$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63fa6d0e-6726-46dd-8ccc-34d86aee4374.roa File: 63fa6d0e-6726-46dd-8ccc-34d86aee4374.roa (raw, json) Hash identifier: UifvjHwa+5zlrviTxRnjXX2Wqd5d94uqnDaf1T12iGU= Subject key identifier: E5:BA:61:0A:23:68:9D:44:93:45:DF:60:8E:AD:E2:BF:61:2A:E3:21 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4CBF9DF75F61773819A6DD4141D86DDE1268AA75 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63fa6d0e-6726-46dd-8ccc-34d86aee4374.roa Signing time: Mon 11 May 2026 00:10:07 +0000 ROA not before: Mon 11 May 2026 00:10:07 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:bf:9d:f7:5f:61:77:38:19:a6:dd:41:41:d8:6d:de:12:68:aa:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:10:07 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=b3d926ade8da2bf3c2aa0cf9aab6a8784e9ad77081c4d4831ba68acfc17ad4ca, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:bd:b2:dd:09:4c:2d:5b:ba:70:96:93:62:ae: 4e:cf:0a:e5:73:5d:f3:32:8e:ec:ae:5d:26:f3:82: 23:53:f8:67:3b:74:c2:86:c0:01:a9:a2:64:61:46: 80:ba:e9:e3:0e:f4:4c:6e:df:e2:17:28:f1:1f:3b: cd:93:4e:67:43:f2:28:94:2f:0b:51:dc:98:c1:74: 79:42:b1:f8:4d:94:47:33:1c:b4:57:36:71:a9:b9: 31:5a:51:31:ad:ae:5b:59:62:7e:53:86:e0:55:41: 5f:3c:54:87:cf:4f:83:45:25:21:40:33:ad:c4:26: c6:6e:19:22:2c:b8:45:4f:2c:1f:7e:b9:15:13:66: 10:d3:69:61:af:c6:65:b5:c6:c6:42:c6:d9:3d:12: 14:2e:38:4a:c7:df:9a:2f:ae:1e:0a:00:77:d4:45: 93:85:9a:bf:d5:12:30:f0:e9:76:b7:b7:cd:61:57: 01:2f:a7:67:e4:38:2d:4c:16:eb:02:51:69:9d:af: b3:4f:29:e3:25:6b:1d:d7:96:d7:7e:c2:a2:fb:74: e6:d9:8b:99:9d:f3:49:8c:0f:86:4d:ad:56:2d:02: 79:ba:c7:0d:b3:50:6a:68:80:d6:2e:76:cf:ac:8f: de:f4:96:52:94:68:b3:fc:69:aa:e3:6c:dc:dc:af: 12:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:BA:61:0A:23:68:9D:44:93:45:DF:60:8E:AD:E2:BF:61:2A:E3:21 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63fa6d0e-6726-46dd-8ccc-34d86aee4374.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:e000::/40 Signature Algorithm: sha256WithRSAEncryption 49:dc:5c:fd:16:44:7b:d1:a8:ab:22:21:b2:cf:0b:58:5d:f8: 6f:ea:58:81:30:d2:95:64:17:f6:05:dc:6b:eb:af:7e:e8:82: f7:f0:fc:6f:bd:8d:87:9e:04:9b:0c:31:d5:2c:67:7a:1f:10: c8:22:1f:ed:d6:54:a1:12:4a:17:e7:cc:ef:48:64:64:28:a5: cd:27:4f:c5:2b:ad:e5:3e:28:01:11:9f:b6:91:48:00:4c:2a: e2:47:d0:5c:ef:f4:be:49:d4:e3:08:4c:6d:9f:33:c6:e5:37: 95:1b:90:d6:24:38:c4:85:75:39:6c:b1:9e:c2:66:dc:ce:80: da:43:0b:d9:1f:9f:16:fa:8f:e6:db:ca:80:0d:a5:a4:b2:7e: 64:67:f4:84:f2:a1:8e:54:d9:e7:9b:fc:7a:03:b6:d4:76:6d: e7:43:c8:ee:26:7b:53:a8:84:38:1c:a0:92:e8:93:85:1a:4a: ef:4f:93:b0:a3:ff:4f:e1:85:17:7c:5d:39:6a:d6:0b:19:76: 6a:8b:4a:e3:5e:49:97:f0:53:b7:b4:2a:13:54:91:aa:34:59: 81:58:67:8d:ec:56:03:d2:f6:e6:07:26:35:3f:8c:1b:58:3e: 2f:a6:55:5a:1d:65:f0:4e:1b:a9:f3:2c:d6:a7:9b:5a:1b:69: e2:56:f7:ac -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUTL+d919hdzgZpt1BQdht3hJoqnUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMTAwN1oX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAYjNkOTI2YWRlOGRhMmJmM2MyYWEw Y2Y5YWFiNmE4Nzg0ZTlhZDc3MDgxYzRkNDgzMWJhNjhhY2ZjMTdhZDRjYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgb2y3QlMLVu6cJaTYq5Ozwrlc13z Mo7srl0m84IjU/hnO3TChsABqaJkYUaAuunjDvRMbt/iFyjxHzvNk05nQ/IolC8L UdyYwXR5QrH4TZRHMxy0VzZxqbkxWlExra5bWWJ+U4bgVUFfPFSHz0+DRSUhQDOt xCbGbhkiLLhFTywffrkVE2YQ02lhr8ZltcbGQsbZPRIULjhKx9+aL64eCgB31EWT hZq/1RIw8Ol2t7fNYVcBL6dn5DgtTBbrAlFpna+zTynjJWsd15bXfsKi+3Tm2YuZ nfNJjA+GTa1WLQJ5uscNs1BqaIDWLnbPrI/e9JZSlGiz/Gmq42zc3K8SGwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOW6YQojaJ1Ek0XfYI6t4r9hKuMhMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYzZmE2ZDBlLTY3MjYtNDZkZC04Y2NjLTM0ZDg2YWVlNDM3NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8uAwDQYJKoZIhvcNAQELBQADggEBAEncXP0WRHvRqKsiIbLP C1hd+G/qWIEw0pVkF/YF3Gvrr37ogvfw/G+9jYeeBJsMMdUsZ3ofEMgiH+3WVKES ShfnzO9IZGQopc0nT8UrreU+KAERn7aRSABMKuJH0Fzv9L5J1OMITG2fM8blN5Ub kNYkOMSFdTlssZ7CZtzOgNpDC9kfnxb6j+bbyoANpaSyfmRn9ITyoY5U2eeb/HoD ttR2bedDyO4me1OohDgcoJLok4UaSu9Pk7Cj/0/hhRd8XTlq1gsZdmqLSuNeSZfw U7e0KhNUkao0WYFYZ43sVgPS9uYHJjU/jBtYPi+mVVodZfBOG6nzLNanm1obaeJW 96w= -----END CERTIFICATE-----Generated at Tue May 12 23:30:47 2026 by rpki-client