$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0c131403-c0db-4229-b10c-238da60a9c57.roa File: 0c131403-c0db-4229-b10c-238da60a9c57.roa (raw, json) Hash identifier: wUsT7cM5oOU8t/812kqAvkJTzKckerflLNrBHj826vo= Subject key identifier: 08:F8:45:4E:DD:5D:09:AD:01:55:7A:E7:99:C8:4F:EA:80:B4:66:65 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 51A5EC6AB8AFF3E09E43128277C1F65F83112E1D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0c131403-c0db-4229-b10c-238da60a9c57.roa Signing time: Mon 11 May 2026 00:01:19 +0000 ROA not before: Mon 11 May 2026 00:01:19 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:c880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:a5:ec:6a:b8:af:f3:e0:9e:43:12:82:77:c1:f6:5f:83:11:2e:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:01:19 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=491b3e6f9faccc537e68b0446b26ad17bc9b454b0086a1b9175ea67a806edd18, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:57:10:8d:f4:52:69:5f:99:89:43:78:aa:be: 29:34:0a:cb:bb:c3:34:61:32:0c:9c:80:16:52:0c: e1:0c:c4:3b:64:ae:ec:75:ac:4a:e0:6a:c0:d2:4c: 73:e8:eb:45:ef:e9:8a:9d:07:99:61:e8:f5:65:03: 3b:c1:28:e7:6b:e3:13:68:28:21:fc:9a:a0:b9:0e: 54:c8:5c:fc:9c:23:43:50:0c:22:30:ed:23:fc:18: 33:d8:32:7c:7e:e9:d6:3f:10:34:f8:b9:48:b2:4b: e4:57:65:42:5d:61:ca:41:39:fa:ec:4d:08:2c:d1: 89:45:02:18:8c:35:64:e2:27:ad:ce:1a:a4:96:a3: 75:15:b7:29:b7:41:b7:be:bd:fc:6c:ff:92:1b:b2: d0:e7:fc:9d:db:0c:06:e8:1b:5e:20:31:32:ec:c6: 3f:9f:6b:fc:61:6b:41:ab:26:7f:a9:13:ec:dd:8f: a2:3f:3c:3f:df:54:cd:04:05:4e:fa:1f:9b:22:7f: d5:c6:fc:5c:82:6e:6f:0f:83:28:a3:66:32:6e:28: b3:e4:24:30:05:3b:8d:03:ee:54:79:99:2f:d3:64: 24:2f:4d:74:b9:6b:05:ed:90:a1:b7:57:5a:25:19: 0a:cf:ea:70:1c:3a:d8:cd:66:1b:a2:a9:07:cc:ab: 12:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F8:45:4E:DD:5D:09:AD:01:55:7A:E7:99:C8:4F:EA:80:B4:66:65 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0c131403-c0db-4229-b10c-238da60a9c57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:c880::/48 Signature Algorithm: sha256WithRSAEncryption 1e:09:87:f1:d6:a8:d5:ee:87:8b:11:4e:a8:a6:56:9d:bf:6e: f1:6e:4e:7d:73:80:04:e6:9a:a6:5a:37:0d:c3:e5:5e:84:db: a9:66:e7:e1:d7:46:b1:6b:96:cd:74:b1:77:8a:0e:f2:75:d6: 7f:88:d6:8a:a9:ae:1c:b9:46:51:14:74:cf:5a:7c:9a:ef:80: cc:f1:09:14:e1:eb:13:f4:fa:63:f9:26:c1:bd:fd:f3:2f:e2: 17:b8:d2:d3:e2:81:14:cc:f7:20:ae:ca:43:e3:a2:c1:40:13: 11:a7:cc:9f:8c:94:16:4f:0a:27:3a:ed:b5:8b:c8:d1:b8:c7: 01:f6:d2:47:a0:33:f3:19:4a:23:f6:2a:ba:c0:dc:5a:9a:ee: 9a:07:5b:20:71:85:b1:c1:07:8a:b4:5c:b6:aa:86:20:a6:11: 16:32:04:13:c6:a2:fc:99:66:10:4c:96:8a:52:69:4f:5e:b2: d4:a3:3f:80:20:02:37:09:57:61:4a:cd:ee:8d:32:93:bc:63: e9:0b:25:85:62:2c:2d:dc:e6:0b:07:de:22:96:38:1f:59:e7: 1b:f3:3e:2b:5d:03:7e:27:76:8e:0b:9c:51:9c:c8:f4:f3:b9: 47:b2:9a:63:a2:1d:41:8f:61:c7:62:fc:cc:75:d1:ee:f8:39: 03:2f:8f:4e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUUaXsariv8+CeQxKCd8H2X4MRLh0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMDExOVoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNANDkxYjNlNmY5ZmFjY2M1MzdlNjhi MDQ0NmIyNmFkMTdiYzliNDU0YjAwODZhMWI5MTc1ZWE2N2E4MDZlZGQxODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlcQjfRSaV+ZiUN4qr4pNArLu8M0 YTIMnIAWUgzhDMQ7ZK7sdaxK4GrA0kxz6OtF7+mKnQeZYej1ZQM7wSjna+MTaCgh /JqguQ5UyFz8nCNDUAwiMO0j/Bgz2DJ8funWPxA0+LlIskvkV2VCXWHKQTn67E0I LNGJRQIYjDVk4ietzhqklqN1Fbcpt0G3vr38bP+SG7LQ5/yd2wwG6BteIDEy7MY/ n2v8YWtBqyZ/qRPs3Y+iPzw/31TNBAVO+h+bIn/Vxvxcgm5vD4Moo2Yybiiz5CQw BTuNA+5UeZkv02QkL010uWsF7ZCht1daJRkKz+pwHDrYzWYboqkHzKsStwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAj4RU7dXQmtAVV655nIT+qAtGZlMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzBjMTMxNDAzLWMwZGItNDIyOS1iMTBjLTIzOGRhNjBhOWM1Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYciAMA0GCSqGSIb3DQEBCwUAA4IBAQAeCYfx1qjV7oeLEU6o pladv27xbk59c4AE5pqmWjcNw+VehNupZufh10axa5bNdLF3ig7yddZ/iNaKqa4c uUZRFHTPWnya74DM8QkU4esT9Ppj+SbBvf3zL+IXuNLT4oEUzPcgrspD46LBQBMR p8yfjJQWTwonOu21i8jRuMcB9tJHoDPzGUoj9iq6wNxamu6aB1sgcYWxwQeKtFy2 qoYgphEWMgQTxqL8mWYQTJaKUmlPXrLUoz+AIAI3CVdhSs3ujTKTvGPpCyWFYiwt 3OYLB94iljgfWecb8z4rXQN+J3aOC5xRnMj087lHsppjoh1Bj2HHYvzMddHu+DkD L49O -----END CERTIFICATE-----Generated at Wed May 13 00:39:13 2026 by rpki-client