$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/36780eb4-ec67-447e-93dc-7aee759e06ed.roa File: 36780eb4-ec67-447e-93dc-7aee759e06ed.roa (raw, json) Hash identifier: lkevV8tVKI4fPvaUa3CbA68m/HEx4OUyWewaqCxr6vs= Subject key identifier: FB:AA:53:CB:65:EC:81:E1:F5:47:D8:F8:CA:B6:D3:B7:FB:59:F6:34 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5F36EF3E3C120497A09723810A93D226311C52EE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/36780eb4-ec67-447e-93dc-7aee759e06ed.roa Signing time: Wed 18 Feb 2026 00:00:12 +0000 ROA not before: Wed 18 Feb 2026 00:00:12 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:36:ef:3e:3c:12:04:97:a0:97:23:81:0a:93:d2:26:31:1c:52:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 18 00:00:12 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=4abd2c5ec101d3a64008474777ed966b3a4a07e7a8467ca0391951494619ad12, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5d:58:c2:50:b5:a8:13:cd:29:97:37:6d:d7: 18:8c:ee:54:82:5a:dd:e3:0a:00:76:1d:85:05:5b: 3b:1a:8f:be:76:87:b2:ba:d1:ee:b6:59:1b:76:e8: 36:51:84:00:cd:57:2d:da:05:e8:e4:22:96:3c:a4: 00:ad:d1:49:ca:84:7e:ed:4c:9d:d7:55:95:99:31: 33:15:8e:4a:71:2e:6b:a8:ed:10:7a:24:bf:5c:cb: c9:28:54:6c:1e:2e:6d:86:b8:ec:54:22:d9:b1:bd: 98:57:ca:95:0c:0a:28:00:b2:f3:89:3a:cb:82:66: af:d3:a2:89:d7:2e:97:11:5e:86:1c:99:c6:2d:59: c2:15:b4:0f:de:7b:c1:02:ef:22:36:de:ad:9a:9a: 88:a5:80:7b:96:e2:e6:3c:64:b5:d8:c0:3b:8b:6d: d5:7d:f3:a3:fd:24:f6:88:58:0e:8a:fe:7b:d8:73: 34:e0:66:31:b8:13:d1:70:6a:5a:4b:5d:18:6c:26: c8:89:1d:79:af:be:1a:12:2a:e9:10:3f:72:0e:67: 71:06:4b:c3:81:22:f5:2c:53:e6:5b:59:66:f4:50: 55:09:6b:10:fa:94:6f:97:63:bc:13:b9:f5:54:00: f2:19:fe:3a:1a:7e:ae:bf:c0:c9:16:bb:f5:ba:58: d4:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:AA:53:CB:65:EC:81:E1:F5:47:D8:F8:CA:B6:D3:B7:FB:59:F6:34 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/36780eb4-ec67-447e-93dc-7aee759e06ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00::/48 Signature Algorithm: sha256WithRSAEncryption 11:e2:51:25:9a:1c:a8:50:09:a6:f1:01:77:9d:4d:48:65:93: 96:2d:8a:5d:49:f8:12:b2:54:2e:ae:75:2e:cc:a5:c1:45:c4: 34:16:b1:62:20:62:7f:ef:61:5e:6b:fb:e4:a9:91:52:be:6c: c2:13:c7:4b:b6:61:91:2a:46:76:da:9f:e1:6c:f9:3c:b1:05: 24:59:8d:a6:0f:95:55:23:bc:94:46:55:2f:b2:42:22:64:70: 3d:31:31:2d:84:85:4c:40:c5:1b:54:bf:14:a5:35:07:ee:db: b4:2d:20:fa:66:86:a3:8d:2d:e6:cd:a6:8a:7d:ec:94:eb:83: 49:90:60:df:09:1b:22:b5:98:dd:cb:52:97:b8:97:e7:bb:7d: e1:84:29:12:3f:1e:20:db:25:b8:c4:52:92:81:39:eb:4e:42: c0:45:f7:c9:0b:10:09:5f:b6:37:46:be:86:4e:dc:a1:da:51: 89:4b:60:88:e7:4d:c3:c5:5b:1b:a7:71:a9:59:ce:7f:0f:9e: 21:f9:d1:56:92:e1:b4:da:74:d0:66:b7:01:a7:44:99:4f:53: 3e:03:53:36:a9:e8:4f:c4:12:60:87:f8:d3:b9:1c:76:0b:6c: 27:27:4c:52:51:0f:74:18:d0:ca:7e:f8:24:16:e9:8f:d3:ac: 2b:a3:5c:5d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUXzbvPjwSBJeglyOBCpPSJjEcUu4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxODAwMDAxMloX DTI2MDUxOTIzNTk1OVowejFJMEcGA1UEBRNANGFiZDJjNWVjMTAxZDNhNjQwMDg0 NzQ3NzdlZDk2NmIzYTRhMDdlN2E4NDY3Y2EwMzkxOTUxNDk0NjE5YWQxMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr11YwlC1qBPNKZc3bdcYjO5Uglrd 4woAdh2FBVs7Go++doeyutHutlkbdug2UYQAzVct2gXo5CKWPKQArdFJyoR+7Uyd 11WVmTEzFY5KcS5rqO0QeiS/XMvJKFRsHi5thrjsVCLZsb2YV8qVDAooALLziTrL gmav06KJ1y6XEV6GHJnGLVnCFbQP3nvBAu8iNt6tmpqIpYB7luLmPGS12MA7i23V ffOj/ST2iFgOiv572HM04GYxuBPRcGpaS10YbCbIiR15r74aEirpED9yDmdxBkvD gSL1LFPmW1lm9FBVCWsQ+pRvl2O8E7n1VADyGf46Gn6uv8DJFrv1uljUUwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPuqU8tl7IHh9UfY+Mq207f7WfY0MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM2NzgwZWI0LWVjNjctNDQ3ZS05M2RjLTdhZWU3NTllMDZlZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQAR4lElmhyoUAmm8QF3 nU1IZZOWLYpdSfgSslQurnUuzKXBRcQ0FrFiIGJ/72Fea/vkqZFSvmzCE8dLtmGR KkZ22p/hbPk8sQUkWY2mD5VVI7yURlUvskIiZHA9MTEthIVMQMUbVL8UpTUH7tu0 LSD6ZoajjS3mzaaKfeyU64NJkGDfCRsitZjdy1KXuJfnu33hhCkSPx4g2yW4xFKS gTnrTkLARffJCxAJX7Y3Rr6GTtyh2lGJS2CI503DxVsbp3GpWc5/D54h+dFWkuG0 2nTQZrcBp0SZT1M+A1M2qehPxBJgh/jTuRx2C2wnJ0xSUQ90GNDKfvgkFumP06wr o1xd -----END CERTIFICATE-----Generated at Sun Mar 1 21:55:29 2026 by rpki-client