$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa File: 97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa (raw, json) Hash identifier: 4h1Jl9UtzgEv3mynVJunkLHmn9F+lR2j1bNV/a6uLKE= Subject key identifier: 8E:A4:28:63:FE:5D:FA:42:6B:1C:02:88:99:20:3C:53:C4:67:5D:3A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 080D10A6E767813CC91224C575564329876BED53 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa Signing time: Fri 13 Feb 2026 00:00:13 +0000 ROA not before: Fri 13 Feb 2026 00:00:13 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2b::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:0d:10:a6:e7:67:81:3c:c9:12:24:c5:75:56:43:29:87:6b:ed:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 13 00:00:13 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=ba13c91ca6d4c7b2513e5aa30e55327df2be322e027626764e2888b6e3dd22d4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1c:cc:26:06:06:13:78:08:f6:c7:53:f7:04: 58:49:8f:8b:07:ba:a2:50:4f:11:b9:3b:63:e0:f2: 22:80:28:5d:f1:49:ab:03:a6:af:03:94:bf:f0:70: 93:33:30:b5:6e:62:da:06:8d:19:9e:51:33:52:03: 77:d6:da:b5:62:19:8f:33:5d:92:af:ba:d3:a0:82: 36:67:d4:32:d7:e0:22:70:09:fb:d6:6d:ab:28:40: 89:be:b4:db:00:4a:b4:0e:7e:f4:c5:7b:f4:74:7a: 27:8e:b7:b5:93:71:7f:74:e2:48:7e:8a:7c:3e:28: 12:b3:47:b4:26:59:08:2a:03:e4:a2:36:5d:73:14: e1:1b:fb:d1:ff:5f:42:e4:ec:2e:de:91:86:e5:58: 83:d9:82:dc:e4:1b:43:4a:74:28:10:64:76:23:9c: 22:6b:96:fb:87:73:dd:08:26:af:aa:f4:04:27:0d: a1:c1:4d:26:d5:7c:14:e0:3f:b5:87:0d:de:05:a4: c6:a9:ca:05:01:3f:f5:51:e7:26:9a:5a:c2:6c:ff: 2f:d6:57:99:0b:c6:09:c4:d5:dd:ab:a2:1f:a5:b3: af:45:21:7d:0e:59:b0:14:b8:a1:ba:f8:5c:a2:8e: 79:ba:92:a0:36:f2:a9:b2:f9:70:07:a0:a9:c9:4c: 40:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A4:28:63:FE:5D:FA:42:6B:1C:02:88:99:20:3C:53:C4:67:5D:3A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97acb09e-a4ac-498b-bfa8-ff2d8da2bf3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2b::/36 Signature Algorithm: sha256WithRSAEncryption 5d:c7:f2:35:e5:15:1c:62:ac:b4:f2:48:e2:06:18:ec:f4:46: 28:d8:a4:87:34:2f:84:53:41:d2:be:c0:38:e2:a9:ea:e9:57: 2d:00:91:25:ca:a5:6a:cc:c4:f3:df:cb:45:00:83:49:58:ae: 65:02:ec:65:9b:23:24:db:64:9b:a8:ed:4e:95:48:98:0f:56: 26:ee:f2:ac:96:2a:b5:90:7c:69:e0:64:cd:49:ae:8d:62:14: 31:5b:5f:f6:9f:85:89:24:93:ec:7b:55:44:17:34:ea:90:29: d4:52:08:ba:9e:89:63:3f:6f:f7:13:f5:e5:e0:28:37:8a:72: 92:31:df:cb:87:9d:99:a3:ae:fe:00:62:0f:0e:0d:71:34:4e: 36:0e:09:69:d9:12:4c:fd:05:2c:09:fa:86:52:4a:f0:4a:0a: 84:6d:a3:0d:cd:91:02:b6:37:3f:9b:ca:e4:66:39:6e:3c:29: fa:85:d4:1f:dd:f4:d3:f0:91:74:6c:f2:a4:38:07:29:2f:fc: 4c:e6:4b:36:3c:82:ba:6e:3d:bc:38:b2:4d:43:53:68:0d:0c: 93:25:97:40:22:ce:c5:87:ce:71:79:39:8b:4e:a0:3a:68:f4: 76:bc:c6:dd:44:5f:f7:92:0a:58:9a:a3:02:61:1b:b5:c7:b2: eb:e4:37:c7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCA0QpudngTzJEiTFdVZDKYdr7VMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMzAwMDAxM1oX DTI2MDUxNDIzNTk1OVowejFJMEcGA1UEBRNAYmExM2M5MWNhNmQ0YzdiMjUxM2U1 YWEzMGU1NTMyN2RmMmJlMzIyZTAyNzYyNjc2NGUyODg4YjZlM2RkMjJkNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhzMJgYGE3gI9sdT9wRYSY+LB7qi UE8RuTtj4PIigChd8UmrA6avA5S/8HCTMzC1bmLaBo0ZnlEzUgN31tq1YhmPM12S r7rToII2Z9Qy1+AicAn71m2rKECJvrTbAEq0Dn70xXv0dHonjre1k3F/dOJIfop8 PigSs0e0JlkIKgPkojZdcxThG/vR/19C5Owu3pGG5ViD2YLc5BtDSnQoEGR2I5wi a5b7h3PdCCavqvQEJw2hwU0m1XwU4D+1hw3eBaTGqcoFAT/1UecmmlrCbP8v1leZ C8YJxNXdq6IfpbOvRSF9DlmwFLihuvhcoo55upKgNvKpsvlwB6CpyUxAsQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFI6kKGP+XfpCaxwCiJkgPFPEZ106MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk3YWNiMDllLWE0YWMtNDk4Yi1iZmE4LWZmMmQ4ZGEyYmYzYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaKwAwDQYJKoZIhvcNAQELBQADggEBAF3H8jXlFRxirLTySOIG GOz0RijYpIc0L4RTQdK+wDjiqerpVy0AkSXKpWrMxPPfy0UAg0lYrmUC7GWbIyTb ZJuo7U6VSJgPVibu8qyWKrWQfGngZM1Jro1iFDFbX/afhYkkk+x7VUQXNOqQKdRS CLqeiWM/b/cT9eXgKDeKcpIx38uHnZmjrv4AYg8ODXE0TjYOCWnZEkz9BSwJ+oZS SvBKCoRtow3NkQK2Nz+byuRmOW48KfqF1B/d9NPwkXRs8qQ4Bykv/EzmSzY8grpu Pbw4sk1DU2gNDJMll0AizsWHznF5OYtOoDpo9Ha8xt1EX/eSCliaowJhG7XHsuvk N8c= -----END CERTIFICATE-----Generated at Sun Mar 1 21:46:30 2026 by rpki-client