$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e0f57b9-45cc-4cee-a7e3-b50359fea4bc.roa File: 1e0f57b9-45cc-4cee-a7e3-b50359fea4bc.roa (raw, json) Hash identifier: n4FKphvyeH1i3Et8YWLiw3PF79PBjofYtITL5ImAEyE= Subject key identifier: 04:1A:E8:80:F4:34:B7:14:EF:A4:78:18:86:9A:4C:72:9A:01:57:62 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 69B79C7A2CB1A82AC4C2D5D28EC37B68B1E12BE8 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e0f57b9-45cc-4cee-a7e3-b50359fea4bc.roa Signing time: Sun 22 Feb 2026 00:30:13 +0000 ROA not before: Sun 22 Feb 2026 00:30:13 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:b7:9c:7a:2c:b1:a8:2a:c4:c2:d5:d2:8e:c3:7b:68:b1:e1:2b:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:30:13 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=ac8ed0ba139b911ca57c7f011f6c1feb7c5e6ab79177c004b11ebb75435c1448, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a0:37:20:6c:b4:69:87:37:61:a9:7a:14:54: e2:e3:b4:44:c3:61:ab:e7:dd:9f:4c:2d:dd:17:0a: 22:33:64:db:03:61:a2:2d:fc:49:f4:04:da:7f:e9: 18:d4:9b:63:57:ed:50:7f:43:a9:cc:30:b8:7e:ee: 28:94:cf:d1:7e:6f:db:10:02:71:d4:7c:e4:12:75: cf:24:ef:a6:43:25:3e:fa:51:de:3a:cd:d5:9b:a4: 8f:f9:13:09:04:cb:b1:7c:ad:33:cc:fd:06:9a:e6: 0c:e0:cd:3f:cb:74:23:80:b5:0a:6f:7b:66:36:35: dd:6c:50:c2:ac:ab:3e:52:94:e8:78:80:9a:de:6d: 63:7b:3a:46:7f:e3:22:61:38:eb:b1:7f:2a:3e:bb: 4b:77:9b:c0:2b:dd:00:b0:c4:8a:3b:78:67:ae:c1: 67:90:63:d2:8b:44:af:06:c5:ee:07:e8:70:00:5a: 92:b5:6c:8d:58:5f:eb:a8:34:07:66:d0:a9:45:88: 8a:8b:18:51:d2:6e:b1:7b:08:1b:74:b5:30:24:06: 53:06:60:8f:8f:e0:6c:b9:e6:b4:4c:e3:f1:1e:e7: 79:e5:f0:4c:c6:45:86:ab:3c:a8:bd:d9:da:f3:67: 98:7c:36:3a:e0:b1:35:fb:d5:1b:7c:df:9d:15:e2: 9c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1A:E8:80:F4:34:B7:14:EF:A4:78:18:86:9A:4C:72:9A:01:57:62 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e0f57b9-45cc-4cee-a7e3-b50359fea4bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:8000::/40 Signature Algorithm: sha256WithRSAEncryption 9e:45:09:ed:da:8f:c9:e6:5e:48:13:ae:60:d6:36:c1:69:35: 8a:c9:ec:f9:90:a0:6a:1b:7d:c8:a9:2b:eb:be:db:fc:3d:20: 9f:60:14:1d:e3:d2:31:26:fd:d1:7e:09:a5:32:91:03:f5:48: 4c:4b:1f:1e:fb:47:ad:07:ba:1b:23:73:b7:79:5c:81:3a:d5: ea:9e:fe:6f:68:aa:d3:8b:cc:c8:5d:ee:67:63:4e:3e:02:c8: 87:a3:69:2e:98:2d:64:65:bc:74:8b:83:f7:35:74:44:fd:ea: 15:f9:f7:55:26:34:53:57:6c:f6:c2:84:8a:e0:29:76:71:63: a4:1a:39:21:59:91:a6:30:cd:1e:81:5a:d6:72:b9:ef:4c:c9: fd:d9:63:45:31:44:f6:be:95:8b:6f:d8:87:17:52:ed:47:cf: 51:62:e1:01:0b:79:cd:61:79:a4:42:2e:9c:c0:9c:99:2f:62: 9c:81:75:b7:12:7e:d7:b4:c0:eb:6c:26:6b:c1:98:13:82:b8: 62:63:ae:61:1e:42:bb:ab:2a:d2:fc:27:0c:2f:85:42:40:bb: 61:64:d6:7c:3c:db:39:68:a8:55:92:64:fa:c5:cf:34:15:a7: f1:30:48:d5:77:71:cc:07:85:7e:f2:f2:6d:14:fa:84:90:16: e7:01:36:06 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUabeceiyxqCrEwtXSjsN7aLHhK+gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMzAxM1oX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAYWM4ZWQwYmExMzliOTExY2E1N2M3 ZjAxMWY2YzFmZWI3YzVlNmFiNzkxNzdjMDA0YjExZWJiNzU0MzVjMTQ0ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApaA3IGy0aYc3Yal6FFTi47REw2Gr 592fTC3dFwoiM2TbA2GiLfxJ9ATaf+kY1JtjV+1Qf0OpzDC4fu4olM/Rfm/bEAJx 1HzkEnXPJO+mQyU++lHeOs3Vm6SP+RMJBMuxfK0zzP0GmuYM4M0/y3QjgLUKb3tm NjXdbFDCrKs+UpToeICa3m1jezpGf+MiYTjrsX8qPrtLd5vAK90AsMSKO3hnrsFn kGPSi0SvBsXuB+hwAFqStWyNWF/rqDQHZtCpRYiKixhR0m6xewgbdLUwJAZTBmCP j+Bsuea0TOPxHud55fBMxkWGqzyovdna82eYfDY64LE1+9UbfN+dFeKcXwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAQa6ID0NLcU76R4GIaaTHKaAVdiMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFlMGY1N2I5LTQ1Y2MtNGNlZS1hN2UzLWI1MDM1OWZlYTRiYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacIAwDQYJKoZIhvcNAQELBQADggEBAJ5FCe3aj8nmXkgTrmDW NsFpNYrJ7PmQoGobfcipK+u+2/w9IJ9gFB3j0jEm/dF+CaUykQP1SExLHx77R60H uhsjc7d5XIE61eqe/m9oqtOLzMhd7mdjTj4CyIejaS6YLWRlvHSLg/c1dET96hX5 91UmNFNXbPbChIrgKXZxY6QaOSFZkaYwzR6BWtZyue9Myf3ZY0UxRPa+lYtv2IcX Uu1Hz1Fi4QELec1heaRCLpzAnJkvYpyBdbcSfte0wOtsJmvBmBOCuGJjrmEeQrur KtL8JwwvhUJAu2Fk1nw82zloqFWSZPrFzzQVp/EwSNV3ccwHhX7y8m0U+oSQFucB NgY= -----END CERTIFICATE-----Generated at Sun Mar 1 21:58:29 2026 by rpki-client