$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97d80f39-e7d5-4a6b-aba1-3798e0c96546.roa File: 97d80f39-e7d5-4a6b-aba1-3798e0c96546.roa (raw, json) Hash identifier: iagc/dzHHfpEK/kcxfyVT7XnqLNlm5NcINdc862vy/0= Subject key identifier: 67:86:3C:BD:DF:F9:5C:67:AE:E1:28:28:65:29:6E:43:D8:24:01:3F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 08279EC050DC748130C816ACBC92C8BCD1823B2A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97d80f39-e7d5-4a6b-aba1-3798e0c96546.roa Signing time: Fri 20 Feb 2026 00:01:41 +0000 ROA not before: Fri 20 Feb 2026 00:01:41 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:f080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:27:9e:c0:50:dc:74:81:30:c8:16:ac:bc:92:c8:bc:d1:82:3b:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:01:41 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=5eb1acf2c377c10aa91129447608357130b277fd44053597ff9140f3fb6955e6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c2:73:d3:1b:25:57:f8:b9:7e:5d:86:58:a6: b4:bc:d0:62:d6:e6:3f:b9:17:aa:25:75:0b:b1:c0: e1:8f:50:11:31:20:82:60:57:79:b1:3a:2d:da:58: 47:b9:0c:d6:b0:fd:c2:92:a2:84:0e:b6:74:58:66: 93:1e:56:81:44:91:93:11:d3:b8:fa:64:e7:bd:c9: c0:6f:bf:a3:18:d9:ad:d0:17:d3:9e:65:d0:31:47: 4e:72:e7:b9:97:b6:c4:1d:a5:be:bf:8d:1d:a4:7f: fd:0f:c1:db:e5:ba:1e:75:cc:15:d5:77:23:fe:e4: 28:3f:69:d6:18:22:73:a3:46:33:ff:bc:68:3b:a2: f6:ea:72:59:81:d2:0c:dd:08:d0:ac:f0:8c:67:62: 6b:89:50:5c:46:dd:43:69:c3:52:6c:b2:a0:de:39: ca:d2:1a:9b:55:4a:f7:f1:6e:57:87:42:d1:b4:ba: 35:93:76:e4:fb:fa:f4:d5:b0:42:24:57:1a:af:fe: 76:66:0d:26:21:a1:a6:34:36:5d:5a:76:76:61:3f: 9d:61:f3:e9:be:59:74:6f:17:9a:e0:4e:f2:d5:a8: 5a:f4:a8:e0:ea:d5:c2:90:1c:86:5a:9b:44:df:71: 40:70:2e:b6:ee:30:10:b6:a1:36:69:39:e8:6b:24: b3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:86:3C:BD:DF:F9:5C:67:AE:E1:28:28:65:29:6E:43:D8:24:01:3F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97d80f39-e7d5-4a6b-aba1-3798e0c96546.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:f080::/48 Signature Algorithm: sha256WithRSAEncryption 46:85:53:f5:21:01:6e:0e:6a:22:5d:d2:17:f6:ed:8a:a7:cd: 72:96:6e:43:07:dc:22:d3:02:77:95:0b:fc:ee:0b:67:84:15: bf:a2:81:11:b4:24:12:19:85:bd:59:5c:a3:ab:e2:77:48:d9: 8a:db:89:6b:05:fe:0b:ba:72:d1:74:03:a5:df:22:04:3c:21: 65:fa:7f:71:60:81:55:7c:93:20:24:4a:a3:29:0c:22:0b:d9: 2e:b9:ef:55:96:26:5c:b2:62:6f:72:f9:8a:3c:53:a1:5b:c9: 43:1c:92:3d:37:4f:d8:d9:f8:97:d5:53:8d:f0:7f:b5:e5:35: 49:bf:d2:70:ab:79:f4:f0:6e:61:38:61:2b:dc:40:8f:6b:fa: 20:9a:71:b0:59:07:99:d7:01:65:66:50:1a:9a:d0:ef:97:c8: 32:d0:8a:d7:a9:3c:8b:f8:df:76:83:f8:3d:90:df:73:89:7e: b8:43:45:fe:3e:35:bc:83:e0:0a:ad:31:14:4b:de:71:2a:89: ee:14:9f:80:b9:2b:60:f8:23:33:a7:d2:25:bc:2f:be:57:61: 0d:87:c8:ab:85:11:c9:5a:ae:3c:5d:eb:7d:c3:2e:b0:99:f7: a6:b0:f7:8a:62:e8:62:54:96:b5:7d:84:61:c4:26:5c:f6:10: 62:36:72:4c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUCCeewFDcdIEwyBasvJLIvNGCOyowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMDE0MVoX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNANWViMWFjZjJjMzc3YzEwYWE5MTEy OTQ0NzYwODM1NzEzMGIyNzdmZDQ0MDUzNTk3ZmY5MTQwZjNmYjY5NTVlNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8Jz0xslV/i5fl2GWKa0vNBi1uY/ uReqJXULscDhj1ARMSCCYFd5sTot2lhHuQzWsP3CkqKEDrZ0WGaTHlaBRJGTEdO4 +mTnvcnAb7+jGNmt0BfTnmXQMUdOcue5l7bEHaW+v40dpH/9D8Hb5boedcwV1Xcj /uQoP2nWGCJzo0Yz/7xoO6L26nJZgdIM3QjQrPCMZ2JriVBcRt1DacNSbLKg3jnK 0hqbVUr38W5Xh0LRtLo1k3bk+/r01bBCJFcar/52Zg0mIaGmNDZdWnZ2YT+dYfPp vll0bxea4E7y1aha9Kjg6tXCkByGWptE33FAcC627jAQtqE2aTnoaySz/wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGeGPL3f+VxnruEoKGUpbkPYJAE/MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk3ZDgwZjM5LWU3ZDUtNGE2Yi1hYmExLTM3OThlMGM5NjU0Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba//CAMA0GCSqGSIb3DQEBCwUAA4IBAQBGhVP1IQFuDmoiXdIX 9u2Kp81ylm5DB9wi0wJ3lQv87gtnhBW/ooERtCQSGYW9WVyjq+J3SNmK24lrBf4L unLRdAOl3yIEPCFl+n9xYIFVfJMgJEqjKQwiC9kuue9VliZcsmJvcvmKPFOhW8lD HJI9N0/Y2fiX1VON8H+15TVJv9Jwq3n08G5hOGEr3ECPa/ogmnGwWQeZ1wFlZlAa mtDvl8gy0IrXqTyL+N92g/g9kN9ziX64Q0X+PjW8g+AKrTEUS95xKonuFJ+AuStg +CMzp9IlvC++V2ENh8irhRHJWq48Xet9wy6wmfemsPeKYuhiVJa1fYRhxCZc9hBi NnJM -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:29 2026 by rpki-client