$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4c10d3b9-c357-4dde-9e35-8b451ebe7bad.roa File: 4c10d3b9-c357-4dde-9e35-8b451ebe7bad.roa (raw, json) Hash identifier: U6mEOooypYWlmy+bZWIe5b70HrSPWimbUBm8j5ZOdv8= Subject key identifier: 04:64:82:7F:E9:B8:C0:44:4A:5D:F5:8B:99:10:61:15:49:3D:8F:27 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3018C17CE15F900002C8C1AEBD2524E0430DA917 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4c10d3b9-c357-4dde-9e35-8b451ebe7bad.roa Signing time: Sun 15 Feb 2026 00:00:35 +0000 ROA not before: Sun 15 Feb 2026 00:00:35 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:18:c1:7c:e1:5f:90:00:02:c8:c1:ae:bd:25:24:e0:43:0d:a9:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 15 00:00:35 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=38cd72a91b450abbd7ada3b32fd521fbad8d91a385d6256917292708e893d5e2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f0:ea:f3:9a:cb:b2:2c:72:bc:c3:36:c3:73: 6c:8e:ce:58:9b:d0:a8:f2:72:ee:e8:a7:f1:15:e2: 8d:41:81:f9:36:2e:25:73:63:94:83:24:d9:18:60: 1c:82:1e:62:9a:67:a6:a1:f4:5f:a6:c6:84:51:a3: 73:a1:23:23:9b:7e:92:76:9d:22:5b:bd:db:d9:2e: 59:4a:5e:fe:1d:6a:13:cb:f6:f7:59:cc:ab:35:92: 46:e0:df:7a:17:44:01:e0:d6:fb:b2:be:13:ac:4e: ee:61:dd:c6:7e:53:97:c8:cb:75:d2:cd:1a:1d:1c: 14:a2:16:c4:d4:e2:19:10:3f:3f:a6:d6:0c:25:81: 80:32:b3:6b:f6:b3:2f:d9:f5:c0:e6:57:a6:92:09: 55:22:45:91:53:7f:cb:fa:f0:45:e6:bb:64:82:6a: 33:9d:50:3d:99:8d:3f:36:ab:4a:db:ee:7a:26:88: 21:2f:8e:41:8d:91:62:5a:eb:f9:4c:c8:a4:bd:04: c3:6b:3f:86:5f:9d:28:8f:1e:af:f0:2f:d4:6c:9d: 96:1d:4d:b2:f3:96:3e:5e:9c:de:91:33:8c:26:2b: 9a:7a:4b:8d:ef:d1:93:18:24:3e:0c:e4:46:e9:7c: 1f:02:d7:ce:93:b8:b5:c9:16:a7:c7:58:64:59:ae: 80:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:64:82:7F:E9:B8:C0:44:4A:5D:F5:8B:99:10:61:15:49:3D:8F:27 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4c10d3b9-c357-4dde-9e35-8b451ebe7bad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:1000::/40 Signature Algorithm: sha256WithRSAEncryption 9e:c3:0d:21:59:4f:f3:89:a7:19:e1:27:eb:3c:83:0d:bb:00: bc:80:73:58:cf:45:a4:b6:4d:dd:98:e5:6f:8e:45:0a:b5:e3: 58:1a:2c:34:5e:f5:50:06:99:0d:67:51:81:61:ec:e8:ed:82: b8:3a:f2:8b:75:c5:0b:85:97:2e:af:cb:f1:e6:ab:5b:ea:e4: 2c:ac:25:4c:4b:e6:da:19:c6:77:d6:6a:cc:d8:5c:cb:0e:36: 04:b1:1a:3c:e7:ea:0a:a2:1e:85:e2:88:1e:3f:93:b9:be:47: 33:ef:e8:3d:f8:d3:c2:d4:95:32:8c:81:88:c6:bb:0f:de:ad: a7:11:b6:88:e1:a0:88:a2:04:5a:f6:f0:ed:31:cc:78:05:e7: 28:fc:8a:1d:8d:8a:9b:6c:16:6c:03:63:e5:71:70:2e:86:17: 36:fb:c4:d6:48:48:38:ae:37:21:16:90:21:0d:72:b2:6d:34: 28:12:e8:83:d3:ca:89:05:aa:31:2d:34:73:c9:7f:7f:11:63: 84:e7:d7:35:f3:20:a6:14:60:0c:fa:ba:cb:a5:1a:53:7d:64: b7:64:b1:93:1c:33:28:e3:d3:67:3e:8f:58:8f:6c:91:12:6e: b6:3b:3a:02:fd:54:79:97:39:7f:1c:08:c6:20:79:59:32:ba: 4b:b1:96:b9 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMBjBfOFfkAACyMGuvSUk4EMNqRcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNTAwMDAzNVoX DTI2MDUxNjIzNTk1OVowejFJMEcGA1UEBRNAMzhjZDcyYTkxYjQ1MGFiYmQ3YWRh M2IzMmZkNTIxZmJhZDhkOTFhMzg1ZDYyNTY5MTcyOTI3MDhlODkzZDVlMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvDq85rLsixyvMM2w3Nsjs5Ym9Co 8nLu6KfxFeKNQYH5Ni4lc2OUgyTZGGAcgh5immemofRfpsaEUaNzoSMjm36Sdp0i W73b2S5ZSl7+HWoTy/b3WcyrNZJG4N96F0QB4Nb7sr4TrE7uYd3GflOXyMt10s0a HRwUohbE1OIZED8/ptYMJYGAMrNr9rMv2fXA5lemkglVIkWRU3/L+vBF5rtkgmoz nVA9mY0/NqtK2+56JoghL45BjZFiWuv5TMikvQTDaz+GX50ojx6v8C/UbJ2WHU2y 85Y+XpzekTOMJiuaekuN79GTGCQ+DORG6XwfAtfOk7i1yRanx1hkWa6A1wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFARkgn/puMBESl31i5kQYRVJPY8nMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRjMTBkM2I5LWMzNTctNGRkZS05ZTM1LThiNDUxZWJlN2JhZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9hAwDQYJKoZIhvcNAQELBQADggEBAJ7DDSFZT/OJpxnhJ+s8 gw27ALyAc1jPRaS2Td2Y5W+ORQq141gaLDRe9VAGmQ1nUYFh7Ojtgrg68ot1xQuF ly6vy/Hmq1vq5CysJUxL5toZxnfWaszYXMsONgSxGjzn6gqiHoXiiB4/k7m+RzPv 6D3408LUlTKMgYjGuw/eracRtojhoIiiBFr28O0xzHgF5yj8ih2NiptsFmwDY+Vx cC6GFzb7xNZISDiuNyEWkCENcrJtNCgS6IPTyokFqjEtNHPJf38RY4Tn1zXzIKYU YAz6usulGlN9ZLdksZMcMyjj02c+j1iPbJESbrY7OgL9VHmXOX8cCMYgeVkyukux lrk= -----END CERTIFICATE-----Generated at Sun Mar 1 21:49:04 2026 by rpki-client