$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/31d82ebe-09a5-48fe-8169-b4de58988b94.roa File: 31d82ebe-09a5-48fe-8169-b4de58988b94.roa (raw, json) Hash identifier: d0qnQ30ds7KYX5oWpDM0KX5/UkzecBMugzbu0mmXbWo= Subject key identifier: 67:9F:DE:D7:F6:4C:81:C2:09:CE:3B:23:2D:7F:ED:FA:0A:29:EC:28 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4280927916CD36B21AF8FE91B36CA7FE831B9EFE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/31d82ebe-09a5-48fe-8169-b4de58988b94.roa Signing time: Sun 22 Feb 2026 00:10:07 +0000 ROA not before: Sun 22 Feb 2026 00:10:07 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1a::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:80:92:79:16:cd:36:b2:1a:f8:fe:91:b3:6c:a7:fe:83:1b:9e:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:10:07 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=ecfd5bb42983615ce17231f6324594ba04732d76ec1ef761280c0da7b1978928, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fa:c6:9a:4a:e9:b7:ca:88:22:eb:81:f7:48: 49:92:c7:b2:3e:be:ec:68:09:1d:99:9e:73:5a:8c: e2:f7:32:fe:8d:5e:d0:a4:58:1a:4e:c3:b2:5b:5a: f6:7b:a5:5c:46:5b:73:46:60:59:e5:ff:61:cd:83: 60:a5:ca:7a:a3:3b:1d:b1:62:08:27:a0:c6:5d:ba: 5f:39:81:82:2c:87:18:8e:03:23:af:5c:87:fa:86: 10:61:36:dc:76:4c:00:74:15:78:29:6a:b6:d2:8c: c4:d1:7b:b4:f3:d9:09:a8:99:93:8b:b5:79:b7:bf: bc:d6:52:51:4a:1c:37:ae:33:0d:76:f4:50:5d:69: 9d:fe:34:c3:3b:2a:94:c6:a6:e0:9d:a3:4c:58:4b: 3d:5c:31:8c:e4:c4:98:66:d2:13:2e:20:71:85:80: 75:f7:b0:ff:06:9b:c7:f8:37:80:d5:82:56:db:c3: f3:37:7b:6c:4b:00:5e:de:06:f2:16:2d:12:fb:ef: bd:9a:09:67:05:5d:4a:c0:1b:7c:ee:cb:d8:c5:5e: f4:fe:91:93:61:00:7d:c4:d3:03:91:60:1a:ac:b5: 4d:66:71:40:28:80:c9:25:39:73:f4:89:3c:0d:cc: 60:8b:a6:15:49:41:82:f3:15:7f:23:a9:48:94:7a: c9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:9F:DE:D7:F6:4C:81:C2:09:CE:3B:23:2D:7F:ED:FA:0A:29:EC:28 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/31d82ebe-09a5-48fe-8169-b4de58988b94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1a::/36 Signature Algorithm: sha256WithRSAEncryption 31:c4:58:11:38:27:53:8e:ce:59:dd:48:e0:ae:44:d6:98:1f: 65:8c:ce:08:0c:1b:8d:3a:fe:e1:e0:dd:0a:32:0f:ae:30:9a: 73:82:1d:ff:a6:d6:bd:bd:52:60:3d:8e:9c:cb:c8:99:92:f0: 21:e6:2e:df:a1:c2:0a:47:e6:59:9d:8e:8e:14:93:a1:d2:f9: 19:fb:12:e5:0a:27:ed:09:2f:a7:fc:57:ec:a9:27:35:c0:ac: d1:7d:4e:3c:cd:bf:bf:16:03:e4:70:c4:50:65:92:52:18:e6: 1f:8c:e6:52:05:9d:bd:b0:0d:5d:ff:a8:06:ca:eb:db:46:d8: 0f:d1:23:69:5c:c2:c4:3e:86:29:da:73:80:7d:75:d6:46:37: 48:e9:e1:f5:af:b5:f7:af:25:02:3e:60:67:8b:1e:41:f9:0e: 83:79:fd:d6:eb:e3:d4:35:eb:df:46:16:70:7c:50:99:f5:bf: 63:71:0d:27:23:16:6b:33:1d:e6:66:04:2f:b7:a5:cd:4a:36: e8:d8:79:4f:80:17:12:74:7f:2b:af:c7:e9:14:a5:55:09:04: e1:34:93:47:36:e0:c8:77:18:8a:9c:0a:e4:04:67:d4:65:72: 58:4f:05:2f:33:48:7a:54:c9:f9:86:b4:8d:05:cf:28:39:48: f8:ff:31:2e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUQoCSeRbNNrIa+P6Rs2yn/oMbnv4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMTAwN1oX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAZWNmZDViYjQyOTgzNjE1Y2UxNzIz MWY2MzI0NTk0YmEwNDczMmQ3NmVjMWVmNzYxMjgwYzBkYTdiMTk3ODkyODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfrGmkrpt8qIIuuB90hJkseyPr7s aAkdmZ5zWozi9zL+jV7QpFgaTsOyW1r2e6VcRltzRmBZ5f9hzYNgpcp6ozsdsWII J6DGXbpfOYGCLIcYjgMjr1yH+oYQYTbcdkwAdBV4KWq20ozE0Xu089kJqJmTi7V5 t7+81lJRShw3rjMNdvRQXWmd/jTDOyqUxqbgnaNMWEs9XDGM5MSYZtITLiBxhYB1 97D/BpvH+DeA1YJW28PzN3tsSwBe3gbyFi0S+++9mglnBV1KwBt87svYxV70/pGT YQB9xNMDkWAarLVNZnFAKIDJJTlz9Ik8Dcxgi6YVSUGC8xV/I6lIlHrJFwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGef3tf2TIHCCc47Iy1/7foKKewoMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzMxZDgyZWJlLTA5YTUtNDhmZS04MTY5LWI0ZGU1ODk4OGI5NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaGgAwDQYJKoZIhvcNAQELBQADggEBADHEWBE4J1OOzlndSOCu RNaYH2WMzggMG406/uHg3QoyD64wmnOCHf+m1r29UmA9jpzLyJmS8CHmLt+hwgpH 5lmdjo4Uk6HS+Rn7EuUKJ+0JL6f8V+ypJzXArNF9TjzNv78WA+RwxFBlklIY5h+M 5lIFnb2wDV3/qAbK69tG2A/RI2lcwsQ+hinac4B9ddZGN0jp4fWvtfevJQI+YGeL HkH5DoN5/dbr49Q1699GFnB8UJn1v2NxDScjFmszHeZmBC+3pc1KNujYeU+AFxJ0 fyuvx+kUpVUJBOE0k0c24Mh3GIqcCuQEZ9RlclhPBS8zSHpUyfmGtI0Fzyg5SPj/ MS4= -----END CERTIFICATE-----Generated at Sun Mar 1 22:12:03 2026 by rpki-client