$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/982d87a7-4e0b-42ab-a73f-f497b43a2a36.roa File: 982d87a7-4e0b-42ab-a73f-f497b43a2a36.roa (raw, json) Hash identifier: uI7BT7lvwT9J+9FFd5zcvK3xDfHChNYHzTnAZnsXImU= Subject key identifier: 7B:9F:DB:38:49:4D:3C:C5:67:55:50:73:01:FE:5B:21:6C:0A:85:EA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2FB3B57E829422360D7AA3E9A3855D76C0F89F4E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/982d87a7-4e0b-42ab-a73f-f497b43a2a36.roa Signing time: Sat 14 Feb 2026 00:00:33 +0000 ROA not before: Sat 14 Feb 2026 00:00:33 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab9:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:b3:b5:7e:82:94:22:36:0d:7a:a3:e9:a3:85:5d:76:c0:f8:9f:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 14 00:00:33 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=43c677b893bcd9bb176d3c2f51a3f37e3bd73229ac18b76e56b442378a3cfbc4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a2:a9:19:de:76:3d:27:c8:5b:16:de:f3:3a: 3e:4e:1f:d5:34:9a:ac:9a:59:f5:d5:4a:bb:bb:76: f0:c8:d5:1d:b8:1a:f1:28:53:ed:70:43:b9:ca:4d: 79:70:ba:0c:9a:7b:00:f0:eb:4b:b4:69:eb:fc:a0: 2e:e5:19:89:63:29:bc:e2:fa:7b:2a:ca:bc:87:d5: 9c:62:f7:95:25:ae:0b:76:9b:08:c9:52:9c:77:81: 63:ca:8f:c6:dd:f6:c1:db:ad:f1:a6:10:5e:59:6b: a4:04:b0:77:02:86:2c:13:a2:c9:38:50:04:1c:4c: 2d:ba:7f:84:5f:0a:a5:fb:59:3f:82:6a:10:24:69: 60:88:b6:a6:d5:60:6d:00:28:ed:85:70:56:03:de: f8:72:bc:3e:f7:d7:4e:2c:3b:16:fa:2b:4e:14:dd: e8:c3:a2:33:df:94:0d:ef:8b:07:e3:07:c2:f6:8b: 5d:69:e5:57:bd:c9:68:34:42:d1:ec:8b:05:7e:cf: 33:5f:3a:2c:7d:8a:58:1c:95:10:3e:05:35:23:4f: 02:30:0b:a4:31:fb:52:cb:7e:7a:cc:15:9a:84:dd: ea:73:23:8f:e9:f0:d4:b2:5d:69:b2:ab:bb:0f:ac: 84:9b:25:26:1d:f3:20:e7:73:30:90:29:8a:73:52: a9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9F:DB:38:49:4D:3C:C5:67:55:50:73:01:FE:5B:21:6C:0A:85:EA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/982d87a7-4e0b-42ab-a73f-f497b43a2a36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:800::/40 Signature Algorithm: sha256WithRSAEncryption 8c:b3:fc:8e:3f:46:23:d0:24:3c:2d:5f:2e:22:32:a7:b6:e2: 9a:ba:a6:9a:79:7c:d3:8a:c5:35:23:9f:9a:8c:c7:93:20:2a: f9:c9:0d:12:78:1b:02:a8:b2:f6:63:ec:e5:64:db:31:5b:b3: e2:b5:7e:b0:34:4e:c0:d7:1e:1e:09:df:9e:9e:05:ed:e6:41: 3c:d5:fc:7d:5a:6f:76:c4:c7:ca:de:30:50:1d:85:75:ca:83: 6a:de:28:98:0c:d7:5a:94:60:48:38:5f:4e:d7:4c:18:d6:51: 89:f7:3b:6a:47:18:8e:52:60:82:81:ac:4e:a3:18:20:77:54: bf:d2:27:79:bc:60:cb:90:c6:df:ee:0d:b7:3c:c6:df:d3:c0: 98:f9:b6:07:88:29:0d:f6:f9:53:dc:50:69:03:9d:15:e8:0b: 66:e1:f8:8a:e8:fe:07:8c:40:dc:39:2f:21:7d:e4:5a:d9:26: 0d:5e:ae:bc:b7:76:ee:a9:e5:c7:e6:43:62:2c:bd:47:ac:50: 5b:6c:52:df:4c:2d:ab:22:2c:b9:91:bb:b9:3d:7a:43:7d:56: d2:d9:aa:48:dd:37:33:36:c2:d7:88:15:cc:ac:df:95:82:a3: 5b:c4:59:f5:5b:3c:ad:0f:eb:18:a9:76:c1:c9:eb:dd:3a:9b: 89:0c:a1:78 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUL7O1foKUIjYNeqPpo4VddsD4n04wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNDAwMDAzM1oX DTI2MDUxNTIzNTk1OVowejFJMEcGA1UEBRNANDNjNjc3Yjg5M2JjZDliYjE3NmQz YzJmNTFhM2YzN2UzYmQ3MzIyOWFjMThiNzZlNTZiNDQyMzc4YTNjZmJjNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16KpGd52PSfIWxbe8zo+Th/VNJqs mln11Uq7u3bwyNUduBrxKFPtcEO5yk15cLoMmnsA8OtLtGnr/KAu5RmJYym84vp7 Ksq8h9WcYveVJa4LdpsIyVKcd4Fjyo/G3fbB263xphBeWWukBLB3AoYsE6LJOFAE HEwtun+EXwql+1k/gmoQJGlgiLam1WBtACjthXBWA974crw+99dOLDsW+itOFN3o w6Iz35QN74sH4wfC9otdaeVXvcloNELR7IsFfs8zXzosfYpYHJUQPgU1I08CMAuk MftSy356zBWahN3qcyOP6fDUsl1psqu7D6yEmyUmHfMg53MwkCmKc1Kp1QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHuf2zhJTTzFZ1VQcwH+WyFsCoXqMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk4MmQ4N2E3LTRlMGItNDJhYi1hNzNmLWY0OTdiNDNhMmEzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauQgwDQYJKoZIhvcNAQELBQADggEBAIyz/I4/RiPQJDwtXy4i Mqe24pq6ppp5fNOKxTUjn5qMx5MgKvnJDRJ4GwKosvZj7OVk2zFbs+K1frA0TsDX Hh4J356eBe3mQTzV/H1ab3bEx8reMFAdhXXKg2reKJgM11qUYEg4X07XTBjWUYn3 O2pHGI5SYIKBrE6jGCB3VL/SJ3m8YMuQxt/uDbc8xt/TwJj5tgeIKQ32+VPcUGkD nRXoC2bh+Iro/geMQNw5LyF95FrZJg1erry3du6p5cfmQ2IsvUesUFtsUt9MLasi LLmRu7k9ekN9VtLZqkjdNzM2wteIFcys35WCo1vEWfVbPK0P6xipdsHJ6906m4kM oXg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:51 2026 by rpki-client