$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/180349be-624a-4c8d-baf0-bbc3a584f77c.roa File: 180349be-624a-4c8d-baf0-bbc3a584f77c.roa (raw, json) Hash identifier: 4M+PKLY6suFG2MQUn2LflZ4upxtIak8SZCcxHEG4Az0= Subject key identifier: F4:E8:A9:87:BB:3F:E4:39:70:06:B0:C2:3E:54:9A:05:F1:F1:F5:25 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 27181AEAFA1CEA1F733F12C6AFA3B47C3F88F006 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/180349be-624a-4c8d-baf0-bbc3a584f77c.roa Signing time: Tue 17 Feb 2026 00:00:13 +0000 ROA not before: Tue 17 Feb 2026 00:00:13 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:18:1a:ea:fa:1c:ea:1f:73:3f:12:c6:af:a3:b4:7c:3f:88:f0:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 17 00:00:13 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=8d4886460be525faa3a4accd68b3dcb181c8f41d1d90642cc2fb312245f82f84, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c1:73:fd:75:51:5f:f5:fa:11:5d:de:ec:f6: c1:4a:f0:0d:47:dc:be:dc:c7:cd:1e:d2:5d:94:8a: 0b:70:a4:69:02:83:30:36:57:40:00:c3:20:be:98: 4b:20:c4:99:30:c5:80:ba:2d:d1:fb:c2:66:a4:a1: ad:f8:80:9f:ca:ed:7c:45:b0:5f:a5:b4:2d:32:58: 2a:cc:57:af:31:17:cf:19:7d:31:00:cc:e5:e9:f1: 7e:4b:ba:ae:e4:63:7c:13:53:9e:a3:7d:e2:41:39: 3f:88:bb:4c:18:10:e0:36:8d:15:6c:55:11:87:5e: 6f:3a:70:82:03:ac:71:c2:e6:4b:ea:49:a0:c6:96: da:0f:21:a7:af:59:86:58:18:92:fc:19:03:0a:0b: f7:39:3a:42:b7:f9:80:93:76:88:a4:98:69:dd:22: 2f:36:a8:ef:0c:e8:bc:05:54:c6:2b:d8:01:17:13: d2:09:a1:02:c1:bd:f6:fd:5d:85:55:6f:a6:40:07: 34:6d:3f:3b:8e:f9:ce:2d:96:19:eb:96:19:f8:7c: c6:2c:2b:ad:78:fb:68:c4:a0:19:ca:96:4a:a9:14: 1e:93:e4:dc:4c:ed:51:cb:12:db:90:e4:43:13:69: f6:aa:ba:04:57:46:78:0e:4f:58:90:fc:94:b2:ac: bc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:E8:A9:87:BB:3F:E4:39:70:06:B0:C2:3E:54:9A:05:F1:F1:F5:25 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/180349be-624a-4c8d-baf0-bbc3a584f77c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:2000::/40 Signature Algorithm: sha256WithRSAEncryption 12:e9:7f:04:b2:84:9e:1b:7d:4f:bd:04:3d:60:ad:01:75:52: e6:10:e6:9f:76:58:81:ca:a0:56:ee:ed:3f:9f:b4:64:ca:d9: f4:ae:67:86:d9:af:23:43:ff:0d:99:e6:c1:43:aa:2e:a1:60: 44:f8:bb:ad:e8:6c:1b:ff:0a:e2:40:35:ce:b3:36:d0:f3:ad: d4:7d:a5:f8:ec:c5:c0:66:8e:df:02:ca:3d:25:4a:84:63:da: b9:48:d5:0f:c3:bb:af:ec:b4:bb:12:2b:9b:70:97:af:45:b0: 11:61:89:74:18:ed:d7:49:39:a3:e1:a3:09:e6:a9:08:1c:81: dc:1a:ad:ce:ad:8e:8d:7d:6d:9d:10:b1:b7:ce:4e:72:48:dd: 75:ce:6e:e9:ca:06:6e:47:27:84:33:a3:6f:5a:73:ca:24:66: 6e:9a:b9:34:d8:23:60:55:8d:14:62:a9:fa:80:e7:6b:97:73: be:63:c6:49:ac:99:e5:77:07:78:13:04:ec:29:14:64:f3:60: e1:ae:d4:37:e4:36:fe:29:f1:b7:dd:ab:f7:ec:7e:0e:a1:dc: 81:e8:14:ad:d7:4c:9c:08:c8:82:0d:d2:bb:cd:a4:68:cd:e8: ee:c8:02:d3:05:5f:a2:40:88:9a:e0:63:3c:de:dc:a0:bb:c3: a7:cd:3f:a1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJxga6voc6h9zPxLGr6O0fD+I8AYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNzAwMDAxM1oX DTI2MDUxODIzNTk1OVowejFJMEcGA1UEBRNAOGQ0ODg2NDYwYmU1MjVmYWEzYTRh Y2NkNjhiM2RjYjE4MWM4ZjQxZDFkOTA2NDJjYzJmYjMxMjI0NWY4MmY4NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmMFz/XVRX/X6EV3e7PbBSvANR9y+ 3MfNHtJdlIoLcKRpAoMwNldAAMMgvphLIMSZMMWAui3R+8JmpKGt+ICfyu18RbBf pbQtMlgqzFevMRfPGX0xAMzl6fF+S7qu5GN8E1Oeo33iQTk/iLtMGBDgNo0VbFUR h15vOnCCA6xxwuZL6kmgxpbaDyGnr1mGWBiS/BkDCgv3OTpCt/mAk3aIpJhp3SIv NqjvDOi8BVTGK9gBFxPSCaECwb32/V2FVW+mQAc0bT87jvnOLZYZ65YZ+HzGLCut ePtoxKAZypZKqRQek+TcTO1RyxLbkORDE2n2qroEV0Z4Dk9YkPyUsqy82QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPToqYe7P+Q5cAawwj5UmgXx8fUlMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzE4MDM0OWJlLTYyNGEtNGM4ZC1iYWYwLWJiYzNhNTg0Zjc3Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9iAwDQYJKoZIhvcNAQELBQADggEBABLpfwSyhJ4bfU+9BD1g rQF1UuYQ5p92WIHKoFbu7T+ftGTK2fSuZ4bZryND/w2Z5sFDqi6hYET4u63obBv/ CuJANc6zNtDzrdR9pfjsxcBmjt8Cyj0lSoRj2rlI1Q/Du6/stLsSK5twl69FsBFh iXQY7ddJOaPhownmqQgcgdwarc6tjo19bZ0QsbfOTnJI3XXObunKBm5HJ4Qzo29a c8okZm6auTTYI2BVjRRiqfqA52uXc75jxkmsmeV3B3gTBOwpFGTzYOGu1DfkNv4p 8bfdq/fsfg6h3IHoFK3XTJwIyIIN0rvNpGjN6O7IAtMFX6JAiJrgYzze3KC7w6fN P6E= -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:05 2026 by rpki-client