$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7f3b9a93-818c-4623-b024-ab1a75263cae.roa File: 7f3b9a93-818c-4623-b024-ab1a75263cae.roa (raw, json) Hash identifier: mNAQqJP0CeJFEMm7SFVD8g7CnP7PSpce9fhV1RFN3go= Subject key identifier: 36:FE:BC:83:08:23:CB:15:82:FA:97:46:2B:83:01:0B:3E:85:FA:59 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3C98CA2D21BFA4252B0553C97448215F81DDC040 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7f3b9a93-818c-4623-b024-ab1a75263cae.roa Signing time: Wed 11 Feb 2026 00:11:05 +0000 ROA not before: Wed 11 Feb 2026 00:11:05 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:4880::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:98:ca:2d:21:bf:a4:25:2b:05:53:c9:74:48:21:5f:81:dd:c0:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 11 00:11:05 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=1b583116d8f1e692c9306b1d19303ab646a0eda3da153f4f576a065bc9cfda20, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:27:30:cd:b2:a4:bd:90:7a:76:d0:46:64:72: 3b:3c:8a:73:46:4e:c9:de:20:3e:24:06:27:96:5a: 2f:4a:40:0f:4b:da:ed:cc:59:4b:86:76:ba:7e:e1: d9:64:f9:83:9d:a4:97:fb:20:25:0d:4e:04:5c:98: dc:95:bc:4d:2b:ac:e7:e8:38:7e:d0:48:1b:68:8d: 34:69:bd:9b:16:e3:36:1b:04:2d:c2:16:a8:7e:6a: e1:8c:7b:d7:5e:0d:c2:14:d6:57:03:a1:48:7a:0d: b9:14:14:32:35:fa:64:04:5f:a4:58:45:1c:be:9d: 09:eb:d0:8d:18:bf:1d:30:df:fc:cd:ad:dc:f9:62: 91:f2:06:b6:34:8a:fe:23:d9:9d:82:f4:3a:91:92: bd:48:62:5c:e5:37:86:29:e7:b0:2a:ac:ec:44:97: 24:63:14:81:17:1e:db:c0:48:22:ca:27:5c:07:8b: 6c:a7:b3:9a:ba:9f:d3:35:4a:d1:17:9f:64:77:73: d1:99:a4:0c:40:18:5e:94:cc:65:54:60:14:ec:d5: a2:7f:c9:62:c8:f6:71:47:28:cb:23:46:29:e1:7c: c3:a9:f3:d1:fc:54:a1:e6:6d:40:3f:d1:21:87:b8: ec:de:20:f9:0e:80:18:6e:6f:a3:99:06:8f:42:25: 48:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FE:BC:83:08:23:CB:15:82:FA:97:46:2B:83:01:0B:3E:85:FA:59 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7f3b9a93-818c-4623-b024-ab1a75263cae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:4880::/46 Signature Algorithm: sha256WithRSAEncryption c9:7a:53:e8:ec:4a:9d:d8:46:4f:84:f5:de:80:d7:12:7e:3e: 0e:97:88:11:e5:40:fe:a7:5a:c9:0d:87:20:4e:54:53:0d:9f: 00:5e:29:07:65:88:b5:4d:01:90:f1:02:d7:b7:7c:bd:5f:10: 85:6c:e7:24:61:cd:68:5f:36:9b:21:0e:34:5d:44:23:7b:f2: af:3c:74:5b:9c:d1:cf:92:c1:9f:e2:83:da:5f:2c:ba:ff:e4: ad:25:f4:4f:4f:c9:07:2a:ef:fb:f1:01:9e:a9:0f:af:c2:77: e8:26:3d:8c:1e:eb:0c:48:f5:e8:ed:62:1b:d6:d0:b7:df:74: 5d:8c:90:ba:db:dd:ca:4f:f3:ce:4a:42:11:9c:28:fd:52:8f: 8f:ea:a2:b6:4d:00:3d:d0:c7:35:9f:6d:4d:b7:fa:dd:dc:bd: f7:b2:5d:d9:31:2f:ea:d5:8c:23:f5:e4:f7:07:aa:0b:29:3f: f9:46:e7:4b:4d:cc:d7:d6:72:32:2e:15:2c:fb:b5:a4:04:6f: ec:f5:b2:80:eb:b5:33:30:b0:c4:25:06:4d:d5:88:d7:1a:51: 6a:a3:6f:1c:6f:57:b5:21:2c:24:be:f8:3e:6c:fa:54:80:1d: ea:a2:07:ff:2c:b0:4a:c2:3f:b5:6b:fe:9e:27:89:56:dd:7f: cb:92:0e:d6 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUPJjKLSG/pCUrBVPJdEghX4HdwEAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMTAwMTEwNVoX DTI2MDUxMjIzNTk1OVowejFJMEcGA1UEBRNAMWI1ODMxMTZkOGYxZTY5MmM5MzA2 YjFkMTkzMDNhYjY0NmEwZWRhM2RhMTUzZjRmNTc2YTA2NWJjOWNmZGEyMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyicwzbKkvZB6dtBGZHI7PIpzRk7J 3iA+JAYnllovSkAPS9rtzFlLhna6fuHZZPmDnaSX+yAlDU4EXJjclbxNK6zn6Dh+ 0EgbaI00ab2bFuM2GwQtwhaofmrhjHvXXg3CFNZXA6FIeg25FBQyNfpkBF+kWEUc vp0J69CNGL8dMN/8za3c+WKR8ga2NIr+I9mdgvQ6kZK9SGJc5TeGKeewKqzsRJck YxSBFx7bwEgiyidcB4tsp7Oaup/TNUrRF59kd3PRmaQMQBhelMxlVGAU7NWif8li yPZxRyjLI0Yp4XzDqfPR/FSh5m1AP9Ehh7js3iD5DoAYbm+jmQaPQiVIyQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDb+vIMII8sVgvqXRiuDAQs+hfpZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdmM2I5YTkzLTgxOGMtNDYyMy1iMDI0LWFiMWE3NTI2M2NhZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba80iAMA0GCSqGSIb3DQEBCwUAA4IBAQDJelPo7Eqd2EZPhPXe gNcSfj4Ol4gR5UD+p1rJDYcgTlRTDZ8AXikHZYi1TQGQ8QLXt3y9XxCFbOckYc1o XzabIQ40XUQje/KvPHRbnNHPksGf4oPaXyy6/+StJfRPT8kHKu/78QGeqQ+vwnfo Jj2MHusMSPXo7WIb1tC333RdjJC6293KT/POSkIRnCj9Uo+P6qK2TQA90Mc1n21N t/rd3L33sl3ZMS/q1Ywj9eT3B6oLKT/5RudLTczX1nIyLhUs+7WkBG/s9bKA67Uz MLDEJQZN1YjXGlFqo28cb1e1ISwkvvg+bPpUgB3qogf/LLBKwj+1a/6eJ4lW3X/L kg7W -----END CERTIFICATE-----Generated at Sun Mar 1 23:54:04 2026 by rpki-client