$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa File: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (raw, json) Hash identifier: yfq8iFfIcDeAU+un+cEPlZiZth6uF29SsXYSk1FGweo= Subject key identifier: D9:7F:6A:FB:47:BE:88:4D:6A:96:1B:5D:60:84:17:38:14:D2:79:EE Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 4284437D8661A597DE0A7A8C126516F2BD6BE7ED Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa Signing time: Mon 27 Apr 2026 00:00:07 +0000 ROA not before: Mon 27 Apr 2026 00:00:07 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 00:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:84:43:7d:86:61:a5:97:de:0a:7a:8c:12:65:16:f2:bd:6b:e7:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 27 00:00:07 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=84ed45e489878e53d11f1f2e9d33fd7bc0a9232b6a5b67f784b8f0f7f226daea, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fe:e8:91:24:7a:8a:d6:46:f1:e7:64:da:da: 36:15:28:31:f2:b8:33:16:df:22:2f:3d:13:7e:81: 82:58:dc:5d:08:b0:16:d0:b5:ed:62:50:e7:d9:39: e7:c4:e2:cb:df:80:0d:38:c1:8c:b8:87:f7:f6:f7: f8:4d:5a:0a:62:0a:77:c7:6d:f9:22:c2:27:52:23: cb:25:ab:2f:47:d1:c6:e2:44:6e:4e:9f:68:56:b2: c5:13:35:bc:3e:db:1b:c5:2d:e3:19:3d:f4:08:b6: 8c:9c:84:7e:7d:68:02:0b:32:81:75:2c:15:72:5c: dc:fe:47:ad:50:de:37:f6:42:06:13:5e:1a:7b:12: de:af:b2:83:07:f5:63:d7:cb:f3:10:79:58:03:63: 7a:65:c7:22:5e:d4:9b:e0:d5:1b:75:3f:c0:3e:71: 82:99:f1:7e:c9:75:eb:c5:d3:1e:99:3c:cd:c6:ba: 41:09:cc:4f:f8:2f:d2:6c:98:2c:2b:b3:4e:39:09: 20:b5:01:9c:c6:cd:dc:b3:67:a6:05:ed:f3:c7:23: cc:2a:7c:a9:92:30:e3:d0:b5:89:1f:67:e0:0d:8e: 6f:c8:81:35:a8:05:16:91:72:84:35:8c:b7:d2:1d: 34:0d:b5:78:2f:18:e7:e8:a0:96:47:32:41:02:5a: 90:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7F:6A:FB:47:BE:88:4D:6A:96:1B:5D:60:84:17:38:14:D2:79:EE X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:ff00::/48 Signature Algorithm: sha256WithRSAEncryption fc:49:72:6d:93:3d:0a:dd:37:bc:7f:9e:5e:e4:a4:73:26:eb: 48:7b:17:9d:f5:1b:6a:4d:78:66:25:65:70:d9:8c:66:c9:8c: 15:b9:d2:ee:31:e9:0b:00:55:60:4c:73:9c:9e:21:35:7d:40: 9b:88:05:ec:be:a3:17:b4:14:50:91:ca:29:95:26:ca:f8:b0: da:eb:eb:fb:aa:6f:dd:4f:25:f6:62:5f:53:1b:dd:a5:88:6f: 9f:ca:6d:3d:3d:ce:de:cf:6c:c1:90:7d:c0:9d:38:a9:70:77: be:d5:48:d0:35:fd:95:97:3d:0c:17:41:08:24:aa:c9:87:d2: 50:2f:be:69:e6:10:c7:4f:32:05:78:b5:58:1c:f3:ef:c5:a0: 08:c4:c0:64:71:d3:8f:02:37:6c:49:19:40:ee:3b:6b:c3:10: 6a:90:f2:bb:4b:7a:a5:c5:af:0b:0b:71:68:ad:74:86:11:5b: 2d:ee:b9:64:a9:6d:e7:11:75:65:a4:40:b9:67:d1:d5:51:af: 68:c3:b5:8e:d4:0c:c4:0e:4b:f2:96:61:4b:27:f0:81:5c:30: 75:56:92:e6:c7:59:4d:01:9e:5b:36:ea:5e:f8:73:7a:1f:bd: 44:61:f8:66:e5:5d:0d:50:dd:5b:c4:79:e9:64:71:35:7f:69: 19:ce:b4:6d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUQoRDfYZhpZfeCnqMEmUW8r1r5+0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDQyNzAwMDAwN1oX DTI2MDcyNjIzNTk1OVowejFJMEcGA1UEBRNAODRlZDQ1ZTQ4OTg3OGU1M2QxMWYx ZjJlOWQzM2ZkN2JjMGE5MjMyYjZhNWI2N2Y3ODRiOGYwZjdmMjI2ZGFlYTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuf7okSR6itZG8edk2to2FSgx8rgz Ft8iLz0TfoGCWNxdCLAW0LXtYlDn2TnnxOLL34ANOMGMuIf39vf4TVoKYgp3x235 IsInUiPLJasvR9HG4kRuTp9oVrLFEzW8PtsbxS3jGT30CLaMnIR+fWgCCzKBdSwV clzc/ketUN439kIGE14aexLer7KDB/Vj18vzEHlYA2N6ZcciXtSb4NUbdT/APnGC mfF+yXXrxdMemTzNxrpBCcxP+C/SbJgsK7NOOQkgtQGcxs3cs2emBe3zxyPMKnyp kjDj0LWJH2fgDY5vyIE1qAUWkXKENYy30h00DbV4Lxjn6KCWRzJBAlqQ0wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNl/avtHvohNapYbXWCEFzgU0nnuMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2ZjZDZhZGFiLTA2ZjAtNDY3Ni05NTY4LTZkNGQ0OGY3NjU4Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQD8SXJtkz0K3Te8f55e 5KRzJutIexed9RtqTXhmJWVw2YxmyYwVudLuMekLAFVgTHOcniE1fUCbiAXsvqMX tBRQkcoplSbK+LDa6+v7qm/dTyX2Yl9TG92liG+fym09Pc7ez2zBkH3AnTipcHe+ 1UjQNf2Vlz0MF0EIJKrJh9JQL75p5hDHTzIFeLVYHPPvxaAIxMBkcdOPAjdsSRlA 7jtrwxBqkPK7S3qlxa8LC3ForXSGEVst7rlkqW3nEXVlpEC5Z9HVUa9ow7WO1AzE DkvylmFLJ/CBXDB1VpLmx1lNAZ5bNupe+HN6H71EYfhm5V0NUN1bxHnpZHE1f2kZ zrRt -----END CERTIFICATE-----Generated at Wed May 13 06:30:50 2026 by rpki-client