$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710ed6f2-597f-48a7-930b-32584c274e6f.roa File: 710ed6f2-597f-48a7-930b-32584c274e6f.roa (raw, json) Hash identifier: U2ZlggP1QHFv3zWQKo5jvGQDImt3tVZK2BYgaRT1/Kw= Subject key identifier: 38:98:C6:98:A0:20:53:1D:7E:69:E0:FD:14:80:4D:CC:31:F4:9B:BF Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 73BA093BB51852498F05633C09B611809AFA6863 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710ed6f2-597f-48a7-930b-32584c274e6f.roa Signing time: Sat 28 Feb 2026 00:01:00 +0000 ROA not before: Sat 28 Feb 2026 00:01:00 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daef:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ba:09:3b:b5:18:52:49:8f:05:63:3c:09:b6:11:80:9a:fa:68:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 28 00:01:00 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=335eb2105889e758f9084e4fe6279b243256a58bdb359250ba09e37986480d2a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4a:41:81:f3:5b:d9:14:c5:e9:96:07:90:99: ec:06:f0:f0:e5:7c:65:14:54:25:96:89:6f:2b:ac: 7c:0f:80:be:ae:82:39:89:e4:11:55:9c:f5:0c:d3: 70:c2:e4:e2:5a:41:b2:bd:ab:4a:d8:eb:23:65:8b: ba:8a:cc:86:bc:cb:6a:ad:ec:ca:b7:9b:b6:97:08: 6a:fb:d8:0f:6d:bf:f8:b7:50:5e:71:06:51:7c:c8: 2d:bd:00:5b:c8:c5:bd:16:02:02:ad:e6:27:89:67: 3f:6e:39:46:6c:43:5e:91:f0:03:22:62:ce:18:53: 6b:5c:24:da:95:98:fb:99:94:c8:8b:73:40:74:ce: e4:28:28:af:4f:e7:30:fa:e0:6f:84:89:73:29:58: b3:7f:5e:aa:aa:c9:69:a3:0b:c7:08:aa:5d:29:ff: 7f:8b:fb:8f:de:9e:5b:0d:d0:48:dc:e1:f8:e1:16: 0f:92:82:23:ff:e8:9e:09:de:98:23:3a:81:3c:fc: 16:7a:8f:fd:63:b8:5d:8e:38:60:85:a2:fb:68:e9: 96:d6:fd:29:ab:50:bb:12:6f:87:c2:11:e2:11:2a: 89:78:cb:d1:c2:12:62:19:23:fa:e8:91:d8:9a:4f: 35:ec:89:e5:fe:5b:b0:9a:21:e8:1a:a9:77:35:cd: 36:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:98:C6:98:A0:20:53:1D:7E:69:E0:FD:14:80:4D:CC:31:F4:9B:BF X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710ed6f2-597f-48a7-930b-32584c274e6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daef:8000::/40 Signature Algorithm: sha256WithRSAEncryption 34:d9:d1:da:55:10:31:07:dd:ef:1b:eb:3a:f2:a3:df:63:68: 9d:9b:a0:72:54:19:99:f4:6c:36:b8:55:47:07:1c:5c:1e:27: 4f:b3:8f:1c:f6:94:a7:ff:d2:e9:f0:c6:a7:9a:25:3c:5f:0f: 4d:97:8a:af:a5:91:fc:0b:fb:3f:30:c6:d2:b2:56:ac:a0:74: d2:13:42:a7:61:6c:6c:d7:c2:13:1c:40:8b:e6:83:ec:68:d6: 05:1d:f9:e8:86:92:1c:27:88:d6:2a:c8:6d:d1:1a:c0:e6:cb: 72:a7:de:d5:dd:0e:56:47:20:57:c3:ba:a1:30:24:e3:9c:d7: 57:7e:99:1c:6f:cb:81:71:6d:58:be:53:7f:e1:44:49:b3:1c: 48:a4:23:7e:dc:7d:78:ca:ab:db:42:fd:83:bc:31:39:db:5d: e4:cf:02:e1:84:4a:21:7f:18:3f:7d:4b:67:a0:21:ca:a7:51: e8:d7:4d:97:bb:70:52:44:89:3b:b2:af:2c:5b:68:44:11:21: 9f:f2:b6:d2:e6:06:7e:46:dc:48:ef:fd:03:66:72:1b:e8:7a: 8a:f5:6f:7d:3b:12:ee:8c:f5:f5:38:e0:4d:48:d0:4a:5c:31: 9b:e8:4c:6b:30:0a:f8:42:b1:d1:70:94:b8:05:a0:d8:20:12: b7:b9:a0:66 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUc7oJO7UYUkmPBWM8CbYRgJr6aGMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyODAwMDEwMFoX DTI2MDUyOTIzNTk1OVowejFJMEcGA1UEBRNAMzM1ZWIyMTA1ODg5ZTc1OGY5MDg0 ZTRmZTYyNzliMjQzMjU2YTU4YmRiMzU5MjUwYmEwOWUzNzk4NjQ4MGQyYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0pBgfNb2RTF6ZYHkJnsBvDw5Xxl FFQllolvK6x8D4C+roI5ieQRVZz1DNNwwuTiWkGyvatK2OsjZYu6isyGvMtqrezK t5u2lwhq+9gPbb/4t1BecQZRfMgtvQBbyMW9FgICreYniWc/bjlGbENekfADImLO GFNrXCTalZj7mZTIi3NAdM7kKCivT+cw+uBvhIlzKVizf16qqslpowvHCKpdKf9/ i/uP3p5bDdBI3OH44RYPkoIj/+ieCd6YIzqBPPwWeo/9Y7hdjjhghaL7aOmW1v0p q1C7Em+HwhHiESqJeMvRwhJiGSP66JHYmk817Inl/luwmiHoGql3Nc02GQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDiYxpigIFMdfmng/RSATcwx9Ju/MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcxMGVkNmYyLTU5N2YtNDhhNy05MzBiLTMyNTg0YzI3NGU2Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba74AwDQYJKoZIhvcNAQELBQADggEBADTZ0dpVEDEH3e8b6zry o99jaJ2boHJUGZn0bDa4VUcHHFweJ0+zjxz2lKf/0unwxqeaJTxfD02Xiq+lkfwL +z8wxtKyVqygdNITQqdhbGzXwhMcQIvmg+xo1gUd+eiGkhwniNYqyG3RGsDmy3Kn 3tXdDlZHIFfDuqEwJOOc11d+mRxvy4FxbVi+U3/hREmzHEikI37cfXjKq9tC/YO8 MTnbXeTPAuGESiF/GD99S2egIcqnUejXTZe7cFJEiTuyryxbaEQRIZ/yttLmBn5G 3Ejv/QNmchvoeor1b307Eu6M9fU44E1I0EpcMZvoTGswCvhCsdFwlLgFoNggEre5 oGY= -----END CERTIFICATE-----Generated at Mon Mar 2 05:30:29 2026 by rpki-client