$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8d0314b7-fdd6-4cd4-9bd7-5dc63f6343a8.roa File: 8d0314b7-fdd6-4cd4-9bd7-5dc63f6343a8.roa (raw, json) Hash identifier: 7b/AJdoitB+Ui+QqlMbMpx0e4avJlLZFvBmKLlYVAV0= Subject key identifier: D8:2C:8A:99:1D:5B:4D:BC:6F:9D:EB:82:ED:40:64:A0:91:F4:61:EF Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1EE078B97057F249477F9FFE52C3F310791F396E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8d0314b7-fdd6-4cd4-9bd7-5dc63f6343a8.roa Signing time: Tue 12 May 2026 00:10:10 +0000 ROA not before: Tue 12 May 2026 00:10:10 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:c000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e0:78:b9:70:57:f2:49:47:7f:9f:fe:52:c3:f3:10:79:1f:39:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 12 00:10:10 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=3129fae6ad74010c084ff74999371c25e3093294a229b03205b7b20cc82f35c4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0c:60:c5:62:27:ee:b1:13:20:2e:7b:a7:9b: 19:5d:8f:07:97:96:49:61:22:02:fc:46:eb:1d:8e: 48:ae:35:9d:71:d7:8e:d2:cb:61:4c:b5:fc:ef:e3: a0:4b:bf:af:62:5f:01:cc:f1:b7:e9:18:80:6f:9a: 91:cb:8f:97:74:e3:ce:e6:45:dc:a7:4f:d0:ce:29: 95:67:76:28:9e:da:cc:7d:4b:93:e9:8b:f6:34:c5: 99:57:29:77:12:b0:a5:74:6f:fa:64:f2:22:5b:d1: 58:c9:a9:ef:6a:4d:4e:d0:1b:f1:8e:1d:71:1f:94: 22:b1:c5:4b:65:29:51:7f:f3:98:11:24:dd:14:89: a4:5d:87:83:b7:19:54:dd:d4:23:1c:38:14:60:91: 89:5a:39:fa:51:15:c3:09:ca:d3:7a:82:d2:b2:21: 1c:eb:dc:f7:58:a7:3a:04:21:1b:12:b2:a6:26:4e: 44:5c:75:08:a2:f8:f2:30:15:e1:e8:83:67:23:8b: 85:5e:95:7e:06:b3:79:8a:63:2a:8f:6d:e9:2c:64: 7b:ab:4c:59:7a:43:a0:62:16:d2:16:77:f9:dd:38: 60:33:19:56:b3:c2:b4:bc:a2:d0:41:cb:d3:5f:db: d5:8d:21:90:b8:7b:68:2d:3e:ad:63:6f:c5:fa:69: 79:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:2C:8A:99:1D:5B:4D:BC:6F:9D:EB:82:ED:40:64:A0:91:F4:61:EF X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8d0314b7-fdd6-4cd4-9bd7-5dc63f6343a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:c000::/40 Signature Algorithm: sha256WithRSAEncryption 17:a4:ff:65:29:0c:01:cb:3b:02:47:a7:e3:94:66:98:2a:5a: 80:21:02:93:c3:e8:d8:e1:b1:8a:be:56:f1:05:eb:fc:36:14: 15:86:83:98:70:bf:85:7a:2e:6d:60:27:e1:52:b3:4a:ac:ba: fc:79:a9:5e:f6:99:3a:00:b9:be:ee:80:21:33:66:38:16:17: 29:d3:59:27:5d:dc:e3:3b:46:fe:fb:0a:e3:c1:8d:f7:63:12: ee:fb:9a:88:e9:b0:5a:a1:85:15:bb:35:8a:0f:fa:92:16:32: ca:c7:bc:0f:dd:0d:1b:be:84:e2:2f:42:9a:9a:9a:f1:ee:4e: 86:0c:89:8a:63:d6:bf:b3:df:69:f7:5b:ea:22:3b:d9:cf:f6: 13:00:11:7c:eb:fd:bf:ab:54:ac:82:80:d6:4a:df:b8:4f:e0: b7:fe:cf:17:44:b0:e0:88:d0:79:38:09:3a:15:bf:dd:25:80: f0:92:03:9b:d7:84:5c:68:f0:56:9d:9e:b3:46:26:fa:d3:39: b2:cd:7f:25:6d:85:bc:0d:79:93:da:a0:c9:7d:54:6c:41:88: 2a:ce:b8:dc:fe:e8:d5:8c:7d:fa:76:9a:7d:1d:28:bf:8a:93: 8d:0e:1d:d3:d2:86:b9:f7:be:3f:e8:48:d7:4f:13:7a:ee:e8: a8:99:e7:47 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUHuB4uXBX8klHf5/+UsPzEHkfOW4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMjAwMTAxMFoX DTI2MDgxMDIzNTk1OVowejFJMEcGA1UEBRNAMzEyOWZhZTZhZDc0MDEwYzA4NGZm NzQ5OTkzNzFjMjVlMzA5MzI5NGEyMjliMDMyMDViN2IyMGNjODJmMzVjNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3AxgxWIn7rETIC57p5sZXY8Hl5ZJ YSIC/EbrHY5IrjWdcdeO0sthTLX87+OgS7+vYl8BzPG36RiAb5qRy4+XdOPO5kXc p0/QzimVZ3YontrMfUuT6Yv2NMWZVyl3ErCldG/6ZPIiW9FYyanvak1O0Bvxjh1x H5QiscVLZSlRf/OYESTdFImkXYeDtxlU3dQjHDgUYJGJWjn6URXDCcrTeoLSsiEc 69z3WKc6BCEbErKmJk5EXHUIovjyMBXh6INnI4uFXpV+BrN5imMqj23pLGR7q0xZ ekOgYhbSFnf53ThgMxlWs8K0vKLQQcvTX9vVjSGQuHtoLT6tY2/F+ml5CwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNgsipkdW028b53rgu1AZKCR9GHvMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhkMDMxNGI3LWZkZDYtNGNkNC05YmQ3LTVkYzYzZjYzNDNhOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/8AwDQYJKoZIhvcNAQELBQADggEBABek/2UpDAHLOwJHp+OU ZpgqWoAhApPD6NjhsYq+VvEF6/w2FBWGg5hwv4V6Lm1gJ+FSs0qsuvx5qV72mToA ub7ugCEzZjgWFynTWSdd3OM7Rv77CuPBjfdjEu77mojpsFqhhRW7NYoP+pIWMsrH vA/dDRu+hOIvQpqamvHuToYMiYpj1r+z32n3W+oiO9nP9hMAEXzr/b+rVKyCgNZK 37hP4Lf+zxdEsOCI0Hk4CToVv90lgPCSA5vXhFxo8FadnrNGJvrTObLNfyVthbwN eZPaoMl9VGxBiCrOuNz+6NWMffp2mn0dKL+Kk40OHdPShrn3vj/oSNdPE3ru6KiZ 50c= -----END CERTIFICATE-----Generated at Wed May 13 00:06:30 2026 by rpki-client