$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8bcecca4-2643-4406-bbf4-e5e9f63786ec.roa File: 8bcecca4-2643-4406-bbf4-e5e9f63786ec.roa (raw, json) Hash identifier: sgkH0gg0QMsV1PBEakq4VaUor0SUg7SZ3XUqkT+iiCI= Subject key identifier: 26:C0:DA:47:B5:7F:8B:60:F9:BD:CE:F9:F2:3E:8B:89:AB:1F:06:D7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0A7A588E47C3C83468B2A7FCBDCCB4250DE66C84 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8bcecca4-2643-4406-bbf4-e5e9f63786ec.roa Signing time: Sat 09 May 2026 00:01:27 +0000 ROA not before: Sat 09 May 2026 00:01:27 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:b0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:7a:58:8e:47:c3:c8:34:68:b2:a7:fc:bd:cc:b4:25:0d:e6:6c:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 9 00:01:27 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=741cfbf34a6fde8e9c297e73fed8a9fae313c60632ce169751d98cd2621a0b44, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e6:45:ed:ed:e1:a5:48:3d:bf:fe:7f:3a:93: be:ca:f6:df:5e:7a:6f:25:ec:07:27:18:f9:59:76: ac:1e:f5:3d:2e:2b:99:75:34:40:dd:19:47:76:c0: 3e:30:40:76:86:50:3e:0e:9d:9b:12:11:88:01:66: 2a:9a:16:a0:14:c8:24:0d:1d:ac:14:df:95:2a:38: 53:42:c0:75:b6:68:98:30:d6:8b:d7:97:c6:b3:82: 6a:06:ac:18:66:f9:6f:6b:37:c0:fe:f5:54:18:9b: c1:24:44:9d:8d:48:64:86:6d:27:5d:4d:55:c6:c9: 1e:9d:5c:c5:4a:33:7b:fd:c1:81:dd:d2:87:41:a5: c1:6f:4c:0c:62:5c:c9:b8:b0:5f:3e:b1:a2:bd:8d: 12:2a:13:30:22:25:f5:d4:09:70:4a:28:32:d2:15: 5e:e5:b5:b9:b3:d4:db:5e:41:db:b3:02:25:de:e0: 21:ee:fe:df:3a:db:ad:61:02:c8:9c:59:04:be:a7: 83:22:f1:27:df:0f:d5:ad:b3:27:a4:1d:6b:a7:4a: 4c:99:95:1c:f5:f3:02:d3:8a:3d:97:07:11:ca:74: af:82:b5:62:a4:7b:fa:ea:49:bb:cc:9c:8e:92:ca: f6:77:84:f5:87:77:1d:58:2f:49:4d:c9:48:79:54: 8e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:C0:DA:47:B5:7F:8B:60:F9:BD:CE:F9:F2:3E:8B:89:AB:1F:06:D7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8bcecca4-2643-4406-bbf4-e5e9f63786ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:b0c0::/48 Signature Algorithm: sha256WithRSAEncryption 93:bb:b5:a3:8d:39:01:b9:c4:c7:cf:cb:74:b9:a6:9e:e6:ff: 63:12:62:48:69:c4:1f:2d:22:1b:1f:da:d6:fe:14:a7:64:0d: 35:19:fc:13:b8:1b:c2:1d:f8:3f:b6:d1:4b:8f:42:b7:b6:6f: 6f:4d:13:b4:c9:02:5e:08:4d:10:ca:3f:b7:bf:eb:4d:fc:2c: 58:12:55:5f:68:93:79:83:44:4e:cd:44:ae:e9:73:04:9a:df: 3f:0a:e9:8b:b5:95:5b:50:d6:33:87:85:3a:ca:b2:02:12:40: 9a:3e:6c:f3:cc:88:07:5f:24:09:34:e4:3d:e2:20:75:55:f2: 4f:62:71:ae:f8:73:39:43:d2:8d:0b:74:2d:d8:5e:de:37:58: 25:3b:59:50:a7:1b:64:c8:7f:8b:b9:32:d9:78:74:9d:64:86: 34:2d:f0:89:2e:c1:8c:55:4d:28:3e:24:8e:01:fc:e8:3a:38: db:ae:81:95:fd:15:ab:ae:9e:72:ff:42:b7:1a:78:ca:b3:f8: 3e:22:a3:28:2e:e4:a3:72:03:c4:fb:8f:88:9a:5f:56:00:81: 0c:3e:c7:44:b4:ee:64:5a:87:ac:7d:52:b8:e7:6f:cc:c0:36: e6:5b:5d:4e:91:10:3f:93:d0:fc:ed:2d:c9:13:6b:11:07:30: ed:2b:23:33 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUCnpYjkfDyDRosqf8vcy0JQ3mbIQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwOTAwMDEyN1oX DTI2MDgwNzIzNTk1OVowejFJMEcGA1UEBRNANzQxY2ZiZjM0YTZmZGU4ZTljMjk3 ZTczZmVkOGE5ZmFlMzEzYzYwNjMyY2UxNjk3NTFkOThjZDI2MjFhMGI0NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+ZF7e3hpUg9v/5/OpO+yvbfXnpv JewHJxj5WXasHvU9LiuZdTRA3RlHdsA+MEB2hlA+Dp2bEhGIAWYqmhagFMgkDR2s FN+VKjhTQsB1tmiYMNaL15fGs4JqBqwYZvlvazfA/vVUGJvBJESdjUhkhm0nXU1V xskenVzFSjN7/cGB3dKHQaXBb0wMYlzJuLBfPrGivY0SKhMwIiX11AlwSigy0hVe 5bW5s9TbXkHbswIl3uAh7v7fOtutYQLInFkEvqeDIvEn3w/VrbMnpB1rp0pMmZUc 9fMC04o9lwcRynSvgrVipHv66km7zJyOksr2d4T1h3cdWC9JTclIeVSOJQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCbA2ke1f4tg+b3O+fI+i4mrHwbXMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhiY2VjY2E0LTI2NDMtNDQwNi1iYmY0LWU1ZTlmNjM3ODZlYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/7DAMA0GCSqGSIb3DQEBCwUAA4IBAQCTu7WjjTkBucTHz8t0 uaae5v9jEmJIacQfLSIbH9rW/hSnZA01GfwTuBvCHfg/ttFLj0K3tm9vTRO0yQJe CE0Qyj+3v+tN/CxYElVfaJN5g0ROzUSu6XMEmt8/CumLtZVbUNYzh4U6yrICEkCa PmzzzIgHXyQJNOQ94iB1VfJPYnGu+HM5Q9KNC3Qt2F7eN1glO1lQpxtkyH+LuTLZ eHSdZIY0LfCJLsGMVU0oPiSOAfzoOjjbroGV/RWrrp5y/0K3GnjKs/g+IqMoLuSj cgPE+4+Iml9WAIEMPsdEtO5kWoesfVK452/MwDbmW11OkRA/k9D87S3JE2sRBzDt KyMz -----END CERTIFICATE-----Generated at Tue May 12 23:53:52 2026 by rpki-client