$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/02d8a79c-3ca8-436a-8d77-45eb7cbe51ad.roa File: 02d8a79c-3ca8-436a-8d77-45eb7cbe51ad.roa (raw, json) Hash identifier: 35IyPn/3bQHnsUaFfoE5BvrZKWu2bhD+6kQWB6Y6hDw= Subject key identifier: D0:6E:52:42:9C:13:0F:AA:2A:BD:DB:A9:09:CA:0C:EE:84:60:E5:01 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4F6778889AFB339231105DA8387128A3A0CF80EE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/02d8a79c-3ca8-436a-8d77-45eb7cbe51ad.roa Signing time: Wed 11 Feb 2026 00:10:46 +0000 ROA not before: Wed 11 Feb 2026 00:10:46 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daea:1080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:67:78:88:9a:fb:33:92:31:10:5d:a8:38:71:28:a3:a0:cf:80:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 11 00:10:46 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=85a8769d0239aba399b23c39211f9cbe6345f38493e4594c79eea1f512dacad8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ac:38:a4:2e:70:62:b6:f8:2b:c4:da:5a:2a: 41:75:a8:48:23:44:4f:e7:8d:23:a5:cb:86:32:da: 5f:9f:80:84:ad:f1:84:75:fa:27:0c:ac:05:a7:2b: a1:ed:2e:73:b0:b5:72:0f:3f:c6:d9:e1:0d:ce:76: 14:8f:b4:ca:05:57:26:be:42:c4:fd:1e:80:9a:e3: 86:9c:1f:57:ed:4b:23:13:64:ee:78:05:bc:14:1f: e7:24:2b:f7:7d:ca:b4:97:92:49:6a:e7:82:db:cc: e3:cc:7a:2a:d0:ba:48:e2:5b:5a:7f:d0:8e:66:08: 4a:53:ee:ce:b2:28:80:5f:76:3f:81:2a:ec:96:14: 4e:d2:8a:79:fc:5e:41:43:a3:5b:98:88:08:bc:a2: 1f:f2:9e:74:b8:1b:cf:26:5c:89:76:fe:94:7e:90: 89:d9:23:61:3a:39:df:24:64:e0:26:99:31:59:8b: 79:58:6f:8e:5f:aa:34:9a:6b:a4:86:ea:0f:93:b9: ce:b1:d5:0e:56:07:50:eb:e0:4d:6e:91:68:d5:ec: 34:d6:22:db:cc:44:68:5d:eb:b1:65:bb:94:f0:55: 68:a9:fa:26:68:bf:46:d1:99:13:87:8c:b1:dc:19: d4:04:70:21:37:14:39:40:c2:9d:6d:c0:fc:cc:58: 0f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:6E:52:42:9C:13:0F:AA:2A:BD:DB:A9:09:CA:0C:EE:84:60:E5:01 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/02d8a79c-3ca8-436a-8d77-45eb7cbe51ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daea:1080::/48 Signature Algorithm: sha256WithRSAEncryption b3:37:e4:74:b7:5b:c9:91:ea:49:cc:ec:f4:fb:ff:2a:97:1c: 46:47:fb:48:91:99:5a:ef:f4:cc:0e:da:e6:8a:b0:53:d8:ce: b8:c6:cc:be:26:68:b8:91:18:d0:57:13:46:96:f7:27:a2:0e: a0:15:04:9a:48:1c:aa:ae:10:6a:d0:da:0b:fb:23:9c:e3:e5: ec:e5:38:fd:23:e6:3b:72:ae:fa:09:6e:1f:14:b2:c5:de:b5: 0b:37:9a:63:72:4c:4e:ed:ba:1b:62:0a:db:eb:94:61:2b:e3: 2e:44:f8:47:70:8e:bb:3d:03:f8:b3:28:87:c6:83:bb:cc:79: 58:9b:fe:72:6d:e1:1f:c5:99:c6:11:57:29:6f:32:65:f6:7d: b2:aa:8f:60:cb:4d:8d:19:73:08:ce:fc:12:c1:74:b6:00:2e: 7c:f7:20:af:a8:ba:f1:fe:6a:49:0a:d9:c5:7a:d7:74:9c:9f: cb:21:12:9f:fb:40:ee:69:db:22:5b:e7:69:92:b2:0c:cb:bf: 52:d4:2c:58:6e:94:b9:8e:57:81:5a:ee:7a:16:5d:48:01:f1: b5:43:e9:25:61:1e:f3:cb:30:fa:4f:83:93:8c:79:d8:86:a2: 33:ac:4b:3d:58:e0:b6:df:63:5a:3d:58:df:c8:0f:31:a4:12: cc:a9:e8:3e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUT2d4iJr7M5IxEF2oOHEoo6DPgO4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMTAwMTA0NloX DTI2MDUxMjIzNTk1OVowejFJMEcGA1UEBRNAODVhODc2OWQwMjM5YWJhMzk5YjIz YzM5MjExZjljYmU2MzQ1ZjM4NDkzZTQ1OTRjNzllZWExZjUxMmRhY2FkODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKw4pC5wYrb4K8TaWipBdahII0RP 540jpcuGMtpfn4CErfGEdfonDKwFpyuh7S5zsLVyDz/G2eENznYUj7TKBVcmvkLE /R6AmuOGnB9X7UsjE2TueAW8FB/nJCv3fcq0l5JJaueC28zjzHoq0LpI4ltaf9CO ZghKU+7OsiiAX3Y/gSrslhRO0op5/F5BQ6NbmIgIvKIf8p50uBvPJlyJdv6UfpCJ 2SNhOjnfJGTgJpkxWYt5WG+OX6o0mmukhuoPk7nOsdUOVgdQ6+BNbpFo1ew01iLb zERoXeuxZbuU8FVoqfomaL9G0ZkTh4yx3BnUBHAhNxQ5QMKdbcD8zFgPuQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNBuUkKcEw+qKr3bqQnKDO6EYOUBMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzAyZDhhNzljLTNjYTgtNDM2YS04ZDc3LTQ1ZWI3Y2JlNTFhZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6hCAMA0GCSqGSIb3DQEBCwUAA4IBAQCzN+R0t1vJkepJzOz0 +/8qlxxGR/tIkZla7/TMDtrmirBT2M64xsy+Jmi4kRjQVxNGlvcnog6gFQSaSByq rhBq0NoL+yOc4+Xs5Tj9I+Y7cq76CW4fFLLF3rULN5pjckxO7bobYgrb65RhK+Mu RPhHcI67PQP4syiHxoO7zHlYm/5ybeEfxZnGEVcpbzJl9n2yqo9gy02NGXMIzvwS wXS2AC589yCvqLrx/mpJCtnFetd0nJ/LIRKf+0DuadsiW+dpkrIMy79S1CxYbpS5 jleBWu56Fl1IAfG1Q+klYR7zyzD6T4OTjHnYhqIzrEs9WOC232NaPVjfyA8xpBLM qeg+ -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:37 2026 by rpki-client