$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d2bce7b-37e2-4787-95fb-0e0d01dbc543.roa File: 7d2bce7b-37e2-4787-95fb-0e0d01dbc543.roa (raw, json) Hash identifier: bSJocOJwgRP/iKCleK8QARvgsoYRrHgphyFCEjgGd4U= Subject key identifier: A0:CE:4D:4F:5C:2E:4C:39:52:15:30:F0:D2:4A:4A:68:94:F6:26:DC Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 78A557F5C871A865DD43BAF09D208C8E14FEB8E4 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d2bce7b-37e2-4787-95fb-0e0d01dbc543.roa Signing time: Mon 11 May 2026 00:30:11 +0000 ROA not before: Mon 11 May 2026 00:30:11 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:80a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:a5:57:f5:c8:71:a8:65:dd:43:ba:f0:9d:20:8c:8e:14:fe:b8:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:30:11 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=dd5a643c6549f0944c2177b5185ee328ad96f9a4e4802ad3f7a222f9840c1bfe, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:11:d5:e6:3f:9f:ab:7a:f6:78:8d:c9:ec:42: 13:53:25:b8:a0:cc:1d:b1:dc:7e:8e:63:da:1f:96: 2b:eb:08:22:27:70:23:b9:ab:10:98:87:50:b7:0f: c9:66:ac:e9:a4:4b:f3:83:e2:ff:55:1d:ac:40:6f: f9:c1:8c:83:53:95:85:89:11:f9:06:70:a1:12:d8: f1:de:7f:6c:74:1a:ad:eb:9c:bd:e7:a5:99:c7:6e: af:0c:b9:8c:60:90:fa:33:c9:62:53:30:7e:7b:1f: 55:3a:04:d4:86:02:ab:46:aa:aa:53:49:91:48:16: 12:d7:d3:38:19:56:53:7b:22:f9:d1:17:a1:9e:d4: a0:17:97:3f:2d:ba:5c:5f:eb:aa:ed:be:ab:f8:91: 96:57:97:60:f6:e4:26:de:9b:76:bf:91:b7:c6:1a: 2a:a8:f8:af:15:fb:51:15:ee:20:32:4e:0e:88:5e: 83:07:b0:54:4b:19:38:a9:9a:7d:df:5c:7c:48:4c: f4:67:6e:fc:71:ff:2d:6a:80:27:0b:da:d2:a5:fc: bc:3f:5c:98:2a:22:6c:63:2a:1b:52:f7:a3:d7:7a: 90:1a:2d:90:05:91:b8:a0:00:27:d5:dd:06:57:b7: 31:9d:0c:92:4a:54:10:b1:11:59:94:09:21:75:51: 3d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:CE:4D:4F:5C:2E:4C:39:52:15:30:F0:D2:4A:4A:68:94:F6:26:DC X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d2bce7b-37e2-4787-95fb-0e0d01dbc543.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:80a0::/48 Signature Algorithm: sha256WithRSAEncryption 49:f1:63:a1:5a:fb:82:de:26:28:91:f3:80:62:d8:b5:ca:96: ca:3a:00:13:e6:95:c6:60:e1:3e:bf:b3:42:fa:8b:ab:31:4d: 60:34:02:12:97:29:f7:bc:00:1d:fa:96:c9:c4:f6:60:23:f8: 32:c7:67:d6:8f:d6:b1:00:02:c9:d4:f6:6f:18:98:92:df:53: ed:33:ee:ef:10:f7:77:d7:53:e7:c1:49:13:cc:66:c6:9b:f7: c7:46:dd:c7:44:f6:18:e3:03:5b:f6:e5:bc:32:0b:ff:7b:b0: 5c:1f:77:55:e1:43:33:04:c3:b2:85:c8:6b:2c:0d:fc:49:8d: 02:b9:15:37:ff:09:c6:1f:11:8b:73:39:8f:72:95:bf:cb:bf: d7:a2:68:53:e3:7d:e8:ef:ea:7f:c8:96:fd:84:de:95:b7:be: 78:95:95:64:4c:27:fd:3f:79:db:a1:af:39:af:52:86:37:4f: f4:15:11:6d:76:42:ce:5f:27:6d:89:64:69:c3:f3:52:33:16: 4a:e4:48:e2:8d:ef:53:af:cc:9c:dd:67:87:e7:fd:a5:eb:3f: 32:0b:9e:51:d8:26:e8:3c:c0:80:d6:d8:4c:6d:e0:2e:55:2b: 38:48:33:23:b2:05:64:f0:5f:69:3b:29:20:b4:aa:c0:85:42: b7:47:3e:ac -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUeKVX9chxqGXdQ7rwnSCMjhT+uOQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMzAxMVoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAZGQ1YTY0M2M2NTQ5ZjA5NDRjMjE3 N2I1MTg1ZWUzMjhhZDk2ZjlhNGU0ODAyYWQzZjdhMjIyZjk4NDBjMWJmZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhHV5j+fq3r2eI3J7EITUyW4oMwd sdx+jmPaH5Yr6wgiJ3AjuasQmIdQtw/JZqzppEvzg+L/VR2sQG/5wYyDU5WFiRH5 BnChEtjx3n9sdBqt65y956WZx26vDLmMYJD6M8liUzB+ex9VOgTUhgKrRqqqU0mR SBYS19M4GVZTeyL50RehntSgF5c/LbpcX+uq7b6r+JGWV5dg9uQm3pt2v5G3xhoq qPivFftRFe4gMk4OiF6DB7BUSxk4qZp931x8SEz0Z278cf8taoAnC9rSpfy8P1yY KiJsYyobUvej13qQGi2QBZG4oAAn1d0GV7cxnQySSlQQsRFZlAkhdVE9fQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKDOTU9cLkw5UhUw8NJKSmiU9ibcMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdkMmJjZTdiLTM3ZTItNDc4Ny05NWZiLTBlMGQwMWRiYzU0My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/4CgMA0GCSqGSIb3DQEBCwUAA4IBAQBJ8WOhWvuC3iYokfOA Yti1ypbKOgAT5pXGYOE+v7NC+ourMU1gNAISlyn3vAAd+pbJxPZgI/gyx2fWj9ax AALJ1PZvGJiS31PtM+7vEPd311PnwUkTzGbGm/fHRt3HRPYY4wNb9uW8Mgv/e7Bc H3dV4UMzBMOyhchrLA38SY0CuRU3/wnGHxGLczmPcpW/y7/XomhT433o7+p/yJb9 hN6Vt754lZVkTCf9P3nboa85r1KGN0/0FRFtdkLOXydtiWRpw/NSMxZK5Ejije9T r8yc3WeH5/2l6z8yC55R2CboPMCA1thMbeAuVSs4SDMjsgVk8F9pOykgtKrAhUK3 Rz6s -----END CERTIFICATE-----Generated at Wed May 13 01:25:37 2026 by rpki-client