$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75497e55-5575-445f-b58d-7aebff6310e8.roa File: 75497e55-5575-445f-b58d-7aebff6310e8.roa (raw, json) Hash identifier: tSxgwCJufl2l+kHDFjY8w4OPQlIFZnAseogEgzD14Tk= Subject key identifier: C4:98:75:28:D7:C2:A4:24:0D:55:DE:01:31:A5:3F:9B:A9:C7:C0:9A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2E340DA4C1F97AE37C84EA461090A9AC04816034 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75497e55-5575-445f-b58d-7aebff6310e8.roa Signing time: Fri 20 Feb 2026 00:00:46 +0000 ROA not before: Fri 20 Feb 2026 00:00:46 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:c0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:34:0d:a4:c1:f9:7a:e3:7c:84:ea:46:10:90:a9:ac:04:81:60:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:00:46 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=309cba60ae1080da81d01fe40671ba1f6db213ec19159aea53daae02515e5af7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e7:c4:43:c4:2f:98:c9:9a:b0:15:48:79:7d: 3c:87:9a:87:46:1f:40:ca:fe:83:76:b2:e6:55:61: 0b:3a:3d:73:c8:0d:38:f4:04:fe:e1:ef:0e:f3:0a: 2d:0d:62:90:73:40:ac:be:61:97:08:35:f6:4f:a6: 4c:60:20:7d:7b:ba:d5:53:c3:e5:ed:e6:55:8f:57: cb:58:9e:46:3b:e2:68:f1:c2:4d:d2:37:bb:a0:9f: aa:ff:d3:5d:83:b3:2f:27:d5:12:49:be:61:c7:d0: f4:59:cf:d3:65:29:34:06:e3:6f:4e:9f:fb:14:93: 03:c0:1d:d7:a0:26:e7:8f:b9:f5:d9:fd:a8:64:7c: 89:2c:30:ca:6e:96:61:5f:b9:88:97:cb:a7:a8:82: 27:2d:60:48:88:cd:0d:e7:f2:f1:c1:f9:a3:d2:64: 9c:fb:1f:4c:a6:3b:0a:fa:70:d9:e5:7c:77:f4:54: 9c:3e:09:c4:cc:9d:5d:a5:5c:45:08:fc:ff:88:ac: 6c:85:da:33:83:f0:dd:82:88:87:a7:58:7d:48:98: e7:6e:3e:aa:77:27:a0:e4:ed:6c:45:79:d0:04:0f: 13:9a:a0:13:c4:d1:45:e9:48:96:3f:77:98:3b:1c: cb:8e:a6:ec:3f:d1:2a:eb:cb:b2:f4:3f:2e:cb:a3: f3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:98:75:28:D7:C2:A4:24:0D:55:DE:01:31:A5:3F:9B:A9:C7:C0:9A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75497e55-5575-445f-b58d-7aebff6310e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:c0c0::/48 Signature Algorithm: sha256WithRSAEncryption 67:10:af:be:ad:50:6b:8c:fd:80:be:9c:f5:f3:d0:53:b2:d7: 32:02:3f:01:17:5c:94:0a:f2:a3:e5:5b:d3:b0:33:ab:7b:d4: 8a:5b:41:4c:db:10:36:a9:f2:77:eb:90:5f:f0:f4:ac:91:a6: de:70:2f:33:42:5e:62:ee:72:8a:8d:a2:6d:9d:0b:98:f6:66: 2b:b1:9b:f4:d6:c7:4a:eb:9d:0d:8c:ce:91:a2:b3:d0:c3:77: 85:a1:8b:6d:f9:83:8a:65:12:5e:1d:1b:f1:57:f3:5e:d5:c2: cb:ba:14:d7:8d:ba:7a:f1:7a:0e:97:94:8b:8a:e4:17:36:12: 99:c8:08:6d:8e:93:08:bc:2b:13:25:7c:f1:73:bc:b1:e3:2d: 3b:85:91:67:ef:eb:26:dd:2f:69:67:51:32:eb:10:e2:46:68: f5:8a:9e:df:80:24:78:bd:6f:8d:9f:90:8c:4e:23:6e:99:88: a5:21:4b:60:b6:b7:e5:61:34:c1:af:51:e4:7e:d1:69:5c:7f: 2b:aa:b2:75:9f:68:ad:7f:c1:c2:ec:99:a8:eb:14:d9:7a:c5: 9c:3f:6f:84:b9:6a:e4:d7:6b:02:9e:2f:3a:27:0c:da:e5:af: 02:24:e1:6d:52:17:c5:6c:32:a1:dd:64:13:e1:5b:7f:ab:8c: 5c:94:8e:99 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIULjQNpMH5euN8hOpGEJCprASBYDQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMDA0NloX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAMzA5Y2JhNjBhZTEwODBkYTgxZDAx ZmU0MDY3MWJhMWY2ZGIyMTNlYzE5MTU5YWVhNTNkYWFlMDI1MTVlNWFmNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+fEQ8QvmMmasBVIeX08h5qHRh9A yv6DdrLmVWELOj1zyA049AT+4e8O8wotDWKQc0CsvmGXCDX2T6ZMYCB9e7rVU8Pl 7eZVj1fLWJ5GO+Jo8cJN0je7oJ+q/9Ndg7MvJ9USSb5hx9D0Wc/TZSk0BuNvTp/7 FJMDwB3XoCbnj7n12f2oZHyJLDDKbpZhX7mIl8unqIInLWBIiM0N5/Lxwfmj0mSc +x9MpjsK+nDZ5Xx39FScPgnEzJ1dpVxFCPz/iKxshdozg/DdgoiHp1h9SJjnbj6q dyeg5O1sRXnQBA8TmqATxNFF6UiWP3eYOxzLjqbsP9Eq68uy9D8uy6PziQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMSYdSjXwqQkDVXeATGlP5upx8CaMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc1NDk3ZTU1LTU1NzUtNDQ1Zi1iNThkLTdhZWJmZjYzMTBlOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAMDAMA0GCSqGSIb3DQEBCwUAA4IBAQBnEK++rVBrjP2Avpz1 89BTstcyAj8BF1yUCvKj5VvTsDOre9SKW0FM2xA2qfJ365Bf8PSskabecC8zQl5i 7nKKjaJtnQuY9mYrsZv01sdK650NjM6RorPQw3eFoYtt+YOKZRJeHRvxV/Ne1cLL uhTXjbp68XoOl5SLiuQXNhKZyAhtjpMIvCsTJXzxc7yx4y07hZFn7+sm3S9pZ1Ey 6xDiRmj1ip7fgCR4vW+Nn5CMTiNumYilIUtgtrflYTTBr1HkftFpXH8rqrJ1n2it f8HC7Jmo6xTZesWcP2+EuWrk12sCni86Jwza5a8CJOFtUhfFbDKh3WQT4Vt/q4xc lI6Z -----END CERTIFICATE-----Generated at Sun Mar 1 23:47:17 2026 by rpki-client