$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/61c2f1a8-a964-48ab-9d69-9428cf98d4fb.roa File: 61c2f1a8-a964-48ab-9d69-9428cf98d4fb.roa (raw, json) Hash identifier: mnn5DrOKRho40u2pQhXW4ACa+oZLxu8wZJqbeEILoxU= Subject key identifier: 75:74:0E:6B:8B:4E:CF:B2:71:2C:6B:11:15:F7:CC:26:47:2F:2A:4A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5F7D5E52BFB5707952DF3ACFE23745E4CAC744E9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/61c2f1a8-a964-48ab-9d69-9428cf98d4fb.roa Signing time: Fri 20 Feb 2026 00:01:35 +0000 ROA not before: Fri 20 Feb 2026 00:01:35 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:2020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:7d:5e:52:bf:b5:70:79:52:df:3a:cf:e2:37:45:e4:ca:c7:44:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:01:35 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=8c0cb76479186a43f1ee97b2a4dbbe27a26e8a28f95f5641d7f4629bb1374523, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6c:fb:03:15:ed:d3:65:66:e8:8b:53:f9:87: 6d:7e:5b:59:23:27:8e:01:e1:59:a2:74:9d:71:9e: c5:3b:a2:78:e8:69:d6:7a:37:6e:ab:95:28:14:69: 49:5c:56:37:ea:3e:3b:01:98:20:52:b3:84:71:43: b8:b0:4c:f8:8d:bb:15:26:a5:5b:2d:51:dc:78:b5: 24:3f:ba:e1:5c:9f:c2:39:71:d5:57:60:36:a6:ab: 84:61:40:08:cb:9b:b7:16:21:9d:7c:50:1e:ef:42: 21:02:a4:8b:81:66:a4:e3:7c:b3:e9:01:3e:4a:2b: 93:a4:44:e2:0a:ee:a8:ce:ce:f5:6b:e9:7b:76:87: 2f:3d:cb:91:ed:6c:da:ae:58:30:87:18:93:72:b5: 97:76:f5:31:24:fa:79:71:d7:fa:1b:b6:5c:62:96: df:15:23:81:71:b8:12:2e:41:08:86:36:b5:14:ba: e1:fb:7f:0c:de:7e:2e:28:1b:11:3e:c8:61:e5:4f: 47:31:54:4e:03:d0:c7:52:cc:ab:ac:df:19:c7:e2: b8:9d:28:2a:74:6d:c8:58:ea:9c:85:d4:98:0a:28: 40:cc:a6:74:b0:0f:b4:0d:c1:d9:62:2c:a1:ed:f1: bb:b3:99:f2:8b:e7:6e:fd:8d:0b:f2:ed:31:e8:91: 55:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:74:0E:6B:8B:4E:CF:B2:71:2C:6B:11:15:F7:CC:26:47:2F:2A:4A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/61c2f1a8-a964-48ab-9d69-9428cf98d4fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:2020::/48 Signature Algorithm: sha256WithRSAEncryption 56:68:ea:02:d1:87:ab:91:14:38:cc:c5:78:09:aa:1a:cc:72: 97:cd:12:43:60:7a:e0:42:50:98:c1:af:7d:ee:bd:b3:72:10: 11:01:6d:09:7c:1d:66:e9:0b:5b:34:7f:81:35:f8:fc:87:8d: 1a:3a:f1:a2:61:0a:48:d3:66:44:dc:84:4a:bf:1f:6b:2a:8e: 32:b9:ac:7b:f4:2c:dd:d0:79:30:f6:e8:b0:a8:fb:a6:af:1f: 4f:a9:0e:a2:d4:c1:78:06:6a:e4:47:49:a1:57:03:65:61:d1: 09:16:51:38:ab:8e:e8:6c:a0:f4:e2:04:f8:31:96:c4:0f:5f: 03:f0:05:7d:4d:2c:e1:76:8b:19:5b:65:82:27:6c:d5:91:cf: 4a:93:87:b0:6e:48:ad:64:73:4e:21:d4:57:f8:21:04:c6:03: f1:96:77:dc:58:a1:fb:00:12:6d:dc:c2:76:2e:7a:8f:c0:0c: 40:5d:f8:bb:b3:74:3d:21:30:ea:a7:52:72:dd:9f:f2:f7:e1: 52:de:df:1e:3c:c2:22:e8:de:32:4a:20:e7:6d:c0:91:3a:62: b5:12:d4:ca:6c:ae:b4:c3:71:28:6b:62:80:bf:a1:82:27:3d: 55:6f:0d:8e:2c:c8:61:12:00:70:12:82:ab:19:6e:0a:53:bc: 20:b6:10:3f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUX31eUr+1cHlS3zrP4jdF5MrHROkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMDEzNVoX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAOGMwY2I3NjQ3OTE4NmE0M2YxZWU5 N2IyYTRkYmJlMjdhMjZlOGEyOGY5NWY1NjQxZDdmNDYyOWJiMTM3NDUyMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmz7AxXt02Vm6ItT+YdtfltZIyeO AeFZonSdcZ7FO6J46GnWejduq5UoFGlJXFY36j47AZggUrOEcUO4sEz4jbsVJqVb LVHceLUkP7rhXJ/COXHVV2A2pquEYUAIy5u3FiGdfFAe70IhAqSLgWak43yz6QE+ SiuTpETiCu6ozs71a+l7docvPcuR7WzarlgwhxiTcrWXdvUxJPp5cdf6G7ZcYpbf FSOBcbgSLkEIhja1FLrh+38M3n4uKBsRPshh5U9HMVROA9DHUsyrrN8Zx+K4nSgq dG3IWOqchdSYCihAzKZ0sA+0DcHZYiyh7fG7s5nyi+du/Y0L8u0x6JFV7QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHV0DmuLTs+ycSxrERX3zCZHLypKMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYxYzJmMWE4LWE5NjQtNDhhYi05ZDY5LTk0MjhjZjk4ZDRmYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8iAgMA0GCSqGSIb3DQEBCwUAA4IBAQBWaOoC0YerkRQ4zMV4 CaoazHKXzRJDYHrgQlCYwa997r2zchARAW0JfB1m6QtbNH+BNfj8h40aOvGiYQpI 02ZE3IRKvx9rKo4yuax79Czd0Hkw9uiwqPumrx9PqQ6i1MF4BmrkR0mhVwNlYdEJ FlE4q47obKD04gT4MZbED18D8AV9TSzhdosZW2WCJ2zVkc9Kk4ewbkitZHNOIdRX +CEExgPxlnfcWKH7ABJt3MJ2LnqPwAxAXfi7s3Q9ITDqp1Jy3Z/y9+FS3t8ePMIi 6N4ySiDnbcCROmK1EtTKbK60w3Eoa2KAv6GCJz1Vbw2OLMhhEgBwEoKrGW4KU7wg thA/ -----END CERTIFICATE-----Generated at Sun Mar 1 22:05:08 2026 by rpki-client