$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d202cfe-bd4c-416e-b2cc-fb5457f771bd.roa File: 6d202cfe-bd4c-416e-b2cc-fb5457f771bd.roa (raw, json) Hash identifier: xU0SE/E+vwzba5bkkk9AezMfqkbDvT8m7O7aFUPvn4U= Subject key identifier: FF:1B:7F:04:A3:8D:81:6C:26:8E:06:83:DE:72:9C:35:FF:E9:3D:A3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 463024C2D4A4F6F836F0A12A72BF2C1A3AADF175 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d202cfe-bd4c-416e-b2cc-fb5457f771bd.roa Signing time: Wed 11 Feb 2026 00:11:02 +0000 ROA not before: Wed 11 Feb 2026 00:11:02 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:30:24:c2:d4:a4:f6:f8:36:f0:a1:2a:72:bf:2c:1a:3a:ad:f1:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 11 00:11:02 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=6538e75ac596319ff2b4551c7ace46609df90534b4660367712ad22c2a6f965e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:00:d1:1c:20:b4:f9:e2:91:cd:4f:7c:75:00: 09:b5:a3:dc:90:c4:7d:07:59:d4:e3:f9:81:63:3b: 84:98:c0:c5:25:6b:3b:2f:9c:e3:39:2c:85:38:cc: 9d:59:df:c2:99:49:f8:45:90:80:0b:08:36:20:d6: 3d:4c:7f:ab:67:cc:73:65:f9:b4:56:c8:c0:dd:98: 20:84:7e:7d:47:87:44:73:57:11:9f:40:b0:c4:48: d4:9f:6f:42:08:83:84:d2:ef:db:03:ff:92:aa:6f: aa:99:b3:0b:1f:a3:24:1a:95:e6:93:ab:79:9e:2e: a9:00:1a:7d:75:a3:b2:03:66:b3:64:d2:4c:ce:0e: 7b:90:33:20:40:05:80:85:11:4b:1c:1a:18:15:c1: 71:58:15:13:d9:8e:c1:50:8a:25:07:64:6c:08:ab: 6b:00:50:0e:9a:c9:0e:ca:6e:5f:c1:cc:f2:34:93: 04:c8:90:ba:7e:45:c1:0a:27:d8:9e:ef:ef:7d:47: b2:9d:d8:3a:94:c7:76:74:a8:4e:08:b8:47:8a:c7: cd:8e:9a:c0:4c:fa:d9:62:a4:bf:2f:50:03:87:ff: 84:de:dc:2f:d4:3f:81:c3:dd:34:29:7f:00:cc:90: 3a:9b:06:d1:18:4b:00:a2:a6:d2:07:3d:dd:9d:15: 78:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:1B:7F:04:A3:8D:81:6C:26:8E:06:83:DE:72:9C:35:FF:E9:3D:A3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d202cfe-bd4c-416e-b2cc-fb5457f771bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:800::/40 Signature Algorithm: sha256WithRSAEncryption 61:5c:e3:a5:25:a4:6a:73:c0:63:be:3f:11:e2:cf:e2:77:d0: 59:cc:d5:46:61:e1:bb:ba:94:8b:99:70:94:af:01:b1:39:bc: 79:4a:55:e4:8a:0d:f7:f2:e1:f6:3e:ef:9e:97:df:62:4f:8c: b8:19:6c:72:95:5c:7e:0f:6e:eb:2b:a7:88:c3:fa:6a:f7:d5: 3f:85:32:f3:6c:7b:f1:f6:97:2b:06:dd:f6:5b:98:00:e7:be: 1d:30:af:11:53:f0:32:ee:25:e4:98:c8:16:5d:0e:17:71:3b: 52:13:e6:d9:3e:c9:4e:7c:9a:66:1f:de:1b:09:a7:a0:b3:88: 03:a1:43:b5:e7:72:29:ce:1b:c8:9a:0d:dd:1a:ab:32:13:dc: a7:b3:ba:75:b4:a1:fc:a4:5f:2c:07:e7:d8:ef:6c:42:f8:4e: e3:de:60:00:cf:b5:59:cc:5a:9a:a4:08:23:28:e7:d4:b6:9c: e0:33:4c:3c:0b:46:0a:f8:c3:b5:e7:b5:b7:a5:ab:2e:ed:b5: 6e:75:49:fb:b4:1f:11:7a:e5:4b:e1:c9:c9:47:74:90:d0:d6: 39:02:5b:4a:2b:ce:d6:05:a6:3b:4f:3d:11:63:c9:9e:ec:16: f3:90:17:5d:e5:8a:55:60:0c:33:e0:46:58:8c:53:b6:31:ea: 73:4a:55:92 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIURjAkwtSk9vg28KEqcr8sGjqt8XUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMTAwMTEwMloX DTI2MDUxMjIzNTk1OVowejFJMEcGA1UEBRNANjUzOGU3NWFjNTk2MzE5ZmYyYjQ1 NTFjN2FjZTQ2NjA5ZGY5MDUzNGI0NjYwMzY3NzEyYWQyMmMyYTZmOTY1ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4wDRHCC0+eKRzU98dQAJtaPckMR9 B1nU4/mBYzuEmMDFJWs7L5zjOSyFOMydWd/CmUn4RZCACwg2INY9TH+rZ8xzZfm0 VsjA3ZgghH59R4dEc1cRn0CwxEjUn29CCIOE0u/bA/+Sqm+qmbMLH6MkGpXmk6t5 ni6pABp9daOyA2azZNJMzg57kDMgQAWAhRFLHBoYFcFxWBUT2Y7BUIolB2RsCKtr AFAOmskOym5fwczyNJMEyJC6fkXBCifYnu/vfUeyndg6lMd2dKhOCLhHisfNjprA TPrZYqS/L1ADh/+E3twv1D+Bw900KX8AzJA6mwbRGEsAoqbSBz3dnRV4vwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFP8bfwSjjYFsJo4Gg95ynDX/6T2jMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZkMjAyY2ZlLWJkNGMtNDE2ZS1iMmNjLWZiNTQ1N2Y3NzFiZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8wgwDQYJKoZIhvcNAQELBQADggEBAGFc46UlpGpzwGO+PxHi z+J30FnM1UZh4bu6lIuZcJSvAbE5vHlKVeSKDffy4fY+756X32JPjLgZbHKVXH4P busrp4jD+mr31T+FMvNse/H2lysG3fZbmADnvh0wrxFT8DLuJeSYyBZdDhdxO1IT 5tk+yU58mmYf3hsJp6CziAOhQ7XncinOG8iaDd0aqzIT3KezunW0ofykXywH59jv bEL4TuPeYADPtVnMWpqkCCMo59S2nOAzTDwLRgr4w7Xntbelqy7ttW51Sfu0HxF6 5UvhyclHdJDQ1jkCW0orztYFpjtPPRFjyZ7sFvOQF13lilVgDDPgRliMU7Yx6nNK VZI= -----END CERTIFICATE-----Generated at Mon Mar 2 13:47:33 2026 by rpki-client