$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0ab9cffb-50eb-4196-a4b2-e63a4da14c5c.roa File: 0ab9cffb-50eb-4196-a4b2-e63a4da14c5c.roa (raw, json) Hash identifier: VRW+5V+jgm7JsKNQOJh+EbSRwfMgsQSasynYEsK1Zu8= Subject key identifier: BA:FE:4D:A2:A0:5A:A1:4A:3C:AB:00:7A:C3:3E:8C:68:C3:2A:75:D2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7B7ED20446A11C47A63B9B83DF61FD67CA27BB5F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0ab9cffb-50eb-4196-a4b2-e63a4da14c5c.roa Signing time: Sun 15 Feb 2026 00:00:10 +0000 ROA not before: Sun 15 Feb 2026 00:00:10 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:7e:d2:04:46:a1:1c:47:a6:3b:9b:83:df:61:fd:67:ca:27:bb:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 15 00:00:10 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=cc6e32c294355de56650edb176b84a0f79882687b6fc803de08741466819ff64, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:97:8c:b6:d2:80:9d:d0:18:ff:6c:20:9f:a2: 43:01:0a:73:ec:34:dd:26:fb:e1:a5:da:bd:bf:9c: 3c:b7:52:59:a4:a3:63:e1:f4:67:7d:7b:02:de:74: f7:b9:7f:3e:cf:1a:7b:a1:1e:2f:4d:f4:6d:bf:93: 4f:2c:72:16:15:af:27:7f:20:30:07:c1:94:91:bf: c8:e9:66:b9:0e:a2:60:c2:b3:52:6e:61:9c:ee:ad: c3:1d:e1:17:81:ec:d8:c9:45:8f:7a:fd:5f:72:75: e6:93:d5:1d:70:67:9c:74:1e:f1:d7:ce:f6:0a:69: e0:69:0a:75:5a:1e:10:c0:a1:3b:cb:6a:e1:c8:4c: 88:8d:48:12:c3:b6:40:2e:c9:55:85:1f:89:e1:c4: ed:ec:32:35:6f:51:80:33:e5:8d:69:30:bd:15:63: bb:b1:c4:1c:2b:4a:7d:9e:f8:9d:df:61:73:e9:76: cf:2f:d7:39:de:9e:a7:2e:06:b2:93:8c:9c:01:7a: 7a:62:8e:d6:60:c7:dc:6d:23:18:f3:6e:5a:15:ce: 46:e8:42:0a:37:f6:4b:b2:ec:40:47:53:dd:75:e5: 8f:e6:fc:53:41:29:5a:b1:36:f5:a8:34:2f:e0:37: 39:b1:36:3f:0d:98:e6:05:70:89:28:c3:47:7b:44: 53:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:FE:4D:A2:A0:5A:A1:4A:3C:AB:00:7A:C3:3E:8C:68:C3:2A:75:D2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0ab9cffb-50eb-4196-a4b2-e63a4da14c5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:1000::/48 Signature Algorithm: sha256WithRSAEncryption 38:2c:d9:03:b8:ad:79:f8:1d:bd:de:2c:56:dc:41:32:f8:77: ea:95:68:e5:4c:4d:97:f6:4d:f1:37:6b:58:ac:a0:e5:30:88: 64:bb:64:ef:b2:94:0c:e8:ca:24:ed:70:03:7c:d9:00:e3:24: be:79:6d:c3:99:90:a0:3d:99:b3:cd:3f:3d:4f:9a:41:3d:93: 1b:9f:d7:95:f6:2d:b8:51:37:2b:9e:c1:ec:3e:38:18:90:4f: 91:f7:63:0b:da:82:74:a1:f7:dd:c7:41:a8:21:ec:b4:d1:35: af:84:a1:13:2e:71:ef:28:1a:6f:21:ac:a0:58:fc:65:2d:88: dc:09:b8:97:0b:e1:63:09:89:3e:f6:87:30:27:5f:a0:74:d5: 3c:3c:3d:52:f9:88:6a:e8:b2:fd:09:c3:98:42:05:cb:61:78: 35:03:c7:ac:0d:d8:02:f7:d8:b5:12:8e:d3:b3:3d:b2:30:0e: c5:36:2a:8f:6e:5e:fc:98:4a:94:68:d9:cb:5b:b3:6d:c2:70: 44:b8:13:fd:d4:76:60:52:e0:a0:a4:59:a5:b1:49:d1:a7:e8: 6e:dc:90:77:f7:c7:30:26:81:79:33:e8:80:1d:f8:72:7c:11: 84:a7:d0:7f:24:05:80:56:11:a1:e3:91:8e:2d:0b:44:a2:2e: 0e:b2:33:b4 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUe37SBEahHEemO5uD32H9Z8onu18wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNTAwMDAxMFoX DTI2MDUxNjIzNTk1OVowejFJMEcGA1UEBRNAY2M2ZTMyYzI5NDM1NWRlNTY2NTBl ZGIxNzZiODRhMGY3OTg4MjY4N2I2ZmM4MDNkZTA4NzQxNDY2ODE5ZmY2NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZeMttKAndAY/2wgn6JDAQpz7DTd Jvvhpdq9v5w8t1JZpKNj4fRnfXsC3nT3uX8+zxp7oR4vTfRtv5NPLHIWFa8nfyAw B8GUkb/I6Wa5DqJgwrNSbmGc7q3DHeEXgezYyUWPev1fcnXmk9UdcGecdB7x1872 CmngaQp1Wh4QwKE7y2rhyEyIjUgSw7ZALslVhR+J4cTt7DI1b1GAM+WNaTC9FWO7 scQcK0p9nvid32Fz6XbPL9c53p6nLgayk4ycAXp6Yo7WYMfcbSMY825aFc5G6EIK N/ZLsuxAR1PddeWP5vxTQSlasTb1qDQv4Dc5sTY/DZjmBXCJKMNHe0RT3QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLr+TaKgWqFKPKsAesM+jGjDKnXSMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzBhYjljZmZiLTUwZWItNDE5Ni1hNGIyLWU2M2E0ZGExNGM1Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9hAAMA0GCSqGSIb3DQEBCwUAA4IBAQA4LNkDuK15+B293ixW 3EEy+HfqlWjlTE2X9k3xN2tYrKDlMIhku2TvspQM6Mok7XADfNkA4yS+eW3DmZCg PZmzzT89T5pBPZMbn9eV9i24UTcrnsHsPjgYkE+R92ML2oJ0offdx0GoIey00TWv hKETLnHvKBpvIaygWPxlLYjcCbiXC+FjCYk+9ocwJ1+gdNU8PD1S+Yhq6LL9CcOY QgXLYXg1A8esDdgC99i1Eo7Tsz2yMA7FNiqPbl78mEqUaNnLW7NtwnBEuBP91HZg UuCgpFmlsUnRp+hu3JB398cwJoF5M+iAHfhyfBGEp9B/JAWAVhGh45GOLQtEoi4O sjO0 -----END CERTIFICATE-----Generated at Sun Mar 1 21:48:08 2026 by rpki-client