$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2c5cdd49-e98b-4e3d-8a61-094f381d2fae.roa File: 2c5cdd49-e98b-4e3d-8a61-094f381d2fae.roa (raw, json) Hash identifier: yzgMHQLc4lDwDAXWZxW0ACUVSqxo/jmlvwnUm2kiCUc= Subject key identifier: 11:5D:FB:B3:85:8A:E2:80:12:7B:8F:3D:03:10:67:00:92:64:3A:20 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 22083E93CC12BC9C5B67B4C5C4A8B27E52F4DFF7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2c5cdd49-e98b-4e3d-8a61-094f381d2fae.roa Signing time: Wed 18 Feb 2026 00:01:16 +0000 ROA not before: Wed 18 Feb 2026 00:01:16 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:9040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:08:3e:93:cc:12:bc:9c:5b:67:b4:c5:c4:a8:b2:7e:52:f4:df:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 18 00:01:16 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=5b8b1d104af6a97a359d19e9efdecf468d662d1e7f41bd47b0834e5568fa4de7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f9:fd:06:2d:e8:97:65:cb:db:92:8a:c8:52: 48:02:7f:e7:6a:a6:9d:1a:34:fa:7d:66:46:03:cc: 01:d1:d5:49:31:08:3a:ae:c4:f4:f4:8d:f3:18:d9: de:9b:86:b8:75:88:5c:7a:b2:2a:96:dd:43:46:0e: f7:25:64:8b:e0:9e:f7:01:41:56:70:21:a7:50:a4: 96:fc:1f:1f:3a:e2:4b:59:83:7f:aa:cc:1e:fb:13: 48:09:b8:b8:20:52:e2:b6:98:f1:91:c5:42:32:db: 71:14:86:9f:66:dd:9e:57:27:a4:b8:2e:a2:c7:dd: f6:56:49:b4:5f:52:c7:75:8f:8f:3d:c0:74:d9:83: 33:c5:78:38:08:26:95:b9:97:8b:3a:0a:99:25:bb: 6d:ed:3d:82:56:0f:11:89:c0:ed:08:9b:f1:e8:09: e7:f1:ee:79:43:8f:79:8a:b7:ee:ca:b8:7d:5b:7f: 4a:59:2e:0c:be:05:c1:9f:29:3c:95:02:ec:7d:0f: d9:dc:fa:74:56:86:a9:fa:5d:c8:52:2f:a8:6e:22: f9:86:64:10:98:33:70:d7:94:20:e4:95:e3:e5:6b: f5:35:c6:35:8b:22:b9:98:4d:ad:9a:3a:98:d1:ae: 1c:52:bd:96:e3:90:28:1f:7c:32:00:29:d2:a8:b3: 57:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:5D:FB:B3:85:8A:E2:80:12:7B:8F:3D:03:10:67:00:92:64:3A:20 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2c5cdd49-e98b-4e3d-8a61-094f381d2fae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:9040::/48 Signature Algorithm: sha256WithRSAEncryption 45:6e:f5:50:5e:97:70:14:31:d4:d1:59:f9:d0:be:d8:e8:16: 13:12:7d:66:33:7f:0f:1f:48:1b:a0:4c:c4:ce:19:d3:93:44: 19:80:7e:f8:a0:f5:2a:87:cd:8d:d7:48:ef:78:d1:27:b5:74: 67:97:56:63:76:fc:61:db:35:50:46:07:e0:b4:94:d5:dd:c7: 44:cf:cb:e3:45:83:64:82:f0:da:eb:b1:58:b1:9a:66:86:fb: 1a:22:39:a3:4f:e2:52:18:9e:9e:9e:f3:2b:4d:d1:22:12:24: 1a:f7:25:cf:e0:e8:fa:d2:19:a9:7f:b8:fc:4a:37:b8:35:5e: 47:38:9b:f2:24:7e:9a:9f:0c:b0:55:ba:b6:b7:b9:02:a7:76: df:23:54:2e:5c:80:0c:0b:a6:60:c2:22:30:d2:50:9b:0d:85: e7:71:8f:20:8f:c2:f2:13:28:1d:d4:52:19:b7:90:80:21:80: e5:83:5a:02:f7:09:e5:b6:b3:c3:f2:6d:a8:35:da:80:77:4f: bf:5f:24:e5:67:f1:66:47:5a:07:a9:bf:db:d9:f0:88:a6:c5: 33:4d:e4:cc:ea:a2:8e:6a:21:cf:21:fc:3a:1c:08:ac:54:d7: bd:8c:a4:ed:c5:f3:c3:1d:85:7a:a3:93:f5:5f:7f:06:d0:ce: 57:ec:c2:c1 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUIgg+k8wSvJxbZ7TFxKiyflL03/cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxODAwMDExNloX DTI2MDUxOTIzNTk1OVowejFJMEcGA1UEBRNANWI4YjFkMTA0YWY2YTk3YTM1OWQx OWU5ZWZkZWNmNDY4ZDY2MmQxZTdmNDFiZDQ3YjA4MzRlNTU2OGZhNGRlNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/n9Bi3ol2XL25KKyFJIAn/naqad GjT6fWZGA8wB0dVJMQg6rsT09I3zGNnem4a4dYhcerIqlt1DRg73JWSL4J73AUFW cCGnUKSW/B8fOuJLWYN/qswe+xNICbi4IFLitpjxkcVCMttxFIafZt2eVyekuC6i x932Vkm0X1LHdY+PPcB02YMzxXg4CCaVuZeLOgqZJbtt7T2CVg8RicDtCJvx6Ann 8e55Q495irfuyrh9W39KWS4MvgXBnyk8lQLsfQ/Z3Pp0Voap+l3IUi+obiL5hmQQ mDNw15Qg5JXj5Wv1NcY1iyK5mE2tmjqY0a4cUr2W45AoH3wyACnSqLNXgwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFBFd+7OFiuKAEnuPPQMQZwCSZDogMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJjNWNkZDQ5LWU5OGItNGUzZC04YTYxLTA5NGYzODFkMmZhZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAJBAMA0GCSqGSIb3DQEBCwUAA4IBAQBFbvVQXpdwFDHU0Vn5 0L7Y6BYTEn1mM38PH0gboEzEzhnTk0QZgH74oPUqh82N10jveNEntXRnl1Zjdvxh 2zVQRgfgtJTV3cdEz8vjRYNkgvDa67FYsZpmhvsaIjmjT+JSGJ6envMrTdEiEiQa 9yXP4Oj60hmpf7j8Sje4NV5HOJvyJH6anwywVbq2t7kCp3bfI1QuXIAMC6ZgwiIw 0lCbDYXncY8gj8LyEygd1FIZt5CAIYDlg1oC9wnltrPD8m2oNdqAd0+/XyTlZ/Fm R1oHqb/b2fCIpsUzTeTM6qKOaiHPIfw6HAisVNe9jKTtxfPDHYV6o5P1X38G0M5X 7MLB -----END CERTIFICATE-----Generated at Mon Mar 2 02:49:13 2026 by rpki-client