$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/84ce14d5-7bf8-4610-8dae-0f2ea4ce82be.roa File: 84ce14d5-7bf8-4610-8dae-0f2ea4ce82be.roa (raw, json) Hash identifier: 3ScntfcrlanQ2urHpYsezGlQLXqX8x7W9F37H6iH8tM= Subject key identifier: A3:1D:6B:CE:AD:CC:75:97:DE:B6:E7:DA:3F:43:5D:33:0E:C9:04:E4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 61F96F64414DCB5F20CB6EDE72F7443D6CB402C3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/84ce14d5-7bf8-4610-8dae-0f2ea4ce82be.roa Signing time: Mon 11 May 2026 00:21:33 +0000 ROA not before: Mon 11 May 2026 00:21:33 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:f9:6f:64:41:4d:cb:5f:20:cb:6e:de:72:f7:44:3d:6c:b4:02:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:21:33 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=ade7b4a7719946b4f3b31dcfc5ca2f0a76bca37a41bd421fef1427d30b3de9a3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:19:cb:13:2a:1e:f8:36:45:40:50:3e:0b:26: 48:b5:22:6c:b1:6e:67:71:ef:d4:b3:44:0d:2c:7c: 5c:a3:75:9c:a3:53:18:a8:41:7c:d1:cc:32:7a:0d: 1d:4f:10:24:0f:61:1a:71:c3:1f:03:a9:61:d2:24: 22:f1:b1:43:25:d1:ec:25:24:ff:8a:e9:80:fd:4f: 36:5b:6e:2c:a6:2d:29:aa:62:e9:b2:ea:0c:c2:9f: 81:8c:bb:ef:f2:48:4b:90:b0:1f:dc:bc:a7:80:c9: c5:f2:4b:a8:7f:f8:ab:a9:0e:a0:da:73:d7:dc:ed: 57:c8:da:26:fc:bd:8c:4d:95:81:0e:7b:68:d9:1d: 4c:de:f5:38:d6:e7:c9:e8:63:50:20:42:be:c8:de: b4:6e:9a:9e:2a:e0:08:a4:d2:ff:c5:3f:f4:c0:16: 76:8c:71:da:f6:59:1a:41:a2:13:3f:e0:ff:4f:1a: 48:2d:17:6f:42:d7:64:cc:9c:ed:c9:65:c9:d6:7a: ab:83:79:70:fc:45:0e:2c:5f:b1:ad:75:7e:d6:bb: c1:71:d7:9c:89:8c:4d:9f:a0:e9:c5:29:6f:81:33: 80:f0:fc:3d:37:f4:d0:3c:bd:54:5b:74:36:4d:0f: df:05:91:b8:9e:13:bb:35:90:19:0b:42:d5:d7:37: b0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:1D:6B:CE:AD:CC:75:97:DE:B6:E7:DA:3F:43:5D:33:0E:C9:04:E4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/84ce14d5-7bf8-4610-8dae-0f2ea4ce82be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:80c0::/48 Signature Algorithm: sha256WithRSAEncryption c2:0a:c4:94:24:2b:5c:0d:25:4c:5d:a8:61:65:ed:6d:df:dc: ef:cc:ac:24:5c:c9:98:11:4c:9c:4e:ba:32:33:b5:b6:56:9c: 09:6f:fa:05:18:d4:02:a5:81:e6:53:af:63:fc:a4:2a:01:0d: fb:49:4d:fb:15:b6:74:0c:c9:d7:c6:f8:fc:75:20:b3:24:f1: fc:50:35:4b:23:1e:93:d0:49:32:c6:33:29:16:19:ea:87:33: f5:a6:e3:13:9c:be:49:44:24:19:47:a2:ac:0d:c2:51:b4:bd: 62:df:3f:a4:f9:54:9a:c1:bd:1c:97:8c:34:8d:38:d6:a0:f8: 6a:fb:00:06:3b:a3:1f:d4:2e:4e:fe:c1:6c:f5:49:31:fc:74: f6:90:9e:d1:fb:30:28:8c:1a:a7:95:bb:44:09:07:b5:c6:26: 1f:f4:79:39:50:ce:70:99:15:ec:cf:db:3d:5e:24:be:e0:57: 72:c3:e4:b2:53:2c:a0:ee:78:00:43:7b:b3:d0:cf:ed:a1:11: 8f:7a:7e:0f:29:33:a7:f0:6a:8e:b1:a5:16:b0:38:3c:ff:52: b1:4c:fe:1a:5a:09:9f:b9:d9:8c:a9:ed:51:f6:a7:5b:c5:89: b7:5e:15:ad:6e:44:0c:82:8c:83:35:1b:a2:67:09:be:26:5c: 4c:20:c3:17 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYflvZEFNy18gy27ecvdEPWy0AsMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMjEzM1oX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAYWRlN2I0YTc3MTk5NDZiNGYzYjMx ZGNmYzVjYTJmMGE3NmJjYTM3YTQxYmQ0MjFmZWYxNDI3ZDMwYjNkZTlhMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlBnLEyoe+DZFQFA+CyZItSJssW5n ce/Us0QNLHxco3Wco1MYqEF80cwyeg0dTxAkD2EaccMfA6lh0iQi8bFDJdHsJST/ iumA/U82W24spi0pqmLpsuoMwp+BjLvv8khLkLAf3LyngMnF8kuof/irqQ6g2nPX 3O1XyNom/L2MTZWBDnto2R1M3vU41ufJ6GNQIEK+yN60bpqeKuAIpNL/xT/0wBZ2 jHHa9lkaQaITP+D/TxpILRdvQtdkzJztyWXJ1nqrg3lw/EUOLF+xrXV+1rvBcdec iYxNn6DpxSlvgTOA8Pw9N/TQPL1UW3Q2TQ/fBZG4nhO7NZAZC0LV1zewtQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKMda86tzHWX3rbn2j9DXTMOyQTkMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzg0Y2UxNGQ1LTdiZjgtNDYxMC04ZGFlLTBmMmVhNGNlODJiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8oDAMA0GCSqGSIb3DQEBCwUAA4IBAQDCCsSUJCtcDSVMXahh Ze1t39zvzKwkXMmYEUycTroyM7W2VpwJb/oFGNQCpYHmU69j/KQqAQ37SU37FbZ0 DMnXxvj8dSCzJPH8UDVLIx6T0EkyxjMpFhnqhzP1puMTnL5JRCQZR6KsDcJRtL1i 3z+k+VSawb0cl4w0jTjWoPhq+wAGO6Mf1C5O/sFs9Ukx/HT2kJ7R+zAojBqnlbtE CQe1xiYf9Hk5UM5wmRXsz9s9XiS+4Fdyw+SyUyyg7ngAQ3uz0M/toRGPen4PKTOn 8GqOsaUWsDg8/1KxTP4aWgmfudmMqe1R9qdbxYm3XhWtbkQMgoyDNRuiZwm+JlxM IMMX -----END CERTIFICATE-----Generated at Tue May 12 23:33:10 2026 by rpki-client