$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/062af51c-5367-4b3a-91ca-65f4ac95ee74.roa File: 062af51c-5367-4b3a-91ca-65f4ac95ee74.roa (raw, json) Hash identifier: Gb9RyM5TRC21/tNFACHj2LAsl6oIyQs+nJcK42LDEQs= Subject key identifier: 38:8A:91:FE:DE:1A:15:04:D8:79:B3:5D:3A:8B:9E:78:9F:88:29:CC Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 61158967F0B9A8E4E0D77F3E169F6BCE7CDE2974 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/062af51c-5367-4b3a-91ca-65f4ac95ee74.roa Signing time: Mon 11 May 2026 00:10:25 +0000 ROA not before: Mon 11 May 2026 00:10:25 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:2880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:15:89:67:f0:b9:a8:e4:e0:d7:7f:3e:16:9f:6b:ce:7c:de:29:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:10:25 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=e69dd7aac3096bd67966409b0d5a1ac3c39a5052226e0e0ca55fd74ae8f3ea2b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f4:13:b7:39:38:00:52:72:89:5b:76:db:4b: 29:dd:66:46:7c:93:28:e9:27:2b:be:75:6f:5f:89: 91:37:5b:b6:ea:6d:03:19:a2:4b:24:f5:05:d5:82: 3f:8b:d4:c4:24:38:2e:ed:42:28:0e:c9:7d:c6:d4: 23:72:e3:be:4e:c0:20:18:4f:16:a9:db:3b:85:db: 18:d5:79:b9:5b:bf:ea:e2:36:31:b2:6f:b3:5a:42: d6:a0:40:34:72:96:94:eb:f4:1f:50:c1:45:80:1c: d1:e6:fd:25:50:44:3d:d7:80:48:a5:cc:d3:10:48: 8d:a7:1b:a2:bd:2e:b9:e4:29:a3:29:e9:36:d8:b7: 3b:09:73:61:18:04:b0:0c:bc:c3:70:06:80:be:42: 76:cf:b5:15:99:79:d5:1b:6c:b4:98:e7:18:30:fa: 91:4b:e2:30:30:a4:3b:5d:ed:2e:56:6f:12:f7:8b: b0:cd:67:58:b7:98:03:d9:47:82:c0:69:5d:11:b2: cb:c8:ce:dd:d3:b4:32:e4:d4:14:7e:3d:21:24:4f: 05:83:39:43:11:f8:92:1e:b8:10:b3:8f:d6:a8:88: 3f:b6:ce:7b:e9:9b:b0:55:a4:eb:5c:25:4e:18:af: e3:04:2a:e6:cb:ac:1d:62:6b:9b:33:14:01:ae:02: a3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:8A:91:FE:DE:1A:15:04:D8:79:B3:5D:3A:8B:9E:78:9F:88:29:CC X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/062af51c-5367-4b3a-91ca-65f4ac95ee74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:2880::/48 Signature Algorithm: sha256WithRSAEncryption 62:36:a0:c5:4f:69:82:00:9f:50:c7:d7:30:b1:f0:43:d8:f0: 10:8b:83:13:31:d3:0b:a2:bd:24:94:de:4b:83:7f:a7:60:9d: 21:f7:ed:8f:88:a1:83:8a:5e:47:22:00:94:82:c7:db:ba:b4: 26:31:f3:a4:12:af:72:2c:74:8d:c2:f5:a1:77:83:f0:df:83: 89:67:8a:68:f1:e3:8d:8e:31:3f:97:08:27:35:52:83:dc:7f: 97:21:bd:14:f3:84:a5:26:40:90:00:2c:9e:05:ed:79:c5:b1: 6f:0c:5e:84:22:0f:d5:70:b5:9d:53:32:46:9b:d0:07:c4:43: 9f:e2:06:40:94:5d:2e:fc:31:ca:e9:34:6a:04:c8:78:ce:8d: 9a:26:ce:48:9d:78:dc:ea:82:d6:0f:b1:28:84:90:14:bc:d8: c6:b0:11:04:5b:d5:91:2a:d5:14:b6:9f:ed:61:0d:f6:21:4e: 01:8b:55:6c:b3:06:c7:46:26:45:97:73:62:c6:52:48:6e:f6: 21:0c:66:46:94:b5:17:04:29:95:21:09:a4:da:0d:41:8d:19: 57:af:4d:0e:28:40:66:59:38:1d:da:47:19:80:ec:82:fc:8d: 5d:07:4e:a0:bb:e8:93:25:c8:b1:01:71:7e:f0:00:1d:a0:f3: bd:9a:44:c7 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYRWJZ/C5qOTg138+Fp9rznzeKXQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMTAyNVoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAZTY5ZGQ3YWFjMzA5NmJkNjc5NjY0 MDliMGQ1YTFhYzNjMzlhNTA1MjIyNmUwZTBjYTU1ZmQ3NGFlOGYzZWEyYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPQTtzk4AFJyiVt220sp3WZGfJMo 6ScrvnVvX4mRN1u26m0DGaJLJPUF1YI/i9TEJDgu7UIoDsl9xtQjcuO+TsAgGE8W qds7hdsY1Xm5W7/q4jYxsm+zWkLWoEA0cpaU6/QfUMFFgBzR5v0lUEQ914BIpczT EEiNpxuivS655CmjKek22Lc7CXNhGASwDLzDcAaAvkJ2z7UVmXnVG2y0mOcYMPqR S+IwMKQ7Xe0uVm8S94uwzWdYt5gD2UeCwGldEbLLyM7d07Qy5NQUfj0hJE8FgzlD EfiSHrgQs4/WqIg/ts576ZuwVaTrXCVOGK/jBCrmy6wdYmubMxQBrgKj5QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDiKkf7eGhUE2HmzXTqLnnifiCnMMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA2MmFmNTFjLTUzNjctNGIzYS05MWNhLTY1ZjRhYzk1ZWU3NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaOCiAMA0GCSqGSIb3DQEBCwUAA4IBAQBiNqDFT2mCAJ9Qx9cw sfBD2PAQi4MTMdMLor0klN5Lg3+nYJ0h9+2PiKGDil5HIgCUgsfburQmMfOkEq9y LHSNwvWhd4Pw34OJZ4po8eONjjE/lwgnNVKD3H+XIb0U84SlJkCQACyeBe15xbFv DF6EIg/VcLWdUzJGm9AHxEOf4gZAlF0u/DHK6TRqBMh4zo2aJs5InXjc6oLWD7Eo hJAUvNjGsBEEW9WRKtUUtp/tYQ32IU4Bi1VsswbHRiZFl3NixlJIbvYhDGZGlLUX BCmVIQmk2g1BjRlXr00OKEBmWTgd2kcZgOyC/I1dB06gu+iTJcixAXF+8AAdoPO9 mkTH -----END CERTIFICATE-----Generated at Tue May 12 23:30:48 2026 by rpki-client