$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/184e3b6c-ab7a-4146-87de-73414e79502c.roa File: 184e3b6c-ab7a-4146-87de-73414e79502c.roa (raw, json) Hash identifier: FMKxU7HjVlczuy0OLNiE5jke3rRVsqdPoGS21Rpha/k= Subject key identifier: B6:45:15:05:69:8B:D3:77:93:89:FD:E8:6D:DA:93:8A:6C:2C:EB:F9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 243FBCA770C6896ABA380617D0721C3F8C58AF53 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/184e3b6c-ab7a-4146-87de-73414e79502c.roa Signing time: Sat 21 Feb 2026 00:10:14 +0000 ROA not before: Sat 21 Feb 2026 00:10:14 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:3f:bc:a7:70:c6:89:6a:ba:38:06:17:d0:72:1c:3f:8c:58:af:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 21 00:10:14 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=f0d57ca7edfbba964491edbb39341ca4571112fedcf26e82cbdd9f6c0ea2c8f0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:54:bd:80:34:0e:28:e7:0e:2b:e0:b0:fc: 8b:fb:1c:52:39:85:f6:fc:8a:4b:77:67:2c:03:6a: 50:9e:b4:2c:01:be:4b:ec:62:2e:6c:84:55:93:32: 01:b4:23:bb:d1:81:b6:25:7a:1e:0e:f6:25:b8:52: fe:1d:e2:47:77:17:85:20:ec:40:d4:2c:31:43:50: f9:46:2f:75:a3:30:82:1a:ba:6f:b9:96:f2:0e:43: f6:2a:f6:42:17:32:bb:25:ef:fa:8b:cd:4d:4c:be: 5d:44:61:22:07:e8:7c:b8:eb:ef:76:c0:17:67:ab: b6:a4:ef:96:e6:a1:c5:45:60:a2:0f:4c:f4:a6:e1: 90:6a:66:38:db:3e:71:be:11:8e:ce:84:02:00:d6: 02:b3:2d:e7:4a:68:31:55:b1:0a:f7:6d:33:e0:ef: 04:3b:04:c2:4e:44:f0:61:07:36:35:76:f8:80:aa: b5:1a:12:69:fb:0b:7f:a4:4c:94:b7:12:44:9a:9f: 78:80:e8:03:e2:d1:38:eb:69:8d:0c:d4:fd:c9:74: b6:88:7a:05:16:67:aa:ea:bd:41:96:86:be:9e:8e: 53:ff:0a:24:73:99:a1:aa:5b:c6:5e:2f:2e:90:ad: 97:4b:bd:2f:d3:9a:97:1d:1d:22:67:38:1e:62:1b: a0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:45:15:05:69:8B:D3:77:93:89:FD:E8:6D:DA:93:8A:6C:2C:EB:F9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/184e3b6c-ab7a-4146-87de-73414e79502c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:c000::/40 Signature Algorithm: sha256WithRSAEncryption 52:ea:21:13:f5:63:8d:a4:52:dd:cb:f0:ad:04:f9:d2:f5:dd: 23:3d:9e:dd:e5:a9:71:47:cd:fe:57:38:72:71:71:82:81:57: 95:69:22:74:16:fb:2b:ea:21:06:77:06:a1:c0:fd:cc:c3:77: 24:ca:30:4b:6a:22:90:1a:95:79:b6:8d:aa:d1:75:78:ff:c3: 1d:f5:2a:26:69:c5:b7:7f:7e:fb:b9:d3:ab:ee:c4:b8:e2:f3: 81:1d:2c:15:69:05:91:0e:27:e5:cd:b1:21:45:a0:7f:44:e0: 30:06:1f:7e:cc:03:36:c3:ac:6e:68:11:d9:c7:eb:88:6a:fc: b5:08:b0:9a:66:f3:6f:f4:55:0c:a0:ac:7f:8e:da:bf:97:ea: 19:83:66:15:d9:d1:6f:c5:c6:4a:99:f1:80:91:ca:fa:5f:e8: d0:05:48:a0:52:bd:51:41:14:1d:95:0a:3b:3f:02:d8:98:e3: ea:02:b8:e8:23:6b:79:5e:dd:65:40:5c:26:65:b6:bb:7c:68: a3:c9:4d:b0:5f:f7:28:4a:4e:8a:a0:b4:de:be:83:a6:4f:eb: 80:d7:6f:37:b8:54:3f:90:5c:8e:69:29:f9:09:c4:10:be:68: 8b:e2:2a:e2:55:ca:95:2f:21:3f:2d:a0:31:93:89:ef:05:62: 84:8d:a9:d1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJD+8p3DGiWq6OAYX0HIcP4xYr1MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMTAwMTAxNFoX DTI2MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAZjBkNTdjYTdlZGZiYmE5NjQ0OTFl ZGJiMzkzNDFjYTQ1NzExMTJmZWRjZjI2ZTgyY2JkZDlmNmMwZWEyYzhmMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCBUvYA0DijnDivgsPyL+xxSOYX2 /IpLd2csA2pQnrQsAb5L7GIubIRVkzIBtCO70YG2JXoeDvYluFL+HeJHdxeFIOxA 1CwxQ1D5Ri91ozCCGrpvuZbyDkP2KvZCFzK7Je/6i81NTL5dRGEiB+h8uOvvdsAX Z6u2pO+W5qHFRWCiD0z0puGQamY42z5xvhGOzoQCANYCsy3nSmgxVbEK920z4O8E OwTCTkTwYQc2NXb4gKq1GhJp+wt/pEyUtxJEmp94gOgD4tE462mNDNT9yXS2iHoF Fmeq6r1Bloa+no5T/wokc5mhqlvGXi8ukK2XS70v05qXHR0iZzgeYhugjQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLZFFQVpi9N3k4n96G3ak4psLOv5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzE4NGUzYjZjLWFiN2EtNDE0Ni04N2RlLTczNDE0ZTc5NTAyYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaacAwDQYJKoZIhvcNAQELBQADggEBAFLqIRP1Y42kUt3L8K0E +dL13SM9nt3lqXFHzf5XOHJxcYKBV5VpInQW+yvqIQZ3BqHA/czDdyTKMEtqIpAa lXm2jarRdXj/wx31KiZpxbd/fvu506vuxLji84EdLBVpBZEOJ+XNsSFFoH9E4DAG H37MAzbDrG5oEdnH64hq/LUIsJpm82/0VQygrH+O2r+X6hmDZhXZ0W/FxkqZ8YCR yvpf6NAFSKBSvVFBFB2VCjs/AtiY4+oCuOgja3le3WVAXCZltrt8aKPJTbBf9yhK ToqgtN6+g6ZP64DXbze4VD+QXI5pKfkJxBC+aIviKuJVypUvIT8toDGTie8FYoSN qdE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:35 2026 by rpki-client