$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/57ee342a-a57e-4da8-82e2-2f4296f4db43.roa File: 57ee342a-a57e-4da8-82e2-2f4296f4db43.roa (raw, json) Hash identifier: cHZvF1aov5+O8NFwfhVLG9Qq5ZCTG+bbdm9w4Ir5gd4= Subject key identifier: A8:8B:E9:21:C2:82:FB:DE:EF:75:4F:F7:27:D6:86:68:8F:CD:24:7C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 20AF5C881E66BD847CC6B765C03CA4899B201238 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/57ee342a-a57e-4da8-82e2-2f4296f4db43.roa Signing time: Sat 14 Feb 2026 00:01:07 +0000 ROA not before: Sat 14 Feb 2026 00:01:07 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2f::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:af:5c:88:1e:66:bd:84:7c:c6:b7:65:c0:3c:a4:89:9b:20:12:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 14 00:01:07 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=a01d61150d56af3133e59de8ff5bdf808dcf8dc1f909c920fc3f4b20ed34bef6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:5f:ad:86:13:0c:59:80:f8:ba:7e:92:41:aa: 40:9e:00:c6:92:fa:0d:0b:ab:da:f1:62:6a:6e:eb: 11:1d:cf:d3:04:6f:a5:6e:b2:62:90:a5:d4:f8:ab: 4b:35:0a:df:de:d7:11:58:fb:76:7b:ee:94:cc:51: fc:9e:61:91:38:50:25:74:9e:b2:20:78:0f:37:3b: 8d:d7:25:bc:d1:29:49:4c:21:84:13:86:d3:18:20: e4:be:d5:69:fd:d2:0e:33:33:d7:85:f5:28:d6:8b: ef:bc:fc:f3:af:80:79:44:b9:81:5e:8f:b5:1f:1e: c2:09:8f:ff:a3:ce:b6:75:67:c7:d6:60:67:93:cb: c7:d8:8e:7d:9e:af:de:43:35:63:9d:9e:26:7b:06: 4a:63:5a:00:fa:c4:05:28:69:cf:7d:f5:98:75:40: 8c:88:a8:4b:c9:72:d9:5a:29:a9:3a:99:52:1e:9b: 9a:9e:40:43:e0:d7:19:80:bf:ba:27:20:a1:46:f4: 64:04:e7:3b:2f:88:27:43:5a:5f:3c:57:6f:20:f4: 92:0c:0f:b2:43:86:1a:a4:cf:97:d2:83:d6:a7:6e: 15:a1:b7:98:5f:a7:69:f8:d1:58:33:d6:f2:d1:a9: e0:fb:a0:be:42:0f:67:14:cf:eb:df:ec:c6:98:e5: 74:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:8B:E9:21:C2:82:FB:DE:EF:75:4F:F7:27:D6:86:68:8F:CD:24:7C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/57ee342a-a57e-4da8-82e2-2f4296f4db43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2f::/36 Signature Algorithm: sha256WithRSAEncryption 1c:9a:5a:4a:c2:c3:8d:fc:e8:74:28:7e:11:04:65:32:14:d1: 9f:b6:72:84:8a:d3:a6:a1:8b:d9:e4:7f:12:a4:69:49:22:f9: ca:7a:d5:c8:3d:ee:61:d3:8a:02:5e:9e:9b:4b:a0:7b:98:0e: 89:b5:c8:46:39:52:79:72:7e:93:52:d4:14:c0:8a:d6:3e:09: 40:8a:0a:e8:f1:8e:22:83:b9:7d:58:e6:67:03:6a:9b:cf:1d: e3:0c:61:41:fa:7a:85:19:60:f1:89:46:20:5f:0f:5f:35:36: a6:01:57:56:72:26:25:4a:c2:b3:8d:2f:ef:30:3d:68:f9:ed: 7a:eb:6e:4a:89:95:da:21:2b:8a:75:51:35:cd:5a:e2:2d:e6: 7c:b3:ef:3c:81:14:e8:c4:c0:c1:b0:2a:b6:1a:d9:10:38:b6: af:8f:f9:d8:79:85:b4:5a:41:d8:d9:ab:a2:e3:8c:6d:de:a0: d7:21:0a:86:2f:32:c6:f9:73:b2:48:27:c1:1c:8e:76:fc:17: 5f:f1:0e:7c:3d:3d:09:6f:23:d4:fa:20:87:04:2a:8b:f6:98: 88:7f:5e:31:5a:02:2a:d0:cd:96:8a:b7:90:83:9c:ea:1e:19: 52:b8:d2:0c:84:70:3c:12:9a:14:3b:2f:56:f7:30:f2:62:49: 4e:98:30:a8 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUIK9ciB5mvYR8xrdlwDykiZsgEjgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNDAwMDEwN1oX DTI2MDUxNTIzNTk1OVowejFJMEcGA1UEBRNAYTAxZDYxMTUwZDU2YWYzMTMzZTU5 ZGU4ZmY1YmRmODA4ZGNmOGRjMWY5MDljOTIwZmMzZjRiMjBlZDM0YmVmNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAil+thhMMWYD4un6SQapAngDGkvoN C6va8WJqbusRHc/TBG+lbrJikKXU+KtLNQrf3tcRWPt2e+6UzFH8nmGROFAldJ6y IHgPNzuN1yW80SlJTCGEE4bTGCDkvtVp/dIOMzPXhfUo1ovvvPzzr4B5RLmBXo+1 Hx7CCY//o862dWfH1mBnk8vH2I59nq/eQzVjnZ4mewZKY1oA+sQFKGnPffWYdUCM iKhLyXLZWimpOplSHpuankBD4NcZgL+6JyChRvRkBOc7L4gnQ1pfPFdvIPSSDA+y Q4YapM+X0oPWp24VobeYX6dp+NFYM9by0ang+6C+Qg9nFM/r3+zGmOV00wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKiL6SHCgvve73VP9yfWhmiPzSR8MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU3ZWUzNDJhLWE1N2UtNGRhOC04MmUyLTJmNDI5NmY0ZGI0My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaLwAwDQYJKoZIhvcNAQELBQADggEBAByaWkrCw4386HQofhEE ZTIU0Z+2coSK06ahi9nkfxKkaUki+cp61cg97mHTigJenptLoHuYDom1yEY5Unly fpNS1BTAitY+CUCKCujxjiKDuX1Y5mcDapvPHeMMYUH6eoUZYPGJRiBfD181NqYB V1ZyJiVKwrONL+8wPWj57XrrbkqJldohK4p1UTXNWuIt5nyz7zyBFOjEwMGwKrYa 2RA4tq+P+dh5hbRaQdjZq6LjjG3eoNchCoYvMsb5c7JIJ8Ecjnb8F1/xDnw9PQlv I9T6IIcEKov2mIh/XjFaAirQzZaKt5CDnOoeGVK40gyEcDwSmhQ7L1b3MPJiSU6Y MKg= -----END CERTIFICATE-----Generated at Mon Mar 2 03:19:27 2026 by rpki-client