$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8f435723-1776-4896-9b8c-3b7b0c67a6cc.roa File: 8f435723-1776-4896-9b8c-3b7b0c67a6cc.roa (raw, json) Hash identifier: DgbZmgFdkpEwYeYX0vC347TugC8RwCf+DeBaEaO35Rw= Subject key identifier: D1:F9:35:C2:34:9B:AF:0E:D6:6F:96:A7:F3:50:69:C7:24:82:7C:99 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 177A8CE7A4EFB7C4EB0CCFE7C81BB8DF4515DD81 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8f435723-1776-4896-9b8c-3b7b0c67a6cc.roa Signing time: Sun 22 Feb 2026 00:30:17 +0000 ROA not before: Sun 22 Feb 2026 00:30:17 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf8:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:7a:8c:e7:a4:ef:b7:c4:eb:0c:cf:e7:c8:1b:b8:df:45:15:dd:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:30:17 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=ca8f25979299914106175df453e88fbf4fff2f019b78d6343aaf3692019ed886, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:86:d5:ee:43:be:46:99:58:58:78:29:89:ee: b5:c8:64:c0:cc:77:3b:9d:06:18:a9:27:36:86:fd: 45:9d:2f:85:96:1f:4d:b6:80:e6:ae:20:c6:44:6d: 5c:f7:c0:4f:18:53:86:59:3d:25:1e:89:27:52:31: 69:22:08:9f:70:85:5d:43:58:2d:b7:2e:6e:2e:00: 36:1e:25:5f:c0:20:c8:60:ea:80:ab:30:7d:76:1d: 0d:d1:7b:50:d2:c6:50:87:67:7a:89:23:f0:72:f8: 16:6c:f9:72:ec:d2:24:6a:77:cf:2a:da:f5:84:37: 2d:a4:7d:84:36:d6:a7:55:51:e4:bb:73:78:89:aa: 2b:0f:e5:17:47:9e:78:7a:2f:7f:de:a9:2a:67:b9: 5d:3a:d6:02:ad:00:70:71:52:7f:88:ab:9e:57:91: fe:1e:14:72:9b:ff:0d:08:0a:de:e4:5a:f2:0c:63: c9:4b:6c:cf:8f:3b:4c:4f:d1:c1:b1:f6:9e:e2:18: f7:2b:a1:72:4e:bc:48:9f:c5:da:82:8d:d4:c2:98: d3:10:0a:6e:37:0b:38:47:9c:a7:22:60:c8:cb:b4: 75:f3:2f:03:77:e6:96:36:20:70:6b:23:da:07:72: 19:6c:35:90:24:cd:ef:de:d3:a0:80:d9:a9:03:83: 21:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F9:35:C2:34:9B:AF:0E:D6:6F:96:A7:F3:50:69:C7:24:82:7C:99 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8f435723-1776-4896-9b8c-3b7b0c67a6cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf8:2800::/40 Signature Algorithm: sha256WithRSAEncryption 76:77:9b:38:1a:1f:c9:bd:41:b5:26:a3:e1:21:26:19:79:ef: b7:5a:63:96:35:da:e2:ed:d6:af:50:7a:8f:c5:e3:c6:be:3b: 46:90:5b:4d:73:98:a8:0f:97:93:32:07:1d:99:ff:e2:3a:91: 41:66:2c:18:5f:82:bf:7d:ab:3f:4c:26:e3:4c:0c:28:da:71: f9:ee:bd:c8:a3:e5:e6:13:64:cc:f9:ac:dd:67:1a:03:f5:9e: c9:50:c3:33:97:54:fc:c7:1a:74:8e:8e:54:1d:b2:12:b3:d3: 16:8e:60:67:05:b9:33:76:50:fa:e8:45:b4:62:d8:7c:48:d6: 97:61:ca:c8:da:f1:6c:cd:3e:38:4a:b9:a7:b9:d3:0b:98:eb: 5d:01:92:5c:4d:d8:4b:23:2e:3c:17:19:2a:29:10:5c:b3:e3: d6:29:09:20:86:89:ff:8a:32:c9:3d:1d:31:f2:6e:63:04:95: bb:fd:dd:11:6b:9c:5b:78:bd:d7:da:28:c0:0c:35:62:e4:04: 29:56:9f:fe:cf:80:d5:8c:b2:9e:f4:38:87:21:87:e4:47:27: d6:2f:3e:9c:b1:3b:48:cd:97:48:74:54:85:82:3d:c8:b8:7b: af:62:d2:63:93:6a:80:94:a4:37:c8:d6:42:9d:87:46:dc:30: 47:b2:b6:d7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUF3qM56Tvt8TrDM/nyBu430UV3YEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMzAxN1oX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAY2E4ZjI1OTc5Mjk5OTE0MTA2MTc1 ZGY0NTNlODhmYmY0ZmZmMmYwMTliNzhkNjM0M2FhZjM2OTIwMTllZDg4NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYbV7kO+RplYWHgpie61yGTAzHc7 nQYYqSc2hv1FnS+Flh9NtoDmriDGRG1c98BPGFOGWT0lHoknUjFpIgifcIVdQ1gt ty5uLgA2HiVfwCDIYOqAqzB9dh0N0XtQ0sZQh2d6iSPwcvgWbPly7NIkanfPKtr1 hDctpH2ENtanVVHku3N4iaorD+UXR554ei9/3qkqZ7ldOtYCrQBwcVJ/iKueV5H+ HhRym/8NCAre5FryDGPJS2zPjztMT9HBsfae4hj3K6FyTrxIn8Xago3UwpjTEApu Nws4R5ynImDIy7R18y8Dd+aWNiBwayPaB3IZbDWQJM3v3tOggNmpA4MhJQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFNH5NcI0m68O1m+Wp/NQacckgnyZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhmNDM1NzIzLTE3NzYtNDg5Ni05YjhjLTNiN2IwYzY3YTZjYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+CgwDQYJKoZIhvcNAQELBQADggEBAHZ3mzgaH8m9QbUmo+Eh Jhl577daY5Y12uLt1q9Qeo/F48a+O0aQW01zmKgPl5MyBx2Z/+I6kUFmLBhfgr99 qz9MJuNMDCjacfnuvcij5eYTZMz5rN1nGgP1nslQwzOXVPzHGnSOjlQdshKz0xaO YGcFuTN2UProRbRi2HxI1pdhysja8WzNPjhKuae50wuY610BklxN2EsjLjwXGSop EFyz49YpCSCGif+KMsk9HTHybmMElbv93RFrnFt4vdfaKMAMNWLkBClWn/7PgNWM sp70OIchh+RHJ9YvPpyxO0jNl0h0VIWCPci4e69i0mOTaoCUpDfI1kKdh0bcMEey ttc= -----END CERTIFICATE-----Generated at Mon Mar 2 01:56:41 2026 by rpki-client