$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa File: 63206b2b-d620-415f-9dee-e3c63ab27be0.roa (raw, json) Hash identifier: rLAzjQcGvtDM+Ov/972Dk5L29wHXpIXvIS5hebWb53g= Subject key identifier: 3A:56:DA:D1:8B:CB:8D:53:1F:AA:09:D8:87:FC:A1:EB:85:DD:AC:10 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 15B2FD8D9534E7D98EC4970A740E97CE153D5DCC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa Signing time: Fri 08 May 2026 00:01:09 +0000 ROA not before: Fri 08 May 2026 00:01:09 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:b2:fd:8d:95:34:e7:d9:8e:c4:97:0a:74:0e:97:ce:15:3d:5d:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 8 00:01:09 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=3bb01e95e27cb3ed3e3b4457a23393cdab7637c99fcbbdfe2d10adb1efd2ed3d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f4:4b:a4:11:77:a1:67:e1:b1:bd:ec:e9:a9: 47:62:88:cc:c3:66:9e:41:26:e7:27:27:6e:4a:da: fe:ab:f8:46:bf:6d:61:c3:c0:70:a1:c3:87:67:1a: ea:c7:cf:36:38:49:7a:54:f0:ee:37:a3:ff:ca:0c: 06:e4:53:c0:9f:9f:ad:d6:27:59:74:2e:81:6c:09: a9:a3:70:e1:25:16:ec:5e:c8:c6:8a:9d:2b:ab:20: 4d:ef:04:1c:fb:fe:7f:89:3d:03:14:ab:b6:6a:c1: aa:6d:e6:42:84:6d:c3:88:14:16:27:e6:14:79:8a: ce:28:ea:19:63:51:cb:0f:45:5e:ae:4a:65:81:aa: c0:c6:a1:20:59:1a:bd:ff:7b:48:d8:81:ed:6b:05: 28:9d:38:5e:69:2b:5d:5b:28:2c:67:17:20:d3:5b: c5:d2:de:1e:59:f0:68:36:bf:d1:b6:16:45:53:9c: ea:fd:e3:4f:9d:4d:fc:22:2d:1e:6a:a1:69:a4:d9: f6:74:bd:1f:64:2f:37:d7:77:ce:64:43:9d:fe:1d: d9:1b:84:cd:d0:8b:73:9e:8f:0b:fa:52:7c:91:57: ec:53:70:72:46:80:6f:d4:fa:87:38:33:d0:9b:b1: 9e:1d:0b:3b:e9:02:ad:c6:d4:2c:88:53:a6:32:e5: b6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:56:DA:D1:8B:CB:8D:53:1F:AA:09:D8:87:FC:A1:EB:85:DD:AC:10 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:8000::/48 Signature Algorithm: sha256WithRSAEncryption 68:2a:6f:d7:24:d2:74:e3:cf:fb:cd:ab:aa:75:e8:f5:89:d9: c7:98:95:cf:eb:61:5d:5f:12:13:80:0e:f5:0e:98:35:ed:42: 7e:70:44:86:90:9b:e5:3f:c9:31:52:15:4a:39:46:87:42:85: 89:9c:70:60:6d:f0:df:10:6c:df:24:02:1c:95:cc:68:e7:bd: d2:a5:64:bc:32:78:00:fc:2b:35:b8:eb:73:51:29:de:ac:16: 90:bb:c6:51:24:cc:7e:05:e3:e3:1b:97:56:f0:75:91:de:e2: a0:68:49:ae:57:8c:69:46:2f:e1:e7:47:4e:fc:a8:10:16:53: 28:73:44:ea:91:f8:ce:af:c5:17:33:1f:55:06:a2:71:1a:d4: 32:ed:5e:e1:76:05:5b:40:53:58:49:d8:3f:9e:3d:4d:85:8f: 7f:f4:f0:7f:76:35:b4:35:da:00:48:bf:dd:81:ff:d5:1c:4c: 90:53:79:9f:ec:1a:28:ad:07:fb:29:97:cf:ce:74:ab:67:12: a9:ab:f4:0a:43:32:51:fe:e1:60:ce:1f:09:d5:1b:74:c2:ff: 5a:96:47:35:f1:ec:51:d6:8e:d1:94:72:10:7f:cc:94:da:a7: bb:62:7b:75:51:68:59:bd:c8:8f:60:b6:50:f2:8f:be:f4:ca: c4:e6:1c:c1 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUFbL9jZU059mOxJcKdA6XzhU9XcwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwODAwMDEwOVoX DTI2MDgwNjIzNTk1OVowejFJMEcGA1UEBRNAM2JiMDFlOTVlMjdjYjNlZDNlM2I0 NDU3YTIzMzkzY2RhYjc2MzdjOTlmY2JiZGZlMmQxMGFkYjFlZmQyZWQzZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0PRLpBF3oWfhsb3s6alHYojMw2ae QSbnJyduStr+q/hGv21hw8BwocOHZxrqx882OEl6VPDuN6P/ygwG5FPAn5+t1idZ dC6BbAmpo3DhJRbsXsjGip0rqyBN7wQc+/5/iT0DFKu2asGqbeZChG3DiBQWJ+YU eYrOKOoZY1HLD0VerkplgarAxqEgWRq9/3tI2IHtawUonTheaStdWygsZxcg01vF 0t4eWfBoNr/RthZFU5zq/eNPnU38Ii0eaqFppNn2dL0fZC8313fOZEOd/h3ZG4TN 0Itzno8L+lJ8kVfsU3ByRoBv1PqHODPQm7GeHQs76QKtxtQsiFOmMuW2mwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDpW2tGLy41TH6oJ2If8oeuF3awQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYzMjA2YjJiLWQ2MjAtNDE1Zi05ZGVlLWUzYzYzYWIyN2JlMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9oAAMA0GCSqGSIb3DQEBCwUAA4IBAQBoKm/XJNJ048/7zauq dej1idnHmJXP62FdXxITgA71Dpg17UJ+cESGkJvlP8kxUhVKOUaHQoWJnHBgbfDf EGzfJAIclcxo573SpWS8MngA/Cs1uOtzUSnerBaQu8ZRJMx+BePjG5dW8HWR3uKg aEmuV4xpRi/h50dO/KgQFlMoc0TqkfjOr8UXMx9VBqJxGtQy7V7hdgVbQFNYSdg/ nj1NhY9/9PB/djW0NdoASL/dgf/VHEyQU3mf7BoorQf7KZfPznSrZxKpq/QKQzJR /uFgzh8J1Rt0wv9alkc18exR1o7RlHIQf8yU2qe7Ynt1UWhZvciPYLZQ8o++9MrE 5hzB -----END CERTIFICATE-----Generated at Wed May 13 00:18:12 2026 by rpki-client