$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/5663bf34-10ed-4309-a236-7466afd6f02f.roa File: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (raw, json) Hash identifier: pL63iKjbLOLYlourekfOR4Nmgu8cB/gmsl43BXFS/jc= Subject key identifier: 55:15:79:7F:2C:D7:D6:A7:D0:D9:B9:8A:0B:31:2B:90:AB:2D:ED:D0 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 60B8A3C13889E618F24221A3205F5CFF202C3929 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/5663bf34-10ed-4309-a236-7466afd6f02f.roa Signing time: Mon 27 Apr 2026 00:00:07 +0000 ROA not before: Mon 27 Apr 2026 00:00:07 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:b8:a3:c1:38:89:e6:18:f2:42:21:a3:20:5f:5c:ff:20:2c:39:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 27 00:00:07 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=73e2a48afdf6c54e64a17a2c95e1493d92c2bf453de01e973937c3a44087bdb0, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:92:56:7f:48:3a:93:f0:9a:ff:df:7b:69:e5: 52:47:94:ce:67:38:02:7b:79:df:e1:7e:e5:f6:5b: 5f:a7:50:16:55:c2:aa:02:c0:21:20:f6:68:8b:d8: b8:60:5c:93:bc:c0:ac:fa:94:54:d5:9e:ac:85:54: 83:1c:30:6f:e6:0d:32:77:9c:8b:c4:87:98:79:07: 63:3b:2e:26:9f:eb:b9:a4:10:ea:44:a0:fe:67:5e: 05:7d:19:a8:16:e7:f6:db:b6:bf:37:d8:0d:bb:ff: 2e:25:31:d9:58:f9:63:49:8e:65:ba:68:58:83:d9: 5e:f1:a3:91:48:a2:8e:f8:5c:2c:a1:42:30:63:22: 2e:90:bf:6e:b2:0c:5c:17:e7:3c:d7:3c:fc:c6:14: c2:ed:22:f8:22:a1:1a:33:f6:5a:0b:56:9e:e1:4f: 0e:04:f0:9c:d3:b4:f1:5a:9a:da:78:da:e4:c2:bf: d6:50:a5:f2:d4:28:2e:22:dd:00:e0:44:8c:18:e0: 5a:d8:44:df:63:81:d5:6f:06:b2:b1:3f:df:4c:94: e0:8d:0c:34:1f:ac:09:a6:34:ee:c4:43:bb:07:59: 87:59:4e:0b:43:05:6f:56:92:96:c4:23:60:82:1d: 0d:7e:40:dc:0b:94:ce:36:7b:02:43:19:4a:6f:3d: 1b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:15:79:7F:2C:D7:D6:A7:D0:D9:B9:8A:0B:31:2B:90:AB:2D:ED:D0 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/5663bf34-10ed-4309-a236-7466afd6f02f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 0d:37:4a:b3:c6:24:0e:80:93:60:09:68:3d:a8:f7:8c:7e:77: 98:b1:83:bb:cd:cb:2e:32:d3:74:4e:45:69:0b:15:f4:8b:f0: aa:f5:56:57:2b:b4:f5:9c:df:0a:ae:cf:2f:83:9b:f0:9a:a3: 5a:11:2e:d1:7d:4c:c4:48:4c:19:84:2f:5a:55:dd:1e:fc:a9: 2b:1b:5a:73:07:d5:d4:f1:6d:19:5c:90:02:3e:ba:83:76:d7: e6:0e:f9:0c:37:f4:c6:c9:28:93:8e:c9:0e:81:24:5e:cd:bf: b5:fc:37:63:fe:bd:aa:26:e8:3d:a6:06:b4:04:bb:0a:d4:f1: c6:6e:d1:aa:a1:6b:63:4f:f4:1c:d3:03:8f:01:8f:f1:8d:7c: 04:1a:40:13:15:04:49:d8:33:01:1f:92:ee:85:44:61:53:4c: f1:f3:af:35:7d:f0:b9:a9:1f:89:6b:03:c2:d7:56:17:3d:3b: 27:a5:ce:4c:93:d0:52:2d:67:cb:00:3b:8a:c6:1f:14:b2:23: cd:66:eb:2f:e7:0e:a7:c6:48:8a:b6:ac:ba:01:c2:62:4c:0a: 5d:90:63:ab:f2:bc:33:7d:61:f1:3a:1e:81:1c:8c:59:11:4e: 91:4b:c1:e9:b2:6b:46:ba:94:09:34:dd:48:5a:95:c0:dc:43: bf:01:ae:5f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYLijwTiJ5hjyQiGjIF9c/yAsOSkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI2MDQyNzAwMDAwN1oX DTI2MDcyNjIzNTk1OVowejFJMEcGA1UEBRNANzNlMmE0OGFmZGY2YzU0ZTY0YTE3 YTJjOTVlMTQ5M2Q5MmMyYmY0NTNkZTAxZTk3MzkzN2MzYTQ0MDg3YmRiMDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy5JWf0g6k/Ca/997aeVSR5TOZzgC e3nf4X7l9ltfp1AWVcKqAsAhIPZoi9i4YFyTvMCs+pRU1Z6shVSDHDBv5g0yd5yL xIeYeQdjOy4mn+u5pBDqRKD+Z14FfRmoFuf227a/N9gNu/8uJTHZWPljSY5lumhY g9le8aORSKKO+FwsoUIwYyIukL9usgxcF+c81zz8xhTC7SL4IqEaM/ZaC1ae4U8O BPCc07TxWpraeNrkwr/WUKXy1CguIt0A4ESMGOBa2ETfY4HVbwaysT/fTJTgjQw0 H6wJpjTuxEO7B1mHWU4LQwVvVpKWxCNggh0NfkDcC5TONnsCQxlKbz0b5wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFUVeX8s19an0Nm5igsxK5CrLe3QMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzU2NjNiZjM0LTEwZWQtNDMwOS1hMjM2LTc0NjZhZmQ2ZjAyZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQANN0qzxiQOgJNgCWg9 qPeMfneYsYO7zcsuMtN0TkVpCxX0i/Cq9VZXK7T1nN8Krs8vg5vwmqNaES7RfUzE SEwZhC9aVd0e/KkrG1pzB9XU8W0ZXJACPrqDdtfmDvkMN/TGySiTjskOgSRezb+1 /Ddj/r2qJug9pga0BLsK1PHGbtGqoWtjT/Qc0wOPAY/xjXwEGkATFQRJ2DMBH5Lu hURhU0zx8681ffC5qR+JawPC11YXPTsnpc5Mk9BSLWfLADuKxh8UsiPNZusv5w6n xkiKtqy6AcJiTApdkGOr8rwzfWHxOh6BHIxZEU6RS8HpsmtGupQJNN1IWpXA3EO/ Aa5f -----END CERTIFICATE-----Generated at Wed May 13 00:27:09 2026 by rpki-client