$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7f76ee34-fa5a-4beb-8181-8e57500dd1ae.roa File: 7f76ee34-fa5a-4beb-8181-8e57500dd1ae.roa (raw, json) Hash identifier: GH3cxUKBwPNGiryYLgwmZcXaQnMIoaT7KoCfEby2vys= Subject key identifier: 7B:84:80:C8:FB:50:68:08:4F:78:72:30:AB:ED:56:81:B3:B6:6D:B0 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6B8D2AC2D33C8C183144CD909679AB4C2FAF5837 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7f76ee34-fa5a-4beb-8181-8e57500dd1ae.roa Signing time: Fri 20 Feb 2026 00:10:40 +0000 ROA not before: Fri 20 Feb 2026 00:10:40 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:8d:2a:c2:d3:3c:8c:18:31:44:cd:90:96:79:ab:4c:2f:af:58:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:10:40 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=21b7690ec269b970fe14c295c6f134a2485e874fc7b82aff09578334f4edb151, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fe:96:7e:a7:5d:b1:60:4d:dc:89:e6:17:4f: 10:d6:29:6d:e4:76:2d:a6:75:c7:11:aa:05:88:ae: 36:23:20:5e:3b:d4:00:50:fd:4b:25:bf:8c:88:94: ba:87:e0:26:db:98:a2:69:de:13:9b:ee:ce:33:82: 3c:0d:7b:b5:f5:85:33:03:0c:39:26:0b:42:6e:12: c8:4d:c8:c7:8b:62:93:9b:a1:36:e1:00:fa:0c:c7: c9:fe:28:f9:b4:a2:e0:ad:1a:db:e8:3e:09:b3:c5: f9:8a:ae:23:f3:68:b2:88:71:f4:8f:c2:d3:35:1b: fa:d3:db:29:2c:fb:7f:bc:be:0a:f8:68:83:6d:c8: af:3c:6c:da:64:48:8c:61:6c:f9:57:19:43:be:fe: d1:ed:f6:cd:3f:c4:f9:6b:8d:07:bd:97:f8:c7:db: 20:2b:0b:cf:6d:25:04:00:1c:1d:b3:0b:e8:66:cf: 03:3d:c7:63:40:9c:5a:95:be:5f:c6:db:68:08:af: 19:bb:d4:47:2c:df:13:a7:e1:c0:b0:e2:89:fb:2f: bb:5f:0f:83:61:69:54:ec:a5:1d:f3:01:1b:dc:ac: c4:64:ff:22:39:51:62:0f:3b:58:74:1f:4f:51:f7: da:45:ae:b1:18:71:38:cf:c7:cc:5c:c0:23:0d:93: 6f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:84:80:C8:FB:50:68:08:4F:78:72:30:AB:ED:56:81:B3:B6:6D:B0 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7f76ee34-fa5a-4beb-8181-8e57500dd1ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:e080::/48 Signature Algorithm: sha256WithRSAEncryption 83:30:db:c7:1c:b5:ae:4a:db:8b:f7:ba:e7:99:f2:84:f6:93: 65:1b:8a:b5:c4:8d:73:4b:ef:61:b3:fc:b5:b9:4c:e7:1f:d7: c4:27:44:74:1b:f3:9f:98:ef:52:a7:2b:f1:d0:2a:01:b9:f9: 2d:16:91:ea:a2:26:34:35:e2:4a:5e:33:43:f9:aa:85:ea:0b: 01:00:e8:fe:25:9e:56:7e:b1:9d:03:6f:5e:ab:28:fe:c2:6c: 4b:84:71:fa:14:6d:ff:63:a4:f3:5a:47:9d:d5:d8:aa:da:16: 90:5f:79:52:ab:b2:39:df:fa:1c:a6:e2:be:54:f2:dc:8e:e3: 9a:50:b0:aa:e9:07:eb:f8:20:d9:c2:39:c2:94:23:9c:ba:e5: 7e:16:90:6c:6a:4a:6c:01:d8:15:d6:42:45:b6:52:fe:91:e4: a9:dc:1a:52:b2:64:47:85:ad:45:86:44:b9:5d:e2:ce:b0:96: 27:8b:21:5c:24:cb:94:fe:af:ce:d9:e8:a0:a1:b0:e4:4e:80: fd:9b:f7:de:1b:65:ba:90:f8:a5:e0:61:b3:9d:a0:ff:84:5d: 37:43:49:e2:b4:99:d1:59:16:53:d9:23:d9:09:94:ac:e9:7d: 79:2e:ee:11:5d:e8:12:dd:08:79:87:f1:e5:8b:92:b7:a8:d0: 4c:2d:b6:55 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUa40qwtM8jBgxRM2QlnmrTC+vWDcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMTA0MFoX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAMjFiNzY5MGVjMjY5Yjk3MGZlMTRj Mjk1YzZmMTM0YTI0ODVlODc0ZmM3YjgyYWZmMDk1NzgzMzRmNGVkYjE1MTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuv6WfqddsWBN3InmF08Q1ilt5HYt pnXHEaoFiK42IyBeO9QAUP1LJb+MiJS6h+Am25iiad4Tm+7OM4I8DXu19YUzAww5 JgtCbhLITcjHi2KTm6E24QD6DMfJ/ij5tKLgrRrb6D4Js8X5iq4j82iyiHH0j8LT NRv609spLPt/vL4K+GiDbcivPGzaZEiMYWz5VxlDvv7R7fbNP8T5a40HvZf4x9sg KwvPbSUEABwdswvoZs8DPcdjQJxalb5fxttoCK8Zu9RHLN8Tp+HAsOKJ+y+7Xw+D YWlU7KUd8wEb3KzEZP8iOVFiDztYdB9PUffaRa6xGHE4z8fMXMAjDZNvBwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHuEgMj7UGgIT3hyMKvtVoGztm2wMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdmNzZlZTM0LWZhNWEtNGJlYi04MTgxLThlNTc1MDBkZDFhZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYeCAMA0GCSqGSIb3DQEBCwUAA4IBAQCDMNvHHLWuStuL97rn mfKE9pNlG4q1xI1zS+9hs/y1uUznH9fEJ0R0G/OfmO9Spyvx0CoBufktFpHqoiY0 NeJKXjND+aqF6gsBAOj+JZ5WfrGdA29eqyj+wmxLhHH6FG3/Y6TzWked1diq2haQ X3lSq7I53/ocpuK+VPLcjuOaULCq6Qfr+CDZwjnClCOcuuV+FpBsakpsAdgV1kJF tlL+keSp3BpSsmRHha1FhkS5XeLOsJYniyFcJMuU/q/O2eigobDkToD9m/feG2W6 kPil4GGznaD/hF03Q0nitJnRWRZT2SPZCZSs6X15Lu4RXegS3Qh5h/Hli5K3qNBM LbZV -----END CERTIFICATE-----Generated at Sun Mar 1 21:58:16 2026 by rpki-client