$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa File: 9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa (raw, json) Hash identifier: RdsnheK3xUONUNt++tBDZFjNbTZK3aefNvtsjT2Nt4Y= Subject key identifier: 33:96:53:58:98:7A:F9:73:2A:1B:32:52:E2:12:CD:CA:DA:E5:16:84 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 73A50BF16FEC5D192663C52E670FB23B8A404EB9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa Signing time: Sun 22 Feb 2026 00:30:11 +0000 ROA not before: Sun 22 Feb 2026 00:30:11 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da10:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:a5:0b:f1:6f:ec:5d:19:26:63:c5:2e:67:0f:b2:3b:8a:40:4e:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:30:11 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=d8aeba8025af03d9e4328f6fd2ecec1dd709bec150f2668e8f51ffeef84a25c7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:7d:ac:c0:64:96:db:b0:8b:1b:0f:98:9b:f5: 02:eb:73:30:9d:16:65:2a:ad:32:67:a3:5f:e0:6a: 73:b6:36:a8:f1:6d:a0:15:31:c5:85:cc:23:80:cd: 07:bc:b2:1e:9b:e7:bd:29:e8:ab:17:6e:ad:22:05: cf:de:86:68:00:e7:a6:c6:45:02:4f:a5:c1:5e:62: 7d:bb:e2:28:6a:8b:d3:b9:32:c9:97:76:08:32:e8: 22:c5:d9:29:3f:fb:9f:1a:8f:83:51:e5:bb:93:36: 6b:6d:9d:5c:13:2a:80:db:9e:da:c7:e6:96:ab:e2: ac:97:34:2e:82:8b:8d:e2:69:64:49:97:e7:7e:41: 04:d2:05:54:ec:7c:c1:59:4f:3a:8e:f6:a2:84:8a: 8b:61:c7:04:43:f4:58:9c:af:f7:49:d2:09:6f:95: dc:3d:76:97:14:b9:8d:89:8e:35:34:5e:e5:2a:2e: ea:c0:c8:9d:d9:41:4c:aa:c8:75:00:ce:55:c2:b9: 99:f7:34:b4:cd:6b:32:08:af:69:94:c8:3e:09:7f: bc:f4:71:db:d9:e0:e0:7b:ce:eb:dd:6c:c7:39:7e: c3:38:37:72:b7:2f:ef:36:49:11:79:d8:4d:ae:5e: 64:f3:24:6c:02:20:7e:28:dd:c3:6e:a4:28:c0:bc: e6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:96:53:58:98:7A:F9:73:2A:1B:32:52:E2:12:CD:CA:DA:E5:16:84 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9dcf5f8f-9941-4c57-93c6-6df3440d00a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da10:8000::/36 Signature Algorithm: sha256WithRSAEncryption 8e:98:88:50:89:77:b5:19:9a:47:52:7c:13:7e:f4:38:09:58: 0b:7a:16:fc:aa:df:b7:00:ab:a5:c2:b4:9b:5c:eb:d4:9d:11: e0:e7:e0:33:f0:da:78:48:ad:8a:19:91:f3:d4:18:74:d6:a1: 77:1f:4f:72:8d:ea:70:8b:cc:88:b8:69:64:66:9f:7a:3c:4b: 4c:e6:60:32:cf:eb:0e:6d:f9:ee:a2:6d:b9:01:96:13:2d:84: 35:72:4f:76:90:7a:a7:5a:a3:fc:2e:e2:de:f1:ea:29:c4:e4: cb:56:b0:60:21:38:f3:9b:95:10:44:c5:98:1a:c1:37:e2:45: f6:1f:3f:ee:12:ce:45:de:51:73:51:c9:b8:e2:4b:8c:75:de: 7f:9a:03:16:da:bb:12:ad:7f:c8:f1:4f:91:08:40:95:41:76: 1a:c6:5e:55:7e:bf:fb:c2:95:e5:6a:28:8a:f2:1d:39:7b:c0: 45:ec:31:ff:26:e5:a4:6e:42:a6:87:23:2c:c2:27:60:26:a3: 71:b4:ad:c3:3e:e3:0c:8c:57:97:33:d7:d9:b9:cd:44:d6:42: ad:00:e3:4f:f3:6c:6f:5e:fc:ec:e5:49:a2:39:70:8f:ed:dc: 5c:a7:87:fe:8f:93:1f:cc:c8:86:e5:c0:eb:2e:64:81:94:93: 20:ae:91:4b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUc6UL8W/sXRkmY8UuZw+yO4pATrkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMzAxMVoX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAZDhhZWJhODAyNWFmMDNkOWU0MzI4 ZjZmZDJlY2VjMWRkNzA5YmVjMTUwZjI2NjhlOGY1MWZmZWVmODRhMjVjNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjX2swGSW27CLGw+Ym/UC63MwnRZl Kq0yZ6Nf4Gpztjao8W2gFTHFhcwjgM0HvLIem+e9KeirF26tIgXP3oZoAOemxkUC T6XBXmJ9u+IoaovTuTLJl3YIMugixdkpP/ufGo+DUeW7kzZrbZ1cEyqA257ax+aW q+KslzQugouN4mlkSZfnfkEE0gVU7HzBWU86jvaihIqLYccEQ/RYnK/3SdIJb5Xc PXaXFLmNiY41NF7lKi7qwMid2UFMqsh1AM5VwrmZ9zS0zWsyCK9plMg+CX+89HHb 2eDge87r3WzHOX7DODdyty/vNkkRedhNrl5k8yRsAiB+KN3DbqQowLzmjwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDOWU1iYevlzKhsyUuISzcra5RaEMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlkY2Y1ZjhmLTk5NDEtNGM1Ny05M2M2LTZkZjM0NDBkMDBhMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaEIAwDQYJKoZIhvcNAQELBQADggEBAI6YiFCJd7UZmkdSfBN+ 9DgJWAt6Fvyq37cAq6XCtJtc69SdEeDn4DPw2nhIrYoZkfPUGHTWoXcfT3KN6nCL zIi4aWRmn3o8S0zmYDLP6w5t+e6ibbkBlhMthDVyT3aQeqdao/wu4t7x6inE5MtW sGAhOPOblRBExZgawTfiRfYfP+4SzkXeUXNRybjiS4x13n+aAxbauxKtf8jxT5EI QJVBdhrGXlV+v/vCleVqKIryHTl7wEXsMf8m5aRuQqaHIyzCJ2Amo3G0rcM+4wyM V5cz19m5zUTWQq0A40/zbG9e/OzlSaI5cI/t3Fynh/6Pkx/MyIblwOsuZIGUkyCu kUs= -----END CERTIFICATE-----Generated at Sun Mar 1 21:49:48 2026 by rpki-client