$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b0a1718-18f7-4dd8-a3c9-60bf22fc5b0e.roa File: 6b0a1718-18f7-4dd8-a3c9-60bf22fc5b0e.roa (raw, json) Hash identifier: DWN0NGfegK2e+37rPqOKzXI/WDNGSjzATjwrZWsOCJE= Subject key identifier: F1:13:76:80:3D:8D:DE:17:B4:7F:0B:61:E8:92:FD:EB:63:F8:C2:23 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 48E817B0A57CF3B86A37767C86B7C33F97407774 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b0a1718-18f7-4dd8-a3c9-60bf22fc5b0e.roa Signing time: Sun 31 May 2026 00:20:29 +0000 ROA not before: Sun 31 May 2026 00:20:29 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daba:1080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 00:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:e8:17:b0:a5:7c:f3:b8:6a:37:76:7c:86:b7:c3:3f:97:40:77:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 31 00:20:29 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=94580bcc42b2222286e61cfc144b092abf308a10c765ef1b143769b3a9fa6f6c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d4:fe:96:0c:61:a8:75:b3:6b:9e:1b:60:ee: 21:04:03:7e:fb:36:6f:46:c4:9f:6e:26:5d:0a:fb: 5b:24:2d:46:39:79:d9:04:16:b0:42:52:dd:3f:07: 3a:fa:ec:86:d3:6b:c6:bc:bc:98:8d:20:bc:e8:4f: 8d:70:80:b1:2c:05:ac:0c:85:64:12:d3:bf:71:0e: d0:e6:e0:d6:09:5b:5a:e7:4b:85:20:93:db:fd:15: 95:e1:58:53:8a:8c:80:b9:34:be:6f:b2:92:36:cb: 0b:2b:c8:53:b0:70:5c:93:87:b6:e5:5c:e1:9e:62: ac:e8:e2:cb:a9:86:0d:2c:d0:41:9a:3d:17:8a:d1: ef:c5:5f:d2:9b:b7:86:3e:95:22:49:a0:bb:23:01: b5:17:a8:96:70:b9:a0:f9:45:d7:f8:34:a7:e0:9f: bc:c4:85:db:b6:94:79:5a:db:d8:f1:21:c0:bc:b8: 10:a3:42:a0:ff:a2:81:84:81:63:41:9b:1a:85:85: 2d:6e:82:9f:7a:a5:60:c2:1f:f4:5c:92:3e:fa:36: c0:17:2f:e3:92:3e:b3:45:65:de:08:7e:e2:eb:14: 59:24:d9:26:a0:df:98:fb:c5:95:2a:e5:63:5f:33: b2:9d:04:f9:d8:55:91:0b:41:96:4c:93:17:d8:4b: bc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:13:76:80:3D:8D:DE:17:B4:7F:0B:61:E8:92:FD:EB:63:F8:C2:23 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b0a1718-18f7-4dd8-a3c9-60bf22fc5b0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daba:1080::/48 Signature Algorithm: sha256WithRSAEncryption 86:f7:45:08:a7:eb:94:04:dd:3b:13:87:1d:f9:f0:3f:e8:73: fb:ad:a4:ac:4a:25:29:0c:ae:02:25:3f:13:8f:8d:6e:e8:77: d7:14:eb:4d:2f:e0:66:54:98:01:e9:23:ab:95:d8:94:b2:9c: aa:d5:27:12:6b:b5:8a:50:51:b5:32:78:7f:3a:5a:c4:8c:80: 79:c1:4b:e4:2f:ab:53:5e:ca:91:37:78:b5:1b:19:fc:d0:b1: 29:91:04:b9:c3:f7:92:e3:23:e6:79:9d:55:73:b8:b6:9a:74: 31:bd:36:4a:fd:d7:08:80:de:d7:ab:c9:e0:b0:33:ad:1e:61: dd:1e:92:9d:12:e5:c1:be:d2:69:6d:d1:30:02:b7:97:dd:40: c4:3b:f4:6b:70:9c:8e:72:e5:dc:25:1c:f1:16:ac:d3:90:05: ad:1b:63:70:71:19:cd:c4:a9:52:6c:1d:73:e3:2e:a7:37:1d: d6:bc:b5:ab:86:3d:cf:1e:d7:ed:f0:fc:b4:83:73:0f:ac:67: e3:c7:dd:06:39:f3:60:91:8a:87:be:09:50:36:b0:97:4f:02: d9:6d:52:b9:0f:67:00:1c:a5:7f:e3:be:dd:7b:d7:cc:4b:f7: f6:18:91:8b:6e:a9:6a:1e:94:8e:b7:ad:41:96:c5:c5:1c:27: f7:19:48:7d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUSOgXsKV887hqN3Z8hrfDP5dAd3QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUzMTAwMjAyOVoX DTI2MDgyOTIzNTk1OVowejFJMEcGA1UEBRNAOTQ1ODBiY2M0MmIyMjIyMjg2ZTYx Y2ZjMTQ0YjA5MmFiZjMwOGExMGM3NjVlZjFiMTQzNzY5YjNhOWZhNmY2YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdT+lgxhqHWza54bYO4hBAN++zZv RsSfbiZdCvtbJC1GOXnZBBawQlLdPwc6+uyG02vGvLyYjSC86E+NcICxLAWsDIVk EtO/cQ7Q5uDWCVta50uFIJPb/RWV4VhTioyAuTS+b7KSNssLK8hTsHBck4e25Vzh nmKs6OLLqYYNLNBBmj0XitHvxV/Sm7eGPpUiSaC7IwG1F6iWcLmg+UXX+DSn4J+8 xIXbtpR5WtvY8SHAvLgQo0Kg/6KBhIFjQZsahYUtboKfeqVgwh/0XJI++jbAFy/j kj6zRWXeCH7i6xRZJNkmoN+Y+8WVKuVjXzOynQT52FWRC0GWTJMX2Eu8CwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPETdoA9jd4XtH8LYeiS/etj+MIjMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZiMGExNzE4LTE4ZjctNGRkOC1hM2M5LTYwYmYyMmZjNWIwZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbauhCAMA0GCSqGSIb3DQEBCwUAA4IBAQCG90UIp+uUBN07E4cd +fA/6HP7raSsSiUpDK4CJT8Tj41u6HfXFOtNL+BmVJgB6SOrldiUspyq1ScSa7WK UFG1Mnh/OlrEjIB5wUvkL6tTXsqRN3i1Gxn80LEpkQS5w/eS4yPmeZ1Vc7i2mnQx vTZK/dcIgN7Xq8ngsDOtHmHdHpKdEuXBvtJpbdEwAreX3UDEO/RrcJyOcuXcJRzx FqzTkAWtG2NwcRnNxKlSbB1z4y6nNx3WvLWrhj3PHtft8Py0g3MPrGfjx90GOfNg kYqHvglQNrCXTwLZbVK5D2cAHKV/477de9fMS/f2GJGLbqlqHpSOt61BlsXFHCf3 GUh9 -----END CERTIFICATE-----Generated at Wed Jun 17 08:56:49 2026 by rpki-client