$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e363607-e7c0-4093-a95f-81ec8e33d0fd.roa File: 7e363607-e7c0-4093-a95f-81ec8e33d0fd.roa (raw, json) Hash identifier: joCfro4GjS6mvKqxqGn6ZTzH8r9HelPmZ3Mtaiwcmoo= Subject key identifier: DC:4F:82:83:A8:9F:10:B2:29:38:7B:64:01:6C:23:2F:AC:AE:64:79 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 25FEBA0B165D5FDD86D59B31463D9EA5925DAA8F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e363607-e7c0-4093-a95f-81ec8e33d0fd.roa Signing time: Fri 20 Feb 2026 00:20:08 +0000 ROA not before: Fri 20 Feb 2026 00:20:08 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:fe:ba:0b:16:5d:5f:dd:86:d5:9b:31:46:3d:9e:a5:92:5d:aa:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:20:08 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=caa8bd74d9cba508ee5b5e902194f61ab0b88fd494fcf93d58fc2a9d0b64a53b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c1:6b:01:48:71:4c:c1:d9:f3:ed:73:9f:66: cb:49:bf:4c:30:84:d5:85:ab:68:03:30:72:d8:9d: 10:56:91:39:da:36:ac:b9:c2:02:a7:36:54:94:7d: 9d:cd:c4:07:86:3c:e1:16:f3:51:2e:50:2b:37:49: f8:d0:38:10:c7:a7:8a:5b:af:07:a1:4e:81:f8:7e: 04:41:da:2e:c1:60:75:06:a3:56:e4:ad:2a:55:36: 45:c9:35:85:09:1b:81:7c:d5:1e:6d:52:ff:6b:9e: d4:e5:13:d4:15:99:1f:f3:7f:28:86:b2:6e:bb:46: 4a:1f:6b:cc:48:31:56:81:11:a3:05:70:f6:d9:82: 53:03:c0:f7:be:c4:7f:05:38:f9:0b:c5:cd:c2:e9: 54:f6:70:3d:c5:15:96:13:ae:e8:b9:fb:ec:0d:38: 18:03:12:53:83:d5:b4:98:7a:87:86:7e:41:f0:6b: 48:b9:df:cd:c1:27:ec:ac:ac:f0:10:77:f8:8d:ef: 21:3a:0d:36:4f:3f:7b:cf:f0:c0:27:c6:af:62:fc: 72:bb:4c:4c:3c:6a:e7:a3:1c:cb:08:83:4b:ef:e6: 2d:74:2e:86:70:d2:c2:fc:66:65:c5:60:4c:7d:92: d0:00:85:e0:3a:ae:59:52:6c:3a:ce:07:8a:bc:6d: 07:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4F:82:83:A8:9F:10:B2:29:38:7B:64:01:6C:23:2F:AC:AE:64:79 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e363607-e7c0-4093-a95f-81ec8e33d0fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:8080::/48 Signature Algorithm: sha256WithRSAEncryption a4:9b:f4:4a:78:a8:3f:6e:a7:5b:2f:c0:41:71:25:32:36:d3: 67:2d:7f:5f:26:a4:15:43:af:29:5f:96:a3:0c:2b:b2:7c:a6: 65:b7:2e:37:c7:99:59:56:51:91:ce:44:c0:c0:eb:ac:27:36: 71:80:c2:f7:f3:71:45:3e:d9:44:f0:2f:e4:46:34:04:69:74: 18:bb:13:fc:99:a1:51:4e:26:4d:70:62:10:4a:91:76:3c:ea: 84:11:0a:4e:3e:3a:76:48:46:5e:07:88:34:f6:8c:a7:45:0d: 4a:81:98:80:9c:3d:59:5c:53:fa:31:23:80:69:1d:33:77:3b: 5d:07:23:db:e7:01:ca:1a:d5:17:4a:86:8f:72:8c:e3:4a:a4: bb:c8:e5:e5:9e:2c:94:e3:b5:75:83:6e:99:bb:ad:6b:3f:fe: b2:a6:66:d8:6b:47:1d:f2:a3:04:a9:dc:66:31:2f:02:b5:b0: 24:cf:c8:54:48:4a:68:67:9f:ec:53:bd:87:31:52:8f:3e:af: 45:b1:dd:95:79:fb:f0:74:10:ff:1b:f7:c3:6e:3b:6d:8d:b7: ee:4d:ac:ea:09:43:36:2b:e5:97:26:1b:c3:d7:24:5b:35:f1: 1b:42:53:ab:84:5a:34:e3:70:50:e9:a7:53:f7:6e:a8:f0:d8: cf:89:fa:50 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUJf66CxZdX92G1ZsxRj2epZJdqo8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMjAwOFoX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAY2FhOGJkNzRkOWNiYTUwOGVlNWI1 ZTkwMjE5NGY2MWFiMGI4OGZkNDk0ZmNmOTNkNThmYzJhOWQwYjY0YTUzYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2MFrAUhxTMHZ8+1zn2bLSb9MMITV hatoAzBy2J0QVpE52jasucICpzZUlH2dzcQHhjzhFvNRLlArN0n40DgQx6eKW68H oU6B+H4EQdouwWB1BqNW5K0qVTZFyTWFCRuBfNUebVL/a57U5RPUFZkf838ohrJu u0ZKH2vMSDFWgRGjBXD22YJTA8D3vsR/BTj5C8XNwulU9nA9xRWWE67oufvsDTgY AxJTg9W0mHqHhn5B8GtIud/NwSfsrKzwEHf4je8hOg02Tz97z/DAJ8avYvxyu0xM PGrnoxzLCINL7+YtdC6GcNLC/GZlxWBMfZLQAIXgOq5ZUmw6zgeKvG0HKwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNxPgoOonxCyKTh7ZAFsIy+srmR5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdlMzYzNjA3LWU3YzAtNDA5My1hOTVmLTgxZWM4ZTMzZDBmZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/4CAMA0GCSqGSIb3DQEBCwUAA4IBAQCkm/RKeKg/bqdbL8BB cSUyNtNnLX9fJqQVQ68pX5ajDCuyfKZlty43x5lZVlGRzkTAwOusJzZxgML383FF PtlE8C/kRjQEaXQYuxP8maFRTiZNcGIQSpF2POqEEQpOPjp2SEZeB4g09oynRQ1K gZiAnD1ZXFP6MSOAaR0zdztdByPb5wHKGtUXSoaPcozjSqS7yOXlniyU47V1g26Z u61rP/6ypmbYa0cd8qMEqdxmMS8CtbAkz8hUSEpoZ5/sU72HMVKPPq9Fsd2Vefvw dBD/G/fDbjttjbfuTazqCUM2K+WXJhvD1yRbNfEbQlOrhFo043BQ6adT926o8NjP ifpQ -----END CERTIFICATE-----Generated at Mon Mar 2 10:10:42 2026 by rpki-client