$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94244cb0-158e-46d4-8af4-e50dc14db808.roa File: 94244cb0-158e-46d4-8af4-e50dc14db808.roa (raw, json) Hash identifier: ABeESGeUKWLI+3NALie0VZ23AyDIYZybt/R81KfnCV4= Subject key identifier: E4:80:0F:3D:4C:F6:B5:D1:76:7B:87:C0:7B:57:5C:DA:D4:70:54:7F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 45969BCE39B22F8FCDADBD8D3DD82F60F75F7689 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94244cb0-158e-46d4-8af4-e50dc14db808.roa Signing time: Sat 14 Feb 2026 00:00:10 +0000 ROA not before: Sat 14 Feb 2026 00:00:10 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:96:9b:ce:39:b2:2f:8f:cd:ad:bd:8d:3d:d8:2f:60:f7:5f:76:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 14 00:00:10 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=f1caf5879945b6ab1eb90ba3c1fe5df81cda59563143a4f8880fa824b1eac311, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:28:3a:14:d7:11:d8:b6:98:0d:0c:21:0e:ea: d6:74:65:ff:c8:65:49:1b:e7:9e:2b:30:97:bc:4b: 95:3b:9b:25:bf:4c:d7:08:ad:fc:d1:46:a0:15:f4: fc:0c:22:17:fb:65:b9:59:1b:c4:7b:dd:fb:30:f6: 4d:f0:bd:00:2d:10:f1:a4:9d:41:69:61:8d:da:b4: f3:33:8d:b8:69:fe:26:d6:21:08:42:59:d2:0c:fd: b9:5b:2d:04:3c:89:2a:c9:b7:cf:d4:d8:0a:2b:58: 41:a6:9d:d8:f7:9f:62:30:04:30:ac:81:41:55:16: bc:57:7d:de:6e:45:e3:52:c8:13:bf:ee:49:05:f2: d4:0a:ec:b4:2e:02:87:73:97:65:b5:d4:ad:04:6c: 0c:c1:59:8d:60:ac:b5:a3:be:1e:9c:0e:f6:d4:5e: 2e:c4:0e:d6:80:62:cf:84:a7:98:50:07:92:27:a0: 8d:57:04:5f:c7:ca:24:bb:84:f3:ca:e6:11:56:cc: 23:b5:e7:48:00:97:b5:dc:48:9a:ad:6d:48:d8:47: 59:dd:a5:79:6e:33:5e:7e:92:12:3c:a8:a8:06:9e: 67:18:39:c1:c6:13:32:f1:6f:b7:90:ee:07:c5:3f: 17:90:da:bd:c2:fd:97:7f:27:e1:2e:ff:c9:ed:ba: e3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:80:0F:3D:4C:F6:B5:D1:76:7B:87:C0:7B:57:5C:DA:D4:70:54:7F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94244cb0-158e-46d4-8af4-e50dc14db808.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:2800::/40 Signature Algorithm: sha256WithRSAEncryption ad:fa:4a:0d:35:0e:04:4c:f6:a4:df:5b:66:40:0d:00:71:71: 45:88:99:0a:13:9f:00:b9:a2:bc:f6:60:4c:a8:6e:1a:de:25: 9e:f1:39:c3:b6:0a:50:5d:f0:2c:57:db:c3:ea:1c:7a:b3:7f: 9b:d2:8a:1d:38:e8:4b:d9:8b:32:b9:d9:6c:3d:eb:57:77:df: 75:2f:5b:da:e6:e0:c8:1d:f4:e4:62:a5:88:d5:ac:6f:da:b0: df:e9:fa:b2:1d:74:12:7d:fd:35:03:b0:fe:50:66:e6:9d:9f: 32:92:8d:41:60:2d:a3:4a:b4:15:7f:69:68:5c:76:20:86:d2: ce:12:c9:26:9f:43:2f:bd:e7:7a:7b:a4:09:ed:6b:44:1a:3a: 84:25:06:7e:a4:d3:88:07:ff:9c:08:a0:79:ff:b1:8f:cf:fd: ec:2f:ca:14:4d:25:49:ae:e4:37:c7:e0:59:ca:07:2b:14:b1: ec:b2:c7:f9:26:b9:7c:af:e3:b0:f9:f0:f7:9f:9a:d5:aa:cb: 6f:d8:3c:61:a1:e2:14:fb:4b:f1:6f:ba:82:26:45:93:3d:cd: f8:6e:bf:31:93:bb:a9:84:87:13:d8:1f:cd:06:a9:de:e1:bd: b0:34:9a:21:7d:47:08:02:98:c2:e8:3c:58:58:85:f4:aa:41: 0f:4f:96:09 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIURZabzjmyL4/Nrb2NPdgvYPdfdokwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNDAwMDAxMFoX DTI2MDUxNTIzNTk1OVowejFJMEcGA1UEBRNAZjFjYWY1ODc5OTQ1YjZhYjFlYjkw YmEzYzFmZTVkZjgxY2RhNTk1NjMxNDNhNGY4ODgwZmE4MjRiMWVhYzMxMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSg6FNcR2LaYDQwhDurWdGX/yGVJ G+eeKzCXvEuVO5slv0zXCK380UagFfT8DCIX+2W5WRvEe937MPZN8L0ALRDxpJ1B aWGN2rTzM424af4m1iEIQlnSDP25Wy0EPIkqybfP1NgKK1hBpp3Y959iMAQwrIFB VRa8V33ebkXjUsgTv+5JBfLUCuy0LgKHc5dltdStBGwMwVmNYKy1o74enA721F4u xA7WgGLPhKeYUAeSJ6CNVwRfx8oku4TzyuYRVswjtedIAJe13EiarW1I2EdZ3aV5 bjNefpISPKioBp5nGDnBxhMy8W+3kO4HxT8XkNq9wv2XfyfhLv/J7brjQwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOSADz1M9rXRdnuHwHtXXNrUcFR/MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk0MjQ0Y2IwLTE1OGUtNDZkNC04YWY0LWU1MGRjMTRkYjgwOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauSgwDQYJKoZIhvcNAQELBQADggEBAK36Sg01DgRM9qTfW2ZA DQBxcUWImQoTnwC5orz2YEyobhreJZ7xOcO2ClBd8CxX28PqHHqzf5vSih046EvZ izK52Ww961d333UvW9rm4Mgd9ORipYjVrG/asN/p+rIddBJ9/TUDsP5QZuadnzKS jUFgLaNKtBV/aWhcdiCG0s4SySafQy+953p7pAnta0QaOoQlBn6k04gH/5wIoHn/ sY/P/ewvyhRNJUmu5DfH4FnKBysUseyyx/kmuXyv47D58PefmtWqy2/YPGGh4hT7 S/FvuoImRZM9zfhuvzGTu6mEhxPYH80Gqd7hvbA0miF9RwgCmMLoPFhYhfSqQQ9P lgk= -----END CERTIFICATE-----Generated at Sun Mar 1 23:41:08 2026 by rpki-client