$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9f7f81d5-9939-43d6-b333-dd2d090500da.roa File: 9f7f81d5-9939-43d6-b333-dd2d090500da.roa (raw, json) Hash identifier: pkRNPbZLYg7hFFhA+uovWbCwzGIyWIl0m6bBKiqXVlQ= Subject key identifier: 33:ED:E3:CF:15:CC:FD:E5:8B:08:0D:5F:FD:0F:40:16:8C:A5:8F:B9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6C06606278F6766DFA8DE2E356454E116893295F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9f7f81d5-9939-43d6-b333-dd2d090500da.roa Signing time: Sun 22 Feb 2026 00:21:11 +0000 ROA not before: Sun 22 Feb 2026 00:21:11 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:8800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:06:60:62:78:f6:76:6d:fa:8d:e2:e3:56:45:4e:11:68:93:29:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:21:11 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=8fdafff7843a2b71d643650baeeed6f99132b3e74a48ceb563387ea2f3398141, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0c:45:7f:84:21:e4:5b:60:68:19:cd:a8:2a: 7d:16:d5:13:c2:97:d9:88:f4:24:f4:23:c5:5b:a2: 72:87:85:a9:f2:79:98:52:2c:9d:75:2d:51:0e:19: d4:e0:e3:47:44:2a:6a:af:06:72:da:08:32:0a:4b: 80:b1:8e:76:dc:32:29:1b:86:9c:ed:59:19:06:7f: f4:d1:47:a8:7e:68:e2:f7:81:a2:c5:74:bc:d3:fc: 37:20:8a:59:d6:b7:50:8c:72:26:85:8d:ca:b5:de: c6:3b:fb:64:d1:ca:1e:d8:50:38:f4:a4:87:e6:46: b2:5d:14:ad:7e:f0:d4:fc:5e:94:41:28:ba:ed:f2: a5:84:da:d6:2b:9d:11:15:63:f6:22:9d:c4:18:c3: 76:ba:e0:7b:5b:bc:ed:43:d9:e6:91:d5:db:4a:7a: e0:21:19:d7:4c:21:c3:8c:19:ee:43:ae:a7:e4:86: 5a:49:53:bd:64:ca:5c:7e:e4:28:2e:27:71:b4:34: 6d:72:99:ef:b6:6b:8b:c1:46:98:66:ee:25:6a:e7: f4:e5:09:63:01:fe:7b:23:2a:f7:8b:a9:e3:49:2c: e6:92:a5:05:9b:41:21:a3:88:9f:60:a3:ba:f7:f3: 04:11:c4:8f:e7:d7:fa:e8:0e:70:d0:51:28:81:45: eb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:ED:E3:CF:15:CC:FD:E5:8B:08:0D:5F:FD:0F:40:16:8C:A5:8F:B9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9f7f81d5-9939-43d6-b333-dd2d090500da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:8800::/40 Signature Algorithm: sha256WithRSAEncryption 7f:26:aa:0b:49:3c:6f:0f:de:07:61:68:f1:38:8d:e3:de:f2: df:1f:95:ae:53:35:1b:ce:2d:41:56:47:d7:27:f8:17:4a:71: 75:9b:56:b3:3b:5e:07:36:46:2c:c0:f5:f3:3f:1c:29:cb:0a: b2:4d:6e:bc:e5:eb:d1:5c:ec:21:c5:31:65:b6:cf:94:7f:8a: 4d:ad:80:14:4b:d1:53:a4:78:e1:0b:65:aa:fb:3a:9c:21:5b: d1:fd:7b:0d:b6:2f:8f:a4:de:b8:ee:5f:2d:66:6f:f0:8f:88: ad:5b:5d:4d:53:f8:84:7d:f1:1a:c9:b6:9e:e0:86:4f:40:29: 60:37:12:3a:fc:34:73:25:ab:c7:33:3e:a2:8f:d2:fe:56:05: 7b:08:a3:58:17:86:69:13:14:c0:f4:80:da:a7:f2:30:97:d6: d7:19:bb:0b:a5:41:2c:c0:02:40:41:f5:de:93:d5:79:d7:2d: db:c2:b5:fa:82:d1:b2:3c:e5:a7:b5:21:86:e5:4e:c4:33:cf: f6:7e:96:7f:bd:cd:2e:0e:05:a7:c1:63:60:6a:21:1b:fa:6e: 52:58:2b:01:7a:2e:b3:bd:18:13:52:97:64:ce:84:f1:1d:56: 07:c5:ec:35:60:2c:88:f6:d1:54:a4:b4:ca:2d:35:5e:4b:4d: 6c:30:f5:20 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUbAZgYnj2dm36jeLjVkVOEWiTKV8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMjExMVoX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAOGZkYWZmZjc4NDNhMmI3MWQ2NDM2 NTBiYWVlZWQ2Zjk5MTMyYjNlNzRhNDhjZWI1NjMzODdlYTJmMzM5ODE0MTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQxFf4Qh5FtgaBnNqCp9FtUTwpfZ iPQk9CPFW6Jyh4Wp8nmYUiyddS1RDhnU4ONHRCpqrwZy2ggyCkuAsY523DIpG4ac 7VkZBn/00Ueofmji94GixXS80/w3IIpZ1rdQjHImhY3Ktd7GO/tk0coe2FA49KSH 5kayXRStfvDU/F6UQSi67fKlhNrWK50RFWP2Ip3EGMN2uuB7W7ztQ9nmkdXbSnrg IRnXTCHDjBnuQ66n5IZaSVO9ZMpcfuQoLidxtDRtcpnvtmuLwUaYZu4lauf05Qlj Af57Iyr3i6njSSzmkqUFm0Eho4ifYKO69/MEEcSP59f66A5w0FEogUXrdwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDPt488VzP3liwgNX/0PQBaMpY+5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlmN2Y4MWQ1LTk5MzktNDNkNi1iMzMzLWRkMmQwOTA1MDBkYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacIgwDQYJKoZIhvcNAQELBQADggEBAH8mqgtJPG8P3gdhaPE4 jePe8t8fla5TNRvOLUFWR9cn+BdKcXWbVrM7Xgc2RizA9fM/HCnLCrJNbrzl69Fc 7CHFMWW2z5R/ik2tgBRL0VOkeOELZar7OpwhW9H9ew22L4+k3rjuXy1mb/CPiK1b XU1T+IR98RrJtp7ghk9AKWA3Ejr8NHMlq8czPqKP0v5WBXsIo1gXhmkTFMD0gNqn 8jCX1tcZuwulQSzAAkBB9d6T1XnXLdvCtfqC0bI85ae1IYblTsQzz/Z+ln+9zS4O BafBY2BqIRv6blJYKwF6LrO9GBNSl2TOhPEdVgfF7DVgLIj20VSktMotNV5LTWww 9SA= -----END CERTIFICATE-----Generated at Mon Mar 2 03:24:25 2026 by rpki-client