$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5b15b8cc-026d-4909-976b-a48a26fc3ee0.roa File: 5b15b8cc-026d-4909-976b-a48a26fc3ee0.roa (raw, json) Hash identifier: fNLj9jQ6HXKouTAulCCt2M07coSkcnbkKpBczWHmXcw= Subject key identifier: FE:7F:62:1B:6A:9C:2C:63:4B:82:C9:55:1D:36:EB:35:50:BD:84:BE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 660B520CD1E5BF3C927A618ACEBB2A4C0E7F1D07 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5b15b8cc-026d-4909-976b-a48a26fc3ee0.roa Signing time: Mon 11 May 2026 00:11:04 +0000 ROA not before: Mon 11 May 2026 00:11:04 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:8800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:0b:52:0c:d1:e5:bf:3c:92:7a:61:8a:ce:bb:2a:4c:0e:7f:1d:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:11:04 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=5fa5ce9b9e75d809c78c9a5ee1d92f2f9c03205db40940d5a54791e2a4106b62, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:99:0f:3e:15:dc:80:21:63:f8:dd:09:e9:0d: c0:7b:13:0c:4e:55:a7:d5:12:26:33:ff:9e:d8:04: 00:6a:b0:b6:d3:ac:c1:6f:cf:82:b0:a0:37:7e:50: c0:f2:bb:49:15:87:d4:36:17:dd:97:f5:1d:e7:a9: 0a:66:33:b2:d6:fa:95:65:48:fe:12:54:d2:28:0d: 98:92:1a:d2:7f:42:3d:1a:dd:38:e4:a1:27:86:01: a0:d5:24:dd:df:6e:ea:de:de:7f:ed:c3:6a:47:1b: 89:d3:91:88:7a:a5:94:61:0e:78:60:9d:9b:9e:57: 36:55:0f:1d:3b:b6:5f:54:e3:4d:89:7b:fa:ce:3b: 30:b6:53:a1:e1:b0:39:82:e6:4b:0d:03:9e:e7:5c: 14:b7:b9:70:67:c6:88:20:3b:76:9b:eb:7a:97:87: 43:4c:30:eb:ec:cb:21:12:f9:62:5a:85:f2:54:97: 74:79:e7:22:f7:9c:fd:25:c2:c9:be:ab:8c:de:e7: 65:17:95:72:b7:e5:93:76:d5:ef:e6:f3:84:5d:64: b0:82:65:4e:b4:16:2d:be:8b:08:da:8c:94:b1:19: db:dc:c6:d5:f7:81:68:5b:c2:3c:65:b8:17:cd:5b: d7:51:77:c5:ba:fe:74:21:31:e1:46:2d:1e:f6:fd: 01:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:7F:62:1B:6A:9C:2C:63:4B:82:C9:55:1D:36:EB:35:50:BD:84:BE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5b15b8cc-026d-4909-976b-a48a26fc3ee0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:8800::/40 Signature Algorithm: sha256WithRSAEncryption 11:43:e6:67:82:33:16:b3:a3:16:15:9b:9c:60:04:a5:70:a9: c1:37:dd:4a:e7:0a:5b:c1:4e:1f:e9:d6:98:56:a2:4f:ae:57: d1:41:70:ef:96:37:2d:13:d9:88:6e:40:f2:0b:5a:b0:37:2a: 3e:71:4f:3d:59:91:ef:68:d9:3c:4d:91:50:4c:6a:b1:b2:79: ca:9d:69:a4:8f:48:b2:ee:20:ee:04:4d:7a:4b:1b:e0:f6:bb: 0c:b8:cd:29:17:0b:34:bd:bd:95:97:05:51:fc:fe:aa:a6:d7: 28:1c:d6:77:89:b0:d6:39:2e:95:ae:15:6c:48:61:83:6e:32: 5a:61:0c:f7:75:3c:3b:ac:0f:11:79:cb:f3:9c:4c:16:2b:c6: c2:2d:ec:92:5e:a1:92:16:03:de:0f:c1:17:57:c9:f6:87:f1: cf:e6:22:02:f8:97:11:31:76:fa:3d:64:0d:83:ab:43:7b:48: 5a:4c:fb:de:d4:7e:d9:13:91:64:8a:e6:ca:8c:83:16:f3:2f: c5:eb:ef:37:4c:b2:73:91:92:17:da:a1:f8:2d:ba:e2:41:69: 43:59:6b:69:3b:1e:7d:1b:f8:4c:f0:b6:4f:a5:29:ce:04:22: 46:01:64:81:f4:3d:72:8b:52:f9:79:b0:24:e2:e7:a7:a2:d0: b2:10:e4:f2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUZgtSDNHlvzySemGKzrsqTA5/HQcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMTEwNFoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNANWZhNWNlOWI5ZTc1ZDgwOWM3OGM5 YTVlZTFkOTJmMmY5YzAzMjA1ZGI0MDk0MGQ1YTU0NzkxZTJhNDEwNmI2MjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZkPPhXcgCFj+N0J6Q3AexMMTlWn 1RImM/+e2AQAarC206zBb8+CsKA3flDA8rtJFYfUNhfdl/Ud56kKZjOy1vqVZUj+ ElTSKA2YkhrSf0I9Gt045KEnhgGg1STd327q3t5/7cNqRxuJ05GIeqWUYQ54YJ2b nlc2VQ8dO7ZfVONNiXv6zjswtlOh4bA5guZLDQOe51wUt7lwZ8aIIDt2m+t6l4dD TDDr7MshEvliWoXyVJd0eeci95z9JcLJvquM3udlF5Vyt+WTdtXv5vOEXWSwgmVO tBYtvosI2oyUsRnb3MbV94FoW8I8ZbgXzVvXUXfFuv50ITHhRi0e9v0B9wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFP5/YhtqnCxjS4LJVR026zVQvYS+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzViMTViOGNjLTAyNmQtNDkwOS05NzZiLWE0OGEyNmZjM2VlMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/4gwDQYJKoZIhvcNAQELBQADggEBABFD5meCMxazoxYVm5xg BKVwqcE33UrnClvBTh/p1phWok+uV9FBcO+WNy0T2YhuQPILWrA3Kj5xTz1Zke9o 2TxNkVBMarGyecqdaaSPSLLuIO4ETXpLG+D2uwy4zSkXCzS9vZWXBVH8/qqm1ygc 1neJsNY5LpWuFWxIYYNuMlphDPd1PDusDxF5y/OcTBYrxsIt7JJeoZIWA94PwRdX yfaH8c/mIgL4lxExdvo9ZA2Dq0N7SFpM+97UftkTkWSK5sqMgxbzL8Xr7zdMsnOR khfaofgtuuJBaUNZa2k7Hn0b+Ezwtk+lKc4EIkYBZIH0PXKLUvl5sCTi56ei0LIQ 5PI= -----END CERTIFICATE-----Generated at Wed May 13 00:15:19 2026 by rpki-client