$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b32b6b6a-d0ef-46e3-a090-87e6f059ee91.roa File: b32b6b6a-d0ef-46e3-a090-87e6f059ee91.roa (raw, json) Hash identifier: Gu2mg3RaG4rVKOWVJ6M9ok50fWt1evSTYLtGy9mYg8k= Subject key identifier: 41:E8:48:5C:85:80:5C:40:91:D4:37:78:36:CE:C7:41:AA:49:83:BE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 73A3235B2F652A00CE24EF7F70B01527A508D651 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b32b6b6a-d0ef-46e3-a090-87e6f059ee91.roa Signing time: Fri 20 Feb 2026 00:10:05 +0000 ROA not before: Fri 20 Feb 2026 00:10:05 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:48c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:a3:23:5b:2f:65:2a:00:ce:24:ef:7f:70:b0:15:27:a5:08:d6:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:10:05 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=2aac656697c56be45eddcd4126aaeedcdd4cf866e69a5bae7883957faa5ef204, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2d:8c:bd:51:46:95:37:dc:85:29:33:21:4a: 36:60:b0:98:d4:11:43:3c:5f:b4:b0:dd:16:8c:dc: 52:14:73:98:70:2c:93:d5:91:11:6f:98:67:c8:4c: 0f:3b:dd:62:6a:a8:cb:99:fc:b7:f9:73:cd:9f:1e: df:7e:d4:09:2c:84:db:db:d5:65:81:2d:8c:c0:43: 25:53:06:1b:02:a1:77:ea:98:51:53:e7:a0:79:5f: 05:17:d0:8e:3d:69:ab:c6:b1:8f:a7:97:96:20:90: ba:d2:21:05:9d:ec:1a:eb:a4:e9:0a:9f:23:93:fc: a1:77:3d:a2:76:60:34:12:da:08:2e:2e:65:14:36: 51:5e:4d:3e:e9:1f:b1:71:a2:2e:c2:ee:43:45:cc: 29:7e:03:43:40:30:0a:9a:18:5f:ca:71:69:7b:6d: 9f:78:7b:00:03:a9:91:f2:87:a2:26:88:fa:0d:ac: e4:3b:73:dc:3c:e9:75:d2:51:5f:87:3d:cf:42:cd: 94:77:ed:f9:1b:c2:17:cd:50:1b:d3:f4:c6:fa:46: ba:f4:7f:8b:30:d4:4d:b5:59:3c:b9:3e:3a:af:08: 98:eb:ec:30:e7:41:b9:5c:3d:80:3a:f5:13:ea:3e: cb:05:03:1f:2b:5d:78:85:e8:f2:d2:5f:ce:9d:9e: bf:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E8:48:5C:85:80:5C:40:91:D4:37:78:36:CE:C7:41:AA:49:83:BE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b32b6b6a-d0ef-46e3-a090-87e6f059ee91.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:48c0::/48 Signature Algorithm: sha256WithRSAEncryption 8d:89:a0:1d:ed:14:34:aa:f5:41:0e:e0:8d:ce:db:b3:fd:80: 7e:45:49:46:0e:06:7d:73:cf:ea:97:b5:ba:ad:f6:26:4f:88: 26:0d:96:2a:d5:13:1c:5f:dc:62:96:4e:c2:1c:b3:80:a8:5e: ad:31:5e:3e:a9:e7:e9:7e:c7:9f:90:9b:74:75:c8:98:fc:a2: e7:8b:a3:f0:f6:f6:4e:f2:01:98:86:9e:48:f0:43:67:58:52: 57:76:d4:cc:16:0b:69:4e:da:37:14:1d:c9:66:dc:f3:65:a7: 18:82:b2:94:12:76:fe:af:0e:1a:a9:ac:f5:61:50:0a:1d:42: 58:3a:24:35:62:e7:a7:bf:b4:1e:f0:6b:14:e5:ee:6d:da:7d: ad:41:72:74:78:19:b4:91:1f:42:dd:53:6d:9c:d7:46:ae:bb: c8:2f:55:e3:ff:51:01:46:6f:73:33:9a:e4:03:ed:90:ad:d5: 4c:fd:2a:32:00:8a:22:30:e2:8c:14:4e:4c:82:6a:7a:1f:f7: 2d:68:ef:1b:ad:9b:4f:92:e9:d0:93:71:cf:82:e1:5e:38:49: c9:fc:d2:fc:0d:76:25:d0:8f:a9:bc:7f:80:ba:c4:34:9b:98: 79:48:86:f0:09:d3:2b:52:c9:69:5e:b3:12:b9:8f:f7:c6:68: 67:02:3a:8c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUc6MjWy9lKgDOJO9/cLAVJ6UI1lEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMTAwNVoX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAMmFhYzY1NjY5N2M1NmJlNDVlZGRj ZDQxMjZhYWVlZGNkZDRjZjg2NmU2OWE1YmFlNzg4Mzk1N2ZhYTVlZjIwNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzi2MvVFGlTfchSkzIUo2YLCY1BFD PF+0sN0WjNxSFHOYcCyT1ZERb5hnyEwPO91iaqjLmfy3+XPNnx7fftQJLITb29Vl gS2MwEMlUwYbAqF36phRU+egeV8FF9COPWmrxrGPp5eWIJC60iEFnewa66TpCp8j k/yhdz2idmA0EtoILi5lFDZRXk0+6R+xcaIuwu5DRcwpfgNDQDAKmhhfynFpe22f eHsAA6mR8oeiJoj6DazkO3PcPOl10lFfhz3PQs2Ud+35G8IXzVAb0/TG+ka69H+L MNRNtVk8uT46rwiY6+ww50G5XD2AOvUT6j7LBQMfK114hejy0l/OnZ6/zwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEHoSFyFgFxAkdQ3eDbOx0GqSYO+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2IzMmI2YjZhLWQwZWYtNDZlMy1hMDkwLTg3ZTZmMDU5ZWU5MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAEjAMA0GCSqGSIb3DQEBCwUAA4IBAQCNiaAd7RQ0qvVBDuCN ztuz/YB+RUlGDgZ9c8/ql7W6rfYmT4gmDZYq1RMcX9xilk7CHLOAqF6tMV4+qefp fsefkJt0dciY/KLni6Pw9vZO8gGYhp5I8ENnWFJXdtTMFgtpTto3FB3JZtzzZacY grKUEnb+rw4aqaz1YVAKHUJYOiQ1Yuenv7Qe8GsU5e5t2n2tQXJ0eBm0kR9C3VNt nNdGrrvIL1Xj/1EBRm9zM5rkA+2QrdVM/SoyAIoiMOKMFE5Mgmp6H/ctaO8brZtP kunQk3HPguFeOEnJ/NL8DXYl0I+pvH+AusQ0m5h5SIbwCdMrUslpXrMSuY/3xmhn AjqM -----END CERTIFICATE-----Generated at Sun Mar 1 23:47:38 2026 by rpki-client