a1:e0:22:f0: 91:11:dd:ea:7f:89:a2:04:56:49:55:19:ab:a8:a1: ac:20:65:c2:01:01:22:eb:12:6c:b0:49:02:1b:05: db:5e:0b:28:08:e5:22:39:37:9a:33:fe:e7:b7:89: 48:e5:b1:c7:a0:e7:fe:9f:c3:f4:ed:1c:93:7b:b2: 0e:8e:f6:aa:7b:4e:f6:6c:5a:21:ea:70:0d:0f:38: ce:cc:41:05:8f:9f:b2:35:d2:fc:77:93:0e:e2:ec: 28:52:37:f4:01:97:1c:fc:6b:c3:f4:56:03:4c:bd: a0:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:0A:91:C9:5A:EA:31:0D:05:F9:A8:22:17:E5:E5:03:CC:4A:0A:24 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9bc90260-d4dc-4b54-951c-aa9167f8f99b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daef:c000::/40 Signature Algorithm: sha256WithRSAEncryption 13:a3:6c:40:23:72:73:88:3a:f8:87:ce:db:b0:3b:01:50:39: 8b:70:29:2f:66:ad:92:37:83:45:9e:13:a7:63:92:a7:f9:dc: 65:e1:db:bc:aa:d6:7b:d4:5f:8c:b0:cf:10:1d:71:fd:7c:0a: 47:9b:3b:f2:37:55:cb:c2:35:d5:93:a3:fa:13:08:4d:d1:a3: 6f:d2:3e:20:ec:3f:34:81:5c:96:92:78:5a:c5:06:62:dc:df: f6:16:af:08:62:96:e8:52:62:87:1a:c9:1b:73:32:72:bb:c3: b4:53:c0:86:96:48:bf:09:41:8f:87:c9:80:39:1a:78:a0:9d: 6c:41:2c:62:09:3e:a7:82:94:69:c6:34:fb:f9:21:dd:0a:b2: a3:3d:23:88:5d:f0:f8:9f:e4:a3:6e:49:16:cf:12:22:ae:0e: 36:6f:46:1d:3c:f0:e2:60:8a:1f:b0:f1:d1:6b:4f:61:88:d6: d2:8e:52:7a:66:bd:08:36:b3:17:9b:56:f0:68:fe:96:fb:f5: bd:52:90:fc:ba:5a:4c:24:51:c5:88:f6:9e:2d:98:ee:c5:6d: 29:19:18:5e:57:35:38:91:3f:79:d2:57:f5:06:cf:50:02:23: 71:03:93:2d:f1:1c:02:03:17:6e:4f:18:50:2e:d4:98:f0:0d: 55:ea:35:7a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUTHq4HdcwawYkVT2vi1bVPp6ftp4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxOTAwMDAxMloX DTI2MDgxNzIzNTk1OVowejFJMEcGA1UEBRNAODkzYzM5NGVjOGY3YmRmNGFiODc4 NDAzMTM1MTc1NDVlN2M3NGMyYTZlMzUyZGI3MzA1NGZkNDRhNDAyOGViNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjcbODlVxCdBlRvBv01QcyY/yxuZz kP0Y9DuGhumMn9xviZlpUVmN3Hk3UndJM63KPJCuOKa8+CYf989Yfd2K82WmSOMM n2plU0OK+zygBs9239TnNue0XEuazPjwT0PhHUpzbdmYDL1TSk5DanXlNI7lD4Ki fK5IFbh5ONTKciyLpWd2EcVv13eC9vDjPweu8KHgIvCREd3qf4miBFZJVRmrqKGs IGXCAQEi6xJssEkCGwXbXgsoCOUiOTeaM/7nt4lI5bHHoOf+n8P07RyTe7IOjvaq e072bFoh6nANDzjOzEEFj5+yNdL8d5MO4uwoUjf0AZcc/GvD9FYDTL2gVQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCMKkcla6jENBfmoIhfl5QPMSgokMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzliYzkwMjYwLWQ0ZGMtNGI1NC05NTFjLWFhOTE2N2Y4Zjk5Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba78AwDQYJKoZIhvcNAQELBQADggEBABOjbEAjcnOIOviHztuw OwFQOYtwKS9mrZI3g0WeE6djkqf53GXh27yq1nvUX4ywzxAdcf18CkebO/I3VcvC NdWTo/oTCE3Ro2/SPiDsPzSBXJaSeFrFBmLc3/YWrwhiluhSYocayRtzMnK7w7RT wIaWSL8JQY+HyYA5GnignWxBLGIJPqeClGnGNPv5Id0KsqM9I4hd8Pif5KNuSRbP EiKuDjZvRh088OJgih+w8dFrT2GI1tKOUnpmvQg2sxebVvBo/pb79b1SkPy6Wkwk UcWI9p4tmO7FbSkZGF5XNTiRP3nSV/UGz1ACI3EDky3xHAIDF25PGFAu1JjwDVXq NXo= -----END CERTIFICATE-----Generated at Fri May 22 14:19:11 2026 by rpki-client