$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/082ff1eb-44aa-43f9-9667-adb2b519afec.roa File: 082ff1eb-44aa-43f9-9667-adb2b519afec.roa (raw, json) Hash identifier: xU4oa7H66Ug4Lgz2Cib0b/7mr9rQ/cffhqnupx8JmyA= Subject key identifier: 77:08:2B:6A:55:FE:13:8D:BE:2D:46:E8:5E:32:DD:49:89:ED:CE:83 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 34A1E63328122F109A9953A1120A8C3A7505CDCA Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/082ff1eb-44aa-43f9-9667-adb2b519afec.roa Signing time: Sun 15 Feb 2026 00:00:31 +0000 ROA not before: Sun 15 Feb 2026 00:00:31 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da60:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:a1:e6:33:28:12:2f:10:9a:99:53:a1:12:0a:8c:3a:75:05:cd:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 15 00:00:31 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=72ad364973ce813d41429ea4527591385998f85496937e3cd2dd68c56f70efb1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:62:78:4f:ff:57:d6:8f:67:9f:b6:b7:1d:1a: d3:42:fd:da:d8:92:62:ab:b0:9f:6b:e7:9c:6b:27: 94:0a:6f:91:d4:1d:f5:ae:0a:fb:de:11:a3:1b:8f: f4:a7:30:c7:1c:27:08:c0:de:98:59:dc:21:96:53: 23:fe:f4:17:5c:eb:b1:ec:ce:c2:25:f2:3d:5e:73: fb:00:e6:5f:c3:cf:93:6d:9a:c6:fe:e4:43:03:4a: ec:e4:31:a4:d4:72:56:d2:3c:e9:bb:6f:ab:5c:cf: a8:61:1a:27:2e:13:0b:73:f7:85:47:3a:03:7d:42: 6f:58:3c:e9:ac:69:e6:54:7d:27:1c:04:71:bf:d8: b8:41:aa:47:35:33:44:6d:6e:e0:55:ac:88:f7:28: 35:ad:4a:ee:30:31:45:e6:1f:68:d9:fb:9d:12:cd: 7c:b6:dd:63:b8:f6:9c:b1:bb:37:17:58:02:97:f3: 57:0c:00:f0:30:c4:29:fc:26:d1:04:68:12:f4:35: 99:6c:8b:9d:17:a4:65:d4:36:6e:18:7a:1f:b2:af: c9:dd:97:0c:82:7f:9d:36:e8:b1:27:87:1f:8c:b6: ee:6a:af:80:8a:46:f4:fa:18:a3:54:73:c1:47:45: 61:9b:01:1a:7e:b0:6f:66:43:68:3e:5c:06:02:67: 61:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:08:2B:6A:55:FE:13:8D:BE:2D:46:E8:5E:32:DD:49:89:ED:CE:83 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/082ff1eb-44aa-43f9-9667-adb2b519afec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da60:2800::/40 Signature Algorithm: sha256WithRSAEncryption 31:dc:df:a0:77:39:59:d1:b4:53:b1:8f:8a:db:8c:a3:22:13: db:47:ef:71:0a:cb:3c:1b:3a:f3:7d:8f:88:b3:62:2a:a8:7c: db:54:55:a5:01:1f:ca:87:1a:a4:dd:49:7d:cd:3b:7f:d3:64: e6:f4:17:43:00:79:b6:c8:6a:1b:39:d1:1f:64:55:e8:9f:4c: fe:72:d7:9a:1b:9b:1f:bc:b5:4c:94:24:fa:8f:d5:9b:a2:e3: af:5a:69:d3:96:12:c0:44:f1:35:e6:eb:e9:c2:64:4c:06:70: da:8a:6f:51:88:46:a1:a6:e8:41:46:2d:e6:09:fe:c6:ee:92: 6c:4d:cf:0b:20:f3:5e:a5:95:e5:bb:31:9d:8c:91:1b:29:cb: 56:21:ec:84:1c:d0:3d:da:4d:3c:f5:f7:aa:b8:75:5c:58:d3: 97:48:ef:b6:25:c2:bc:f7:6b:fa:1a:61:1e:7a:56:47:1b:40: 7c:6a:12:bd:d9:41:75:86:ff:7c:53:ab:f4:da:8d:97:09:cc: 6d:f1:a8:f7:1d:33:67:75:a0:1f:fc:5f:fc:58:71:be:f6:ab: b0:ef:88:54:32:fa:3a:a9:4b:9e:4c:de:8a:75:b9:f5:12:ad: 7c:80:b6:33:ab:93:2a:1f:6c:08:c0:ca:46:dd:46:68:b1:f0: fa:56:27:2f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNKHmMygSLxCamVOhEgqMOnUFzcowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNTAwMDAzMVoX DTI2MDUxNjIzNTk1OVowejFJMEcGA1UEBRNANzJhZDM2NDk3M2NlODEzZDQxNDI5 ZWE0NTI3NTkxMzg1OTk4Zjg1NDk2OTM3ZTNjZDJkZDY4YzU2ZjcwZWZiMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWJ4T/9X1o9nn7a3HRrTQv3a2JJi q7Cfa+ecayeUCm+R1B31rgr73hGjG4/0pzDHHCcIwN6YWdwhllMj/vQXXOux7M7C JfI9XnP7AOZfw8+TbZrG/uRDA0rs5DGk1HJW0jzpu2+rXM+oYRonLhMLc/eFRzoD fUJvWDzprGnmVH0nHARxv9i4QapHNTNEbW7gVayI9yg1rUruMDFF5h9o2fudEs18 tt1juPacsbs3F1gCl/NXDADwMMQp/CbRBGgS9DWZbIudF6Rl1DZuGHofsq/J3ZcM gn+dNuixJ4cfjLbuaq+Aikb0+hijVHPBR0VhmwEafrBvZkNoPlwGAmdhTQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHcIK2pV/hONvi1G6F4y3UmJ7c6DMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA4MmZmMWViLTQ0YWEtNDNmOS05NjY3LWFkYjJiNTE5YWZlYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYCgwDQYJKoZIhvcNAQELBQADggEBADHc36B3OVnRtFOxj4rb jKMiE9tH73EKyzwbOvN9j4izYiqofNtUVaUBH8qHGqTdSX3NO3/TZOb0F0MAebbI ahs50R9kVeifTP5y15obmx+8tUyUJPqP1Zui469aadOWEsBE8TXm6+nCZEwGcNqK b1GIRqGm6EFGLeYJ/sbukmxNzwsg816lleW7MZ2MkRspy1Yh7IQc0D3aTTz196q4 dVxY05dI77Ylwrz3a/oaYR56VkcbQHxqEr3ZQXWG/3xTq/TajZcJzG3xqPcdM2d1 oB/8X/xYcb72q7DviFQy+jqpS55M3op1ufUSrXyAtjOrkyofbAjAykbdRmix8PpW Jy8= -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:04 2026 by rpki-client