$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4b95e3b4-3049-4ea0-a39c-7522cc0bea0d.roa File: 4b95e3b4-3049-4ea0-a39c-7522cc0bea0d.roa (raw, json) Hash identifier: KFN4YxgYO7dyxPgi8UVlvh+ymcJ8zLltTaYBQiC+CQs= Subject key identifier: 8C:3A:EB:45:EF:34:31:13:80:1A:B4:26:EA:8D:E2:1B:99:B2:33:41 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 333192B3C8077363BA123B391800CC8F619BBD73 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4b95e3b4-3049-4ea0-a39c-7522cc0bea0d.roa Signing time: Wed 18 Feb 2026 00:01:16 +0000 ROA not before: Wed 18 Feb 2026 00:01:16 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:80a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:31:92:b3:c8:07:73:63:ba:12:3b:39:18:00:cc:8f:61:9b:bd:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 18 00:01:16 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=5900280caac5ec037ff9832194c6e7ed7dc36d7c13217f8a9e9258166a22988c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d9:1b:12:ee:02:a2:e7:39:c4:c8:73:61:80: 9a:e4:9e:e6:ad:18:41:85:78:ad:8b:ff:2d:5b:23: 8b:c7:40:d0:61:41:30:75:e3:a1:93:01:4d:10:23: f4:e5:04:b5:ed:69:9a:67:4f:6b:f8:14:6a:5d:28: e4:6d:3a:e7:47:74:0a:d0:e3:70:09:59:cc:8e:a9: fc:95:b2:95:26:c9:8e:65:63:c8:fe:15:27:ed:fe: 1a:c9:14:0d:05:f4:fe:24:76:11:23:66:51:a4:a9: d3:38:4c:fc:54:2d:48:87:6a:96:6e:46:1f:ff:cf: da:e6:88:7e:60:ff:5a:ec:08:63:b2:b1:6b:34:56: c6:5c:2c:c1:a5:29:80:68:39:f3:88:6b:91:f9:60: 23:ad:52:e0:82:85:08:ca:c7:fc:37:4b:95:d0:aa: 5c:69:d1:93:a6:cb:10:f0:a4:2b:f3:b1:38:3e:55: ff:72:1d:1a:84:2c:cb:32:3c:f6:eb:32:d0:fe:ef: a7:2b:fb:70:3a:fc:e3:84:76:3f:46:d1:52:46:aa: bd:70:6f:25:75:bb:f0:07:10:92:c1:d5:4e:a0:16: 16:9d:02:96:b0:e2:c9:9b:2c:de:c2:aa:28:26:a5: c4:9e:98:49:2a:a1:a0:76:40:61:c7:ab:e4:94:c4: 46:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:3A:EB:45:EF:34:31:13:80:1A:B4:26:EA:8D:E2:1B:99:B2:33:41 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4b95e3b4-3049-4ea0-a39c-7522cc0bea0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:80a0::/48 Signature Algorithm: sha256WithRSAEncryption 9f:01:3e:a3:54:c0:ec:c0:40:02:f8:32:fe:d0:fe:3f:c3:d1: c4:39:69:77:95:ff:d2:57:70:a6:a4:e4:34:2e:54:4c:4a:40: 4f:06:fe:66:34:b9:95:c5:3d:16:b9:76:cd:c4:5e:51:b7:dd: c3:84:8b:25:04:06:34:b3:a3:e9:3b:97:02:af:19:16:d1:90: 24:c1:6d:05:20:b2:c1:73:bc:c9:25:a1:cf:e4:e9:c7:14:83: f8:de:70:94:61:8e:b7:e5:d5:81:41:65:f7:04:b5:a7:84:c2: 80:e4:e1:e0:75:b7:4f:f0:e6:84:76:f3:c6:66:83:1b:38:6e: ef:bb:78:5b:d1:b3:b9:5b:77:85:29:af:b6:a1:a5:22:72:26: 65:74:92:3f:f6:5d:7a:41:aa:3d:01:9b:0b:53:b1:f5:4c:f6: 39:28:bd:2d:b5:70:81:b9:20:16:f0:3b:05:69:de:17:08:68: 44:73:56:c0:26:83:72:91:e3:80:13:e2:c5:e0:34:ca:f1:d8: 57:ae:d8:57:e1:d1:dc:62:ba:2b:5b:25:35:b9:cd:18:87:d9: 11:ba:ef:9a:eb:19:45:e9:44:0e:33:10:a9:8c:70:88:e6:27: 1d:8b:7f:31:fa:f0:d2:4a:6e:02:7a:b8:6a:2c:10:d8:9d:33: 45:d5:c3:14 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUMzGSs8gHc2O6Ejs5GADMj2GbvXMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxODAwMDExNloX DTI2MDUxOTIzNTk1OVowejFJMEcGA1UEBRNANTkwMDI4MGNhYWM1ZWMwMzdmZjk4 MzIxOTRjNmU3ZWQ3ZGMzNmQ3YzEzMjE3ZjhhOWU5MjU4MTY2YTIyOTg4YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmNkbEu4Couc5xMhzYYCa5J7mrRhB hXiti/8tWyOLx0DQYUEwdeOhkwFNECP05QS17WmaZ09r+BRqXSjkbTrnR3QK0ONw CVnMjqn8lbKVJsmOZWPI/hUn7f4ayRQNBfT+JHYRI2ZRpKnTOEz8VC1Ih2qWbkYf /8/a5oh+YP9a7AhjsrFrNFbGXCzBpSmAaDnziGuR+WAjrVLggoUIysf8N0uV0Kpc adGTpssQ8KQr87E4PlX/ch0ahCzLMjz26zLQ/u+nK/twOvzjhHY/RtFSRqq9cG8l dbvwBxCSwdVOoBYWnQKWsOLJmyzewqooJqXEnphJKqGgdkBhx6vklMRG/wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFIw660XvNDETgBq0JuqN4huZsjNBMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRiOTVlM2I0LTMwNDktNGVhMC1hMzljLTc1MjJjYzBiZWEwZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAICgMA0GCSqGSIb3DQEBCwUAA4IBAQCfAT6jVMDswEAC+DL+ 0P4/w9HEOWl3lf/SV3CmpOQ0LlRMSkBPBv5mNLmVxT0WuXbNxF5Rt93DhIslBAY0 s6PpO5cCrxkW0ZAkwW0FILLBc7zJJaHP5OnHFIP43nCUYY635dWBQWX3BLWnhMKA 5OHgdbdP8OaEdvPGZoMbOG7vu3hb0bO5W3eFKa+2oaUiciZldJI/9l16Qao9AZsL U7H1TPY5KL0ttXCBuSAW8DsFad4XCGhEc1bAJoNykeOAE+LF4DTK8dhXrthX4dHc YrorWyU1uc0Yh9kRuu+a6xlF6UQOMxCpjHCI5icdi38x+vDSSm4CerhqLBDYnTNF 1cMU -----END CERTIFICATE-----Generated at Mon Mar 2 01:43:24 2026 by rpki-client