$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa File: 7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa (raw, json) Hash identifier: tQ9cD/LDvCZOC+SadCG/YHqy+jtMBFuMzIhglbLI/6E= Subject key identifier: 44:B8:EA:AF:DE:C4:CB:05:2E:80:E4:E7:7F:D8:D1:6E:18:6A:93:8B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5F3FDBD3A1CABB02FB572EBC5D721AA71D4E4257 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa Signing time: Sun 22 Feb 2026 00:41:07 +0000 ROA not before: Sun 22 Feb 2026 00:41:07 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da17:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:3f:db:d3:a1:ca:bb:02:fb:57:2e:bc:5d:72:1a:a7:1d:4e:42:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:41:07 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=e4ff45aee76da15b3ca9e68995651b8ad26beaf25ae4949a390747443e03ac0f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9d:23:d8:a1:52:82:0b:ed:bc:00:33:e4:27: ef:f3:c1:89:cd:2c:40:e6:3d:36:b7:f5:03:ea:22: ff:ca:d2:95:e8:e7:e0:19:86:0b:e3:2c:c4:33:c5: 23:16:4d:60:7a:f7:d0:fd:14:dc:3f:19:0a:8c:e7: 25:3f:b5:e4:8f:8d:35:05:e1:fb:e4:48:69:f7:70: d4:d2:e7:a5:ac:61:97:dc:04:75:c4:51:5f:87:30: c8:75:70:7a:50:d4:f8:f7:68:b9:1f:ff:00:f2:a2: ae:91:5a:3b:09:b4:9c:76:21:98:66:c8:3e:f3:ad: 7e:59:0a:d8:bc:03:e0:ba:af:4a:6e:aa:bf:69:5c: aa:9f:a8:65:e7:c3:d6:43:a6:08:e0:88:df:8d:1c: cc:4a:b5:18:5f:4c:cd:a7:70:01:ae:50:13:de:ed: 8f:46:68:62:69:c6:24:30:40:39:93:4e:9d:33:eb: 6a:e9:bb:90:ca:b7:4e:a1:6c:8b:c5:6d:f8:ad:a6: e3:ca:10:41:b3:33:f3:7c:df:be:2d:d6:32:5d:f2: 1c:e4:d8:3f:14:78:9d:cb:d3:5e:db:68:7a:cd:82: 12:9d:c3:c4:a7:84:21:75:15:66:4b:18:65:e7:5e: e4:42:70:dd:1b:42:5e:a7:e3:56:41:76:e4:26:9c: 1b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B8:EA:AF:DE:C4:CB:05:2E:80:E4:E7:7F:D8:D1:6E:18:6A:93:8B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da17:400::/38 Signature Algorithm: sha256WithRSAEncryption c4:d3:e3:f9:20:c2:e8:1c:fa:90:71:bd:f7:02:5f:af:d8:7e: 92:5e:94:03:09:60:d8:7c:a7:91:c1:02:4e:bf:1b:e3:16:36: e0:ed:dc:31:ae:c0:f1:61:49:38:50:90:47:7c:8a:29:3d:85: 35:9d:df:ba:f3:10:e0:ba:ff:de:aa:00:42:97:e9:11:0f:0a: 01:fd:b1:55:7c:cc:c8:27:02:24:ef:53:b6:17:8a:51:04:75: 09:77:f4:bc:73:d3:38:5e:a3:79:1d:17:b4:c8:f3:bd:a2:de: 78:2b:fe:f6:92:ae:e9:aa:26:a5:35:3c:d3:0c:09:24:c2:c3: c0:36:f3:21:43:bd:ee:3a:7f:fb:d5:fe:56:db:49:46:da:46: 64:44:98:ac:95:b0:82:2c:88:8e:8d:47:f6:59:3c:78:eb:78: 05:6f:e9:18:84:1b:fa:f8:83:0b:62:22:85:9d:7f:22:f4:3f: 4e:d5:31:fb:82:a2:ff:62:5e:0f:ef:79:05:99:be:e2:15:f7: a1:93:8d:f6:6b:6e:b7:88:57:06:29:1c:51:8c:bc:74:b4:5b: 85:31:6e:5b:41:68:d4:c9:7a:45:55:90:bc:80:a9:fb:4b:be: 9e:8a:c6:c5:84:fa:cc:e4:6a:6f:6c:99:2d:a5:ce:e5:69:2b: 75:53:8a:b4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUXz/b06HKuwL7Vy68XXIapx1OQlcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwNDEwN1oX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAZTRmZjQ1YWVlNzZkYTE1YjNjYTll Njg5OTU2NTFiOGFkMjZiZWFmMjVhZTQ5NDlhMzkwNzQ3NDQzZTAzYWMwZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZ0j2KFSggvtvAAz5Cfv88GJzSxA 5j02t/UD6iL/ytKV6OfgGYYL4yzEM8UjFk1gevfQ/RTcPxkKjOclP7Xkj401BeH7 5Ehp93DU0uelrGGX3AR1xFFfhzDIdXB6UNT492i5H/8A8qKukVo7CbScdiGYZsg+ 861+WQrYvAPguq9Kbqq/aVyqn6hl58PWQ6YI4IjfjRzMSrUYX0zNp3ABrlAT3u2P RmhiacYkMEA5k06dM+tq6buQyrdOoWyLxW34rabjyhBBszPzfN++LdYyXfIc5Ng/ FHidy9Ne22h6zYISncPEp4QhdRVmSxhl517kQnDdG0Jep+NWQXbkJpwbbQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFES46q/exMsFLoDk53/Y0W4YapOLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdhZWE5YTlmLTEzZWQtNDBmOS05YzJkLTcyYzAwYTNiMTdjOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaFwQwDQYJKoZIhvcNAQELBQADggEBAMTT4/kgwugc+pBxvfcC X6/YfpJelAMJYNh8p5HBAk6/G+MWNuDt3DGuwPFhSThQkEd8iik9hTWd37rzEOC6 /96qAEKX6REPCgH9sVV8zMgnAiTvU7YXilEEdQl39Lxz0zheo3kdF7TI872i3ngr /vaSrumqJqU1PNMMCSTCw8A28yFDve46f/vV/lbbSUbaRmREmKyVsIIsiI6NR/ZZ PHjreAVv6RiEG/r4gwtiIoWdfyL0P07VMfuCov9iXg/veQWZvuIV96GTjfZrbreI VwYpHFGMvHS0W4UxbltBaNTJekVVkLyAqftLvp6KxsWE+szkam9smS2lzuVpK3VT irQ= -----END CERTIFICATE-----Generated at Sun Mar 1 21:45:54 2026 by rpki-client