$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6029da1d-7ade-4067-b6f0-551ead7b37a6.roa File: 6029da1d-7ade-4067-b6f0-551ead7b37a6.roa (raw, json) Hash identifier: y7M03siBmjDLsjddksCjHu/Fh4DYHTmznBUFq05IbdQ= Subject key identifier: FA:B5:38:E0:7C:24:88:46:6F:BA:87:BD:DF:BF:79:A1:D7:D6:F4:BF Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 52523A50B0DDE7C02F1AADD38260BD0AE27F9CFB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6029da1d-7ade-4067-b6f0-551ead7b37a6.roa Signing time: Sat 14 Feb 2026 00:00:10 +0000 ROA not before: Sat 14 Feb 2026 00:00:10 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab9:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:52:3a:50:b0:dd:e7:c0:2f:1a:ad:d3:82:60:bd:0a:e2:7f:9c:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 14 00:00:10 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=e19ee1516edfe970ebe2fee28af65c2b37108ab08b1741f51d4c8a2fcb4137ee, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:db:df:ca:f0:c3:8c:3b:f0:cb:96:d6:1d:92: 93:f6:de:75:bc:69:78:a6:5a:79:57:e2:bb:c5:69: c2:d4:0e:ab:9e:43:88:54:35:23:11:2a:e9:89:a7: bf:21:cb:6c:80:bf:a9:ca:a8:51:a9:eb:97:31:fb: fe:9f:1f:7c:47:17:e3:0c:f7:4c:10:78:7e:2d:09: 72:48:5c:d4:be:f6:57:9c:8e:55:83:3d:40:93:fa: dc:5c:b5:5b:a9:ab:40:8f:cd:f7:87:04:f8:5d:77: 6b:6e:60:01:a3:3e:26:03:f0:bc:4d:a6:7d:15:13: e8:7e:47:cb:5d:fd:4d:10:e5:1e:af:2a:58:8d:a1: 03:b2:14:d8:45:1a:b7:b9:e7:e1:5f:81:1e:88:a6: e6:f7:e3:eb:6a:7e:ed:c5:5c:8a:61:0c:01:99:49: 28:40:94:1f:2b:96:0e:5e:58:7a:cb:ad:87:69:e3: 8b:46:ca:18:16:95:0d:30:8e:4b:a6:db:8c:51:39: c6:bb:7a:a4:67:8b:db:65:13:58:5c:b5:3d:81:2d: 6f:c3:db:a5:e1:6f:c1:ce:ad:4e:5d:29:6a:3d:bc: aa:57:7b:cc:75:1b:4e:f2:5f:d8:c6:67:4c:f7:ff: fc:b8:9d:ac:06:31:1a:7f:56:a0:0a:0c:88:59:da: 14:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B5:38:E0:7C:24:88:46:6F:BA:87:BD:DF:BF:79:A1:D7:D6:F4:BF X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6029da1d-7ade-4067-b6f0-551ead7b37a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:2800::/40 Signature Algorithm: sha256WithRSAEncryption 0b:28:79:2e:d0:9c:aa:28:c1:dc:ff:c8:39:92:61:88:5d:b3: 2d:8a:09:22:fa:86:66:12:df:d4:6f:0c:08:0d:d5:ab:81:6d: fa:f8:af:65:04:9c:5e:79:0f:b3:7f:db:58:11:16:ea:67:2c: 5f:3c:9e:ef:a3:01:e5:9b:ff:52:3c:12:b0:d2:aa:7b:0c:33: 24:cd:da:c5:f4:16:c9:23:74:9c:99:9b:9b:55:bb:4b:d6:41: c6:65:8f:2d:fa:5b:96:03:aa:d8:2b:76:50:e3:bc:2c:39:9a: 1f:40:90:77:a1:22:b3:8f:6d:16:21:63:d4:86:ba:7d:a0:cf: 59:b3:1f:e8:d9:88:9f:7f:b1:d1:ea:52:8e:ee:2e:c1:52:5f: 73:2a:e8:f5:cb:1e:a7:94:1a:fc:84:ce:40:9d:1a:c9:06:ad: fc:60:ef:b5:6d:aa:cd:13:03:e4:40:2f:b2:00:a4:79:9d:f4: 4d:32:89:45:bb:00:9b:39:75:28:ff:16:6e:8c:4c:fb:8b:d4: a0:f1:66:f9:db:58:8d:33:82:1f:79:98:f4:26:2e:97:ca:b3: 71:47:c2:02:4a:f2:87:11:f8:51:17:ab:d4:e2:99:93:f6:50: f3:68:68:ed:df:7e:10:a4:58:73:ff:d2:07:98:cd:81:fe:f5: 1c:23:0f:72 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUlI6ULDd58AvGq3TgmC9CuJ/nPswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNDAwMDAxMFoX DTI2MDUxNTIzNTk1OVowejFJMEcGA1UEBRNAZTE5ZWUxNTE2ZWRmZTk3MGViZTJm ZWUyOGFmNjVjMmIzNzEwOGFiMDhiMTc0MWY1MWQ0YzhhMmZjYjQxMzdlZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9vfyvDDjDvwy5bWHZKT9t51vGl4 plp5V+K7xWnC1A6rnkOIVDUjESrpiae/IctsgL+pyqhRqeuXMfv+nx98RxfjDPdM EHh+LQlySFzUvvZXnI5Vgz1Ak/rcXLVbqatAj833hwT4XXdrbmABoz4mA/C8TaZ9 FRPofkfLXf1NEOUerypYjaEDshTYRRq3uefhX4EeiKbm9+Pran7txVyKYQwBmUko QJQfK5YOXlh6y62HaeOLRsoYFpUNMI5LptuMUTnGu3qkZ4vbZRNYXLU9gS1vw9ul 4W/Bzq1OXSlqPbyqV3vMdRtO8l/YxmdM9//8uJ2sBjEaf1agCgyIWdoUUQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPq1OOB8JIhGb7qHvd+/eaHX1vS/MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYwMjlkYTFkLTdhZGUtNDA2Ny1iNmYwLTU1MWVhZDdiMzdhNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauSgwDQYJKoZIhvcNAQELBQADggEBAAsoeS7QnKoowdz/yDmS YYhdsy2KCSL6hmYS39RvDAgN1auBbfr4r2UEnF55D7N/21gRFupnLF88nu+jAeWb /1I8ErDSqnsMMyTN2sX0FskjdJyZm5tVu0vWQcZljy36W5YDqtgrdlDjvCw5mh9A kHehIrOPbRYhY9SGun2gz1mzH+jZiJ9/sdHqUo7uLsFSX3Mq6PXLHqeUGvyEzkCd GskGrfxg77Vtqs0TA+RAL7IApHmd9E0yiUW7AJs5dSj/Fm6MTPuL1KDxZvnbWI0z gh95mPQmLpfKs3FHwgJK8ocR+FEXq9TimZP2UPNoaO3ffhCkWHP/0geYzYH+9Rwj D3I= -----END CERTIFICATE-----Generated at Sun Mar 1 23:56:48 2026 by rpki-client