$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/77b66450-4698-44c5-9f99-8e8f76945e37.roa File: 77b66450-4698-44c5-9f99-8e8f76945e37.roa (raw, json) Hash identifier: RsMEPdnvBiqLVk+62zdN0zSI+AuGdfaYIAMqToRaUbo= Subject key identifier: E4:E1:4B:21:1C:66:76:9E:3A:6A:2D:A5:57:A6:AC:FD:45:B7:C0:48 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4214E75D32685E44E732C3A36815B2617CDC7EEB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/77b66450-4698-44c5-9f99-8e8f76945e37.roa Signing time: Tue 12 May 2026 00:11:07 +0000 ROA not before: Tue 12 May 2026 00:11:07 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:14:e7:5d:32:68:5e:44:e7:32:c3:a3:68:15:b2:61:7c:dc:7e:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 12 00:11:07 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=9c870f575f8b4f4ec97858320ef5dcdb9bd942afe8d7f92dba952314b7ad6182, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d4:3f:5a:97:29:ca:d0:63:10:e7:39:5c:05: 52:75:18:eb:9a:4b:d1:a3:ba:73:fb:cd:fe:c7:f7: d0:d6:f9:f7:6f:ef:fc:b1:19:99:76:ce:95:b3:53: 8e:ff:75:1a:c1:4a:d3:bc:06:5f:ea:21:ee:ec:70: ae:ce:20:01:d1:82:85:47:8c:d1:07:f2:7b:5d:81: 9a:74:f2:f3:21:1c:5d:f1:88:27:85:90:be:1e:7a: 09:bb:37:1a:a1:50:12:bb:2f:a7:4b:9d:dd:4b:10: aa:66:29:6c:1e:ca:91:f4:0a:8b:77:bb:bc:fa:68: 0e:d5:79:a4:3d:87:4a:18:06:ce:b8:37:95:2d:05: ed:ad:8c:da:f8:e0:54:8a:86:3c:6f:a8:1b:45:c7: 90:57:8b:98:fd:ba:24:a8:06:01:ab:5a:2f:73:04: fc:fe:9d:fc:46:48:a1:70:2a:49:b5:25:6d:68:71: 09:79:36:b8:d4:e4:c3:e7:45:aa:ec:42:eb:b5:56: 6a:81:4c:a0:24:73:f1:e3:74:1b:a1:f0:18:e5:e3: 68:2d:af:62:d9:63:88:67:59:a5:8b:f6:ae:e0:bf: f8:fa:9d:f6:a8:f9:33:aa:1d:a5:6b:b8:8f:5d:6d: b3:67:55:aa:c3:36:6f:02:56:c9:27:31:b0:50:a3: 47:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E1:4B:21:1C:66:76:9E:3A:6A:2D:A5:57:A6:AC:FD:45:B7:C0:48 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/77b66450-4698-44c5-9f99-8e8f76945e37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:1000::/40 Signature Algorithm: sha256WithRSAEncryption 6f:f7:d1:f8:22:23:cc:c7:c9:be:c2:6a:61:c4:a5:40:d8:3e: b9:0e:c0:13:29:98:58:f2:0f:31:c9:9b:b3:8a:22:c6:5b:1a: db:26:04:ad:c1:36:95:8b:cd:02:fc:8d:d9:01:92:cc:b0:0e: 3c:c0:72:9c:11:b8:5c:72:b8:ad:7d:2a:d1:88:f4:92:43:f5: 05:c0:be:b8:97:98:e8:7d:70:47:56:60:44:6b:9d:0e:77:39: 5c:b6:c6:67:a2:5a:9d:b0:e8:25:98:2b:6d:c3:d6:ed:cf:7a: ea:9d:b4:ce:ba:7b:d8:31:6f:0b:33:65:c6:6c:45:67:de:d9: 5f:b4:77:11:67:e4:bf:f9:2b:23:af:3b:97:9a:bc:6b:a6:82: 98:0a:75:a6:28:6e:eb:38:93:42:6f:f8:3d:56:d8:5e:e3:1a: dc:73:85:ab:b1:a5:4f:56:db:e9:7f:60:2f:57:64:c5:41:f2: 16:6d:e6:6e:0b:83:ac:6a:78:55:9e:f7:7d:a3:83:e2:84:e0: d0:7e:c3:10:5c:cb:30:ed:52:c2:4a:f5:92:7f:69:92:d5:4a: 43:6e:b1:f9:2c:55:91:aa:b2:37:70:32:c6:83:a0:db:ec:85: 33:d2:e3:d3:55:9d:b4:7d:cc:dc:71:96:31:6b:c0:0e:ef:4d: 01:4a:e6:a6 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUQhTnXTJoXkTnMsOjaBWyYXzcfuswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMjAwMTEwN1oX DTI2MDgxMDIzNTk1OVowejFJMEcGA1UEBRNAOWM4NzBmNTc1ZjhiNGY0ZWM5Nzg1 ODMyMGVmNWRjZGI5YmQ5NDJhZmU4ZDdmOTJkYmE5NTIzMTRiN2FkNjE4MjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltQ/WpcpytBjEOc5XAVSdRjrmkvR o7pz+83+x/fQ1vn3b+/8sRmZds6Vs1OO/3UawUrTvAZf6iHu7HCuziAB0YKFR4zR B/J7XYGadPLzIRxd8YgnhZC+HnoJuzcaoVASuy+nS53dSxCqZilsHsqR9AqLd7u8 +mgO1XmkPYdKGAbOuDeVLQXtrYza+OBUioY8b6gbRceQV4uY/bokqAYBq1ovcwT8 /p38RkihcCpJtSVtaHEJeTa41OTD50Wq7ELrtVZqgUygJHPx43QbofAY5eNoLa9i 2WOIZ1mli/au4L/4+p32qPkzqh2la7iPXW2zZ1WqwzZvAlbJJzGwUKNHfQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOThSyEcZnaeOmotpVemrP1Ft8BIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc3YjY2NDUwLTQ2OTgtNDRjNS05Zjk5LThlOGY3Njk0NWUzNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+xAwDQYJKoZIhvcNAQELBQADggEBAG/30fgiI8zHyb7CamHE pUDYPrkOwBMpmFjyDzHJm7OKIsZbGtsmBK3BNpWLzQL8jdkBksywDjzAcpwRuFxy uK19KtGI9JJD9QXAvriXmOh9cEdWYERrnQ53OVy2xmeiWp2w6CWYK23D1u3Peuqd tM66e9gxbwszZcZsRWfe2V+0dxFn5L/5KyOvO5eavGumgpgKdaYobus4k0Jv+D1W 2F7jGtxzhauxpU9W2+l/YC9XZMVB8hZt5m4Lg6xqeFWe932jg+KE4NB+wxBcyzDt UsJK9ZJ/aZLVSkNusfksVZGqsjdwMsaDoNvshTPS49NVnbR9zNxxljFrwA7vTQFK 5qY= -----END CERTIFICATE-----Generated at Wed May 13 00:03:30 2026 by rpki-client