$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/745411de-d434-4fb7-bef2-d54990248d48.roa File: 745411de-d434-4fb7-bef2-d54990248d48.roa (raw, json) Hash identifier: fJ3frIeqd7TAb8Qf8yNFfH4E+KZA01VWRI96UK5dAaI= Subject key identifier: D5:A4:6B:A6:A9:88:25:22:66:23:F0:5A:82:82:C3:09:87:27:49:65 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4F4CE0401C9E601CBB1871F0F035B80969529C7E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/745411de-d434-4fb7-bef2-d54990248d48.roa Signing time: Sun 22 Feb 2026 00:41:06 +0000 ROA not before: Sun 22 Feb 2026 00:41:06 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da16:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:4c:e0:40:1c:9e:60:1c:bb:18:71:f0:f0:35:b8:09:69:52:9c:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:41:06 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=16d45c41016a1e589b643ba5cfbe886ae9620a4300333e69259e346febae425a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d0:ae:59:5c:1e:d7:60:d3:ef:69:42:90:81: df:c4:6f:ec:bb:8c:92:6e:db:7d:c1:87:9e:ef:fe: 05:55:18:85:5c:f5:70:5e:ac:f1:b0:72:b1:4e:04: d9:c6:11:62:3f:9a:b9:d4:fc:25:4d:30:76:4e:78: 32:35:76:88:b4:4a:25:8c:aa:74:e1:7d:af:4a:87: 91:6a:7f:f7:e3:7e:f5:b9:6b:db:7f:dd:4b:69:12: 82:c1:9e:fe:b7:bc:55:c3:9d:3c:87:80:f8:7d:fd: 56:b2:26:11:8d:d2:a7:75:47:4f:da:e9:6e:2d:6d: fd:1d:86:ef:8b:6f:6f:68:06:69:05:b2:71:62:4c: 18:b1:21:c5:f0:f1:9c:e2:a3:c4:f6:31:37:fe:34: a9:a4:e6:fc:ef:dc:b6:13:7d:8e:b5:fd:18:47:49: dc:af:83:63:68:01:13:88:27:06:7b:b3:54:1d:9e: 83:70:03:05:9e:e0:1f:a2:87:b3:f2:1e:e4:7f:01: 2e:58:dc:f9:a0:d1:22:62:c8:b8:bf:cf:86:38:ab: 32:a0:82:0c:fe:13:61:d5:3e:f7:b9:36:46:a6:21: 87:8f:84:91:8a:ae:73:f4:9c:d2:2c:f6:5f:44:e8: 83:8a:e8:b4:6e:40:6b:5a:4c:e7:18:fe:4a:3b:5d: 3d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A4:6B:A6:A9:88:25:22:66:23:F0:5A:82:82:C3:09:87:27:49:65 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/745411de-d434-4fb7-bef2-d54990248d48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da16:800::/38 Signature Algorithm: sha256WithRSAEncryption 76:de:08:68:b5:75:1c:96:f5:94:86:d1:b4:6c:f3:be:b4:d7: 61:c2:67:05:62:51:ef:68:05:65:58:10:45:7b:93:24:a4:1e: 35:dd:2e:2e:54:f2:0a:60:e6:26:2e:52:83:50:cb:1e:34:70: e0:15:5e:d9:c5:58:a0:f6:92:cb:6b:b6:98:fe:ac:60:56:27: 1c:78:99:33:d7:dc:6f:fe:0a:88:0c:4c:af:45:a8:70:ce:74: 21:92:ec:12:6e:71:19:b6:e7:47:03:0c:54:c0:c6:94:29:bf: eb:15:56:19:aa:6e:de:b9:a1:66:f4:e6:38:6b:21:08:a9:6e: 95:37:99:b9:ba:c3:2d:e9:0c:54:c0:47:7a:bb:7d:44:54:dd: 60:8b:df:29:56:1b:ae:0b:8b:30:7e:50:05:25:25:15:97:35: 1d:ac:2a:66:a5:7f:5c:03:71:e2:1a:ab:57:da:ff:fc:5b:16: fe:74:d7:b9:cf:f8:45:ef:9c:8a:92:bd:57:c9:bd:49:34:03: 50:e1:15:f4:05:68:bc:e8:09:ea:d0:85:25:53:e1:9e:95:ff: 69:6f:a6:88:9a:f4:01:4c:30:7b:b3:9b:53:4a:79:c0:fa:92: e3:99:09:76:38:14:d5:de:5b:07:b2:d2:64:bb:ff:9a:3f:cf: 71:ad:31:33 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUT0zgQByeYBy7GHHw8DW4CWlSnH4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwNDEwNloX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAMTZkNDVjNDEwMTZhMWU1ODliNjQz YmE1Y2ZiZTg4NmFlOTYyMGE0MzAwMzMzZTY5MjU5ZTM0NmZlYmFlNDI1YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19CuWVwe12DT72lCkIHfxG/su4yS btt9wYee7/4FVRiFXPVwXqzxsHKxTgTZxhFiP5q51PwlTTB2TngyNXaItEoljKp0 4X2vSoeRan/34371uWvbf91LaRKCwZ7+t7xVw508h4D4ff1WsiYRjdKndUdP2ulu LW39HYbvi29vaAZpBbJxYkwYsSHF8PGc4qPE9jE3/jSppOb879y2E32Otf0YR0nc r4NjaAETiCcGe7NUHZ6DcAMFnuAfooez8h7kfwEuWNz5oNEiYsi4v8+GOKsyoIIM /hNh1T73uTZGpiGHj4SRiq5z9JzSLPZfROiDiui0bkBrWkznGP5KO109ywIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNWka6apiCUiZiPwWoKCwwmHJ0llMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc0NTQxMWRlLWQ0MzQtNGZiNy1iZWYyLWQ1NDk5MDI0OGQ0OC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaFggwDQYJKoZIhvcNAQELBQADggEBAHbeCGi1dRyW9ZSG0bRs 876012HCZwViUe9oBWVYEEV7kySkHjXdLi5U8gpg5iYuUoNQyx40cOAVXtnFWKD2 kstrtpj+rGBWJxx4mTPX3G/+CogMTK9FqHDOdCGS7BJucRm250cDDFTAxpQpv+sV Vhmqbt65oWb05jhrIQipbpU3mbm6wy3pDFTAR3q7fURU3WCL3ylWG64LizB+UAUl JRWXNR2sKmalf1wDceIaq1fa//xbFv5017nP+EXvnIqSvVfJvUk0A1DhFfQFaLzo CerQhSVT4Z6V/2lvpoia9AFMMHuzm1NKecD6kuOZCXY4FNXeWwey0mS7/5o/z3Gt MTM= -----END CERTIFICATE-----Generated at Sun Mar 1 22:07:04 2026 by rpki-client