$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f7bcd12c-ac36-4797-a994-afe12b2516f6.roa File: f7bcd12c-ac36-4797-a994-afe12b2516f6.roa (raw, json) Hash identifier: l6C9h1IyY/Y2yGOXz9stwzb9lrmi+szzPyIPdD1fMgM= Subject key identifier: D1:E3:BC:AD:7E:09:B7:16:67:3D:59:5A:F4:D2:82:2B:DD:93:A9:34 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4B5F05834546D99ACCF851A08CFDBBC8CEF777C7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f7bcd12c-ac36-4797-a994-afe12b2516f6.roa Signing time: Sat 02 May 2026 00:10:11 +0000 ROA not before: Sat 02 May 2026 00:10:11 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:f040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:5f:05:83:45:46:d9:9a:cc:f8:51:a0:8c:fd:bb:c8:ce:f7:77:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 2 00:10:11 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=951217cdc82159fc44b42b9833eb1104fc6739381c99aedecfdbe1b6b42c4847, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:11:58:78:2f:65:7d:a1:d5:c6:9e:fe:86:87: 1e:af:8c:6d:91:33:e0:08:ce:03:f1:e9:08:03:91: 68:25:a3:23:c9:2c:d1:95:04:46:12:97:f8:c6:59: fc:22:01:73:0e:d7:d1:75:4d:46:33:47:b4:75:21: 0f:df:c0:cc:a2:af:1b:ec:06:46:e5:cb:ff:3b:79: c3:8b:32:ec:4e:b7:14:99:ce:b4:32:95:fc:bd:39: 04:0c:3b:d4:e6:f0:99:9b:a2:f8:4d:6b:1d:da:51: f3:9e:86:19:c5:76:b6:9f:22:32:ce:a8:78:19:63: 88:d7:83:e7:25:cf:a4:45:06:90:c4:f8:96:ca:82: 0f:48:06:db:8d:0f:55:36:5a:ce:49:da:55:e6:14: 6f:84:57:95:15:b2:3c:f7:86:49:7d:9f:79:63:7c: 9e:2d:88:9e:be:6c:20:0a:48:a7:40:3d:e2:e2:e8: f7:d2:39:23:73:9a:ce:ae:b7:57:b6:14:fc:4d:0f: 48:9e:c5:2a:82:19:36:4b:eb:2c:3e:b3:d3:90:83: ec:87:be:cd:22:9a:94:9c:76:17:29:c9:8f:ec:02: 87:b4:2c:cd:b3:fb:c4:86:94:5d:f8:4d:8f:1c:3a: 18:e7:e9:fd:42:a3:73:1e:00:c5:60:34:11:c4:5e: b3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E3:BC:AD:7E:09:B7:16:67:3D:59:5A:F4:D2:82:2B:DD:93:A9:34 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f7bcd12c-ac36-4797-a994-afe12b2516f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:f040::/46 Signature Algorithm: sha256WithRSAEncryption 0b:ed:21:ed:c5:09:a5:8c:1c:09:7e:6f:04:f9:fa:62:2f:64: 87:3a:c5:06:59:b6:83:bd:17:ca:6c:77:83:41:b4:e1:d2:9d: 7c:c7:81:6a:04:a8:32:8d:70:1a:61:63:ab:92:e9:d5:c8:bf: 08:a8:78:09:d9:38:f8:e7:24:b5:4b:3c:8f:0a:24:a0:27:7f: e0:ad:c8:a8:cd:6f:6c:28:fa:4b:db:a2:a2:4e:8a:c8:f1:ab: 48:fd:a2:47:63:db:b3:d3:50:23:2b:bc:fc:5f:5d:52:34:24: 8d:15:a2:09:9e:50:78:3f:19:7b:4e:f8:fb:e5:54:2d:21:4e: ed:47:e1:6b:57:5c:99:01:4c:ce:69:b5:84:03:9a:05:c7:e5: ba:2a:5c:4a:63:54:6b:1b:bb:7d:b9:b4:6e:d9:31:3e:0d:1d: 27:19:72:31:70:39:02:3d:b9:20:59:2e:ed:4f:0b:25:49:ba: eb:f7:b6:bb:25:26:50:dc:d1:4f:1a:b5:61:45:97:7e:11:b2: 79:18:e5:d9:b0:f0:bc:eb:1b:ef:d9:dc:c7:7f:60:52:63:82: 10:4f:ba:a6:13:45:c8:e1:63:1a:2d:8e:97:b5:0b:e4:a4:df: 91:b7:a2:e8:f5:6c:c3:0f:1b:9b:57:d8:e3:ef:10:78:65:4b: 34:20:21:25 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUS18Fg0VG2ZrM+FGgjP27yM73d8cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwMjAwMTAxMVoX DTI2MDczMTIzNTk1OVowejFJMEcGA1UEBRNAOTUxMjE3Y2RjODIxNTlmYzQ0YjQy Yjk4MzNlYjExMDRmYzY3MzkzODFjOTlhZWRlY2ZkYmUxYjZiNDJjNDg0NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBFYeC9lfaHVxp7+hocer4xtkTPg CM4D8ekIA5FoJaMjySzRlQRGEpf4xln8IgFzDtfRdU1GM0e0dSEP38DMoq8b7AZG 5cv/O3nDizLsTrcUmc60MpX8vTkEDDvU5vCZm6L4TWsd2lHznoYZxXa2nyIyzqh4 GWOI14PnJc+kRQaQxPiWyoIPSAbbjQ9VNlrOSdpV5hRvhFeVFbI894ZJfZ95Y3ye LYievmwgCkinQD3i4uj30jkjc5rOrrdXthT8TQ9InsUqghk2S+ssPrPTkIPsh77N IpqUnHYXKcmP7AKHtCzNs/vEhpRd+E2PHDoY5+n9QqNzHgDFYDQRxF6zsQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNHjvK1+CbcWZz1ZWvTSgivdk6k0MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y3YmNkMTJjLWFjMzYtNDc5Ny1hOTk0LWFmZTEyYjI1MTZmNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba8/BAMA0GCSqGSIb3DQEBCwUAA4IBAQAL7SHtxQmljBwJfm8E +fpiL2SHOsUGWbaDvRfKbHeDQbTh0p18x4FqBKgyjXAaYWOrkunVyL8IqHgJ2Tj4 5yS1SzyPCiSgJ3/grciozW9sKPpL26KiTorI8atI/aJHY9uz01AjK7z8X11SNCSN FaIJnlB4Pxl7Tvj75VQtIU7tR+FrV1yZAUzOabWEA5oFx+W6KlxKY1RrG7t9ubRu 2TE+DR0nGXIxcDkCPbkgWS7tTwslSbrr97a7JSZQ3NFPGrVhRZd+EbJ5GOXZsPC8 6xvv2dzHf2BSY4IQT7qmE0XI4WMaLY6XtQvkpN+Rt6Lo9WzDDxubV9jj7xB4ZUs0 ICEl -----END CERTIFICATE-----Generated at Sun May 3 16:58:44 2026 by rpki-client