$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75fce456-5901-4b20-bd6e-e79945bb44d1.roa File: 75fce456-5901-4b20-bd6e-e79945bb44d1.roa (raw, json) Hash identifier: l3K2x0iewiM6W/rKCvOeCu66pA1oqt/DyZuNoUhiExU= Subject key identifier: 47:10:27:D5:7F:F7:9F:92:D9:39:35:2E:99:1A:F7:CD:FC:F4:C8:8F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3F7097BE5B9BB4548A903FDBD3588191AF4372A2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75fce456-5901-4b20-bd6e-e79945bb44d1.roa Signing time: Mon 04 May 2026 00:00:05 +0000 ROA not before: Mon 04 May 2026 00:00:05 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:a000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:70:97:be:5b:9b:b4:54:8a:90:3f:db:d3:58:81:91:af:43:72:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 4 00:00:05 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=1b5dc5f9cc7abaf05ae020a54b72af4b8526ebbeb2614add2667d78ff1433a41, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b1:fc:67:03:4c:ce:f7:0b:bd:7f:44:d4:f9: ba:f0:cf:4c:68:ca:4f:69:58:d8:b8:8d:84:36:5f: 31:b9:16:28:c4:0c:66:e1:66:81:81:ff:f3:4e:05: 40:2e:3d:16:ec:d3:a3:1b:b5:d0:39:28:ff:3a:44: b5:75:39:2a:4f:94:a7:7e:1d:f5:d4:8e:87:2c:12: 79:1b:67:e6:13:20:4a:ac:2b:30:97:40:f5:27:7e: 9b:44:ee:31:6e:f0:ea:c3:1c:67:12:64:a0:da:8e: bc:1d:81:61:c6:c4:49:2e:ca:77:9b:a1:99:72:82: d3:bd:14:3b:74:fa:55:32:2a:50:00:34:1b:1c:bc: 02:e6:42:07:1c:45:c5:7d:eb:43:58:c7:c6:e5:e9: bd:ce:36:12:cf:12:00:ca:54:7f:62:4e:27:9b:30: 54:b5:81:aa:c9:dd:b4:b8:c8:4c:72:7c:28:b8:5a: d8:83:c8:ba:64:94:27:51:23:94:6f:a0:0d:a0:5b: c8:98:5a:5a:83:77:a2:68:2a:35:3e:45:fe:ab:f7: 18:37:20:52:36:7d:7c:c1:b6:7b:ba:e1:34:d4:9b: fe:9a:93:b6:1c:95:0a:4d:f0:ae:72:1f:f5:f7:c3: d9:cc:e2:96:79:ad:3b:4b:a2:22:f1:01:2b:9d:7d: 5c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:10:27:D5:7F:F7:9F:92:D9:39:35:2E:99:1A:F7:CD:FC:F4:C8:8F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75fce456-5901-4b20-bd6e-e79945bb44d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:a000::/48 Signature Algorithm: sha256WithRSAEncryption a4:c0:a1:a0:22:e1:a9:18:33:81:b5:8d:e6:e0:c8:bb:f5:79: 23:8e:f9:fb:5a:aa:73:6f:f4:3e:4f:b9:40:9c:30:55:89:ba: a2:a5:25:3d:72:e4:a7:7a:c6:a1:f2:6c:fe:90:99:a9:1d:02: 23:22:e4:ab:0e:41:e5:1f:9d:e4:34:ef:95:84:6f:50:9d:e2: 51:ea:52:ee:52:f2:f0:d8:92:11:86:c6:72:1a:60:8d:6d:13: 7c:de:fd:aa:3e:ba:73:bd:8e:93:95:09:9d:28:8f:48:35:79: 89:45:53:8e:b5:4b:1e:6e:ce:67:9b:d2:94:aa:2e:1d:67:d1: 40:8c:1f:32:dc:9b:18:e6:65:0d:67:9c:59:1f:78:17:e6:75: 8a:05:8b:fe:1e:20:a8:d9:67:7f:68:07:9d:87:17:cb:48:98: 11:67:58:1d:84:b2:af:20:2b:a6:f2:2d:2e:f6:fe:ad:b3:a6: 00:68:d9:bd:28:a3:2e:77:4b:32:90:72:a1:2c:cd:fa:5d:08: 8d:46:a1:88:ba:57:72:f9:f6:f9:62:62:3c:c9:9c:a3:b7:04: 1f:4e:52:9d:50:87:81:8f:aa:16:ff:44:b5:d8:c8:49:72:29: 4f:68:d7:56:ad:b8:62:94:87:8c:6d:83:06:b3:0d:df:ae:dd: 43:c3:b7:21 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUP3CXvlubtFSKkD/b01iBka9DcqIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwNDAwMDAwNVoX DTI2MDgwMjIzNTk1OVowejFJMEcGA1UEBRNAMWI1ZGM1ZjljYzdhYmFmMDVhZTAy MGE1NGI3MmFmNGI4NTI2ZWJiZWIyNjE0YWRkMjY2N2Q3OGZmMTQzM2E0MTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurH8ZwNMzvcLvX9E1Pm68M9MaMpP aVjYuI2ENl8xuRYoxAxm4WaBgf/zTgVALj0W7NOjG7XQOSj/OkS1dTkqT5Snfh31 1I6HLBJ5G2fmEyBKrCswl0D1J36bRO4xbvDqwxxnEmSg2o68HYFhxsRJLsp3m6GZ coLTvRQ7dPpVMipQADQbHLwC5kIHHEXFfetDWMfG5em9zjYSzxIAylR/Yk4nmzBU tYGqyd20uMhMcnwouFrYg8i6ZJQnUSOUb6ANoFvImFpag3eiaCo1PkX+q/cYNyBS Nn18wbZ7uuE01Jv+mpO2HJUKTfCuch/198PZzOKWea07S6Ii8QErnX1ckwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEcQJ9V/95+S2Tk1Lpka98389MiPMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc1ZmNlNDU2LTU5MDEtNGIyMC1iZDZlLWU3OTk0NWJiNDRkMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9qAAMA0GCSqGSIb3DQEBCwUAA4IBAQCkwKGgIuGpGDOBtY3m 4Mi79Xkjjvn7Wqpzb/Q+T7lAnDBVibqipSU9cuSnesah8mz+kJmpHQIjIuSrDkHl H53kNO+VhG9QneJR6lLuUvLw2JIRhsZyGmCNbRN83v2qPrpzvY6TlQmdKI9INXmJ RVOOtUsebs5nm9KUqi4dZ9FAjB8y3JsY5mUNZ5xZH3gX5nWKBYv+HiCo2Wd/aAed hxfLSJgRZ1gdhLKvICum8i0u9v6ts6YAaNm9KKMud0sykHKhLM36XQiNRqGIuldy +fb5YmI8yZyjtwQfTlKdUIeBj6oW/0S12MhJcilPaNdWrbhilIeMbYMGsw3frt1D w7ch -----END CERTIFICATE-----Generated at Wed May 13 00:08:34 2026 by rpki-client