$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/783b96f4-81ad-4d1d-a0e6-647a0ff39448.roa File: 783b96f4-81ad-4d1d-a0e6-647a0ff39448.roa (raw, json) Hash identifier: bfbM67MVUsppZRQFe8ccInGTqTmKE3jNP3Wt53HxZVA= Subject key identifier: 66:05:67:C0:A7:06:5A:2B:4D:E0:97:8F:76:6D:C5:0B:72:8C:24:72 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 662FE33B5E32523E9F0BA4A9BE0E6D44500009B0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/783b96f4-81ad-4d1d-a0e6-647a0ff39448.roa Signing time: Sat 14 Feb 2026 00:00:52 +0000 ROA not before: Sat 14 Feb 2026 00:00:52 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab9:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:2f:e3:3b:5e:32:52:3e:9f:0b:a4:a9:be:0e:6d:44:50:00:09:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 14 00:00:52 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=4e5ea3badb3c06df350f3973461e79f90324da90710d4ec5a689efd162d04c57, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:20:c5:dc:46:00:8a:f1:b7:31:6e:77:29:54: 5d:70:fc:78:49:0c:c9:05:d5:78:64:5d:e8:10:b1: 32:bc:2d:e5:d2:85:f2:a7:14:cb:cf:96:c6:06:b5: c8:a4:fb:11:d5:bd:d7:e0:dc:8a:18:b1:92:d3:4e: 17:3c:42:fd:3c:47:05:08:3e:70:4f:a6:90:15:9f: 94:b9:60:34:7c:5f:2b:27:dd:6e:0a:91:3a:47:96: 41:52:38:84:c5:d7:14:94:e4:31:9d:d4:ce:0a:49: c6:9e:d1:0b:0f:5f:06:e2:15:31:01:27:2e:12:70: 39:28:18:bb:c5:fd:e9:ce:75:b8:e2:40:22:d5:19: af:f1:95:66:f4:9c:17:9b:83:34:60:97:8d:75:03: ca:55:b7:47:5e:f5:02:8f:de:b8:37:20:e2:e4:ec: d9:16:d5:27:23:97:a9:71:ec:4d:3f:5a:61:f2:93: 72:15:0e:62:b7:18:11:0e:8a:68:fa:ec:c7:f7:be: 6e:2d:17:b3:ad:ef:e3:de:41:b1:21:b1:fb:2c:26: 76:2e:06:6b:1a:9d:7c:9d:00:ab:65:87:07:b4:f4: 8b:aa:55:fa:3b:a5:b2:28:02:77:26:a3:81:5e:2b: 95:12:3f:90:99:2e:64:b0:59:bf:3a:00:1d:cf:31: fd:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:05:67:C0:A7:06:5A:2B:4D:E0:97:8F:76:6D:C5:0B:72:8C:24:72 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/783b96f4-81ad-4d1d-a0e6-647a0ff39448.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:9000::/40 Signature Algorithm: sha256WithRSAEncryption b6:50:c0:22:a8:3c:0f:c4:9c:4d:39:e3:de:00:34:af:c5:ea: 9c:15:fb:09:8e:72:1a:26:3e:ad:71:e3:2f:37:53:d8:b6:75: a4:97:00:da:31:0a:2d:df:e4:0b:8b:ac:20:f7:4a:0e:61:99: 0e:04:58:83:2c:76:7b:a3:2a:01:95:5f:79:35:c8:9e:f7:73: fe:01:48:09:e4:90:d2:3f:28:f3:9b:fe:9b:dd:a6:93:7b:48: 00:08:17:7f:50:b7:86:93:c2:2a:30:ae:e7:83:fd:02:59:51: 79:a0:d6:ab:d8:96:13:c6:c4:ec:49:6c:48:f7:d2:81:82:f2: 0f:9e:b7:a5:b9:55:91:73:f3:ff:f7:9d:48:bb:c9:65:a4:21: b2:33:f5:7c:bd:00:7a:4b:8d:4a:72:f9:f1:45:c5:c8:12:7a: c3:09:d1:90:5e:1c:d5:df:fb:3c:be:c7:f6:ad:08:78:b4:af: f5:bf:43:c3:c8:a8:d2:06:72:b6:84:f0:f0:c2:c5:63:e4:4f: 3b:f9:e7:b1:f6:b1:0e:eb:c7:9a:f6:e6:ca:17:6d:55:30:6c: 78:e1:3f:f0:3e:b2:af:44:f5:f6:68:3b:d8:37:c6:8e:af:b8: 81:3b:8d:5b:59:7e:94:5b:3c:12:21:b9:b4:40:f3:30:36:0f: f9:ab:65:ab -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUZi/jO14yUj6fC6Spvg5tRFAACbAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNDAwMDA1MloX DTI2MDUxNTIzNTk1OVowejFJMEcGA1UEBRNANGU1ZWEzYmFkYjNjMDZkZjM1MGYz OTczNDYxZTc5ZjkwMzI0ZGE5MDcxMGQ0ZWM1YTY4OWVmZDE2MmQwNGM1NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2SDF3EYAivG3MW53KVRdcPx4SQzJ BdV4ZF3oELEyvC3l0oXypxTLz5bGBrXIpPsR1b3X4NyKGLGS004XPEL9PEcFCD5w T6aQFZ+UuWA0fF8rJ91uCpE6R5ZBUjiExdcUlOQxndTOCknGntELD18G4hUxAScu EnA5KBi7xf3pznW44kAi1Rmv8ZVm9JwXm4M0YJeNdQPKVbdHXvUCj964NyDi5OzZ FtUnI5epcexNP1ph8pNyFQ5itxgRDopo+uzH975uLRezre/j3kGxIbH7LCZ2LgZr Gp18nQCrZYcHtPSLqlX6O6WyKAJ3JqOBXiuVEj+QmS5ksFm/OgAdzzH9ZwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGYFZ8CnBlorTeCXj3ZtxQtyjCRyMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc4M2I5NmY0LTgxYWQtNGQxZC1hMGU2LTY0N2EwZmYzOTQ0OC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauZAwDQYJKoZIhvcNAQELBQADggEBALZQwCKoPA/EnE05494A NK/F6pwV+wmOchomPq1x4y83U9i2daSXANoxCi3f5AuLrCD3Sg5hmQ4EWIMsdnuj KgGVX3k1yJ73c/4BSAnkkNI/KPOb/pvdppN7SAAIF39Qt4aTwiowrueD/QJZUXmg 1qvYlhPGxOxJbEj30oGC8g+et6W5VZFz8//3nUi7yWWkIbIz9Xy9AHpLjUpy+fFF xcgSesMJ0ZBeHNXf+zy+x/atCHi0r/W/Q8PIqNIGcraE8PDCxWPkTzv557H2sQ7r x5r25soXbVUwbHjhP/A+sq9E9fZoO9g3xo6vuIE7jVtZfpRbPBIhubRA8zA2D/mr Zas= -----END CERTIFICATE-----Generated at Sun Mar 1 22:09:10 2026 by rpki-client