$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bac21e1d-59df-47ff-bfa7-6ebfc6aa52ef.roa File: bac21e1d-59df-47ff-bfa7-6ebfc6aa52ef.roa (raw, json) Hash identifier: 8hLO0QezoUQfIqMJD6Ahe1EdhcB45khObk07SJjJ8H8= Subject key identifier: 21:22:29:20:F6:F6:9B:62:38:00:64:7D:07:08:BC:70:6A:13:B6:9F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7DF4EBE0A662DA8DEFE9C6E4837483944B40B201 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bac21e1d-59df-47ff-bfa7-6ebfc6aa52ef.roa Signing time: Fri 08 May 2026 00:01:07 +0000 ROA not before: Fri 08 May 2026 00:01:07 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:2800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:f4:eb:e0:a6:62:da:8d:ef:e9:c6:e4:83:74:83:94:4b:40:b2:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 8 00:01:07 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=b4f7b16306dd79d09dc8a7341626df252927bd0077b36fe1f870277e1549123e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:25:57:cf:99:f4:b2:ad:39:b7:32:ac:d6:99: 60:41:fe:aa:96:e6:92:9f:9a:02:2d:4d:a6:69:bc: 2d:92:8f:ae:88:9a:8d:ad:36:cb:08:b3:23:ce:e0: e0:41:45:5d:bc:f5:d9:dd:63:ba:09:47:b3:1a:fe: f9:66:3a:ae:d1:50:0f:f0:01:8b:e8:94:b5:8c:dc: 1d:35:d5:e5:0c:fa:9f:c1:aa:95:9b:cf:93:0b:ee: 73:a8:33:86:06:84:a8:49:7f:8c:82:82:50:76:1c: 23:16:71:7e:9d:53:6c:0e:c1:a1:42:aa:71:84:48: 02:0e:c5:ae:bd:6c:39:d2:62:60:0d:cf:98:fd:59: d6:eb:48:34:7c:e4:a5:f1:23:24:55:8a:b0:df:af: 41:bd:da:33:c9:72:8c:7f:98:a2:73:36:c6:a4:2a: 93:03:7e:d7:19:d7:79:2f:c2:3e:f8:47:61:63:5c: 9a:ff:c2:b8:e1:47:85:83:d7:fc:f4:7f:ca:3c:fa: 54:2d:54:b5:32:ef:e5:cf:4e:75:f7:a1:04:a7:5c: 2a:d5:61:a1:62:6f:23:bd:d6:9d:f2:48:1c:df:c2: 11:57:50:b8:65:f2:64:f5:7b:24:94:43:a6:6d:b5: f9:63:1c:75:6c:09:5a:0d:70:0b:4e:a4:92:60:4d: 2f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:22:29:20:F6:F6:9B:62:38:00:64:7D:07:08:BC:70:6A:13:B6:9F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bac21e1d-59df-47ff-bfa7-6ebfc6aa52ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:2800::/40 Signature Algorithm: sha256WithRSAEncryption 92:ed:30:f6:ac:6b:bf:fc:c1:55:07:81:f2:3f:2c:43:9a:87: ed:2f:ab:cc:05:bd:07:4a:04:4d:5e:7d:da:78:ad:70:72:22: 4d:85:76:37:ad:5d:da:94:10:24:44:af:5a:3d:24:93:d1:83: 5b:bb:1b:b2:8a:98:ba:dd:b4:0f:3e:e6:77:63:f8:19:8d:2e: 76:0f:8d:1e:7a:db:44:d9:fd:63:c2:d3:18:1b:17:59:5a:e2: ab:86:fa:50:5f:73:3a:4b:97:2d:1f:fa:d8:18:50:b9:ce:e5: 61:ef:4c:d5:5b:9f:54:42:e5:48:de:c5:de:c6:7d:ba:81:e1: 84:46:8c:57:df:08:ec:d6:98:19:5f:31:91:19:af:77:f8:fc: da:f9:e1:14:3b:2f:fe:f5:98:41:c2:9c:38:1a:8a:99:1a:3a: 9c:82:89:fe:a8:4c:48:c1:ef:e2:ba:63:74:f1:8a:02:67:d1: 21:28:ca:f1:09:f2:2a:48:a0:39:bc:bf:78:26:8a:60:d1:6f: 18:58:06:bc:48:ef:68:a0:b0:40:d6:ca:48:50:a4:f9:00:89: 11:ab:6c:c2:ed:c3:f5:ed:d4:9f:d4:61:b1:fb:5d:b7:ed:9a: 9a:c9:51:5b:cb:fb:07:78:80:b8:ce:ac:49:9b:ae:0a:15:83: 83:ef:44:04 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUffTr4KZi2o3v6cbkg3SDlEtAsgEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwODAwMDEwN1oX DTI2MDgwNjIzNTk1OVowejFJMEcGA1UEBRNAYjRmN2IxNjMwNmRkNzlkMDlkYzhh NzM0MTYyNmRmMjUyOTI3YmQwMDc3YjM2ZmUxZjg3MDI3N2UxNTQ5MTIzZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0SVXz5n0sq05tzKs1plgQf6qluaS n5oCLU2mabwtko+uiJqNrTbLCLMjzuDgQUVdvPXZ3WO6CUezGv75Zjqu0VAP8AGL 6JS1jNwdNdXlDPqfwaqVm8+TC+5zqDOGBoSoSX+MgoJQdhwjFnF+nVNsDsGhQqpx hEgCDsWuvWw50mJgDc+Y/VnW60g0fOSl8SMkVYqw369BvdozyXKMf5iiczbGpCqT A37XGdd5L8I++EdhY1ya/8K44UeFg9f89H/KPPpULVS1Mu/lz05196EEp1wq1WGh Ym8jvdad8kgc38IRV1C4ZfJk9XsklEOmbbX5Yxx1bAlaDXALTqSSYE0vrwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCEiKSD29ptiOABkfQcIvHBqE7afMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2JhYzIxZTFkLTU5ZGYtNDdmZi1iZmE3LTZlYmZjNmFhNTJlZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaACgwDQYJKoZIhvcNAQELBQADggEBAJLtMPasa7/8wVUHgfI/ LEOah+0vq8wFvQdKBE1efdp4rXByIk2FdjetXdqUECREr1o9JJPRg1u7G7KKmLrd tA8+5ndj+BmNLnYPjR5620TZ/WPC0xgbF1la4quG+lBfczpLly0f+tgYULnO5WHv TNVbn1RC5Ujexd7GfbqB4YRGjFffCOzWmBlfMZEZr3f4/Nr54RQ7L/71mEHCnDga ipkaOpyCif6oTEjB7+K6Y3TxigJn0SEoyvEJ8ipIoDm8v3gmimDRbxhYBrxI72ig sEDWykhQpPkAiRGrbMLtw/Xt1J/UYbH7XbftmprJUVvL+wd4gLjOrEmbrgoVg4Pv RAQ= -----END CERTIFICATE-----Generated at Wed May 13 00:38:08 2026 by rpki-client