$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f0522006-6063-4b32-b972-6b9c57c75a41.roa File: f0522006-6063-4b32-b972-6b9c57c75a41.roa (raw, json) Hash identifier: f3tpQsvzgSKRXP/QA4X5rBMd97gQZeTFA2xzOoaYejI= Subject key identifier: E5:B3:4A:4B:B9:7D:97:F6:BF:5E:D6:9B:3A:6C:F3:7D:8E:5D:54:5A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5C9DDAFECAA762D7E1B6E267D377903D233DEAB2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f0522006-6063-4b32-b972-6b9c57c75a41.roa Signing time: Mon 11 May 2026 00:10:29 +0000 ROA not before: Mon 11 May 2026 00:10:29 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:b080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:9d:da:fe:ca:a7:62:d7:e1:b6:e2:67:d3:77:90:3d:23:3d:ea:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 11 00:10:29 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=904af828c3c664683581d28d68573754df2cebd04caac0d529a05b46b3d4587a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:05:13:76:5a:2d:89:90:c4:4f:c8:ff:52:1d: 0e:6d:ae:ff:24:e2:9f:86:16:3c:cb:5d:f3:b0:47: 45:40:cc:38:e1:d9:1a:43:b8:35:7e:1a:05:1e:a9: cd:6a:89:6f:40:0c:39:b9:28:b9:1e:3d:aa:cf:4d: 35:90:58:72:01:51:99:9e:67:8e:96:d4:e4:18:36: 25:44:eb:fe:4a:60:94:73:7b:c2:d8:70:c2:44:e9: f8:cc:da:9a:48:05:e7:dc:d8:1a:48:ca:1a:48:b5: 4c:8e:34:1c:a8:33:fe:34:7b:8b:2f:63:64:1a:8f: 01:05:72:f5:76:ae:3b:4c:2b:39:a3:6e:72:72:25: 1c:52:a3:b8:ae:cc:7f:cf:b2:54:95:f6:0c:1f:e7: a8:f9:b3:35:fa:73:ed:51:6e:d9:79:4b:dc:bc:78: c2:fd:1a:9a:2f:fe:9a:78:88:97:67:7a:4c:7a:7d: 5e:64:6d:97:4b:2d:de:81:e4:fa:e1:26:5f:15:cd: 8a:98:7c:26:7d:99:56:ec:4e:61:a6:3f:1d:5d:88: 71:03:e7:b1:ee:46:59:e8:1d:8c:6a:75:46:7f:c5: b5:9f:f3:36:d2:ad:dd:27:11:fe:67:0a:af:58:7e: 4f:a5:67:63:b3:95:40:6a:be:06:25:f0:02:24:08: ba:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B3:4A:4B:B9:7D:97:F6:BF:5E:D6:9B:3A:6C:F3:7D:8E:5D:54:5A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f0522006-6063-4b32-b972-6b9c57c75a41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:b080::/48 Signature Algorithm: sha256WithRSAEncryption 52:3d:e5:a3:6f:0a:1f:5c:16:08:c7:12:bf:ec:1d:37:a3:b5: 3b:0a:ea:01:cd:11:49:16:4b:17:59:46:0a:88:85:4a:a0:f1: ac:9e:32:e5:d4:54:aa:ed:95:50:9a:4c:4f:68:02:f9:a4:72: 75:18:da:6a:30:aa:da:3f:8c:79:10:45:e5:17:ab:79:c7:aa: 90:05:69:2e:a0:30:4d:a8:e5:9e:da:c2:b6:dd:53:29:d8:cf: 59:a1:c3:69:95:50:cf:27:e3:5a:97:9a:b0:15:18:c5:6a:69: b6:bf:22:17:1e:62:0e:09:13:ea:4a:7a:bf:04:47:dd:e7:17: c9:16:98:fb:a5:97:03:43:59:3d:65:d8:dd:65:41:79:0e:b4: 8c:69:67:64:d3:8b:39:4a:48:2d:00:23:a9:12:b4:36:4c:bc: 1b:1d:43:c2:4f:1e:32:d7:dd:41:80:b2:06:55:d6:12:c1:78: 22:fa:20:91:b3:8c:87:17:fe:72:f0:5c:8f:e5:65:67:df:50: 99:4b:af:bf:de:89:96:09:c5:d4:2b:c7:47:eb:89:89:ae:05: 4a:92:bb:fa:e5:f3:6d:ef:8b:7f:45:32:df:48:07:78:2f:8b: 4a:29:97:0b:87:5c:be:a4:b1:98:94:2f:71:5d:65:30:d4:b8: 0f:de:d6:5e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUXJ3a/sqnYtfhtuJn03eQPSM96rIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMTAwMTAyOVoX DTI2MDgwOTIzNTk1OVowejFJMEcGA1UEBRNAOTA0YWY4MjhjM2M2NjQ2ODM1ODFk MjhkNjg1NzM3NTRkZjJjZWJkMDRjYWFjMGQ1MjlhMDViNDZiM2Q0NTg3YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgUTdlotiZDET8j/Uh0Oba7/JOKf hhY8y13zsEdFQMw44dkaQ7g1fhoFHqnNaolvQAw5uSi5Hj2qz001kFhyAVGZnmeO ltTkGDYlROv+SmCUc3vC2HDCROn4zNqaSAXn3NgaSMoaSLVMjjQcqDP+NHuLL2Nk Go8BBXL1dq47TCs5o25yciUcUqO4rsx/z7JUlfYMH+eo+bM1+nPtUW7ZeUvcvHjC /RqaL/6aeIiXZ3pMen1eZG2XSy3egeT64SZfFc2KmHwmfZlW7E5hpj8dXYhxA+ex 7kZZ6B2ManVGf8W1n/M20q3dJxH+ZwqvWH5PpWdjs5VAar4GJfACJAi6CQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFOWzSku5fZf2v17Wmzps832OXVRaMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2YwNTIyMDA2LTYwNjMtNGIzMi1iOTcyLTZiOWM1N2M3NWE0MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaALCAMA0GCSqGSIb3DQEBCwUAA4IBAQBSPeWjbwofXBYIxxK/ 7B03o7U7CuoBzRFJFksXWUYKiIVKoPGsnjLl1FSq7ZVQmkxPaAL5pHJ1GNpqMKra P4x5EEXlF6t5x6qQBWkuoDBNqOWe2sK23VMp2M9ZocNplVDPJ+Nal5qwFRjFamm2 vyIXHmIOCRPqSnq/BEfd5xfJFpj7pZcDQ1k9ZdjdZUF5DrSMaWdk04s5SkgtACOp ErQ2TLwbHUPCTx4y191BgLIGVdYSwXgi+iCRs4yHF/5y8FyP5WVn31CZS6+/3omW CcXUK8dH64mJrgVKkrv65fNt74t/RTLfSAd4L4tKKZcLh1y+pLGYlC9xXWUw1LgP 3tZe -----END CERTIFICATE-----Generated at Wed May 13 00:30:48 2026 by rpki-client