$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa File: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (raw, json) Hash identifier: v33jq27fZuv6YhlnQHJUjBHiUrUIsq6Hlil/qH2vUro= Subject key identifier: 79:09:EC:B7:06:24:5F:BA:3E:96:D4:B1:7A:EB:7E:2B:2A:9A:F3:F3 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 391122C84E819EA736FC4142A566DB18F39079D7 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa Signing time: Mon 27 Apr 2026 00:00:37 +0000 ROA not before: Mon 27 Apr 2026 00:00:37 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6700:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 00:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:11:22:c8:4e:81:9e:a7:36:fc:41:42:a5:66:db:18:f3:90:79:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 27 00:00:37 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=3de3c0ac1fb5dfe1673547e1cf0a4db89356f07e56d47121e0a11f0e5c94f972, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:6d:5d:f7:46:d8:d3:89:77:f1:1a:30:ff:dd: 65:dc:8c:93:ee:0b:23:f3:7e:62:4c:b0:fe:e2:3f: 4d:51:2b:45:f7:3e:ae:2c:48:95:ce:ea:fb:63:04: ab:81:6b:2a:b7:6a:8c:3b:79:04:e7:ec:0d:0a:5e: ea:94:cd:63:2b:16:1e:e5:e4:a8:9d:85:77:02:e0: ad:0d:87:49:9b:d7:80:80:b0:26:86:de:4f:3b:9e: 11:3a:a1:6c:16:7f:18:97:ed:eb:45:4a:ca:8d:83: cf:4e:44:47:a6:ec:b4:dc:fa:aa:4a:11:ef:06:ab: b9:ce:99:75:3a:b1:76:cf:f1:52:a0:6b:e5:70:22: 15:4e:05:25:db:22:5b:e9:18:ed:51:84:30:c2:6f: b4:28:b8:46:2d:85:a9:5e:4b:c1:aa:70:1d:5c:13: 80:52:48:f4:9d:71:9c:3a:f9:a1:e3:db:e5:27:a6: 01:b2:22:50:ce:e3:38:16:46:8e:1a:78:0b:be:ee: 3a:a9:5d:fa:86:ec:4e:a2:a0:e7:1a:38:03:fe:a3: fd:93:8e:f2:d2:bb:4c:48:6f:00:38:51:17:d1:cb: 97:70:ee:45:a4:7b:09:78:31:fe:ab:0b:14:c0:b2: d1:6e:7c:18:35:66:35:a5:7c:9d:9f:e6:2d:47:38: bb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:09:EC:B7:06:24:5F:BA:3E:96:D4:B1:7A:EB:7E:2B:2A:9A:F3:F3 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6700:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 3b:20:f0:19:8b:c4:cf:3e:fb:12:1f:9c:06:90:f0:62:56:05: 27:d7:cf:bd:44:38:62:7c:83:f1:8d:2e:a8:f8:1f:f8:df:40: e9:33:17:43:77:e1:66:c8:18:a6:fc:2f:00:f0:ce:40:9d:a4: af:62:3c:a6:65:aa:28:3b:fa:95:15:cf:94:f1:76:7d:07:09: aa:28:2c:cc:12:9a:f5:54:d2:20:fd:cb:30:5d:8b:bd:81:48: aa:0b:e5:ab:1e:e4:b2:78:58:5f:03:c7:7d:4f:ae:d2:97:42: 03:5d:de:a1:fc:65:67:13:7a:d7:2c:37:06:43:3e:c9:ad:04: 2e:39:ab:ba:57:3c:de:43:f7:01:34:3c:1b:10:c8:d9:9a:a1: b2:7f:ae:36:bd:97:56:9a:50:a1:0f:ca:03:19:c0:65:da:1b: dc:97:45:35:95:71:6b:67:bc:16:28:26:12:74:51:53:82:ac: 2c:52:70:1c:91:e2:86:21:30:5f:6f:68:d6:72:68:52:f4:02: 0a:88:96:f9:cd:8b:55:02:d0:cf:08:ed:43:58:f1:6d:73:d8: 48:ef:59:a6:23:94:07:d3:de:b9:a7:5c:c0:ec:11:22:53:c6: 2d:16:9f:c5:3c:c1:82:98:b3:16:6b:c4:a1:61:93:cd:d8:91: ee:aa:a5:46 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUOREiyE6Bnqc2/EFCpWbbGPOQedcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDQyNzAwMDAzN1oX DTI2MDcyNjIzNTk1OVowejFJMEcGA1UEBRNAM2RlM2MwYWMxZmI1ZGZlMTY3MzU0 N2UxY2YwYTRkYjg5MzU2ZjA3ZTU2ZDQ3MTIxZTBhMTFmMGU1Yzk0Zjk3MjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj21d90bY04l38Row/91l3IyT7gsj 835iTLD+4j9NUStF9z6uLEiVzur7YwSrgWsqt2qMO3kE5+wNCl7qlM1jKxYe5eSo nYV3AuCtDYdJm9eAgLAmht5PO54ROqFsFn8Yl+3rRUrKjYPPTkRHpuy03PqqShHv Bqu5zpl1OrF2z/FSoGvlcCIVTgUl2yJb6RjtUYQwwm+0KLhGLYWpXkvBqnAdXBOA Ukj0nXGcOvmh49vlJ6YBsiJQzuM4FkaOGngLvu46qV36huxOoqDnGjgD/qP9k47y 0rtMSG8AOFEX0cuXcO5FpHsJeDH+qwsUwLLRbnwYNWY1pXydn+YtRzi7QwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHkJ7LcGJF+6PpbUsXrrfisqmvPzMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2NjNjcxYzc5LTIxZjAtNGZmZi1iODk4LTU5NTk2NmVjZDFhOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABnAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQA7IPAZi8TPPvsSH5wG kPBiVgUn18+9RDhifIPxjS6o+B/430DpMxdDd+FmyBim/C8A8M5AnaSvYjymZaoo O/qVFc+U8XZ9BwmqKCzMEpr1VNIg/cswXYu9gUiqC+WrHuSyeFhfA8d9T67Sl0ID Xd6h/GVnE3rXLDcGQz7JrQQuOau6VzzeQ/cBNDwbEMjZmqGyf642vZdWmlChD8oD GcBl2hvcl0U1lXFrZ7wWKCYSdFFTgqwsUnAckeKGITBfb2jWcmhS9AIKiJb5zYtV AtDPCO1DWPFtc9hI71mmI5QH0965p1zA7BEiU8YtFp/FPMGCmLMWa8ShYZPN2JHu qqVG -----END CERTIFICATE-----Generated at Wed May 13 01:46:35 2026 by rpki-client