$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b0a1579-844b-4192-8162-b5c113e8eea7.roa File: 6b0a1579-844b-4192-8162-b5c113e8eea7.roa (raw, json) Hash identifier: 4h50irJN6PbYnB9ah1kvQpDqf9btGZtJtrM3Qp+Tyvs= Subject key identifier: 2A:E1:A8:07:05:C3:B8:6E:DD:BD:3D:37:8B:AC:52:BB:E6:36:06:32 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 35F5D7E144EC954315D54DFDDF97B6ACCD4AF3CE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b0a1579-844b-4192-8162-b5c113e8eea7.roa Signing time: Sun 22 Feb 2026 00:41:05 +0000 ROA not before: Sun 22 Feb 2026 00:41:05 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da19::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f5:d7:e1:44:ec:95:43:15:d5:4d:fd:df:97:b6:ac:cd:4a:f3:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:41:05 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=45cce246cdd69a91ea9177089a95e93ffd5b0d044fe4495de8f124b64f3a8784, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:36:17:72:d3:a8:25:f2:88:7e:de:d7:94:f8: fa:03:3b:4c:01:57:91:a3:32:35:87:85:02:a9:ac: 64:35:d8:e9:de:c2:3d:33:7e:c6:92:32:b5:a6:be: f2:d0:91:5f:4b:7a:29:1c:8c:bb:75:82:fb:16:2d: 6e:fc:be:72:08:a1:5e:0c:b6:13:da:e2:0b:4a:ec: 88:74:e9:ec:ae:9f:f5:d9:52:66:84:50:94:fb:aa: 98:fc:25:3b:5e:4f:94:35:19:6c:54:f2:1b:30:ea: f4:48:a5:b4:34:33:e4:cd:2a:88:fd:0f:f3:a0:69: 0d:6e:c1:61:24:f8:5d:ec:91:b7:94:e5:6e:a1:8e: 40:aa:84:b2:d5:cb:99:cb:6d:22:b5:4f:7e:3b:fd: 8f:c7:2d:16:74:fe:03:9d:80:92:3f:ac:81:1e:15: 10:79:37:78:1c:6f:42:1e:ca:c1:02:f1:d5:86:d3: 2e:d2:25:ae:9b:19:c1:60:b9:69:e5:75:d9:b9:c3: da:5b:4e:b5:b7:5e:61:c6:fa:cb:77:62:96:2f:25: 5e:fb:31:e1:4f:45:a1:91:d1:7f:a5:72:72:6c:c4: 8e:91:61:82:71:eb:89:53:4f:13:30:b6:67:3c:de: 84:8a:4b:19:27:ff:64:a4:58:54:f1:ee:e7:5f:14: fa:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E1:A8:07:05:C3:B8:6E:DD:BD:3D:37:8B:AC:52:BB:E6:36:06:32 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b0a1579-844b-4192-8162-b5c113e8eea7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da19::/36 Signature Algorithm: sha256WithRSAEncryption 65:d6:98:53:11:fd:7e:a3:57:a3:7d:80:81:a2:2f:31:e8:1f: 1e:76:0b:d5:66:ef:1c:cd:23:a7:6c:6e:aa:f6:8f:31:d6:61: 2e:d7:39:3b:19:e0:64:a8:d6:f1:95:cb:61:50:ab:a1:5f:50: 00:75:af:dc:6d:52:66:d2:c3:36:f6:99:87:de:63:54:14:98: 5c:1e:12:33:7e:37:c8:40:2d:d2:b5:3b:c4:e2:8d:a4:f1:d2: eb:d2:1e:64:42:b7:ae:37:6f:73:ec:60:1e:20:52:65:1c:70: ae:30:38:bc:e3:43:43:de:25:f4:b0:eb:c6:58:da:0f:6f:98: 5f:24:76:66:28:c6:de:c5:9c:1e:5a:bf:80:6a:fd:21:e4:4f: bc:31:58:fc:46:bf:19:9e:8d:a8:11:8e:48:62:3e:5f:88:2a: e7:9e:4a:46:7c:50:1f:45:c4:9a:d8:e5:17:09:8e:16:f4:af: 8d:c9:49:09:96:bb:ae:41:fa:7d:bd:37:1e:27:e1:54:b2:b2: 7b:64:d6:54:b6:0b:fd:48:b2:6d:47:39:81:2f:3d:bf:5f:fc: 9f:ce:8d:12:9f:1b:f9:35:80:46:78:bb:c4:ee:ce:33:b1:bd: fb:f6:e5:99:6a:83:17:46:2d:29:44:d7:63:59:b0:e0:2c:15: 3b:61:47:9c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNfXX4UTslUMV1U3935e2rM1K884wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwNDEwNVoX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNANDVjY2UyNDZjZGQ2OWE5MWVhOTE3 NzA4OWE5NWU5M2ZmZDViMGQwNDRmZTQ0OTVkZThmMTI0YjY0ZjNhODc4NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjYXctOoJfKIft7XlPj6AztMAVeR ozI1h4UCqaxkNdjp3sI9M37GkjK1pr7y0JFfS3opHIy7dYL7Fi1u/L5yCKFeDLYT 2uILSuyIdOnsrp/12VJmhFCU+6qY/CU7Xk+UNRlsVPIbMOr0SKW0NDPkzSqI/Q/z oGkNbsFhJPhd7JG3lOVuoY5AqoSy1cuZy20itU9+O/2Pxy0WdP4DnYCSP6yBHhUQ eTd4HG9CHsrBAvHVhtMu0iWumxnBYLlp5XXZucPaW061t15hxvrLd2KWLyVe+zHh T0WhkdF/pXJybMSOkWGCceuJU08TMLZnPN6EiksZJ/9kpFhU8e7nXxT64QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCrhqAcFw7hu3b09N4usUrvmNgYyMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZiMGExNTc5LTg0NGItNDE5Mi04MTYyLWI1YzExM2U4ZWVhNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaGQAwDQYJKoZIhvcNAQELBQADggEBAGXWmFMR/X6jV6N9gIGi LzHoHx52C9Vm7xzNI6dsbqr2jzHWYS7XOTsZ4GSo1vGVy2FQq6FfUAB1r9xtUmbS wzb2mYfeY1QUmFweEjN+N8hALdK1O8TijaTx0uvSHmRCt643b3PsYB4gUmUccK4w OLzjQ0PeJfSw68ZY2g9vmF8kdmYoxt7FnB5av4Bq/SHkT7wxWPxGvxmejagRjkhi Pl+IKueeSkZ8UB9FxJrY5RcJjhb0r43JSQmWu65B+n29Nx4n4VSysntk1lS2C/1I sm1HOYEvPb9f/J/OjRKfG/k1gEZ4u8TuzjOxvfv25ZlqgxdGLSlE12NZsOAsFTth R5w= -----END CERTIFICATE-----Generated at Sun Mar 1 22:12:18 2026 by rpki-client