$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7be0f504-903a-4445-bc26-f38f46706c7a.roa File: 7be0f504-903a-4445-bc26-f38f46706c7a.roa (raw, json) Hash identifier: fd89BmpolanNQAAmr1hTJGrpxJvb6xIndaF6cxQzqik= Subject key identifier: D7:F1:70:81:2C:85:D3:DA:E1:84:C1:14:1A:FA:26:5F:C6:2E:FB:47 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7EE22450E82592ABE4A423765545C8549653F7A2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7be0f504-903a-4445-bc26-f38f46706c7a.roa Signing time: Sat 21 Feb 2026 00:10:45 +0000 ROA not before: Sat 21 Feb 2026 00:10:45 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daec:c800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:e2:24:50:e8:25:92:ab:e4:a4:23:76:55:45:c8:54:96:53:f7:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 21 00:10:45 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=b3b1302c07c553e1767e031702da6f984c1ff6ac2f5a4c025250a34e602fb4b3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:73:94:5e:28:a4:fd:33:6d:1c:bd:c2:51:61: 21:95:e3:33:fd:ef:56:95:5d:05:cf:ff:8e:98:57: 7c:75:a4:27:ce:9f:39:02:ee:cc:ad:9c:77:c3:c1: 8b:d5:20:b8:5a:97:8b:99:35:24:90:2f:97:9a:90: 0e:ae:c9:35:5c:94:0c:ae:9e:6f:cc:1b:09:9b:14: 11:c5:1c:69:76:ab:22:2d:14:f8:0e:d0:90:8a:03: dd:67:2f:b4:dd:f3:e6:98:e2:13:8e:8f:96:60:82: 63:da:c7:7f:42:98:ca:56:fc:a7:98:d7:23:3c:a3: 69:c7:64:9e:8b:dc:34:cb:d5:7a:ec:e9:17:b2:9c: 27:67:fd:e2:3b:1d:a2:17:c2:ac:a1:39:85:21:6a: c8:ef:ab:a9:3c:cf:af:7d:1e:8a:47:35:3d:ef:39: 5b:8f:00:e6:e1:2a:f5:e5:85:60:e6:0c:aa:72:b9: 27:4d:6e:bc:e3:c1:66:94:5c:8a:39:ea:c6:02:68: d7:d6:02:89:72:7f:8f:8e:29:59:94:61:76:c2:20: 95:a7:9b:bb:31:e2:66:c8:3c:2d:fa:52:3e:e0:70: 6c:50:41:91:ff:1d:70:c2:aa:c0:07:1b:8f:9f:cf: c2:b2:13:3f:4f:77:01:8b:90:30:7d:c3:93:61:19: 5f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:F1:70:81:2C:85:D3:DA:E1:84:C1:14:1A:FA:26:5F:C6:2E:FB:47 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7be0f504-903a-4445-bc26-f38f46706c7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daec:c800::/48 Signature Algorithm: sha256WithRSAEncryption 77:e9:b4:7b:36:e6:a6:24:7b:d2:eb:47:06:86:dd:e8:eb:7b: 62:81:10:be:00:93:cd:4a:16:1d:66:a2:34:d6:82:9f:2a:d8: 9f:ed:fa:dd:d6:2c:cf:d1:a3:ab:ef:2e:a3:15:9c:24:6f:d7: a1:a9:a5:32:75:2d:1a:33:8f:29:28:aa:ce:47:93:ba:20:c2: 3b:9e:7f:b6:62:54:0f:4b:5d:e7:96:78:72:7c:a9:bd:a8:16: 2d:e7:d0:b6:69:8d:82:d7:a4:e0:2f:25:7a:8d:af:4e:6e:ba: 17:4b:b8:68:53:e2:bd:aa:89:ac:41:23:02:d4:2b:c9:d3:43: df:4e:20:7b:48:49:76:04:6c:af:ca:3e:0a:13:1d:a1:fa:8a: 5d:c4:39:d0:a9:fc:f5:d2:ea:21:3a:7c:9c:07:99:82:b1:16: 09:42:67:85:e2:60:ff:b1:54:01:f4:47:f6:5d:2d:65:e3:4b: 91:8f:e0:d8:33:74:d3:73:a0:33:f7:e4:bc:fd:ba:dd:b2:c3: dd:e5:5f:51:8b:ed:64:ea:17:79:f4:b1:07:6e:75:e3:27:eb: a3:36:9b:0e:b9:22:3e:ab:a7:16:f7:2a:5d:46:a6:fb:69:7d: 10:18:d6:66:2f:c0:09:f6:00:53:1c:05:ca:51:f8:12:f7:d7: f6:7a:5f:7a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUfuIkUOglkqvkpCN2VUXIVJZT96IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMTAwMTA0NVoX DTI2MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAYjNiMTMwMmMwN2M1NTNlMTc2N2Uw MzE3MDJkYTZmOTg0YzFmZjZhYzJmNWE0YzAyNTI1MGEzNGU2MDJmYjRiMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3OUXiik/TNtHL3CUWEhleMz/e9W lV0Fz/+OmFd8daQnzp85Au7MrZx3w8GL1SC4WpeLmTUkkC+XmpAOrsk1XJQMrp5v zBsJmxQRxRxpdqsiLRT4DtCQigPdZy+03fPmmOITjo+WYIJj2sd/QpjKVvynmNcj PKNpx2Sei9w0y9V67OkXspwnZ/3iOx2iF8KsoTmFIWrI76upPM+vfR6KRzU97zlb jwDm4Sr15YVg5gyqcrknTW6848FmlFyKOerGAmjX1gKJcn+PjilZlGF2wiCVp5u7 MeJmyDwt+lI+4HBsUEGR/x1wwqrABxuPn8/CshM/T3cBi5AwfcOTYRlfjQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNfxcIEshdPa4YTBFBr6Jl/GLvtHMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdiZTBmNTA0LTkwM2EtNDQ0NS1iYzI2LWYzOGY0NjcwNmM3YS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba7MgAMA0GCSqGSIb3DQEBCwUAA4IBAQB36bR7NuamJHvS60cG ht3o63tigRC+AJPNShYdZqI01oKfKtif7frd1izP0aOr7y6jFZwkb9ehqaUydS0a M48pKKrOR5O6IMI7nn+2YlQPS13nlnhyfKm9qBYt59C2aY2C16TgLyV6ja9ObroX S7hoU+K9qomsQSMC1CvJ00PfTiB7SEl2BGyvyj4KEx2h+opdxDnQqfz10uohOnyc B5mCsRYJQmeF4mD/sVQB9Ef2XS1l40uRj+DYM3TTc6Az9+S8/brdssPd5V9Ri+1k 6hd59LEHbnXjJ+ujNpsOuSI+q6cW9ypdRqb7aX0QGNZmL8AJ9gBTHAXKUfgS99f2 el96 -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:27 2026 by rpki-client