$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55712bd4-af68-4d81-b0b4-0e9c08700a5d.roa File: 55712bd4-af68-4d81-b0b4-0e9c08700a5d.roa (raw, json) Hash identifier: 3cFfoeCoTi2neUvH/wtUS01/av+3l9J7/GLgagteVlc= Subject key identifier: D6:54:F1:A6:7D:D0:59:5D:6C:9C:37:1C:05:52:06:7F:E3:F1:F1:65 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5902FFE6B8483E98999F721754348D564CB85078 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55712bd4-af68-4d81-b0b4-0e9c08700a5d.roa Signing time: Mon 11 May 2026 00:21:10 +0000 ROA not before: Mon 11 May 2026 00:21:10 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:4880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:02:ff:e6:b8:48:3e:98:99:9f:72:17:54:34:8d:56:4c:b8:50:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:21:10 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=3cf52a0965a781e307cedac2cf805b8cb7ac97e6ac765bfa000e574ce743fdde, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7d:5b:c0:82:73:55:7d:99:75:0f:54:97:ca: 7e:13:5b:ce:db:95:c4:36:64:e7:e7:12:c0:68:fb: e6:d3:22:a7:7d:ff:3f:f8:05:1c:64:e7:5d:47:e9: b7:dc:1a:c6:4c:f2:a1:98:52:3b:3a:d2:af:14:e3: 2f:31:9b:9f:14:43:87:c9:f7:6c:41:3c:7f:cf:91: c0:c3:ea:a8:f2:d1:ef:e8:8c:ef:06:78:97:70:83: 50:6b:46:60:a7:0f:06:47:a7:90:2b:d4:70:e2:d7: 35:e4:85:2b:ca:54:3b:b8:2a:61:b7:17:a9:81:ee: 0b:b3:8d:45:b2:41:d5:c4:58:1d:b4:dc:f1:ec:04: 51:3b:1f:8b:3e:b7:c9:e6:30:56:53:30:31:6c:80: 1c:1f:f8:8f:5b:c6:92:ea:e7:11:95:5a:ec:02:fc: 8c:ec:4c:24:52:d6:f8:43:b1:d4:89:53:52:f6:b3: de:c0:3d:92:aa:ae:8f:9a:43:f1:9d:d2:c1:20:e1: 24:b3:8b:15:55:f0:73:16:35:49:5e:64:69:ab:3d: 9e:82:87:59:6b:f0:8d:51:96:ca:32:f7:1e:8a:1c: 92:d7:eb:a5:86:2a:f8:f0:3f:47:24:25:d0:6b:68: 1e:3c:e5:f8:5b:f0:65:3d:4b:92:11:6e:d6:17:8a: bd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:54:F1:A6:7D:D0:59:5D:6C:9C:37:1C:05:52:06:7F:E3:F1:F1:65 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55712bd4-af68-4d81-b0b4-0e9c08700a5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:4880::/48 Signature Algorithm: sha256WithRSAEncryption ab:0c:d5:e4:a9:45:80:a5:e5:c4:ad:eb:d5:e7:ef:c5:e0:4f: c5:be:cd:dd:eb:de:7e:c1:9b:0c:d4:b6:d5:0e:db:4f:0e:59: 05:0f:93:07:b8:b6:92:ff:33:b0:52:ba:38:5e:f1:ba:6a:27: 4d:04:1e:40:19:f3:46:4e:59:64:2e:8f:c6:59:2d:18:59:53: 3c:7b:8a:85:d5:e9:4c:78:66:b8:b8:97:35:1b:89:41:5c:17: ee:ea:f7:69:a0:27:f5:3e:2f:27:7e:c1:98:56:60:3d:27:e6: fa:b7:7a:0b:f6:3b:43:a6:58:45:a3:27:c0:3d:7f:25:07:a3: a9:a2:bb:7b:3e:4e:ea:b5:52:37:83:65:9c:4e:f9:2c:68:79: f5:dd:54:bd:13:df:c7:d6:07:7b:6e:18:1f:17:71:63:c1:8c: db:0c:26:c3:aa:b1:6e:80:98:11:35:37:02:ea:7b:34:16:82: c8:fb:09:58:1b:33:24:f0:6b:62:86:87:3b:97:1f:19:9b:be: 32:5e:f3:cf:80:5f:9d:5e:a7:f5:64:c6:e3:1e:4f:13:b8:d3: 9a:5d:4f:45:ba:77:09:a0:b3:04:90:d0:19:88:70:bb:34:00: 87:f4:7c:bf:c3:aa:ac:3c:04:99:7c:5e:d5:e7:c9:52:62:2c: e6:15:a6:b5 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUWQL/5rhIPpiZn3IXVDSNVky4UHgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMjExMFoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAM2NmNTJhMDk2NWE3ODFlMzA3Y2Vk YWMyY2Y4MDViOGNiN2FjOTdlNmFjNzY1YmZhMDAwZTU3NGNlNzQzZmRkZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArH1bwIJzVX2ZdQ9Ul8p+E1vO25XE NmTn5xLAaPvm0yKnff8/+AUcZOddR+m33BrGTPKhmFI7OtKvFOMvMZufFEOHyfds QTx/z5HAw+qo8tHv6IzvBniXcINQa0Zgpw8GR6eQK9Rw4tc15IUrylQ7uCphtxep ge4Ls41FskHVxFgdtNzx7ARROx+LPrfJ5jBWUzAxbIAcH/iPW8aS6ucRlVrsAvyM 7EwkUtb4Q7HUiVNS9rPewD2Sqq6PmkPxndLBIOEks4sVVfBzFjVJXmRpqz2egodZ a/CNUZbKMvceihyS1+ulhir48D9HJCXQa2gePOX4W/BlPUuSEW7WF4q9EQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNZU8aZ90FldbJw3HAVSBn/j8fFlMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU1NzEyYmQ0LWFmNjgtNGQ4MS1iMGI0LTBlOWMwODcwMGE1ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYUiAMA0GCSqGSIb3DQEBCwUAA4IBAQCrDNXkqUWApeXErevV 5+/F4E/Fvs3d695+wZsM1LbVDttPDlkFD5MHuLaS/zOwUro4XvG6aidNBB5AGfNG TllkLo/GWS0YWVM8e4qF1elMeGa4uJc1G4lBXBfu6vdpoCf1Pi8nfsGYVmA9J+b6 t3oL9jtDplhFoyfAPX8lB6Oport7Pk7qtVI3g2WcTvksaHn13VS9E9/H1gd7bhgf F3FjwYzbDCbDqrFugJgRNTcC6ns0FoLI+wlYGzMk8Gtihoc7lx8Zm74yXvPPgF+d Xqf1ZMbjHk8TuNOaXU9FuncJoLMEkNAZiHC7NACH9Hy/w6qsPASZfF7V58lSYizm Faa1 -----END CERTIFICATE-----Generated at Tue May 12 23:43:00 2026 by rpki-client