$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa File: 63206b2b-d620-415f-9dee-e3c63ab27be0.roa (raw, json) Hash identifier: HZ0EBJCQ2pTrLrpOePr0vSkVI+ldfYLQs9DGnhtZhbQ= Subject key identifier: B2:69:C7:63:4D:76:5E:16:6C:DA:5B:19:02:98:3D:9D:91:87:BE:03 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 44D1D9CAB6135D64F326B29BDE4598BDAE24B777 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa Signing time: Tue 17 Feb 2026 00:00:48 +0000 ROA not before: Tue 17 Feb 2026 00:00:48 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d1:d9:ca:b6:13:5d:64:f3:26:b2:9b:de:45:98:bd:ae:24:b7:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 17 00:00:48 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=5c37fd405d3be50a263b49581884254f4e11c4cb0854454fe0cf0c5766aebac4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:18:e8:33:00:19:90:d0:97:3d:d3:ba:da:1e: c1:e8:cb:80:f8:31:d3:91:a8:26:6f:c9:cc:7a:0d: 8a:92:65:b8:6f:f9:63:89:e1:33:73:3d:b3:2a:48: bf:a8:25:af:77:25:04:c3:73:74:2d:a7:f1:74:f1: f6:a6:0e:0b:46:92:fe:00:69:b5:95:51:55:8f:02: 91:13:9c:cf:53:7e:18:1e:90:d4:92:40:19:8d:12: 7d:ce:b3:cb:3c:fc:78:6e:92:70:5d:8f:98:65:ba: 6c:f1:64:b3:7e:36:0f:12:17:8a:44:52:d0:a4:01: e2:74:68:05:7f:8a:d0:77:4e:8e:a9:53:4a:a2:24: 3d:b6:e1:c2:bf:f6:f2:f4:d7:bd:16:7e:bd:a1:6e: 32:cd:97:73:1c:c4:da:78:e8:81:81:e8:d8:d8:b1: 6a:db:d8:fb:b6:a5:3b:18:91:e5:eb:52:70:18:1e: 42:6c:48:c5:43:6d:25:61:a6:a7:cb:8b:1e:9b:52: 0c:e8:96:09:48:c0:ff:7b:e4:7e:f1:29:62:8f:1e: 03:b5:ca:1c:24:2b:d8:51:23:2d:fc:81:b6:8e:04: 16:95:49:82:7d:ef:e0:92:ad:fe:4d:7d:9a:cc:75: ca:73:06:82:ed:5c:2a:50:94:6f:06:96:35:82:d9: 5a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:69:C7:63:4D:76:5E:16:6C:DA:5B:19:02:98:3D:9D:91:87:BE:03 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:8000::/48 Signature Algorithm: sha256WithRSAEncryption ac:eb:78:a2:1c:3a:58:44:e8:c5:a0:cb:1d:95:4a:b7:64:89: 0b:fa:5a:f7:30:b4:51:4c:b2:ed:e2:15:78:39:81:17:89:40: 4b:d8:c4:97:b8:d0:0f:81:6c:b4:ed:10:e3:77:4b:6a:b6:4e: bc:68:bf:6a:be:76:ad:42:ce:3b:65:f8:03:1d:56:1f:07:a8: 12:de:1f:4f:7f:23:ac:1e:0d:64:df:64:02:ba:f5:fc:6e:b8: ef:39:a3:3d:03:50:0d:d8:ed:aa:62:8c:63:de:e4:45:0a:16: 62:00:cb:02:91:e0:8b:af:54:81:57:a9:1e:3e:6f:2c:38:95: 0e:fb:40:0a:1d:5f:37:eb:70:0f:34:09:46:d2:55:26:52:93: 1c:a5:31:9c:0a:9b:f9:bd:62:ba:45:16:a0:9f:b9:cd:22:94: c6:d6:4e:7e:43:30:9b:65:4f:77:fa:04:1a:79:30:ef:99:52: fe:bc:96:ca:44:3b:dc:b1:03:3f:2c:93:c9:24:2b:9d:3c:12: 46:97:bd:03:af:6e:82:d2:bc:4b:75:cc:f8:e2:37:10:b7:fe: 3a:0f:a7:06:75:32:c9:5d:7b:6f:20:9d:95:17:64:af:73:61: 22:a1:fd:cf:d9:d8:c2:2a:7a:48:54:5d:bd:29:01:74:2d:cd: ab:10:34:f2 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURNHZyrYTXWTzJrKb3kWYva4kt3cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNzAwMDA0OFoX DTI2MDUxODIzNTk1OVowejFJMEcGA1UEBRNANWMzN2ZkNDA1ZDNiZTUwYTI2M2I0 OTU4MTg4NDI1NGY0ZTExYzRjYjA4NTQ0NTRmZTBjZjBjNTc2NmFlYmFjNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtRjoMwAZkNCXPdO62h7B6MuA+DHT kagmb8nMeg2KkmW4b/ljieEzcz2zKki/qCWvdyUEw3N0LafxdPH2pg4LRpL+AGm1 lVFVjwKRE5zPU34YHpDUkkAZjRJ9zrPLPPx4bpJwXY+YZbps8WSzfjYPEheKRFLQ pAHidGgFf4rQd06OqVNKoiQ9tuHCv/by9Ne9Fn69oW4yzZdzHMTaeOiBgejY2LFq 29j7tqU7GJHl61JwGB5CbEjFQ20lYaany4sem1IM6JYJSMD/e+R+8Slijx4Dtcoc JCvYUSMt/IG2jgQWlUmCfe/gkq3+TX2azHXKcwaC7VwqUJRvBpY1gtlahQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLJpx2NNdl4WbNpbGQKYPZ2Rh74DMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYzMjA2YjJiLWQ2MjAtNDE1Zi05ZGVlLWUzYzYzYWIyN2JlMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9oAAMA0GCSqGSIb3DQEBCwUAA4IBAQCs63iiHDpYROjFoMsd lUq3ZIkL+lr3MLRRTLLt4hV4OYEXiUBL2MSXuNAPgWy07RDjd0tqtk68aL9qvnat Qs47ZfgDHVYfB6gS3h9PfyOsHg1k32QCuvX8brjvOaM9A1AN2O2qYoxj3uRFChZi AMsCkeCLr1SBV6kePm8sOJUO+0AKHV8363APNAlG0lUmUpMcpTGcCpv5vWK6RRag n7nNIpTG1k5+QzCbZU93+gQaeTDvmVL+vJbKRDvcsQM/LJPJJCudPBJGl70Dr26C 0rxLdcz44jcQt/46D6cGdTLJXXtvIJ2VF2Svc2Eiof3P2djCKnpIVF29KQF0Lc2r EDTy -----END CERTIFICATE-----Generated at Sun Mar 1 21:50:58 2026 by rpki-client