$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/44cc0f29-fe31-474f-8576-c1fc3e8a9358.roa File: 44cc0f29-fe31-474f-8576-c1fc3e8a9358.roa (raw, json) Hash identifier: +PbFDbB6pxSIp+mgv/Ray+H52DOSOGWfEh4mA53K7us= Subject key identifier: C2:BA:08:B6:6B:AC:FB:10:77:20:9B:1C:26:5D:04:B5:FA:CC:50:99 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 33F04A56C5C126DBDE17D08CE2FC19D3ADBC151B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/44cc0f29-fe31-474f-8576-c1fc3e8a9358.roa Signing time: Sun 22 Feb 2026 00:30:44 +0000 ROA not before: Sun 22 Feb 2026 00:30:44 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:9000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f0:4a:56:c5:c1:26:db:de:17:d0:8c:e2:fc:19:d3:ad:bc:15:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:30:44 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=efe709e94ddeb3e8b3be25fbce08e834bb0d05e3362dafd159d10dffc7c8e070, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0a:35:48:cd:90:9f:54:78:e8:64:28:be:e7: db:49:ee:90:5e:cd:cd:30:b4:64:67:17:e8:c0:5a: 85:95:e4:af:3d:41:1d:41:df:99:52:64:2f:f4:a6: 99:8a:cd:9e:b1:65:f2:9d:29:b2:72:86:01:f7:78: 9e:40:ad:6f:99:99:8b:24:6e:79:32:b7:15:22:f1: c1:19:2a:42:89:57:73:40:87:00:95:3f:ac:fc:ba: 25:a4:39:d6:92:5c:8f:56:8f:73:6d:d9:bc:09:c0: 98:ae:7c:19:ad:b4:c6:39:15:93:b6:00:e5:d8:cc: 18:99:0a:7d:03:f6:d2:d0:ca:ca:92:91:40:c9:68: a6:8b:9f:48:d2:fa:29:34:95:4f:30:76:bb:35:37: 21:d4:1c:62:e4:08:aa:d8:1e:c8:50:51:05:8c:ed: 30:a5:08:c2:1b:cd:f2:d4:4f:83:24:eb:02:32:ce: 26:07:99:85:99:2f:c1:1e:a1:72:0b:f6:2b:7b:fa: 99:55:1b:87:16:81:cb:70:b8:57:49:b8:81:0a:1b: a9:73:1f:b9:31:db:a0:94:ff:4b:2e:1d:20:3e:b3: 3a:f3:ea:e7:9e:6e:06:14:9c:3b:8c:4f:7f:5d:c7: 6d:f2:ee:a6:2b:b6:70:5c:de:15:46:0d:5c:61:30: a1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:BA:08:B6:6B:AC:FB:10:77:20:9B:1C:26:5D:04:B5:FA:CC:50:99 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/44cc0f29-fe31-474f-8576-c1fc3e8a9358.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:9000::/40 Signature Algorithm: sha256WithRSAEncryption 1e:93:5c:82:87:65:bc:69:09:16:ad:72:d6:13:f5:1c:ad:8d: 61:05:35:d6:5c:93:7b:76:56:e7:17:14:f0:98:1c:34:be:94: 1d:58:75:76:0d:ca:f7:2c:3b:f3:ce:05:8a:47:56:5a:ef:f8: 30:d9:d7:15:ad:04:8c:fb:13:bb:f2:35:5f:ca:c3:29:94:2f: 3e:db:c9:0e:c6:57:75:45:b9:78:b5:5b:35:f8:9d:b6:01:df: cd:c1:a5:dd:aa:54:ba:20:ca:a7:9b:d4:a1:16:85:da:1a:1e: fd:d0:31:6f:2a:11:b0:5b:02:fe:3b:9e:98:11:ae:54:93:b3: e6:5e:e1:97:c4:6f:67:e6:68:28:d9:2b:69:ef:a4:4b:f9:63: b9:28:ac:2d:27:c4:c0:3c:87:61:17:4d:10:4d:2f:0a:71:da: b6:1d:e2:52:7a:3b:96:5f:9a:1f:76:dd:3d:79:1e:82:e7:db: 4d:79:f0:34:dc:2d:7f:b9:20:32:88:f6:04:85:b3:c7:a7:e6: 0d:75:ad:63:ec:d6:99:da:86:c3:c5:c1:92:5a:74:ce:d8:26: e5:17:47:f6:4c:63:8e:1b:ba:96:a2:78:2f:0b:93:01:9d:66: 4e:be:68:05:79:94:eb:70:58:a5:83:ca:c0:55:45:b4:06:df: b4:a8:f7:b1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUM/BKVsXBJtveF9CM4vwZ0628FRswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMzA0NFoX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAZWZlNzA5ZTk0ZGRlYjNlOGIzYmUy NWZiY2UwOGU4MzRiYjBkMDVlMzM2MmRhZmQxNTlkMTBkZmZjN2M4ZTA3MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQo1SM2Qn1R46GQovufbSe6QXs3N MLRkZxfowFqFleSvPUEdQd+ZUmQv9KaZis2esWXynSmycoYB93ieQK1vmZmLJG55 MrcVIvHBGSpCiVdzQIcAlT+s/LolpDnWklyPVo9zbdm8CcCYrnwZrbTGORWTtgDl 2MwYmQp9A/bS0MrKkpFAyWimi59I0vopNJVPMHa7NTch1Bxi5Aiq2B7IUFEFjO0w pQjCG83y1E+DJOsCMs4mB5mFmS/BHqFyC/Yre/qZVRuHFoHLcLhXSbiBChupcx+5 MduglP9LLh0gPrM68+rnnm4GFJw7jE9/Xcdt8u6mK7ZwXN4VRg1cYTChvwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMK6CLZrrPsQdyCbHCZdBLX6zFCZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzQ0Y2MwZjI5LWZlMzEtNDc0Zi04NTc2LWMxZmMzZThhOTM1OC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacJAwDQYJKoZIhvcNAQELBQADggEBAB6TXIKHZbxpCRatctYT 9RytjWEFNdZck3t2VucXFPCYHDS+lB1YdXYNyvcsO/POBYpHVlrv+DDZ1xWtBIz7 E7vyNV/KwymULz7byQ7GV3VFuXi1WzX4nbYB383Bpd2qVLogyqeb1KEWhdoaHv3Q MW8qEbBbAv47npgRrlSTs+Ze4ZfEb2fmaCjZK2nvpEv5Y7korC0nxMA8h2EXTRBN Lwpx2rYd4lJ6O5Zfmh923T15HoLn20158DTcLX+5IDKI9gSFs8en5g11rWPs1pna hsPFwZJadM7YJuUXR/ZMY44bupaieC8LkwGdZk6+aAV5lOtwWKWDysBVRbQG37So 97E= -----END CERTIFICATE-----Generated at Mon Mar 2 07:07:37 2026 by rpki-client