$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa File: 70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa (raw, json) Hash identifier: tk54ZoNDzT5oE/Jb1Ch6lM6Wy0vXWn3wj3q0VTbLmn8= Subject key identifier: C0:92:22:6D:18:48:FF:97:08:D4:22:51:C9:28:69:12:13:DF:92:12 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1E7857D1AEE8EE00421A2E68D1F0E9BF2EA33C01 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa Signing time: Sat 09 May 2026 00:00:55 +0000 ROA not before: Sat 09 May 2026 00:00:55 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:78:57:d1:ae:e8:ee:00:42:1a:2e:68:d1:f0:e9:bf:2e:a3:3c:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 9 00:00:55 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=6220d3b3bff600d2238fa692b0dda61f4785209909fd66149a62f7c38fc3ee3b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:28:d8:02:af:b8:e9:ad:94:04:f3:5d:ac:ca: 77:35:a3:82:3b:08:3d:c5:78:1a:cf:cb:aa:34:de: 91:19:64:47:88:d9:ab:36:b6:15:f8:c0:7a:e2:0d: be:21:08:54:57:72:a6:c2:25:64:4b:9c:f4:12:cd: 0b:7b:ce:a1:d1:cc:db:c8:c1:32:6f:76:c0:24:2c: b6:ee:24:f4:cf:c5:ce:f7:16:ae:e2:de:38:bf:1c: 81:92:a4:31:54:f7:dc:83:17:01:12:7e:c3:56:75: c0:21:6e:bb:a9:f3:f7:d0:7d:46:e4:94:96:79:38: d1:c7:7b:78:80:09:b3:35:68:6a:bc:b3:05:93:8b: 87:62:cb:c6:56:b6:84:8b:ca:df:cb:60:01:12:28: 2f:5d:7f:e0:79:28:64:fb:11:e3:b7:d4:c7:c6:c9: b1:76:a2:9d:60:e1:4a:27:e3:59:7c:bd:fe:51:92: ca:00:88:98:14:f7:e4:f8:58:03:af:e7:b0:87:46: a5:9f:7a:91:32:a8:fe:bb:3d:e5:00:07:49:5c:45: 61:87:34:f9:75:b2:f6:06:df:19:61:fb:a0:1e:7e: 41:09:19:7d:58:ff:26:04:e6:07:45:8e:4a:15:42: 36:b5:88:0f:60:ae:8a:17:0a:7f:f3:f2:52:be:69: f9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:92:22:6D:18:48:FF:97:08:D4:22:51:C9:28:69:12:13:DF:92:12 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:a080::/48 Signature Algorithm: sha256WithRSAEncryption 75:e9:ce:38:dc:5f:ca:bf:1c:38:68:5b:52:92:ee:c0:d8:11: f3:0e:94:db:64:47:38:68:a2:1a:a2:74:cd:79:4c:a8:56:ed: c0:44:4b:ee:ee:62:15:93:0d:f7:be:1e:91:df:47:64:b2:3a: 06:34:20:c0:a3:3b:3f:fb:f2:62:85:4c:37:d8:4a:26:86:da: 18:27:f6:da:eb:38:cc:b8:2a:45:75:fd:3d:36:01:56:7d:f7: 5e:b9:37:ef:dc:f0:0b:a7:7b:c0:2e:71:d4:76:6e:ff:1c:a0: 1a:e0:3c:76:5b:10:1e:37:b7:c9:d8:29:55:08:d5:15:f4:a1: 7e:6e:8c:5d:b9:b7:1c:08:eb:d9:f4:06:4d:5a:ce:4b:34:76: c7:7c:41:20:ed:3a:33:95:29:3a:7f:b3:87:18:03:9e:32:51: cd:0f:af:d2:98:68:91:96:f6:34:95:fc:fc:93:90:9b:c5:00: 0f:20:fa:c6:cf:12:bd:62:e2:58:2f:e6:77:f6:7a:c6:00:ad: 1a:48:e4:3a:8d:f5:ac:2d:7d:a1:d1:7a:66:6c:09:71:2b:08: 5e:aa:da:4b:7a:67:35:5b:0d:d1:f0:c3:8c:39:fd:38:44:89: 6a:ce:48:df:6f:75:9f:db:1c:62:58:37:72:b2:1e:5f:01:fe: 8c:2f:7f:5d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUHnhX0a7o7gBCGi5o0fDpvy6jPAEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwOTAwMDA1NVoX DTI2MDgwNzIzNTk1OVowejFJMEcGA1UEBRNANjIyMGQzYjNiZmY2MDBkMjIzOGZh NjkyYjBkZGE2MWY0Nzg1MjA5OTA5ZmQ2NjE0OWE2MmY3YzM4ZmMzZWUzYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSjYAq+46a2UBPNdrMp3NaOCOwg9 xXgaz8uqNN6RGWRHiNmrNrYV+MB64g2+IQhUV3KmwiVkS5z0Es0Le86h0czbyMEy b3bAJCy27iT0z8XO9xau4t44vxyBkqQxVPfcgxcBEn7DVnXAIW67qfP30H1G5JSW eTjRx3t4gAmzNWhqvLMFk4uHYsvGVraEi8rfy2ABEigvXX/geShk+xHjt9THxsmx dqKdYOFKJ+NZfL3+UZLKAIiYFPfk+FgDr+ewh0aln3qRMqj+uz3lAAdJXEVhhzT5 dbL2Bt8ZYfugHn5BCRl9WP8mBOYHRY5KFUI2tYgPYK6KFwp/8/JSvmn5vwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMCSIm0YSP+XCNQiUckoaRIT35ISMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcwNzgxNTk3LTZlZGMtNDliYy1iZDhjLWM5YWRjNjhkMWIyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYaCAMA0GCSqGSIb3DQEBCwUAA4IBAQB16c443F/Kvxw4aFtS ku7A2BHzDpTbZEc4aKIaonTNeUyoVu3AREvu7mIVkw33vh6R30dksjoGNCDAozs/ +/JihUw32EomhtoYJ/ba6zjMuCpFdf09NgFWffdeuTfv3PALp3vALnHUdm7/HKAa 4Dx2WxAeN7fJ2ClVCNUV9KF+boxdubccCOvZ9AZNWs5LNHbHfEEg7TozlSk6f7OH GAOeMlHND6/SmGiRlvY0lfz8k5CbxQAPIPrGzxK9YuJYL+Z39nrGAK0aSOQ6jfWs LX2h0XpmbAlxKwheqtpLemc1Ww3R8MOMOf04RIlqzkjfb3Wf2xxiWDdysh5fAf6M L39d -----END CERTIFICATE-----Generated at Wed May 13 00:29:22 2026 by rpki-client