$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa File: 70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa (raw, json) Hash identifier: uZQbVgIzOQA+ktI13ZTKurQhc8ssocR4bY5fJgAkeu0= Subject key identifier: 2A:A5:1E:1C:D5:B8:32:A6:C8:8A:3A:EA:9E:13:D4:DA:1A:41:0C:3C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 29AFA9813E6F16EF7FB9FC8EDB9F18DA77564E0E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa Signing time: Wed 18 Feb 2026 00:01:31 +0000 ROA not before: Wed 18 Feb 2026 00:01:31 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:af:a9:81:3e:6f:16:ef:7f:b9:fc:8e:db:9f:18:da:77:56:4e:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 18 00:01:31 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=26fd0e163ae535918ab45ed2010496aeb6ced6acf7e8182dcce35fde18da1d91, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7a:2c:0e:90:80:5e:c8:16:2d:99:55:32:0e: cf:40:f1:7a:54:e9:ff:1d:fc:2a:c8:a7:a3:f4:34: bf:b2:27:d0:b9:e7:70:b2:86:50:e3:2c:2f:59:f2: 7f:12:94:ac:6e:20:25:43:37:db:35:6a:12:77:f1: bd:f1:81:c4:56:f7:03:ba:5c:bd:e6:0c:17:75:10: 9e:1f:fd:1f:07:f4:99:44:91:49:8b:d4:e3:7d:ee: 71:1a:85:33:cf:ac:99:cb:1e:2c:7d:f3:7f:3b:7d: b9:bd:8e:28:63:44:69:1a:83:2d:d7:95:6f:59:20: eb:b3:a1:62:ac:5c:1d:0e:a7:5d:44:95:34:f4:4f: 8e:42:e1:f6:84:7b:23:24:7e:5d:d7:e0:f8:36:c8: da:c8:3a:e9:bd:b8:38:d2:ad:db:4f:df:6f:1d:e1: c7:5e:ec:a3:00:9c:80:10:bf:f3:d3:74:0c:61:f8: bd:4f:a4:41:36:84:b0:f6:c0:38:a1:77:c2:3a:11: b2:e9:24:c4:44:28:0c:c1:68:30:70:49:0b:0e:28: 5a:ba:dc:19:c8:23:44:49:1a:74:83:fd:bd:86:fe: 48:03:9f:8f:57:5c:0e:ac:bf:81:ad:7a:c6:97:1d: cf:6f:7b:1d:cb:73:12:ce:f0:0f:b9:3f:95:90:64: d2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:A5:1E:1C:D5:B8:32:A6:C8:8A:3A:EA:9E:13:D4:DA:1A:41:0C:3C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:a080::/48 Signature Algorithm: sha256WithRSAEncryption 40:be:12:c7:15:bb:75:33:67:2a:4e:40:ad:c5:74:47:fb:2d: c6:38:c7:67:4d:c9:af:b6:e3:30:33:0a:86:2d:f1:b8:5d:ef: d8:19:b2:89:a4:c2:67:9b:1b:68:85:5a:82:51:66:20:4a:02: e3:f9:3b:42:fe:de:7d:70:fe:2f:9c:b7:23:35:4b:13:33:a2: bc:62:cf:44:51:a5:d1:e2:56:9b:d6:f8:35:55:d2:c1:3d:23: 27:b4:3b:da:9e:3a:60:e0:81:5c:cf:99:4b:f8:c7:9d:81:9e: 3c:fa:e8:83:3c:71:66:73:7d:1b:d7:8c:36:78:51:aa:5f:5e: a2:57:a2:7f:69:ac:6b:d1:5a:62:54:69:b7:47:25:1c:f6:45: 0c:f0:49:e9:42:43:db:a1:c3:24:48:bd:a8:94:15:7f:f8:a1: 8c:f0:e9:52:c7:35:96:01:62:53:1e:a9:c9:28:69:00:e4:33: c4:41:a4:71:b2:66:5f:c5:df:31:71:32:d9:19:c9:6c:80:8d: bc:82:9b:a8:ae:95:3b:cb:04:ac:31:7f:a8:40:56:56:87:da: bd:9b:84:39:3b:e4:71:8b:a9:07:11:47:64:48:ea:38:2b:b0: 7e:07:f1:2e:4b:41:b8:1e:48:9b:17:0a:a9:f1:47:12:9f:43: ed:26:8f:6c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUKa+pgT5vFu9/ufyO258Y2ndWTg4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxODAwMDEzMVoX DTI2MDUxOTIzNTk1OVowejFJMEcGA1UEBRNAMjZmZDBlMTYzYWU1MzU5MThhYjQ1 ZWQyMDEwNDk2YWViNmNlZDZhY2Y3ZTgxODJkY2NlMzVmZGUxOGRhMWQ5MTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnosDpCAXsgWLZlVMg7PQPF6VOn/ HfwqyKej9DS/sifQuedwsoZQ4ywvWfJ/EpSsbiAlQzfbNWoSd/G98YHEVvcDuly9 5gwXdRCeH/0fB/SZRJFJi9Tjfe5xGoUzz6yZyx4sffN/O325vY4oY0RpGoMt15Vv WSDrs6FirFwdDqddRJU09E+OQuH2hHsjJH5d1+D4NsjayDrpvbg40q3bT99vHeHH XuyjAJyAEL/z03QMYfi9T6RBNoSw9sA4oXfCOhGy6STERCgMwWgwcEkLDihautwZ yCNESRp0g/29hv5IA5+PV1wOrL+BrXrGlx3Pb3sdy3MSzvAPuT+VkGTSiwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCqlHhzVuDKmyIo66p4T1NoaQQw8MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcwNzgxNTk3LTZlZGMtNDliYy1iZDhjLWM5YWRjNjhkMWIyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYaCAMA0GCSqGSIb3DQEBCwUAA4IBAQBAvhLHFbt1M2cqTkCt xXRH+y3GOMdnTcmvtuMwMwqGLfG4Xe/YGbKJpMJnmxtohVqCUWYgSgLj+TtC/t59 cP4vnLcjNUsTM6K8Ys9EUaXR4lab1vg1VdLBPSMntDvanjpg4IFcz5lL+MedgZ48 +uiDPHFmc30b14w2eFGqX16iV6J/aaxr0VpiVGm3RyUc9kUM8EnpQkPbocMkSL2o lBV/+KGM8OlSxzWWAWJTHqnJKGkA5DPEQaRxsmZfxd8xcTLZGclsgI28gpuorpU7 ywSsMX+oQFZWh9q9m4Q5O+Rxi6kHEUdkSOo4K7B+B/EuS0G4HkibFwqp8UcSn0Pt Jo9s -----END CERTIFICATE-----Generated at Mon Mar 2 00:09:04 2026 by rpki-client