$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa File: 06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa (raw, json) Hash identifier: iGHlearm58WDXTjF3FCpOZfB7Q2sliy+3Hd6FLL8//A= Subject key identifier: A7:C6:70:29:97:D1:F0:AB:FA:23:28:70:34:15:E0:62:74:28:C3:B8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0600C23B1BE029C38DE20820AB3C3255D8E5CEC6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa Signing time: Sat 02 May 2026 00:01:29 +0000 ROA not before: Sat 02 May 2026 00:01:29 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:8080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:00:c2:3b:1b:e0:29:c3:8d:e2:08:20:ab:3c:32:55:d8:e5:ce:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 2 00:01:29 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=6b0e9299a1d7dea5871fac446a6832e94c4f6d38b34344ddb1e379047353bd51, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cf:89:51:ea:05:16:eb:3b:7f:e7:5b:ee:74: f6:cc:95:7e:46:fc:4a:94:49:eb:bb:36:3d:cd:1c: c2:39:08:62:46:8b:36:fb:65:91:86:d2:b9:d3:af: e3:a1:65:a9:d3:6e:e1:7e:60:63:09:84:ec:77:c3: 37:4f:be:09:d5:bb:f0:f0:2c:5c:92:ea:05:ca:0c: 3c:01:bb:c3:af:37:ef:af:72:74:4c:57:15:13:8d: 03:43:10:0d:56:6f:71:b9:86:9c:f9:e8:d0:7c:b0: 06:5f:fe:80:18:75:08:08:01:90:11:3d:e4:3e:cb: 31:55:67:59:b6:ad:08:c7:d1:a5:e7:e6:1e:79:88: 8b:5b:8e:5a:e1:26:9e:14:47:a0:04:63:88:81:c6: a6:96:be:d0:d6:ea:f6:ea:97:c5:05:22:b0:3d:39: 40:04:77:0b:dc:00:e5:f0:82:af:24:07:67:fc:16: 87:2c:e4:3b:98:55:34:c8:83:76:d9:84:4c:36:a9: 08:ce:d7:44:14:15:ed:2a:42:48:38:db:fb:ca:53: 98:09:ce:73:c7:36:04:a7:7d:4e:0b:55:e0:00:d3: 66:31:3f:51:35:dd:27:c3:37:10:ad:3d:3a:98:50: 52:79:6a:b1:8f:7e:89:9d:88:8e:c4:ac:a5:8a:5b: 06:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C6:70:29:97:D1:F0:AB:FA:23:28:70:34:15:E0:62:74:28:C3:B8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:8080::/46 Signature Algorithm: sha256WithRSAEncryption 7f:dc:06:39:66:cf:bd:da:19:6c:21:a0:64:13:72:04:8e:92: 8b:3f:cf:e6:59:8e:6b:5f:ab:08:c3:59:f8:b8:92:6e:b2:7c: 72:95:31:e9:ef:3b:f7:a2:d2:e9:ab:38:44:e8:4a:0b:f6:9f: c4:e4:4c:3f:b1:1a:9e:32:a5:c7:f0:48:25:4f:64:22:e5:b6: f7:62:cc:81:d3:77:5d:09:60:fa:46:ca:02:7e:bc:47:16:a2: a2:a7:e8:cc:ff:56:70:2c:7a:6e:9b:73:bc:8c:e9:61:2a:1f: c9:f2:33:75:91:e3:ed:bd:1a:77:4b:13:6a:53:c6:83:0b:89: 01:c5:2d:c4:97:e1:5b:0b:38:4b:96:ce:4b:70:bd:93:9a:19: 17:ec:ce:64:20:cb:c8:b3:5b:e1:10:a6:fb:47:c7:8a:16:98: f4:13:7b:3c:c9:64:12:f1:c5:7f:95:94:82:68:9f:9c:7c:54: 38:c1:ac:ec:08:7e:70:cc:e7:dc:5f:9e:1a:c8:ec:5e:f7:2a: 7b:e3:50:8f:9d:d8:c3:3e:34:c9:59:eb:57:63:d9:e9:33:3e: 56:17:6e:bf:11:ff:4f:69:33:ae:35:b4:0c:22:79:df:aa:09: c8:97:19:67:dd:12:8e:3b:b1:fb:bd:8c:10:32:54:79:7f:d3: 01:3f:f5:27 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUBgDCOxvgKcON4gggqzwyVdjlzsYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwMjAwMDEyOVoX DTI2MDczMTIzNTk1OVowejFJMEcGA1UEBRNANmIwZTkyOTlhMWQ3ZGVhNTg3MWZh YzQ0NmE2ODMyZTk0YzRmNmQzOGIzNDM0NGRkYjFlMzc5MDQ3MzUzYmQ1MTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8+JUeoFFus7f+db7nT2zJV+RvxK lEnruzY9zRzCOQhiRos2+2WRhtK506/joWWp027hfmBjCYTsd8M3T74J1bvw8Cxc kuoFygw8AbvDrzfvr3J0TFcVE40DQxANVm9xuYac+ejQfLAGX/6AGHUICAGQET3k PssxVWdZtq0Ix9Gl5+YeeYiLW45a4SaeFEegBGOIgcamlr7Q1ur26pfFBSKwPTlA BHcL3ADl8IKvJAdn/BaHLOQ7mFU0yIN22YRMNqkIztdEFBXtKkJIONv7ylOYCc5z xzYEp31OC1XgANNmMT9RNd0nwzcQrT06mFBSeWqxj36JnYiOxKylilsGIwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKfGcCmX0fCr+iMocDQV4GJ0KMO4MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA2NzAwZjRhLTJlMWUtNGRhYi1iMzEyLTFkN2U4ZGM0YjVjMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba84CAMA0GCSqGSIb3DQEBCwUAA4IBAQB/3AY5Zs+92hlsIaBk E3IEjpKLP8/mWY5rX6sIw1n4uJJusnxylTHp7zv3otLpqzhE6EoL9p/E5Ew/sRqe MqXH8EglT2Qi5bb3YsyB03ddCWD6RsoCfrxHFqKip+jM/1ZwLHpum3O8jOlhKh/J 8jN1kePtvRp3SxNqU8aDC4kBxS3El+FbCzhLls5LcL2TmhkX7M5kIMvIs1vhEKb7 R8eKFpj0E3s8yWQS8cV/lZSCaJ+cfFQ4wazsCH5wzOfcX54ayOxe9yp741CPndjD PjTJWetXY9npMz5WF26/Ef9PaTOuNbQMInnfqgnIlxln3RKOO7H7vYwQMlR5f9MB P/Un -----END CERTIFICATE-----Generated at Sun May 3 14:48:19 2026 by rpki-client