$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/793c08d0-65bf-4078-a267-d0adfdb54fc8.roa File: 793c08d0-65bf-4078-a267-d0adfdb54fc8.roa (raw, json) Hash identifier: 2S4iR+QZO7J93RJKwIsaFjJAyekCUCpuimgoxWaQI9I= Subject key identifier: BF:C6:0D:74:07:67:E5:2E:DF:7F:FB:C7:9E:22:53:AD:93:58:4D:80 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3FE884251CE4CA87C513929AC83B84E5AFBCFBB8 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/793c08d0-65bf-4078-a267-d0adfdb54fc8.roa Signing time: Fri 20 Feb 2026 00:30:12 +0000 ROA not before: Fri 20 Feb 2026 00:30:12 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:e8:84:25:1c:e4:ca:87:c5:13:92:9a:c8:3b:84:e5:af:bc:fb:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:30:12 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=2e44f2a69cd73416bb4a23e4be2592ad613449c1cb17b64935a87f22a479f368, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4b:32:97:4d:b4:3f:e8:23:c1:c2:0b:a7:a4: f8:1a:cd:1f:cd:30:96:bd:b2:ec:ca:c7:80:18:f9: 36:0f:1e:e2:03:64:ec:55:3b:3f:fd:96:60:88:55: 2d:71:76:bf:74:ce:4a:90:81:f5:12:97:e3:94:2a: e1:56:0e:b2:84:a8:69:be:f1:4a:cd:db:a0:a4:f9: d9:b4:ae:fc:e3:fb:8a:8e:23:9b:25:74:95:f2:6d: b0:68:87:87:71:9b:48:62:2b:54:23:64:0b:05:7a: b6:b4:92:54:8f:1e:f0:89:de:1c:c7:eb:c0:01:f8: 48:4d:db:62:26:52:87:bc:dc:09:9c:3c:fe:95:2d: 15:5f:87:5a:6d:26:45:1e:b5:4f:bc:67:04:85:c8: 15:6b:ae:e1:79:ac:82:19:62:41:1b:88:94:57:72: 9c:4d:06:1b:81:13:41:f3:8c:ce:76:6b:7a:1f:95: df:77:9e:65:0c:63:aa:14:c8:de:d7:12:90:ff:f8: ff:da:b9:fe:26:20:0e:ff:d4:2a:ed:d1:0d:c8:f2: 40:1e:d6:cd:3b:42:f4:c1:ec:54:d7:49:ce:8d:24: f7:66:f9:4e:68:21:5f:94:27:0f:d1:8c:70:c6:9e: 3f:5e:b3:45:28:86:7a:df:01:97:b6:d8:77:f0:12: 99:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C6:0D:74:07:67:E5:2E:DF:7F:FB:C7:9E:22:53:AD:93:58:4D:80 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/793c08d0-65bf-4078-a267-d0adfdb54fc8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:4080::/48 Signature Algorithm: sha256WithRSAEncryption ae:99:b9:ec:4f:8b:8a:11:12:38:40:8c:1b:fe:a6:b0:fb:c6: 3e:92:4b:98:7f:3f:f7:9b:fc:80:d7:fd:a2:c9:c2:34:d2:4f: f6:5b:04:9f:2f:59:19:ae:7c:97:10:35:c8:5c:7f:9f:52:65: f0:ab:3e:ee:ec:e7:b9:37:37:bb:76:b3:94:b4:ab:81:3f:84: af:d1:73:87:ee:95:02:72:d7:23:26:a3:a4:bc:0c:f9:92:50: d1:55:05:bf:f4:bc:03:9a:d3:86:4c:16:5d:b1:44:2a:1a:a6: a4:9b:40:ea:83:7f:08:3a:6a:ea:ff:53:4d:ec:53:90:a1:de: 5f:38:c5:06:a5:cc:49:15:ce:a5:40:2a:3a:92:7f:0c:d4:0f: ce:b3:7a:f8:ac:7c:a9:34:77:61:fc:d7:a4:98:48:a9:c5:06: 59:ef:7b:3f:73:0a:61:68:38:f5:df:f6:db:92:70:ee:08:67: 73:51:de:54:be:e6:95:31:62:67:2a:32:5c:ab:30:7e:13:3b: d7:0b:af:50:ca:09:49:b3:80:46:ac:5a:98:f8:05:2e:b3:09: f3:51:6b:29:75:65:e1:9f:4b:8c:93:38:7b:1c:9e:25:13:1a: de:06:51:b0:e6:e7:8f:8f:df:3d:f9:59:e6:da:d3:fe:c4:34: 36:36:06:c8 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUP+iEJRzkyofFE5KayDuE5a+8+7gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMzAxMloX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAMmU0NGYyYTY5Y2Q3MzQxNmJiNGEy M2U0YmUyNTkyYWQ2MTM0NDljMWNiMTdiNjQ5MzVhODdmMjJhNDc5ZjM2ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqksyl020P+gjwcILp6T4Gs0fzTCW vbLsyseAGPk2Dx7iA2TsVTs//ZZgiFUtcXa/dM5KkIH1EpfjlCrhVg6yhKhpvvFK zdugpPnZtK784/uKjiObJXSV8m2waIeHcZtIYitUI2QLBXq2tJJUjx7wid4cx+vA AfhITdtiJlKHvNwJnDz+lS0VX4dabSZFHrVPvGcEhcgVa67heayCGWJBG4iUV3Kc TQYbgRNB84zOdmt6H5Xfd55lDGOqFMje1xKQ//j/2rn+JiAO/9Qq7dENyPJAHtbN O0L0wexU10nOjST3ZvlOaCFflCcP0Yxwxp4/XrNFKIZ63wGXtth38BKZ/QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFL/GDXQHZ+Uu33/7x54iU62TWE2AMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc5M2MwOGQwLTY1YmYtNDA3OC1hMjY3LWQwYWRmZGI1NGZjOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/0CAMA0GCSqGSIb3DQEBCwUAA4IBAQCumbnsT4uKERI4QIwb /qaw+8Y+kkuYfz/3m/yA1/2iycI00k/2WwSfL1kZrnyXEDXIXH+fUmXwqz7u7Oe5 Nze7drOUtKuBP4Sv0XOH7pUCctcjJqOkvAz5klDRVQW/9LwDmtOGTBZdsUQqGqak m0Dqg38IOmrq/1NN7FOQod5fOMUGpcxJFc6lQCo6kn8M1A/Os3r4rHypNHdh/Nek mEipxQZZ73s/cwphaDj13/bbknDuCGdzUd5UvuaVMWJnKjJcqzB+EzvXC69QyglJ s4BGrFqY+AUuswnzUWspdWXhn0uMkzh7HJ4lExreBlGw5uePj989+Vnm2tP+xDQ2 NgbI -----END CERTIFICATE-----Generated at Mon Mar 2 03:24:40 2026 by rpki-client