$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d6fe0f1-724c-4c3e-89cd-47a1c9a0efcf.roa File: 7d6fe0f1-724c-4c3e-89cd-47a1c9a0efcf.roa (raw, json) Hash identifier: vESTwHqYjRgZsLe3B4DNTmoFeVDxaZZkmQfmIkVRjb4= Subject key identifier: 25:B5:95:00:38:8F:C3:CB:51:B6:BC:CB:D6:11:3D:70:96:FF:44:81 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 798ABEA461296CF7A42BEB477C281CEE0D00E7E1 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d6fe0f1-724c-4c3e-89cd-47a1c9a0efcf.roa Signing time: Tue 17 Feb 2026 00:00:07 +0000 ROA not before: Tue 17 Feb 2026 00:00:07 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:8a:be:a4:61:29:6c:f7:a4:2b:eb:47:7c:28:1c:ee:0d:00:e7:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 17 00:00:07 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=39a574f7ab25a94b2b23ca3e32fca048594e2b04ec46dd130d4e2aeccbee3502, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ad:60:0b:34:ed:39:03:d5:ea:ef:55:df:c9: bc:c0:0c:b4:ab:eb:ea:78:45:b0:c4:b6:ab:2e:fe: 81:1e:e1:6c:25:54:15:c7:79:f9:17:b0:79:12:19: 0d:c5:60:3d:e9:ec:e2:76:d7:f0:96:eb:52:99:f0: 92:e7:26:46:96:de:3a:1a:a6:ec:dc:fa:58:76:37: 66:4f:23:04:3b:82:63:d5:5f:8b:5c:87:b7:d6:9a: 91:d2:2e:b7:af:e5:51:0e:ce:ca:b7:4e:55:ec:4a: 79:e9:cb:cd:32:0d:37:da:72:d0:5d:62:c3:bd:7f: 56:fb:44:42:87:60:c6:3d:cb:c8:40:31:72:c5:6c: 66:f6:1d:35:82:cc:6b:dd:72:b1:ea:2a:bd:59:02: 98:eb:a0:3e:ba:92:d0:b2:1a:30:bf:ed:50:fa:82: 86:90:67:39:33:3f:d3:14:e3:52:78:81:02:97:3e: bb:f8:d3:11:e5:d3:05:22:5f:f1:88:8e:c2:6f:1b: 53:ca:bb:d6:07:18:5d:29:0f:7f:a4:93:71:69:17: 57:00:85:04:b4:c1:9a:d1:94:42:17:c2:74:8e:75: f2:af:79:53:e9:b7:8c:5d:fa:cd:2f:9b:1c:99:35: 03:19:ff:22:70:1b:2d:b8:f0:44:bc:6b:fa:a2:c5: dd:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B5:95:00:38:8F:C3:CB:51:B6:BC:CB:D6:11:3D:70:96:FF:44:81 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d6fe0f1-724c-4c3e-89cd-47a1c9a0efcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:6000::/48 Signature Algorithm: sha256WithRSAEncryption 67:ee:2a:e0:4b:6e:66:4b:05:7c:a7:4b:34:d4:48:d4:e2:4d: ef:88:b0:39:7f:50:40:31:be:93:99:7a:72:17:df:38:0d:29: ec:7b:f9:27:9d:7a:e3:53:e2:5c:ef:71:a2:d5:27:9f:6d:37: af:2e:16:e8:bb:d1:53:b1:fa:de:56:a4:de:18:95:68:52:57: b4:89:d9:0f:d9:fd:69:85:78:22:40:77:fe:0b:d4:84:20:07: a2:d0:3d:a1:4a:5c:69:c0:48:ec:21:49:d3:7f:5a:83:ca:0d: c6:62:44:78:93:4f:5a:49:f3:9c:c9:50:11:07:49:58:be:0d: 4e:0c:1b:06:7a:c2:f0:a7:95:d7:e4:c0:a5:71:ea:ee:3b:5e: c5:c4:5f:8e:22:a7:e1:c4:e9:4c:fe:c4:78:ee:70:91:da:5f: af:29:45:b3:83:cc:85:f6:f1:0b:d3:29:52:fc:ae:0e:a1:36: 45:f0:1f:28:2c:6f:7c:1e:91:69:96:67:86:7d:05:a1:5f:97: 08:90:37:a9:58:f2:67:5e:12:c7:bc:3e:2d:d8:7e:93:53:3f: 00:91:6d:a8:31:fd:ff:76:b0:6e:26:8c:d5:36:b2:a0:5f:fd: 5a:64:ab:16:a5:56:69:08:d1:ff:b0:2c:d5:58:4f:42:51:1c: 3a:9e:f3:3a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUeYq+pGEpbPekK+tHfCgc7g0A5+EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNzAwMDAwN1oX DTI2MDUxODIzNTk1OVowejFJMEcGA1UEBRNAMzlhNTc0ZjdhYjI1YTk0YjJiMjNj YTNlMzJmY2EwNDg1OTRlMmIwNGVjNDZkZDEzMGQ0ZTJhZWNjYmVlMzUwMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw61gCzTtOQPV6u9V38m8wAy0q+vq eEWwxLarLv6BHuFsJVQVx3n5F7B5EhkNxWA96ezidtfwlutSmfCS5yZGlt46Gqbs 3PpYdjdmTyMEO4Jj1V+LXIe31pqR0i63r+VRDs7Kt05V7Ep56cvNMg032nLQXWLD vX9W+0RCh2DGPcvIQDFyxWxm9h01gsxr3XKx6iq9WQKY66A+upLQshowv+1Q+oKG kGc5Mz/TFONSeIEClz67+NMR5dMFIl/xiI7CbxtTyrvWBxhdKQ9/pJNxaRdXAIUE tMGa0ZRCF8J0jnXyr3lT6beMXfrNL5scmTUDGf8icBstuPBEvGv6osXdsQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCW1lQA4j8PLUba8y9YRPXCW/0SBMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdkNmZlMGYxLTcyNGMtNGMzZS04OWNkLTQ3YTFjOWEwZWZjZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9mAAMA0GCSqGSIb3DQEBCwUAA4IBAQBn7irgS25mSwV8p0s0 1EjU4k3viLA5f1BAMb6TmXpyF984DSnse/knnXrjU+Jc73Gi1SefbTevLhbou9FT sfreVqTeGJVoUle0idkP2f1phXgiQHf+C9SEIAei0D2hSlxpwEjsIUnTf1qDyg3G YkR4k09aSfOcyVARB0lYvg1ODBsGesLwp5XX5MClceruO17FxF+OIqfhxOlM/sR4 7nCR2l+vKUWzg8yF9vEL0ylS/K4OoTZF8B8oLG98HpFplmeGfQWhX5cIkDepWPJn XhLHvD4t2H6TUz8AkW2oMf3/drBuJozVNrKgX/1aZKsWpVZpCNH/sCzVWE9CURw6 nvM6 -----END CERTIFICATE-----Generated at Sun Mar 1 23:41:06 2026 by rpki-client