$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8bd3366c-489c-4afe-af18-d26b5824bd0e.roa File: 8bd3366c-489c-4afe-af18-d26b5824bd0e.roa (raw, json) Hash identifier: IomJWiwjFAURoJV9BB4DWdQmPyiDBhVChNA//eg9FNU= Subject key identifier: 15:11:9D:8F:12:9C:65:5E:F5:A8:4B:10:43:E6:67:14:15:2B:88:62 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 306CB40A32621E727A7FCA6B178B094320A10882 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8bd3366c-489c-4afe-af18-d26b5824bd0e.roa Signing time: Fri 20 Feb 2026 00:20:51 +0000 ROA not before: Fri 20 Feb 2026 00:20:51 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:9040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:6c:b4:0a:32:62:1e:72:7a:7f:ca:6b:17:8b:09:43:20:a1:08:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:20:51 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=a38e8b74cf07cfb053098464074b41da77047fff0a9adc821279141b97272087, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:00:b7:34:20:d2:bd:e9:03:2c:c6:f4:66:3c: a9:0a:63:fe:68:a2:1a:3a:c0:ef:f2:23:b3:8b:5f: da:dd:5b:4b:2c:c2:ba:cb:4d:82:f1:7a:d3:c8:17: b0:a7:c6:e5:97:f4:7e:cc:6e:16:c3:88:cf:61:95: 86:c6:65:60:fd:fd:34:aa:a5:4e:b0:c9:0f:9b:1a: 92:32:8e:64:2c:2f:39:4d:1b:a0:5c:fb:cc:e8:4c: bb:a7:0b:0b:66:a0:8b:ae:49:88:cf:b2:55:7b:96: e7:4c:55:3d:87:75:1c:ab:98:b5:d4:44:b9:39:93: bb:30:33:0a:fe:c6:59:6b:19:f4:9c:be:be:5a:1c: c2:44:d5:e6:a7:ba:e6:a9:e2:71:4d:6d:be:1f:c0: 6a:e6:75:b7:25:3f:49:b6:fa:a7:6a:8f:ab:bb:28: e0:ec:f8:1b:84:94:7b:ea:51:f9:ac:f6:6d:da:f5: 7d:d6:ee:14:61:61:59:9c:86:43:72:b0:67:16:aa: b7:25:f9:32:53:ae:c4:ce:1e:ed:1d:97:f9:17:0e: 05:86:82:7d:91:ff:f4:70:98:e0:64:6d:c2:1c:97: ff:48:bc:a7:42:a6:4f:81:97:ef:d2:b4:4e:4b:dd: 28:ac:f5:95:45:1c:96:01:bd:16:9a:87:52:ee:0c: 08:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:11:9D:8F:12:9C:65:5E:F5:A8:4B:10:43:E6:67:14:15:2B:88:62 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8bd3366c-489c-4afe-af18-d26b5824bd0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:9040::/48 Signature Algorithm: sha256WithRSAEncryption 6c:6f:e1:f8:28:3f:82:89:66:c8:0c:97:e1:8c:eb:f3:53:2f: 0b:4a:8a:5a:c3:b3:6b:01:6d:2b:a3:f2:70:bb:5f:2d:72:97: 26:26:71:d3:24:36:5c:b5:26:18:7c:76:b4:9a:6c:69:21:04: f6:56:fd:b8:12:5f:c9:48:0f:88:72:50:cf:16:a8:3e:ac:6b: 76:44:a4:4f:4c:c1:e3:60:c6:a0:76:0d:04:7c:d9:b6:80:bb: d2:cb:0f:67:6b:28:8f:73:37:bc:37:a9:cd:8b:e3:7e:0f:2a: 43:e7:63:a5:f5:da:57:1e:29:ff:29:e6:ed:1b:09:53:b8:e2: db:a8:ab:53:5d:74:e6:a0:e0:8e:78:96:3e:47:02:aa:a9:07: c0:03:aa:5b:41:c1:04:6d:24:0b:40:c8:d6:5a:25:65:20:8f: 97:7d:51:1f:96:7c:88:ef:b2:73:d2:04:1d:07:ec:db:70:7b: a1:9e:ab:87:70:2f:b4:56:f6:03:6c:c1:af:04:d7:9f:1e:06: 5b:94:05:d0:88:cc:9d:20:33:c0:ac:62:6a:3a:07:78:40:b2: 8a:82:e7:5b:c9:b4:be:58:f6:39:a4:b3:bd:ab:e7:8a:1a:83: e7:8b:ad:cf:80:65:2b:3d:67:69:2f:f1:df:8f:fc:49:c9:49: 59:32:86:aa -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUMGy0CjJiHnJ6f8prF4sJQyChCIIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMjA1MVoX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAYTM4ZThiNzRjZjA3Y2ZiMDUzMDk4 NDY0MDc0YjQxZGE3NzA0N2ZmZjBhOWFkYzgyMTI3OTE0MWI5NzI3MjA4NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAC3NCDSvekDLMb0ZjypCmP+aKIa OsDv8iOzi1/a3VtLLMK6y02C8XrTyBewp8bll/R+zG4Ww4jPYZWGxmVg/f00qqVO sMkPmxqSMo5kLC85TRugXPvM6Ey7pwsLZqCLrkmIz7JVe5bnTFU9h3Ucq5i11ES5 OZO7MDMK/sZZaxn0nL6+WhzCRNXmp7rmqeJxTW2+H8Bq5nW3JT9Jtvqnao+ruyjg 7PgbhJR76lH5rPZt2vV91u4UYWFZnIZDcrBnFqq3JfkyU67Ezh7tHZf5Fw4FhoJ9 kf/0cJjgZG3CHJf/SLynQqZPgZfv0rROS90orPWVRRyWAb0WmodS7gwITQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFBURnY8SnGVe9ahLEEPmZxQVK4hiMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhiZDMzNjZjLTQ4OWMtNGFmZS1hZjE4LWQyNmI1ODI0YmQwZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8pBAMA0GCSqGSIb3DQEBCwUAA4IBAQBsb+H4KD+CiWbIDJfh jOvzUy8LSopaw7NrAW0ro/Jwu18tcpcmJnHTJDZctSYYfHa0mmxpIQT2Vv24El/J SA+IclDPFqg+rGt2RKRPTMHjYMagdg0EfNm2gLvSyw9nayiPcze8N6nNi+N+DypD 52Ol9dpXHin/KebtGwlTuOLbqKtTXXTmoOCOeJY+RwKqqQfAA6pbQcEEbSQLQMjW WiVlII+XfVEflnyI77Jz0gQdB+zbcHuhnquHcC+0VvYDbMGvBNefHgZblAXQiMyd IDPArGJqOgd4QLKKgudbybS+WPY5pLO9q+eKGoPni63PgGUrPWdpL/Hfj/xJyUlZ Moaq -----END CERTIFICATE-----Generated at Mon Mar 2 10:37:42 2026 by rpki-client