$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19c2d4e6-f756-4329-8ef7-563420636cfb.roa File: 19c2d4e6-f756-4329-8ef7-563420636cfb.roa (raw, json) Hash identifier: EAxwtLOuDeReqmZsnzvG/eXtRGN5EWM/Xt7xHJVZfXE= Subject key identifier: 8F:18:C1:24:66:CC:4B:78:E4:FB:01:9E:9A:D7:E7:DD:BA:CA:2F:A4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 75A2B21D2069A8B107FF23871912E619284C847B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19c2d4e6-f756-4329-8ef7-563420636cfb.roa Signing time: Fri 08 May 2026 00:00:13 +0000 ROA not before: Fri 08 May 2026 00:00:13 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:a2:b2:1d:20:69:a8:b1:07:ff:23:87:19:12:e6:19:28:4c:84:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 8 00:00:13 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=15e2d4f1cd3d4aa1dd7bfa0a61ac41dccbb114b043d081552c8af878e3824175, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5e:09:85:0f:cb:bd:d0:45:d3:83:0f:1e:0f: e0:5d:40:48:ae:57:9c:00:0a:de:3e:26:05:14:d7: a8:e9:12:19:c5:8f:1b:14:88:60:ca:39:00:75:f8: 3e:ab:40:4d:f6:3c:87:9a:27:ec:c3:fe:d0:56:9f: 45:62:d6:d1:a2:14:be:0e:14:46:02:25:01:39:60: 81:e4:71:1c:52:f5:cb:af:fd:9d:03:34:d2:34:0c: 99:fd:a4:04:36:3a:6b:8e:77:f6:df:ad:82:76:dc: 5c:05:57:e0:79:64:f3:81:94:ab:a8:b8:90:a2:b8: 64:57:66:25:ca:a3:e3:cc:27:81:ec:ba:bb:1b:80: 12:37:e1:2f:a7:38:1b:97:5c:1c:ac:6d:97:4f:9e: 6a:86:92:fb:e8:1b:31:85:a4:f1:ec:a4:54:ee:ae: f5:45:a6:a6:44:d2:3c:89:e3:ca:02:b6:82:6f:fc: 03:a2:cd:0a:1b:f7:ff:cc:58:8c:d2:65:23:fe:f9: 6b:cc:ea:40:fb:5e:58:45:d5:8b:b6:ba:03:7c:bd: d1:be:71:e8:49:fe:25:69:1b:19:9b:0b:13:29:f2: 9e:99:a3:d6:34:89:6b:de:5a:92:8c:3a:26:e5:8f: 87:4e:80:61:85:0f:c3:34:f2:34:bf:95:f2:86:b8: 28:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:18:C1:24:66:CC:4B:78:E4:FB:01:9E:9A:D7:E7:DD:BA:CA:2F:A4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19c2d4e6-f756-4329-8ef7-563420636cfb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:4000::/48 Signature Algorithm: sha256WithRSAEncryption ac:02:43:ea:6c:5e:ae:77:ca:6a:85:ed:87:0b:83:65:18:d7: 1a:2f:7b:47:07:c0:4c:9f:0d:c0:c5:98:c2:2e:4d:c5:e5:9f: c2:65:f4:a0:8d:f5:7b:6b:88:68:1d:be:42:e5:e5:93:ab:e6: 46:f3:aa:24:67:9f:a7:9c:c7:c8:5e:ff:8b:ca:39:39:0e:53: b9:e7:2b:40:f0:a7:dc:7e:d5:13:98:fc:46:d7:a7:b8:14:66: 03:be:7e:f2:71:93:a5:c8:e2:70:e6:78:eb:20:33:d7:52:f3: 58:79:6b:19:1e:62:7d:50:31:33:9c:ea:d2:7b:d4:bd:fb:59: ab:a7:29:78:ae:b0:d0:35:e2:34:be:e0:61:17:ce:9d:37:b0: 53:d3:9b:b5:3b:96:bf:04:c5:aa:7e:38:45:85:20:8e:3e:d4: fc:4f:59:eb:5b:73:9c:b3:66:e6:a2:0a:85:9d:2f:54:93:06: 12:4b:9a:ba:3c:f3:e0:8f:59:1e:1f:95:0c:aa:d5:36:51:9f: c6:32:45:a9:a7:8f:03:08:ca:c6:48:35:e8:b2:7c:32:ad:c6: f3:fe:4e:59:56:01:e8:95:ba:c5:9b:8a:33:6d:74:f5:8f:99: 2d:1e:57:6c:33:8a:6f:45:49:e0:eb:c0:e5:18:fd:f8:85:c1: d3:03:1b:6b -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdaKyHSBpqLEH/yOHGRLmGShMhHswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwODAwMDAxM1oX DTI2MDgwNjIzNTk1OVowejFJMEcGA1UEBRNAMTVlMmQ0ZjFjZDNkNGFhMWRkN2Jm YTBhNjFhYzQxZGNjYmIxMTRiMDQzZDA4MTU1MmM4YWY4NzhlMzgyNDE3NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF4JhQ/LvdBF04MPHg/gXUBIrlec AArePiYFFNeo6RIZxY8bFIhgyjkAdfg+q0BN9jyHmifsw/7QVp9FYtbRohS+DhRG AiUBOWCB5HEcUvXLr/2dAzTSNAyZ/aQENjprjnf2362CdtxcBVfgeWTzgZSrqLiQ orhkV2YlyqPjzCeB7Lq7G4ASN+Evpzgbl1wcrG2XT55qhpL76BsxhaTx7KRU7q71 RaamRNI8iePKAraCb/wDos0KG/f/zFiM0mUj/vlrzOpA+15YRdWLtroDfL3RvnHo Sf4laRsZmwsTKfKemaPWNIlr3lqSjDom5Y+HToBhhQ/DNPI0v5XyhrgoxwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFI8YwSRmzEt45PsBnprX5926yi+kMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzE5YzJkNGU2LWY3NTYtNDMyOS04ZWY3LTU2MzQyMDYzNmNmYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9kAAMA0GCSqGSIb3DQEBCwUAA4IBAQCsAkPqbF6ud8pqhe2H C4NlGNcaL3tHB8BMnw3AxZjCLk3F5Z/CZfSgjfV7a4hoHb5C5eWTq+ZG86okZ5+n nMfIXv+Lyjk5DlO55ytA8KfcftUTmPxG16e4FGYDvn7ycZOlyOJw5njrIDPXUvNY eWsZHmJ9UDEznOrSe9S9+1mrpyl4rrDQNeI0vuBhF86dN7BT05u1O5a/BMWqfjhF hSCOPtT8T1nrW3Ocs2bmogqFnS9UkwYSS5q6PPPgj1keH5UMqtU2UZ/GMkWpp48D CMrGSDXosnwyrcbz/k5ZVgHolbrFm4ozbXT1j5ktHldsM4pvRUng68DlGP34hcHT Axtr -----END CERTIFICATE-----Generated at Wed May 13 00:02:27 2026 by rpki-client