$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b32b47b-b0c8-4453-89b7-6542c0f942d3.roa File: 6b32b47b-b0c8-4453-89b7-6542c0f942d3.roa (raw, json) Hash identifier: X7I1v7Aq7JqKDC9zmELQ/vk58h/I2msSSmsccYa2eoU= Subject key identifier: D7:E5:BF:18:4B:2A:70:AF:EB:47:E4:E5:1C:F9:5B:9E:C3:EF:62:91 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4A417E91E5EF33A75130B19D2BC0FCB2ABCBC0EC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b32b47b-b0c8-4453-89b7-6542c0f942d3.roa Signing time: Fri 20 Feb 2026 00:20:49 +0000 ROA not before: Fri 20 Feb 2026 00:20:49 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:c040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:41:7e:91:e5:ef:33:a7:51:30:b1:9d:2b:c0:fc:b2:ab:cb:c0:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:20:49 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=abe3028d167bbd804f83aef6cfa6bd0935f1578079867eb5202b62a53c4a2aaa, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:88:24:aa:aa:a8:64:cf:a0:bf:10:95:a6:55: a3:36:f2:8a:e3:ca:2a:4c:fa:f1:9c:66:79:af:99: 1a:43:16:d1:d0:cf:6b:ea:47:6f:71:e7:a5:7a:05: 75:9b:b2:8e:50:5c:04:53:10:de:63:47:34:65:34: 0a:cb:5c:27:8b:f7:40:50:db:1e:24:c3:4c:ca:0f: 64:52:f5:92:4c:a1:20:cb:4c:79:b0:18:a3:4b:19: 81:23:06:ad:bd:b3:1a:4c:46:e5:e2:34:ea:db:05: 93:99:b8:c6:48:31:0e:f9:69:8d:25:ae:7d:4c:60: c6:89:be:a5:33:7b:ee:c2:52:c7:2a:4c:4c:05:7a: 2d:fe:8c:3e:22:1c:d6:3f:7e:17:ba:5f:cf:15:ff: 2f:de:df:87:ae:88:05:a3:f6:91:0a:dc:b0:93:6d: c0:3f:46:cc:75:a3:e4:e0:94:99:fd:65:28:81:d3: 54:5c:a7:c2:87:c6:a9:42:63:3a:45:5a:02:38:94: 15:a8:35:14:31:46:a4:55:69:6c:64:04:e3:ed:f5: 13:ff:f5:72:0b:93:25:03:93:a1:c3:40:30:5c:42: 8b:7d:7c:fb:09:87:e9:5b:07:06:5d:9e:e5:53:0c: 0f:93:f7:3d:be:c9:2b:d4:46:3b:51:36:83:04:be: d8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E5:BF:18:4B:2A:70:AF:EB:47:E4:E5:1C:F9:5B:9E:C3:EF:62:91 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b32b47b-b0c8-4453-89b7-6542c0f942d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:c040::/48 Signature Algorithm: sha256WithRSAEncryption b9:bb:91:9f:d0:3a:05:8d:64:d9:d6:93:d2:1b:be:ce:60:84: 56:44:0c:bf:c6:2d:de:c3:ac:8d:8f:4d:4b:df:db:d7:b7:d9: 2b:cd:ee:cf:2c:e2:3a:9f:04:fb:00:50:4f:19:98:1d:8f:ac: 7a:67:61:2b:0b:8d:07:53:49:44:59:67:37:81:0d:8d:24:00: 68:c4:65:e3:86:20:30:37:27:11:76:e8:10:27:8b:8e:76:ed: f3:3b:91:1a:0d:44:eb:d7:ec:cf:6d:d3:fd:af:97:78:85:f1: 55:d2:8a:f6:45:46:16:39:8b:f2:f4:7e:74:d2:6f:f0:d3:44: ce:12:e9:58:e9:3e:29:79:52:43:c2:d0:a8:a0:21:31:04:62: 7e:e4:36:11:4d:f4:e7:84:a6:ff:93:9c:80:65:b6:ac:87:de: 87:dd:1d:58:33:00:26:f0:18:1d:cc:39:54:47:2a:0c:e0:b4: 1a:2a:44:9e:14:4f:a0:c4:bb:a6:f9:e4:42:6b:f3:72:f6:47: 59:4f:b7:29:4c:fa:8b:cc:83:cb:9a:68:49:b0:2a:02:68:1d: 24:55:04:c0:bd:ed:c9:f2:8f:62:eb:ac:f6:58:58:ea:6d:82: 53:16:ec:c1:e9:a1:90:29:55:8a:94:1b:3d:23:f9:38:28:78: 30:8f:53:71 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUSkF+keXvM6dRMLGdK8D8sqvLwOwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMjA0OVoX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAYWJlMzAyOGQxNjdiYmQ4MDRmODNh ZWY2Y2ZhNmJkMDkzNWYxNTc4MDc5ODY3ZWI1MjAyYjYyYTUzYzRhMmFhYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIgkqqqoZM+gvxCVplWjNvKK48oq TPrxnGZ5r5kaQxbR0M9r6kdvceelegV1m7KOUFwEUxDeY0c0ZTQKy1wni/dAUNse JMNMyg9kUvWSTKEgy0x5sBijSxmBIwatvbMaTEbl4jTq2wWTmbjGSDEO+WmNJa59 TGDGib6lM3vuwlLHKkxMBXot/ow+IhzWP34Xul/PFf8v3t+HrogFo/aRCtywk23A P0bMdaPk4JSZ/WUogdNUXKfCh8apQmM6RVoCOJQVqDUUMUakVWlsZATj7fUT//Vy C5MlA5Ohw0AwXEKLfXz7CYfpWwcGXZ7lUwwPk/c9vskr1EY7UTaDBL7Y2wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNflvxhLKnCv60fk5Rz5W57D72KRMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZiMzJiNDdiLWIwYzgtNDQ1My04OWI3LTY1NDJjMGY5NDJkMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAMBAMA0GCSqGSIb3DQEBCwUAA4IBAQC5u5Gf0DoFjWTZ1pPS G77OYIRWRAy/xi3ew6yNj01L39vXt9krze7PLOI6nwT7AFBPGZgdj6x6Z2ErC40H U0lEWWc3gQ2NJABoxGXjhiAwNycRdugQJ4uOdu3zO5EaDUTr1+zPbdP9r5d4hfFV 0or2RUYWOYvy9H500m/w00TOEulY6T4peVJDwtCooCExBGJ+5DYRTfTnhKb/k5yA Zbash96H3R1YMwAm8BgdzDlURyoM4LQaKkSeFE+gxLum+eRCa/Ny9kdZT7cpTPqL zIPLmmhJsCoCaB0kVQTAve3J8o9i66z2WFjqbYJTFuzB6aGQKVWKlBs9I/k4KHgw j1Nx -----END CERTIFICATE-----Generated at Mon Mar 2 03:24:34 2026 by rpki-client