$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/facddbc4-8a46-4e71-bf43-678021fefea0.roa File: facddbc4-8a46-4e71-bf43-678021fefea0.roa (raw, json) Hash identifier: IaDZsGopUzqgTanVSJyaLm5PYtX/0BBjjN4dYMSfE5Q= Subject key identifier: C9:E1:9B:07:54:62:B0:49:FE:BA:09:CE:E0:6C:86:47:DC:A2:36:97 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6CF7169EDE761F7670E4CBB76EC5BD1CEFE08326 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/facddbc4-8a46-4e71-bf43-678021fefea0.roa Signing time: Wed 13 May 2026 00:10:06 +0000 ROA not before: Wed 13 May 2026 00:10:06 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1c:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f7:16:9e:de:76:1f:76:70:e4:cb:b7:6e:c5:bd:1c:ef:e0:83:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:10:06 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=c77125a719bfbb797e8b3cd11fddf5f58388d7e464329fe91580800668a224f8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4c:5d:90:89:77:1b:64:33:2a:1b:06:28:3c: 51:92:62:6d:68:06:c8:b8:9c:46:94:c9:62:2e:40: be:23:b6:bd:ad:1d:4f:36:45:cd:e6:47:c8:85:99: 3a:d2:6a:ea:3e:56:d7:a0:fa:f6:f4:fc:6d:da:2a: 88:38:ff:65:39:de:41:da:c7:ce:7f:30:d7:cd:86: f9:fe:36:1c:44:1c:d1:14:ff:78:c5:4f:ae:4d:b6: 31:82:24:30:95:e8:ce:5d:dc:8d:a5:99:9c:ad:b6: 7b:90:04:10:1a:14:ad:c6:0a:50:61:1b:69:f1:05: c2:69:a5:01:22:42:dd:a3:e6:16:8b:4d:5a:3c:38: 07:0b:6e:0e:f7:58:a4:5f:ad:6a:2a:a7:7b:1c:17: db:ef:21:f3:73:91:b4:90:d1:bf:64:d5:12:38:f8: 69:ad:5a:84:5d:88:d2:48:af:80:d3:be:7d:8c:a1: 21:bd:2c:26:ba:a3:a1:73:22:b6:f3:c9:84:18:e9: 4b:f4:96:1a:41:29:f9:e4:0a:e8:a1:c7:07:cf:fb: c8:eb:b5:b5:a8:35:46:cc:9b:9c:98:02:fb:47:ff: 09:65:01:b0:03:30:6c:33:ae:40:72:23:5f:37:dd: 3a:f6:7e:17:b3:25:d1:52:f5:a7:61:1d:92:bc:4b: 98:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E1:9B:07:54:62:B0:49:FE:BA:09:CE:E0:6C:86:47:DC:A2:36:97 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/facddbc4-8a46-4e71-bf43-678021fefea0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1c:800::/38 Signature Algorithm: sha256WithRSAEncryption 34:4e:fe:6e:89:e4:04:2c:d3:2d:80:4e:90:34:6a:1a:03:cc: 34:d1:f7:78:22:e9:17:64:54:93:c5:15:6f:79:ae:99:8a:c1: 1f:00:47:67:34:7e:a1:4c:ad:38:ec:58:7a:fd:88:62:fd:a9: 96:a1:b7:55:fc:21:18:c8:0d:33:5a:6d:7e:d8:0c:a1:e7:32: 17:7b:b5:e2:c9:44:f2:5d:14:bf:e2:87:93:ff:ab:f5:a8:51: 7d:1a:14:69:0d:58:13:44:dd:a5:59:32:59:da:46:39:c4:18: bf:16:62:70:37:6f:0a:d9:9c:1d:3a:64:e8:97:4c:4e:11:d1: 39:db:f1:ef:43:42:2e:19:4a:d8:04:3a:49:3f:20:39:82:e1: cd:69:ad:94:58:73:7f:13:96:07:47:3c:57:98:3c:d4:4c:3e: 6f:53:37:59:09:28:c2:aa:fa:34:62:84:ac:f4:73:8a:cd:e0: 2a:39:24:bd:39:ac:c1:44:de:94:b5:cb:36:97:0d:4c:05:72: 06:db:1d:1f:6c:b6:4c:ae:a3:07:4d:60:03:c4:07:95:be:50: 93:0b:e4:30:dc:37:73:1d:da:bf:12:bd:12:c9:9f:c1:2d:06: 42:3c:39:6c:fe:3d:54:e3:e8:f5:a2:fd:59:c2:86:70:de:1b: 93:e0:0f:e7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUbPcWnt52H3Zw5Mu3bsW9HO/ggyYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMTAwNloX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAYzc3MTI1YTcxOWJmYmI3OTdlOGIz Y2QxMWZkZGY1ZjU4Mzg4ZDdlNDY0MzI5ZmU5MTU4MDgwMDY2OGEyMjRmODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA40xdkIl3G2QzKhsGKDxRkmJtaAbI uJxGlMliLkC+I7a9rR1PNkXN5kfIhZk60mrqPlbXoPr29Pxt2iqIOP9lOd5B2sfO fzDXzYb5/jYcRBzRFP94xU+uTbYxgiQwlejOXdyNpZmcrbZ7kAQQGhStxgpQYRtp 8QXCaaUBIkLdo+YWi01aPDgHC24O91ikX61qKqd7HBfb7yHzc5G0kNG/ZNUSOPhp rVqEXYjSSK+A0759jKEhvSwmuqOhcyK288mEGOlL9JYaQSn55ArooccHz/vI67W1 qDVGzJucmAL7R/8JZQGwAzBsM65AciNfN9069n4XsyXRUvWnYR2SvEuYVwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMnhmwdUYrBJ/roJzuBshkfcojaXMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ZhY2RkYmM0LThhNDYtNGU3MS1iZjQzLTY3ODAyMWZlZmVhMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaHAgwDQYJKoZIhvcNAQELBQADggEBADRO/m6J5AQs0y2ATpA0 ahoDzDTR93gi6RdkVJPFFW95rpmKwR8AR2c0fqFMrTjsWHr9iGL9qZaht1X8IRjI DTNabX7YDKHnMhd7teLJRPJdFL/ih5P/q/WoUX0aFGkNWBNE3aVZMlnaRjnEGL8W YnA3bwrZnB06ZOiXTE4R0Tnb8e9DQi4ZStgEOkk/IDmC4c1prZRYc38TlgdHPFeY PNRMPm9TN1kJKMKq+jRihKz0c4rN4Co5JL05rMFE3pS1yzaXDUwFcgbbHR9stkyu owdNYAPEB5W+UJML5DDcN3Md2r8SvRLJn8EtBkI8OWz+PVTj6PWi/VnChnDeG5Pg D+c= -----END CERTIFICATE-----Generated at Sun May 24 12:21:21 2026 by rpki-client