$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e8d98555-8cba-45bc-a7cb-74d7b44bfbf5.roa File: e8d98555-8cba-45bc-a7cb-74d7b44bfbf5.roa (raw, json) Hash identifier: euEN1SNrjkFNAVPWM75Xac4orBcWP395inyt5TpgdDE= Subject key identifier: C6:A7:86:E2:8D:BA:E8:0E:09:0A:42:99:E6:4D:9D:E6:3F:12:B5:FA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3223FAC9704BDEF7BAF579AE2DC367F837170BCE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e8d98555-8cba-45bc-a7cb-74d7b44bfbf5.roa Signing time: Mon 11 May 2026 00:10:46 +0000 ROA not before: Mon 11 May 2026 00:10:46 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:23:fa:c9:70:4b:de:f7:ba:f5:79:ae:2d:c3:67:f8:37:17:0b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:10:46 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=ce0e7cc9ac06aea72378285ba9fa2418f61f0eae2d922f3002c4b057f2f03bbd, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a0:4f:2b:a2:8a:04:0c:40:3b:60:9f:36:d0: e0:e5:8c:df:6b:c9:f3:97:06:b9:02:e8:db:be:8e: e1:9a:f3:41:f2:29:a5:7d:65:92:7a:3c:53:e7:fe: 0d:64:9a:49:0a:a5:c2:af:40:1d:10:65:57:1a:25: 4e:95:3e:60:cd:de:ab:aa:04:c3:2a:f4:e8:77:58: 41:35:3a:ff:dd:e9:0b:57:fa:0d:61:4b:0f:59:4e: 9b:20:53:aa:4f:f2:54:e5:16:4e:d0:43:b3:66:79: a6:09:25:37:2e:69:90:d5:3c:0f:36:3e:64:6a:64: 62:7e:ef:8d:08:37:7c:a7:f1:25:e5:64:d9:d4:9b: cd:62:6c:e0:06:ff:43:69:96:de:9d:71:4c:08:d8: 06:20:6b:37:6c:9e:d6:43:48:e0:de:93:11:0f:39: f1:da:eb:a9:c8:33:45:10:f9:01:90:5c:e1:58:09: 65:f5:c8:42:c1:01:87:a5:32:c3:b4:bc:86:6e:bf: 2d:9e:8e:c6:71:bb:cb:68:b1:5d:42:13:e0:d3:e4: fa:c4:f4:97:45:96:7f:e5:26:bd:39:8e:eb:9c:97: a6:75:a2:04:e0:20:f6:73:8f:8f:16:65:76:34:b0: 4b:ed:6a:73:8f:b6:17:b4:4e:22:bc:69:96:36:cf: e7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A7:86:E2:8D:BA:E8:0E:09:0A:42:99:E6:4D:9D:E6:3F:12:B5:FA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e8d98555-8cba-45bc-a7cb-74d7b44bfbf5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:a080::/48 Signature Algorithm: sha256WithRSAEncryption 92:c1:2a:a3:0d:bd:19:5c:dc:d9:18:65:37:99:a2:a4:c4:91: 1b:f0:20:24:13:5c:af:1e:d8:a2:ae:6f:3c:0c:41:a2:97:ac: 7d:62:c7:b3:ae:38:79:47:a1:d7:4e:56:38:d1:ae:04:e3:56: 8d:23:cb:f6:43:ff:70:1d:3c:35:59:4d:c8:5e:07:a0:6c:31: d6:30:83:70:cb:08:a0:57:f3:88:e4:4c:18:94:52:ec:d5:39: 07:29:25:be:58:d9:98:90:d5:e7:c8:ba:19:62:c8:5f:67:93: ce:1f:40:65:43:aa:ee:03:6d:56:57:d4:2d:b6:db:e5:63:3c: 22:c8:c3:69:fe:72:d1:35:46:43:28:a4:e0:21:bf:50:b3:a4: f9:04:15:07:a4:a4:45:64:9b:51:0d:bc:4b:09:5e:c1:79:ff: c5:f2:4b:7d:4b:ca:79:b1:4c:37:5c:28:11:0c:ca:b9:36:e3: 83:3c:12:b5:8e:72:86:8a:20:67:5a:02:18:56:6f:43:69:0a: 57:1f:30:a9:cb:9a:c6:59:85:73:a6:99:13:c5:26:e9:7a:42: 8f:76:f2:fc:52:9f:22:7b:a7:1e:b3:b1:0b:ab:c9:79:8d:5f: 75:dd:75:8f:30:00:f3:6d:a7:31:08:87:dc:05:08:3e:a0:7a: af:ad:63:19 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUMiP6yXBL3ve69XmuLcNn+DcXC84wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMTA0NloX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAY2UwZTdjYzlhYzA2YWVhNzIzNzgy ODViYTlmYTI0MThmNjFmMGVhZTJkOTIyZjMwMDJjNGIwNTdmMmYwM2JiZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqBPK6KKBAxAO2CfNtDg5Yzfa8nz lwa5Aujbvo7hmvNB8imlfWWSejxT5/4NZJpJCqXCr0AdEGVXGiVOlT5gzd6rqgTD KvTod1hBNTr/3ekLV/oNYUsPWU6bIFOqT/JU5RZO0EOzZnmmCSU3LmmQ1TwPNj5k amRifu+NCDd8p/El5WTZ1JvNYmzgBv9DaZbenXFMCNgGIGs3bJ7WQ0jg3pMRDznx 2uupyDNFEPkBkFzhWAll9chCwQGHpTLDtLyGbr8tno7GcbvLaLFdQhPg0+T6xPSX RZZ/5Sa9OY7rnJemdaIE4CD2c4+PFmV2NLBL7Wpzj7YXtE4ivGmWNs/n5wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFManhuKNuugOCQpCmeZNneY/ErX6MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U4ZDk4NTU1LThjYmEtNDViYy1hN2NiLTc0ZDdiNDRiZmJmNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/6CAMA0GCSqGSIb3DQEBCwUAA4IBAQCSwSqjDb0ZXNzZGGU3 maKkxJEb8CAkE1yvHtiirm88DEGil6x9Ysezrjh5R6HXTlY40a4E41aNI8v2Q/9w HTw1WU3IXgegbDHWMINwywigV/OI5EwYlFLs1TkHKSW+WNmYkNXnyLoZYshfZ5PO H0BlQ6ruA21WV9QtttvlYzwiyMNp/nLRNUZDKKTgIb9Qs6T5BBUHpKRFZJtRDbxL CV7Bef/F8kt9S8p5sUw3XCgRDMq5NuODPBK1jnKGiiBnWgIYVm9DaQpXHzCpy5rG WYVzppkTxSbpekKPdvL8Up8ie6ces7ELq8l5jV913XWPMADzbacxCIfcBQg+oHqv rWMZ -----END CERTIFICATE-----Generated at Tue May 12 23:57:05 2026 by rpki-client