$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/71d1a287-2d4f-4345-ae49-debf8605c516.roa File: 71d1a287-2d4f-4345-ae49-debf8605c516.roa (raw, json) Hash identifier: G/bPRdbQLgv8dqbrHLcK2zJYrwnAqYxjmskmxy1iriE= Subject key identifier: F6:93:4E:FB:5C:95:76:6E:28:5C:FD:A1:36:60:2E:6B:70:31:16:83 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 016A99E7593FC736A00905702E09DB511D2F4E49 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/71d1a287-2d4f-4345-ae49-debf8605c516.roa Signing time: Wed 13 May 2026 00:20:37 +0000 ROA not before: Wed 13 May 2026 00:20:37 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da11::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 00:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:6a:99:e7:59:3f:c7:36:a0:09:05:70:2e:09:db:51:1d:2f:4e:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 13 00:20:37 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=200a4e80c373906ccb3b65cc1203f8deddae0f51f892f96de7dfa86868287b02, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e2:fc:a6:66:c8:dd:67:52:94:b9:4b:f2:5e: 0a:04:a5:8d:53:e4:81:b7:7c:7a:41:de:73:df:60: 63:d5:a9:9e:b7:f3:f7:50:2d:1d:be:42:8d:f0:77: d3:bc:0f:aa:ea:d5:bc:a8:d8:a5:75:0a:4f:e5:d5: 60:18:fe:53:18:7c:ce:03:03:34:c5:1f:a9:53:d3: 45:6c:bf:48:20:1e:63:56:e5:91:95:93:f7:c0:40: c9:a5:f7:79:ce:e2:3f:58:97:c3:25:6b:75:35:f2: f6:18:8e:0c:4c:b1:12:f1:08:8b:d3:e8:6f:83:05: 7d:59:66:45:bf:24:7b:cf:b7:6e:29:50:6c:f6:aa: 6f:a6:53:a2:3d:e4:fb:6e:41:56:62:1b:e6:42:e8: 8f:53:c0:11:6d:87:93:a3:2b:16:16:6f:34:14:0e: 8f:a1:dd:49:e4:c0:55:ec:4f:3e:a2:06:8b:7f:d0: 3e:73:6a:8c:2f:b5:a0:50:97:51:72:c8:6a:91:09: c2:a8:e7:a9:3c:ed:b7:c6:1f:57:c4:5b:6b:09:0f: b4:65:b6:42:12:98:79:c4:cd:4f:f0:13:b3:ad:dc: e0:25:ca:e6:17:ad:48:e9:a3:0b:4a:1f:07:57:05: 0c:2e:3e:82:1f:f9:a8:0c:16:d5:d0:15:73:76:5a: b0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:93:4E:FB:5C:95:76:6E:28:5C:FD:A1:36:60:2E:6B:70:31:16:83 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/71d1a287-2d4f-4345-ae49-debf8605c516.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da11::/38 Signature Algorithm: sha256WithRSAEncryption 9d:0f:01:78:9c:62:cd:93:ac:c0:92:5f:0b:ff:af:07:2d:7e: d8:74:be:57:86:56:dd:94:c8:4f:c4:4c:5d:df:1d:c4:d5:54: 6c:9b:a8:f0:4e:5e:c9:8f:f1:50:ae:7a:20:8e:9e:69:d2:c2: 52:38:23:eb:ba:54:3c:5f:d5:18:45:90:94:95:e7:58:13:70: de:e7:db:97:1c:3c:29:37:ff:d9:21:36:c4:0f:82:d2:ee:e7: fb:4a:e2:08:6b:aa:42:48:55:59:5d:1c:f9:ee:e7:3c:fe:39: e0:21:9c:a8:a9:61:f4:b6:07:9e:ed:a2:99:3b:41:ad:c8:47: 0c:54:47:31:62:f5:d7:1c:a0:41:ad:4e:71:c8:f5:81:e1:0e: 18:ed:62:7a:38:31:79:d2:74:1e:40:73:c8:8d:24:80:bf:c6: ac:ef:f5:f0:ca:a4:65:c9:49:62:d8:9d:ed:61:6e:cc:66:e5: b4:28:cd:85:87:10:74:aa:8c:ed:a0:1f:9a:fd:10:74:90:0c: d7:d3:50:e2:b4:50:00:87:81:ea:3e:58:0b:28:7d:41:85:86: ef:75:6d:11:ab:a6:1c:78:7d:67:29:60:a1:3a:e4:ef:52:6e: 47:ba:ae:62:8f:00:8a:1d:7f:b2:05:2a:4e:9b:7c:e8:34:cd: 46:d1:54:4b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUAWqZ51k/xzagCQVwLgnbUR0vTkkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUxMzAwMjAzN1oX DTI2MDgxMTIzNTk1OVowejFJMEcGA1UEBRNAMjAwYTRlODBjMzczOTA2Y2NiM2I2 NWNjMTIwM2Y4ZGVkZGFlMGY1MWY4OTJmOTZkZTdkZmE4Njg2ODI4N2IwMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOL8pmbI3WdSlLlL8l4KBKWNU+SB t3x6Qd5z32Bj1amet/P3UC0dvkKN8HfTvA+q6tW8qNildQpP5dVgGP5TGHzOAwM0 xR+pU9NFbL9IIB5jVuWRlZP3wEDJpfd5zuI/WJfDJWt1NfL2GI4MTLES8QiL0+hv gwV9WWZFvyR7z7duKVBs9qpvplOiPeT7bkFWYhvmQuiPU8ARbYeToysWFm80FA6P od1J5MBV7E8+ogaLf9A+c2qML7WgUJdRcshqkQnCqOepPO23xh9XxFtrCQ+0ZbZC Eph5xM1P8BOzrdzgJcrmF61I6aMLSh8HVwUMLj6CH/moDBbV0BVzdlqwbwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPaTTvtclXZuKFz9oTZgLmtwMRaDMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcxZDFhMjg3LTJkNGYtNDM0NS1hZTQ5LWRlYmY4NjA1YzUxNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaEQAwDQYJKoZIhvcNAQELBQADggEBAJ0PAXicYs2TrMCSXwv/ rwctfth0vleGVt2UyE/ETF3fHcTVVGybqPBOXsmP8VCueiCOnmnSwlI4I+u6VDxf 1RhFkJSV51gTcN7n25ccPCk3/9khNsQPgtLu5/tK4ghrqkJIVVldHPnu5zz+OeAh nKipYfS2B57topk7Qa3IRwxURzFi9dccoEGtTnHI9YHhDhjtYno4MXnSdB5Ac8iN JIC/xqzv9fDKpGXJSWLYne1hbsxm5bQozYWHEHSqjO2gH5r9EHSQDNfTUOK0UACH geo+WAsofUGFhu91bRGrphx4fWcpYKE65O9Sbke6rmKPAIodf7IFKk6bfOg0zUbR VEs= -----END CERTIFICATE-----Generated at Sat Jun 13 10:26:55 2026 by rpki-client