$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2e0f9ff-5b8b-4b59-8bde-9f8617cadc06.roa File: a2e0f9ff-5b8b-4b59-8bde-9f8617cadc06.roa (raw, json) Hash identifier: Vx3pUQKb+FJk+5HLc5lTTVjYi5wxA9Z5lZDTeGpGD0g= Subject key identifier: 47:7F:38:E7:EF:74:30:61:14:8B:02:0B:28:69:BA:FD:D9:EC:04:BB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5FB0CA5592382BF8AF2724CB4F421EF88874571D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2e0f9ff-5b8b-4b59-8bde-9f8617cadc06.roa Signing time: Mon 11 May 2026 00:20:13 +0000 ROA not before: Mon 11 May 2026 00:20:13 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:4010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:b0:ca:55:92:38:2b:f8:af:27:24:cb:4f:42:1e:f8:88:74:57:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:20:13 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=951e817d8cbeff4de11d7257bdf2e108ea9ac212e215845f3d77917a08e8009f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:7b:d4:1d:0c:c3:5a:b9:d7:28:fe:a3:57:fd: 4e:bd:43:05:91:34:f0:76:c5:4c:be:1d:fa:b0:89: 8e:59:cd:e7:10:eb:22:5a:84:38:b5:9e:92:a4:8c: 44:db:10:3f:9b:5b:8f:2a:e7:83:e0:db:bf:80:e6: a1:11:da:2d:95:6e:b8:94:57:8c:16:37:43:61:8e: 40:44:fa:61:f0:e8:dc:02:dc:b4:ad:4c:0e:f9:99: e9:39:16:86:79:1f:5a:60:bf:f5:7a:11:67:e6:22: eb:be:fd:be:d8:74:8b:f1:7d:9f:e1:36:43:f9:d1: 26:42:40:6f:60:88:6b:26:ee:16:56:90:4f:f2:c5: 2a:28:a0:2b:64:d7:cb:4a:30:39:4a:85:82:e9:b0: 77:50:49:ca:be:6e:7b:b4:87:24:b7:5a:62:79:7f: 37:d5:d1:0a:62:04:4e:d9:da:fd:38:aa:fa:3f:8e: 11:ec:35:2a:7b:80:97:b9:1a:4d:9c:68:b5:73:3b: da:8a:10:d0:8d:b8:af:05:a6:40:86:f3:42:62:7a: d4:bd:c1:4d:cf:97:c3:b3:ab:39:ec:9d:2d:32:3e: cb:f8:bd:cb:f4:1d:35:73:20:0f:4f:e8:12:96:19: f4:e3:88:ba:e0:0b:3a:a8:40:19:03:5b:76:3b:b8: 55:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7F:38:E7:EF:74:30:61:14:8B:02:0B:28:69:BA:FD:D9:EC:04:BB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2e0f9ff-5b8b-4b59-8bde-9f8617cadc06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:4010::/48 Signature Algorithm: sha256WithRSAEncryption 29:d8:dd:2d:6a:8f:79:89:3d:56:97:ae:2b:58:0a:b9:b0:da: ac:9d:78:65:f6:37:88:e6:b5:06:bd:78:39:8a:a5:03:60:b5: f4:cd:95:83:c4:bc:dd:60:66:95:c2:51:d8:02:f3:12:e2:a8: 59:28:01:5f:fc:20:52:1a:af:d9:d3:91:ff:4c:17:95:dc:93: 02:18:dc:42:a2:72:f8:ac:ca:56:95:0b:a5:4e:be:bb:ca:7c: d5:7d:b4:6d:82:6e:5b:cb:7a:71:a5:cd:f5:7b:a4:32:8b:93: fa:48:f7:6f:4b:8f:76:fa:ab:69:d5:bd:e2:25:64:53:c1:c3: df:e6:58:62:c3:b0:4d:26:10:de:4c:31:b2:d5:b8:c6:49:22: 17:e1:3a:3e:05:91:d3:13:b8:ae:f2:7b:d7:61:7e:14:45:e8: 1e:2e:e9:ac:42:27:2e:03:5d:ed:4e:16:58:71:db:33:70:10: f7:74:79:d2:23:52:37:0c:ff:e7:3c:33:db:47:94:e3:65:38: 49:9e:de:f2:56:37:d4:c2:a8:7e:a0:3d:b2:86:a3:ee:f5:8f: f5:82:f7:bd:6a:e9:54:94:29:8c:a1:28:e2:56:75:6a:3c:e7: 80:21:cb:39:e2:70:96:55:37:aa:33:98:a4:c0:15:6d:ac:c1: 27:05:3e:87 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUX7DKVZI4K/ivJyTLT0Ie+Ih0Vx0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMjAxM1oX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAOTUxZTgxN2Q4Y2JlZmY0ZGUxMWQ3 MjU3YmRmMmUxMDhlYTlhYzIxMmUyMTU4NDVmM2Q3NzkxN2EwOGU4MDA5ZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjXvUHQzDWrnXKP6jV/1OvUMFkTTw dsVMvh36sImOWc3nEOsiWoQ4tZ6SpIxE2xA/m1uPKueD4Nu/gOahEdotlW64lFeM FjdDYY5ARPph8OjcAty0rUwO+ZnpORaGeR9aYL/1ehFn5iLrvv2+2HSL8X2f4TZD +dEmQkBvYIhrJu4WVpBP8sUqKKArZNfLSjA5SoWC6bB3UEnKvm57tIckt1pieX83 1dEKYgRO2dr9OKr6P44R7DUqe4CXuRpNnGi1czvaihDQjbivBaZAhvNCYnrUvcFN z5fDs6s57J0tMj7L+L3L9B01cyAPT+gSlhn044i64As6qEAZA1t2O7hVlwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEd/OOfvdDBhFIsCCyhpuv3Z7AS7MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EyZTBmOWZmLTViOGItNGI1OS04YmRlLTlmODYxN2NhZGMwNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAEAQMA0GCSqGSIb3DQEBCwUAA4IBAQAp2N0tao95iT1Wl64r WAq5sNqsnXhl9jeI5rUGvXg5iqUDYLX0zZWDxLzdYGaVwlHYAvMS4qhZKAFf/CBS Gq/Z05H/TBeV3JMCGNxConL4rMpWlQulTr67ynzVfbRtgm5by3pxpc31e6Qyi5P6 SPdvS492+qtp1b3iJWRTwcPf5lhiw7BNJhDeTDGy1bjGSSIX4To+BZHTE7iu8nvX YX4URegeLumsQicuA13tThZYcdszcBD3dHnSI1I3DP/nPDPbR5TjZThJnt7yVjfU wqh+oD2yhqPu9Y/1gve9aulUlCmMoSjiVnVqPOeAIcs54nCWVTeqM5ikwBVtrMEn BT6H -----END CERTIFICATE-----Generated at Wed May 13 01:25:46 2026 by rpki-client