$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/22827311-fc81-4898-abc1-b5908f6d3f8f.roa File: 22827311-fc81-4898-abc1-b5908f6d3f8f.roa (raw, json) Hash identifier: KUn8tnZs66f8Y82rp+wwA7WVQ0Sb5yPal5JwRVTbCDY= Subject key identifier: 1C:80:53:0F:DD:75:B4:D1:ED:A1:DF:0C:63:28:84:0F:74:F5:97:72 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 51863272A94B66AA4D2F2ABEAD0D31CB92223237 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/22827311-fc81-4898-abc1-b5908f6d3f8f.roa Signing time: Wed 11 Feb 2026 00:10:11 +0000 ROA not before: Wed 11 Feb 2026 00:10:11 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:8880::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:86:32:72:a9:4b:66:aa:4d:2f:2a:be:ad:0d:31:cb:92:22:32:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 11 00:10:11 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=3f1cf291bbc5da970b6050e6859230e27bcdb9bb7c7ee2975e22b370ed4bc550, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ce:df:c3:bd:a8:c1:07:25:c3:f8:3c:88:06: b7:44:1f:18:d2:c8:02:01:07:c6:8a:6d:75:a7:e9: 4f:27:e1:4a:4d:bb:54:f8:15:51:6a:b7:ae:97:31: cb:6d:6c:9b:b4:47:dc:7f:88:c2:01:ef:19:eb:84: 3e:45:fb:b6:e7:8f:3e:82:67:38:5b:fe:72:5c:0f: 13:7e:e4:e4:9a:8c:d6:8c:7b:4f:c3:40:e4:ee:02: f4:c1:55:c7:38:ad:f2:62:03:59:ed:62:88:6e:eb: 0b:43:b7:d3:ce:52:7c:0c:8d:c1:20:bb:97:7c:a2: cd:ad:49:67:14:ef:f2:70:df:b7:54:11:a2:f7:a2: d8:d2:e1:bc:a9:03:c7:96:2c:3d:1e:99:0e:a8:36: 61:6a:ea:f1:63:b0:69:19:5e:0e:6c:55:25:8c:55: 50:cf:f1:fd:c6:09:04:f8:49:e0:c5:12:d5:cc:0b: ac:13:84:ba:40:04:88:5b:c0:fc:91:4b:d1:6c:b6: 2f:c8:eb:a3:a3:d2:c8:88:0d:06:0d:3a:51:97:48: 09:2c:06:df:85:ef:ed:ff:36:d2:ae:a8:7d:28:d6: 00:20:fc:5c:f0:08:56:ee:bf:c3:10:34:ab:b0:4d: 37:9c:4b:1c:28:12:a7:e7:2a:79:fc:61:5a:56:e3: b8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:80:53:0F:DD:75:B4:D1:ED:A1:DF:0C:63:28:84:0F:74:F5:97:72 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/22827311-fc81-4898-abc1-b5908f6d3f8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:8880::/46 Signature Algorithm: sha256WithRSAEncryption b1:24:4f:b2:e2:d7:ad:87:1d:53:e3:f4:2b:7e:71:6a:a5:81: b4:15:df:09:c3:fc:e6:77:28:72:ec:cb:0b:5e:9b:2d:f3:aa: dd:11:d9:49:56:7a:6d:e4:14:49:f0:a8:41:1d:b4:54:5d:de: 1c:8c:2c:7a:cb:3e:78:b1:30:7a:a1:cf:02:54:f7:df:9c:e5: cb:ee:58:9b:ba:d8:1c:0f:f6:c6:a5:d3:09:6c:0b:5a:48:bc: 0d:c2:cf:a1:1b:c5:fb:86:d3:1c:4a:76:45:b9:f3:40:7a:e9: 43:a7:f4:b5:38:6e:94:c1:4d:39:b8:43:c2:24:a8:e6:e0:75: ed:9e:50:94:c6:eb:ac:0f:9b:ec:8c:b7:de:9f:3c:73:d0:99: f2:8b:a6:f0:ac:7a:1d:6f:20:87:18:8b:1b:fe:98:7d:10:f9: f8:a5:c7:2e:30:66:43:e2:d1:6c:98:af:a8:e9:ae:b5:91:1c: f7:db:c5:75:e3:db:c5:8e:4e:af:c3:b5:be:c5:98:b2:72:2f: 61:f3:26:bf:ce:c0:e9:41:1d:b9:44:08:0f:11:ea:35:1e:96: ab:72:83:9c:4f:53:24:b8:d1:d5:ab:90:5b:8b:7a:b4:8f:90: 90:19:58:38:b0:25:13:ea:fb:61:12:99:1b:2d:e1:cf:d7:1b: 46:af:01:4d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUUYYycqlLZqpNLyq+rQ0xy5IiMjcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMTAwMTAxMVoX DTI2MDUxMjIzNTk1OVowejFJMEcGA1UEBRNAM2YxY2YyOTFiYmM1ZGE5NzBiNjA1 MGU2ODU5MjMwZTI3YmNkYjliYjdjN2VlMjk3NWUyMmIzNzBlZDRiYzU1MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArc7fw72owQclw/g8iAa3RB8Y0sgC AQfGim11p+lPJ+FKTbtU+BVRareulzHLbWybtEfcf4jCAe8Z64Q+Rfu2548+gmc4 W/5yXA8TfuTkmozWjHtPw0Dk7gL0wVXHOK3yYgNZ7WKIbusLQ7fTzlJ8DI3BILuX fKLNrUlnFO/ycN+3VBGi96LY0uG8qQPHliw9HpkOqDZhaurxY7BpGV4ObFUljFVQ z/H9xgkE+EngxRLVzAusE4S6QASIW8D8kUvRbLYvyOujo9LIiA0GDTpRl0gJLAbf he/t/zbSrqh9KNYAIPxc8AhW7r/DEDSrsE03nEscKBKn5yp5/GFaVuO45wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFByAUw/ddbTR7aHfDGMohA909ZdyMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzIyODI3MzExLWZjODEtNDg5OC1hYmMxLWI1OTA4ZjZkM2Y4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba84iAMA0GCSqGSIb3DQEBCwUAA4IBAQCxJE+y4tethx1T4/Qr fnFqpYG0Fd8Jw/zmdyhy7MsLXpst86rdEdlJVnpt5BRJ8KhBHbRUXd4cjCx6yz54 sTB6oc8CVPffnOXL7libutgcD/bGpdMJbAtaSLwNws+hG8X7htMcSnZFufNAeulD p/S1OG6UwU05uEPCJKjm4HXtnlCUxuusD5vsjLfenzxz0Jnyi6bwrHodbyCHGIsb /ph9EPn4pccuMGZD4tFsmK+o6a61kRz328V149vFjk6vw7W+xZiyci9h8ya/zsDp QR25RAgPEeo1HparcoOcT1MkuNHVq5Bbi3q0j5CQGVg4sCUT6vthEpkbLeHP1xtG rwFN -----END CERTIFICATE-----Generated at Mon Mar 2 12:37:51 2026 by rpki-client