$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eab73591-8941-4fa9-8f61-6dd3bbd7bf83.roa File: eab73591-8941-4fa9-8f61-6dd3bbd7bf83.roa (raw, json) Hash identifier: 29F2Ks+Pxv67qnzsNYkin6G7eq1VROFb3ov+uRN+60k= Subject key identifier: 9F:2E:73:7F:9B:DA:8C:DF:52:40:4E:36:CB:F7:AD:55:66:A8:D1:4B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 15EC28FEBA6CF7FE673555F7F14224287DECF418 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eab73591-8941-4fa9-8f61-6dd3bbd7bf83.roa Signing time: Sat 02 May 2026 00:01:14 +0000 ROA not before: Sat 02 May 2026 00:01:14 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daea:8800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ec:28:fe:ba:6c:f7:fe:67:35:55:f7:f1:42:24:28:7d:ec:f4:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 2 00:01:14 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=39590f4c8acd13b61ef84b68cddc9bddeb18c5371f0c83856cc3c9b3a228fe22, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8b:07:d3:62:ab:e7:b2:31:fe:ec:ce:c9:c4: bc:ba:11:dd:98:97:c5:66:78:22:78:3c:d9:f3:87: f8:95:d6:b1:79:d9:f1:1a:96:d1:65:fa:2d:37:62: 5e:88:ce:dc:c8:f6:3f:80:6b:69:76:14:6d:a4:1f: aa:52:f4:17:92:b9:cb:63:dc:fa:87:bf:eb:ca:97: 31:f8:1b:01:76:4d:68:e4:ff:6d:54:2f:0d:0c:12: 5e:1e:82:5e:21:55:90:93:ab:3d:c6:e5:02:d4:b6: 10:96:8b:15:f1:39:ef:6b:b9:3f:c5:90:53:77:da: be:ac:82:3b:eb:44:5c:8a:d1:d3:15:1f:9c:c3:e4: 23:65:d5:1a:70:db:5e:e0:4b:1f:02:af:9c:22:0f: 55:49:b0:bc:db:06:90:6d:bb:1d:4b:56:68:cd:66: 0a:8b:22:a5:82:1d:93:7e:b3:b4:da:84:79:47:c7: 46:ad:f1:1a:63:97:0b:f8:7a:cb:3a:e4:3e:20:a6: 5c:c5:09:8a:53:5c:a1:ec:df:5f:18:7d:07:1c:3e: 22:3c:91:43:95:ea:75:17:d3:d1:86:2b:a4:d0:26: 5f:b0:d3:44:db:42:a5:a6:ff:65:f8:8d:09:8d:29: bb:5b:19:f6:ee:55:ce:09:12:aa:f9:26:58:58:32: a7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2E:73:7F:9B:DA:8C:DF:52:40:4E:36:CB:F7:AD:55:66:A8:D1:4B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eab73591-8941-4fa9-8f61-6dd3bbd7bf83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daea:8800::/40 Signature Algorithm: sha256WithRSAEncryption 1d:bf:09:46:d8:d0:d6:65:7f:89:73:2e:a3:f7:81:22:f4:90: 7c:92:89:99:e7:6b:db:d8:08:23:35:04:b6:76:1a:88:b6:33: d9:50:d8:d3:62:90:f9:c5:1d:64:da:a8:16:a0:34:f4:7b:a2: d1:14:be:df:b6:4c:23:6a:91:30:83:4a:ce:55:c3:14:d8:d8: 1c:6d:90:10:7e:08:dc:cd:5b:31:a5:fd:2b:8c:3b:ef:45:db: c5:b9:e9:73:4d:6b:f7:e8:29:ca:d6:33:05:7d:34:57:06:91: 2d:3a:f9:6b:8a:fb:c5:36:88:2e:fd:83:8c:cb:94:2f:54:b7: 47:b7:7d:cc:55:61:90:3f:35:1a:d3:70:13:5a:99:0a:ff:94: 0b:4f:f3:ab:88:42:05:42:61:ff:cb:be:bd:31:9a:7a:0f:b9: 80:09:fb:65:1e:2a:95:64:10:c0:cd:63:13:6d:e8:a4:1c:6d: 2a:46:31:56:85:48:72:14:ed:32:a7:80:40:db:21:af:0a:1a: 52:0f:e7:48:9f:56:c3:8f:66:93:b0:14:ec:79:fe:c2:bd:15: e3:86:48:d5:4f:ed:eb:aa:77:d3:26:3d:57:d8:ea:2c:df:21: 9f:e2:f1:58:bf:87:d5:29:a2:78:d7:a1:c5:78:7f:c3:6c:9f: d8:e9:72:98 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFewo/rps9/5nNVX38UIkKH3s9BgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwMjAwMDExNFoX DTI2MDczMTIzNTk1OVowejFJMEcGA1UEBRNAMzk1OTBmNGM4YWNkMTNiNjFlZjg0 YjY4Y2RkYzliZGRlYjE4YzUzNzFmMGM4Mzg1NmNjM2M5YjNhMjI4ZmUyMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4sH02Kr57Ix/uzOycS8uhHdmJfF ZngieDzZ84f4ldaxednxGpbRZfotN2JeiM7cyPY/gGtpdhRtpB+qUvQXkrnLY9z6 h7/rypcx+BsBdk1o5P9tVC8NDBJeHoJeIVWQk6s9xuUC1LYQlosV8Tnva7k/xZBT d9q+rII760RcitHTFR+cw+QjZdUacNte4EsfAq+cIg9VSbC82waQbbsdS1ZozWYK iyKlgh2TfrO02oR5R8dGrfEaY5cL+HrLOuQ+IKZcxQmKU1yh7N9fGH0HHD4iPJFD lep1F9PRhiuk0CZfsNNE20Klpv9l+I0JjSm7Wxn27lXOCRKq+SZYWDKnIwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJ8uc3+b2ozfUkBONsv3rVVmqNFLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VhYjczNTkxLTg5NDEtNGZhOS04ZjYxLTZkZDNiYmQ3YmY4My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba6ogwDQYJKoZIhvcNAQELBQADggEBAB2/CUbY0NZlf4lzLqP3 gSL0kHySiZnna9vYCCM1BLZ2Goi2M9lQ2NNikPnFHWTaqBagNPR7otEUvt+2TCNq kTCDSs5VwxTY2BxtkBB+CNzNWzGl/SuMO+9F28W56XNNa/foKcrWMwV9NFcGkS06 +WuK+8U2iC79g4zLlC9Ut0e3fcxVYZA/NRrTcBNamQr/lAtP86uIQgVCYf/Lvr0x mnoPuYAJ+2UeKpVkEMDNYxNt6KQcbSpGMVaFSHIU7TKngEDbIa8KGlIP50ifVsOP ZpOwFOx5/sK9FeOGSNVP7euqd9MmPVfY6izfIZ/i8Vi/h9UponjXocV4f8Nsn9jp cpg= -----END CERTIFICATE-----Generated at Tue May 12 23:26:51 2026 by rpki-client