$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c88c264-a40d-4c0b-9138-31ff0c2ca926.roa File: 6c88c264-a40d-4c0b-9138-31ff0c2ca926.roa (raw, json) Hash identifier: 77p0yfEeFsP90oPQr1hn8AfFL9OgQXvnwPf3bZa0k/Y= Subject key identifier: BA:17:F1:4F:71:F2:07:AC:A6:F6:37:F3:84:7D:9C:51:92:5E:E0:D4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 708BB9D4ED7A06D870AA37D2A399FA833E8FF862 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c88c264-a40d-4c0b-9138-31ff0c2ca926.roa Signing time: Tue 12 May 2026 00:00:14 +0000 ROA not before: Tue 12 May 2026 00:00:14 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 116.206.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:8b:b9:d4:ed:7a:06:d8:70:aa:37:d2:a3:99:fa:83:3e:8f:f8:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 12 00:00:14 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=1e7b0b7a7bc9b98f62ac59f03584f596d845805da6d9c3d841b8a948cf6864df, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:3a:5e:f9:b9:8c:c3:a3:55:35:71:6f:b7:fc: c3:b7:5a:c5:bc:ca:f2:a1:1b:0e:3d:d6:47:05:d3: ec:dc:d2:6f:df:12:0b:d9:44:f7:2c:a6:2c:f7:f2: f0:dc:5b:f6:16:6f:99:55:5b:86:39:8d:87:b8:ff: 02:50:80:67:a1:d6:11:86:60:cc:57:ea:ed:b7:e1: 76:30:57:8f:86:25:c5:22:07:53:53:52:43:ca:ab: 36:1c:c4:c5:52:ad:e7:ae:6c:5a:ef:93:a5:f7:6a: cf:73:6b:56:ae:be:eb:ff:6f:c2:0c:39:d1:83:82: c1:f3:8b:2d:76:d5:06:60:6d:24:c4:cf:92:4a:30: cc:b1:65:92:65:d4:28:cc:4f:67:96:c5:72:39:06: d1:ad:69:c0:e4:89:7f:23:77:d0:c2:70:4d:2d:79: 15:97:e1:0f:a7:0f:24:fb:af:58:22:7f:33:d5:8f: 33:35:94:db:2a:78:9d:a1:54:9b:0a:4f:5c:e2:9f: 01:48:94:0e:c1:24:2f:78:40:44:66:a9:66:1e:de: f8:2c:b2:0d:ed:2a:f1:60:12:81:ff:af:f2:da:ca: cd:6d:27:60:e1:0e:76:01:6c:7e:18:0d:0a:c6:f6: ca:cd:0c:1a:6e:0a:18:45:f9:78:e8:fb:d2:7e:ab: 5b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:17:F1:4F:71:F2:07:AC:A6:F6:37:F3:84:7D:9C:51:92:5E:E0:D4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6c88c264-a40d-4c0b-9138-31ff0c2ca926.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.206.72.0/22 Signature Algorithm: sha256WithRSAEncryption 68:60:db:04:80:a5:41:2c:ae:2f:bd:a3:18:e2:92:dd:c9:aa: 06:6d:95:db:16:7a:e0:f2:3c:28:11:f3:d4:40:05:75:6b:cd: f7:8e:a0:ad:8c:03:3c:c8:6b:b3:cc:64:4d:4d:21:04:4d:dd: c1:3b:56:f2:b7:7f:5e:d1:74:01:95:95:46:fa:b7:32:d4:37: d0:fa:7d:12:97:df:7d:f9:ae:b9:1c:08:7f:18:7f:2e:65:af: 3a:34:26:e0:45:42:46:e4:3f:88:1a:12:18:6f:7c:e7:4b:3c: 6b:07:bd:99:7d:f4:85:ae:47:26:9c:d1:d4:8a:1f:e6:c5:24: 17:4a:67:a3:84:ce:b2:a9:34:d1:8d:4b:5d:55:fb:10:c1:63: 20:df:b6:79:04:ce:54:8d:89:b6:55:f1:01:4c:41:fb:df:ee: 34:49:04:b7:bf:93:01:1b:a1:c8:7d:96:d1:66:ec:73:0e:2e: d2:91:c8:24:72:da:5f:c7:bc:32:33:cc:c3:41:ff:62:77:e2: 08:82:72:d7:29:07:d9:cb:6d:33:fb:75:e9:6b:c6:6c:f4:5d: 21:3d:b3:e8:c6:b8:92:cb:ed:bc:ca:39:14:33:aa:e5:3a:7d: 88:46:6a:96:c6:c0:de:98:7c:96:ec:c7:93:94:29:f3:88:e0: be:a9:3a:93 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUcIu51O16BthwqjfSo5n6gz6P+GIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMjAwMDAxNFoX DTI2MDgxMDIzNTk1OVowejFJMEcGA1UEBRNAMWU3YjBiN2E3YmM5Yjk4ZjYyYWM1 OWYwMzU4NGY1OTZkODQ1ODA1ZGE2ZDljM2Q4NDFiOGE5NDhjZjY4NjRkZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlTpe+bmMw6NVNXFvt/zDt1rFvMry oRsOPdZHBdPs3NJv3xIL2UT3LKYs9/Lw3Fv2Fm+ZVVuGOY2HuP8CUIBnodYRhmDM V+rtt+F2MFePhiXFIgdTU1JDyqs2HMTFUq3nrmxa75Ol92rPc2tWrr7r/2/CDDnR g4LB84stdtUGYG0kxM+SSjDMsWWSZdQozE9nlsVyOQbRrWnA5Il/I3fQwnBNLXkV l+EPpw8k+69YIn8z1Y8zNZTbKnidoVSbCk9c4p8BSJQOwSQveEBEZqlmHt74LLIN 7SrxYBKB/6/y2srNbSdg4Q52AWx+GA0KxvbKzQwabgoYRfl46PvSfqtbrQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLoX8U9x8gespvY384R9nFGSXuDUMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZjODhjMjY0LWE0MGQtNGMwYi05MTM4LTMxZmYwYzJjYTkyNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdM5IMA0GCSqGSIb3DQEBCwUAA4IBAQBoYNsEgKVBLK4vvaMY4pLd yaoGbZXbFnrg8jwoEfPUQAV1a833jqCtjAM8yGuzzGRNTSEETd3BO1byt39e0XQB lZVG+rcy1DfQ+n0Sl999+a65HAh/GH8uZa86NCbgRUJG5D+IGhIYb3znSzxrB72Z ffSFrkcmnNHUih/mxSQXSmejhM6yqTTRjUtdVfsQwWMg37Z5BM5UjYm2VfEBTEH7 3+40SQS3v5MBG6HIfZbRZuxzDi7Skcgkctpfx7wyM8zDQf9id+IIgnLXKQfZy20z +3Xpa8Zs9F0hPbPoxriSy+28yjkUM6rlOn2IRmqWxsDemHyW7MeTlCnziOC+qTqT -----END CERTIFICATE-----Generated at Wed May 13 00:39:03 2026 by rpki-client