$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/33792cb7-eb1d-47b9-939a-d14cbbaa92eb.roa File: 33792cb7-eb1d-47b9-939a-d14cbbaa92eb.roa (raw, json) Hash identifier: xe6HgboF07QRWdhLfHFsYu+dS9mQc/GUEnZ5LS9afxo= Subject key identifier: 2C:C4:C5:65:40:E3:63:96:F1:91:7B:6D:BA:13:51:26:79:52:30:43 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7F00BDCFFAE0A9CA4B660C56BA7831B7A59B274C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/33792cb7-eb1d-47b9-939a-d14cbbaa92eb.roa Signing time: Tue 05 May 2026 00:01:18 +0000 ROA not before: Tue 05 May 2026 00:01:18 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:a020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:00:bd:cf:fa:e0:a9:ca:4b:66:0c:56:ba:78:31:b7:a5:9b:27:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 5 00:01:18 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=a2c2c1c138da9b0062afd64c5f14d3f6e3f3357e48d6a0554bd9dd10c4882855, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bb:be:81:b6:76:25:0a:92:87:7d:e4:47:9c: 18:f6:a0:f4:fd:1f:c3:a2:cf:5a:81:c1:52:24:32: 74:07:32:de:4e:60:3b:62:c3:72:c6:6a:32:1a:b2: 5f:7c:b2:53:af:5b:79:29:87:e9:1e:ad:78:f6:b5: e9:c5:c4:33:4c:05:19:50:fe:2c:8c:7d:8d:93:80: 37:52:13:ff:af:8e:0c:60:2d:3b:41:1b:cc:64:d8: 7e:35:fb:ad:d1:49:88:36:07:c5:db:e8:ef:fe:08: 98:0a:ef:a1:ba:9c:ed:f2:07:75:de:7e:b5:47:84: 83:39:86:50:a5:a7:c3:2a:ef:02:71:26:02:01:f2: 47:bd:ab:99:32:c7:3e:f0:9c:c0:c3:46:ea:66:59: 93:4c:e6:1f:b7:29:a2:17:36:8c:f5:40:30:9b:34: 94:fb:a4:7d:e0:c6:d1:83:c5:02:db:2d:ef:71:9e: 47:bf:c8:d0:ad:6a:df:4a:d0:d8:ca:bb:6b:ce:a5: 95:db:b3:13:08:3d:6d:21:a3:c4:52:d5:f1:38:6f: 50:62:97:33:d3:b6:a5:62:7e:c8:4d:80:96:ec:ba: 1c:7b:65:78:13:8f:75:f1:c5:b8:55:9d:7b:9e:14: 1b:8a:b5:0b:20:b4:03:1a:52:e5:c8:34:5b:52:fb: 9b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C4:C5:65:40:E3:63:96:F1:91:7B:6D:BA:13:51:26:79:52:30:43 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/33792cb7-eb1d-47b9-939a-d14cbbaa92eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:a020::/48 Signature Algorithm: sha256WithRSAEncryption 28:e0:4c:9a:b1:2a:74:6d:79:fb:4a:01:9e:92:be:75:5a:41: 35:68:f9:48:c0:34:07:12:30:73:d9:1f:ec:ab:c0:ac:96:21: 34:90:b2:67:76:41:29:5f:b6:af:1e:e1:19:ea:a2:e6:97:91: 5d:77:ae:c4:c9:dd:a9:f4:d2:9f:72:ec:9a:b2:d5:9c:64:93: 25:30:d7:04:9f:10:f4:8a:c3:00:dd:d5:ac:0a:b9:3f:87:b8: 43:5c:3b:68:56:c8:51:b0:d5:36:04:ba:07:18:dd:b9:cd:26: 0b:9a:47:ea:e7:0b:0c:07:9c:87:98:4c:c2:71:a6:6f:eb:2d: cc:7d:4d:1a:d5:97:ba:a4:fe:3a:4e:2b:f0:80:e6:c5:49:76: b7:a0:76:ba:6c:7b:83:80:e9:e4:1a:ed:ff:3a:95:c8:0f:0c: 09:7a:cf:8d:8f:55:83:fa:ca:c5:65:ab:50:7b:9d:87:98:3f: 11:bc:91:65:2e:47:37:0c:8b:54:d5:e0:fe:de:97:b4:66:5f: a2:7e:4e:78:ff:67:8a:0f:fc:cf:2f:fa:f1:e9:d3:9c:2e:33: 94:cf:34:e3:0e:a8:69:8c:1c:50:8f:db:7d:f1:bc:f1:a4:97: 29:db:33:64:ab:d1:a0:5b:e5:55:0b:bc:c7:1b:33:29:87:b9: a4:16:de:ac -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUfwC9z/rgqcpLZgxWungxt6WbJ0wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwNTAwMDExOFoX DTI2MDgwMzIzNTk1OVowejFJMEcGA1UEBRNAYTJjMmMxYzEzOGRhOWIwMDYyYWZk NjRjNWYxNGQzZjZlM2YzMzU3ZTQ4ZDZhMDU1NGJkOWRkMTBjNDg4Mjg1NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7u+gbZ2JQqSh33kR5wY9qD0/R/D os9agcFSJDJ0BzLeTmA7YsNyxmoyGrJffLJTr1t5KYfpHq149rXpxcQzTAUZUP4s jH2Nk4A3UhP/r44MYC07QRvMZNh+Nfut0UmINgfF2+jv/giYCu+hupzt8gd13n61 R4SDOYZQpafDKu8CcSYCAfJHvauZMsc+8JzAw0bqZlmTTOYftymiFzaM9UAwmzSU +6R94MbRg8UC2y3vcZ5Hv8jQrWrfStDYyrtrzqWV27MTCD1tIaPEUtXxOG9QYpcz 07alYn7ITYCW7Loce2V4E4918cW4VZ17nhQbirULILQDGlLlyDRbUvubIQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCzExWVA42OW8ZF7bboTUSZ5UjBDMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzMzNzkyY2I3LWViMWQtNDdiOS05MzlhLWQxNGNiYmFhOTJlYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAKAgMA0GCSqGSIb3DQEBCwUAA4IBAQAo4EyasSp0bXn7SgGe kr51WkE1aPlIwDQHEjBz2R/sq8CsliE0kLJndkEpX7avHuEZ6qLml5Fdd67Eyd2p 9NKfcuyastWcZJMlMNcEnxD0isMA3dWsCrk/h7hDXDtoVshRsNU2BLoHGN25zSYL mkfq5wsMB5yHmEzCcaZv6y3MfU0a1Ze6pP46TivwgObFSXa3oHa6bHuDgOnkGu3/ OpXIDwwJes+Nj1WD+srFZatQe52HmD8RvJFlLkc3DItU1eD+3pe0Zl+ifk54/2eK D/zPL/rx6dOcLjOUzzTjDqhpjBxQj9t98bzxpJcp2zNkq9GgW+VVC7zHGzMph7mk Ft6s -----END CERTIFICATE-----Generated at Tue May 12 23:37:38 2026 by rpki-client