$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ec2f6208-6914-4802-9cae-8f5bdc6d9003.roa File: ec2f6208-6914-4802-9cae-8f5bdc6d9003.roa (raw, json) Hash identifier: 6QagCKLvdzUbmuzGSziruAaCuzolxzYHjOBSH6Ujr/g= Subject key identifier: 6E:5B:58:7C:53:3D:A6:D7:9C:E0:32:33:41:B7:92:90:12:11:4D:66 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7B2FF0F2288CC243849CD0C0858FB688C3C64B46 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ec2f6208-6914-4802-9cae-8f5bdc6d9003.roa Signing time: Fri 20 Feb 2026 00:10:46 +0000 ROA not before: Fri 20 Feb 2026 00:10:46 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:7080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:2f:f0:f2:28:8c:c2:43:84:9c:d0:c0:85:8f:b6:88:c3:c6:4b:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:10:46 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=80135573a533fc07f66588b0169bfa1abfec03cca2979bed5358f7144c63d1e7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d5:d0:64:20:16:f7:02:a9:dd:af:e9:06:46: 2b:3a:58:12:fc:0c:3a:20:7c:ce:97:85:8c:08:74: d0:98:51:34:ea:bc:03:c3:5a:4c:d7:8a:c0:6d:8a: bd:9f:11:9c:a6:45:25:d0:b9:26:3d:06:8a:c9:da: ed:25:85:b0:18:ab:c6:b7:92:de:dc:ca:55:47:ff: a2:2b:50:11:b7:cd:89:fa:ae:24:bf:98:32:61:cf: 33:48:11:d3:82:10:cd:e1:9f:ca:6c:93:f8:7c:57: 42:8c:91:4a:3d:99:97:f7:d4:c9:fe:69:35:73:44: d6:d0:ef:1d:86:eb:c7:fb:da:69:8e:9f:a4:06:b8: bc:16:ec:1c:a2:84:ec:66:cf:0f:62:22:6a:99:d1: 15:b0:55:d3:87:f5:93:7a:f6:81:61:12:96:a5:18: 74:2e:55:cc:30:dd:63:63:cd:f9:3b:a1:a5:a6:c5: 76:ec:88:3f:2e:81:44:a8:6e:c4:c4:51:7b:62:7c: 7d:00:2a:e8:3a:5f:8d:32:e8:c3:93:a0:8e:ca:ee: fc:a5:4a:a5:58:12:e8:e8:b0:ed:a0:69:d2:11:07: a7:ef:13:b1:66:84:4d:c0:8c:41:a0:ba:bc:fd:27: 58:dc:33:c5:76:a2:c8:64:90:11:c4:ab:cb:e6:1c: aa:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:5B:58:7C:53:3D:A6:D7:9C:E0:32:33:41:B7:92:90:12:11:4D:66 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ec2f6208-6914-4802-9cae-8f5bdc6d9003.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:7080::/48 Signature Algorithm: sha256WithRSAEncryption 8e:56:9f:ce:58:98:89:63:6f:bd:96:f0:d4:ee:5e:cb:9f:de: 01:70:6c:a9:a2:20:4b:be:19:0a:90:ec:14:3b:0d:dd:2f:72: e9:70:1f:c3:79:f4:40:03:a7:35:b4:5a:0d:b3:2a:57:10:5c: 2c:d7:56:7a:88:98:3a:cc:57:02:6c:f0:c3:42:8d:6e:f0:60: 25:3d:b8:c2:8d:88:4a:22:81:d7:49:56:1e:10:ee:81:65:e3: b5:c2:32:12:19:b2:79:51:c1:a9:cc:da:66:09:4e:b6:ff:35: a0:9d:7b:c6:df:21:32:b5:9d:ba:e2:ea:a7:10:05:f9:bb:2d: 37:4e:c7:d9:c7:56:3e:93:f5:0b:4e:90:b4:a0:57:c0:30:c2: de:33:dd:db:ec:cd:9b:a1:eb:c8:dd:b3:4c:88:56:0b:dc:ef: 64:3e:c4:6b:26:d1:ec:f4:7f:12:13:25:cb:d4:6b:10:fe:e2: 79:32:9b:b5:9b:4c:55:68:b1:71:ae:64:0f:a8:39:98:1e:a5: 46:87:8b:8a:21:3c:c2:57:57:8b:e0:40:48:2d:cd:40:a0:0c: 96:f7:6f:92:d4:9f:2f:23:c5:24:92:69:fe:fb:66:1b:8f:c5: da:16:ee:32:26:70:76:c4:c0:0a:39:9c:61:90:b8:f1:e0:0e: 46:47:d6:aa -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUey/w8iiMwkOEnNDAhY+2iMPGS0YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMTA0NloX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAODAxMzU1NzNhNTMzZmMwN2Y2NjU4 OGIwMTY5YmZhMWFiZmVjMDNjY2EyOTc5YmVkNTM1OGY3MTQ0YzYzZDFlNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5dXQZCAW9wKp3a/pBkYrOlgS/Aw6 IHzOl4WMCHTQmFE06rwDw1pM14rAbYq9nxGcpkUl0LkmPQaKydrtJYWwGKvGt5Le 3MpVR/+iK1ARt82J+q4kv5gyYc8zSBHTghDN4Z/KbJP4fFdCjJFKPZmX99TJ/mk1 c0TW0O8dhuvH+9ppjp+kBri8FuwcooTsZs8PYiJqmdEVsFXTh/WTevaBYRKWpRh0 LlXMMN1jY835O6GlpsV27Ig/LoFEqG7ExFF7Ynx9ACroOl+NMujDk6COyu78pUql WBLo6LDtoGnSEQen7xOxZoRNwIxBoLq8/SdY3DPFdqLIZJARxKvL5hyq5wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFG5bWHxTPabXnOAyM0G3kpASEU1mMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VjMmY2MjA4LTY5MTQtNDgwMi05Y2FlLThmNWJkYzZkOTAwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAHCAMA0GCSqGSIb3DQEBCwUAA4IBAQCOVp/OWJiJY2+9lvDU 7l7Ln94BcGypoiBLvhkKkOwUOw3dL3LpcB/DefRAA6c1tFoNsypXEFws11Z6iJg6 zFcCbPDDQo1u8GAlPbjCjYhKIoHXSVYeEO6BZeO1wjISGbJ5UcGpzNpmCU62/zWg nXvG3yEytZ264uqnEAX5uy03TsfZx1Y+k/ULTpC0oFfAMMLeM93b7M2boevI3bNM iFYL3O9kPsRrJtHs9H8SEyXL1GsQ/uJ5Mpu1m0xVaLFxrmQPqDmYHqVGh4uKITzC V1eL4EBILc1AoAyW92+S1J8vI8Ukkmn++2Ybj8XaFu4yJnB2xMAKOZxhkLjx4A5G R9aq -----END CERTIFICATE-----Generated at Mon Mar 2 03:24:57 2026 by rpki-client