$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/635b223e-f641-496e-be0c-3d916b763149.roa File: 635b223e-f641-496e-be0c-3d916b763149.roa (raw, json) Hash identifier: uqa4/CbBvXmYxaphUk2Rm4v4w9aHopHIq0PcUUjf8sA= Subject key identifier: EE:D0:9D:B5:66:EC:7D:46:C6:D0:6B:75:39:00:95:48:70:86:5E:17 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 21278EAEEB6055E8D40E353E8F80B0220D015057 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/635b223e-f641-496e-be0c-3d916b763149.roa Signing time: Fri 13 Feb 2026 00:00:37 +0000 ROA not before: Fri 13 Feb 2026 00:00:37 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da29::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:27:8e:ae:eb:60:55:e8:d4:0e:35:3e:8f:80:b0:22:0d:01:50:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 13 00:00:37 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=e793bf3f061c562489c1fa91030ad9acce9ff81f8ad08b79fce5e683c06e613b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:83:c5:d0:e0:c5:cc:91:7b:fb:10:38:dd:7c: c3:df:0c:fc:ff:07:e6:43:3a:2b:d0:c7:2d:c3:71: e2:37:d8:83:9e:bd:e0:08:76:88:92:34:a4:64:e9: 76:53:a9:3e:67:62:53:d2:9d:13:2c:f9:2a:15:00: b5:12:21:76:c7:15:74:df:0a:f1:c7:f3:8b:a0:5d: c2:d6:1a:ee:70:7b:9e:d0:f9:05:70:f6:66:51:e0: 54:e7:e2:01:9c:f8:eb:53:54:23:77:ab:8f:de:c6: 94:3b:dc:fc:74:5d:0d:e6:b6:e8:f2:16:63:cb:41: 44:33:cb:9c:71:76:f6:27:4a:d0:c8:79:46:d9:81: 22:55:e9:c6:5e:e5:a0:f0:4f:7d:82:39:ab:2b:3d: fb:48:e9:31:0d:8d:f6:bb:36:7e:0a:6a:5c:a2:86: 1a:0c:d2:50:94:cd:b6:89:35:4d:cf:00:71:48:fb: f5:ce:35:80:c7:6e:e3:51:1e:2b:fc:e2:66:09:85: 03:65:b0:83:94:b4:a0:34:f6:1e:b0:f0:4f:e5:d4: 78:e0:39:86:3e:53:83:e9:e2:4b:08:06:26:18:7f: 96:68:f0:87:af:ec:86:fa:8d:70:45:0c:46:c0:cc: a4:09:e9:ff:67:fb:7d:5d:30:ec:e9:e7:00:13:1e: 75:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D0:9D:B5:66:EC:7D:46:C6:D0:6B:75:39:00:95:48:70:86:5E:17 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/635b223e-f641-496e-be0c-3d916b763149.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da29::/36 Signature Algorithm: sha256WithRSAEncryption 9e:de:4e:2f:36:99:76:ad:0e:54:7b:20:a1:ca:35:de:75:95: 91:0f:a8:7b:5d:6d:b3:35:8d:5f:a5:ad:c1:92:84:3e:f7:79: 54:de:cc:36:0d:12:e4:71:cb:eb:f2:43:3f:b5:d0:88:6f:93: fc:4f:ac:d0:db:c8:ab:a6:c8:c7:13:92:2f:e2:a8:7a:ef:3e: 64:4f:aa:d0:82:42:56:49:ee:1b:f1:19:c5:fe:63:15:f2:a5: 93:01:83:c1:4b:fe:59:f9:27:b1:dd:db:4e:00:66:df:ec:bf: 4c:0d:df:ed:0c:8f:b7:96:65:08:7a:57:74:47:f9:b8:7d:9f: 04:2e:36:b2:92:f5:af:49:2f:3f:09:70:f8:2f:07:fd:7f:49: 3c:d8:98:d5:24:ed:77:c3:0b:cb:6a:9c:40:a6:bd:14:3c:76: e6:d5:0e:eb:a6:bb:d1:63:23:6d:23:11:5b:74:93:3d:15:24: fb:d0:6e:6a:f8:7a:2d:65:75:ad:3f:b4:2e:30:a5:fc:45:a0: c3:2e:a9:2c:a1:44:16:cb:05:9c:25:11:fd:15:62:b7:97:1b: 42:66:4b:94:df:7d:f5:32:33:3f:cb:3b:dd:82:6e:2b:46:a0: 3a:eb:91:6c:94:e5:27:c6:d7:00:31:9c:98:bd:14:54:8c:a9: b7:98:da:85 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUISeOrutgVejUDjU+j4CwIg0BUFcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMzAwMDAzN1oX DTI2MDUxNDIzNTk1OVowejFJMEcGA1UEBRNAZTc5M2JmM2YwNjFjNTYyNDg5YzFm YTkxMDMwYWQ5YWNjZTlmZjgxZjhhZDA4Yjc5ZmNlNWU2ODNjMDZlNjEzYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1oPF0ODFzJF7+xA43XzD3wz8/wfm Qzor0Mctw3HiN9iDnr3gCHaIkjSkZOl2U6k+Z2JT0p0TLPkqFQC1EiF2xxV03wrx x/OLoF3C1hrucHue0PkFcPZmUeBU5+IBnPjrU1Qjd6uP3saUO9z8dF0N5rbo8hZj y0FEM8uccXb2J0rQyHlG2YEiVenGXuWg8E99gjmrKz37SOkxDY32uzZ+CmpcooYa DNJQlM22iTVNzwBxSPv1zjWAx27jUR4r/OJmCYUDZbCDlLSgNPYesPBP5dR44DmG PlOD6eJLCAYmGH+WaPCHr+yG+o1wRQxGwMykCen/Z/t9XTDs6ecAEx51nQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFO7QnbVm7H1GxtBrdTkAlUhwhl4XMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYzNWIyMjNlLWY2NDEtNDk2ZS1iZTBjLTNkOTE2Yjc2MzE0OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaKQAwDQYJKoZIhvcNAQELBQADggEBAJ7eTi82mXatDlR7IKHK Nd51lZEPqHtdbbM1jV+lrcGShD73eVTezDYNEuRxy+vyQz+10Ihvk/xPrNDbyKum yMcTki/iqHrvPmRPqtCCQlZJ7hvxGcX+YxXypZMBg8FL/ln5J7Hd204AZt/sv0wN 3+0Mj7eWZQh6V3RH+bh9nwQuNrKS9a9JLz8JcPgvB/1/STzYmNUk7XfDC8tqnECm vRQ8dubVDuumu9FjI20jEVt0kz0VJPvQbmr4ei1lda0/tC4wpfxFoMMuqSyhRBbL BZwlEf0VYreXG0JmS5TfffUyMz/LO92CbitGoDrrkWyU5SfG1wAxnJi9FFSMqbeY 2oU= -----END CERTIFICATE-----Generated at Mon Mar 2 01:59:52 2026 by rpki-client