$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a22c3d64-afd9-44fd-96c2-3def5d30f274.roa File: a22c3d64-afd9-44fd-96c2-3def5d30f274.roa (raw, json) Hash identifier: LOTlzFsNNNqYfMsNoEn81dr4SYPzDwE33d/NOW/9w2E= Subject key identifier: 5B:77:16:7C:1C:67:E9:78:69:AB:18:2A:25:28:CA:87:F9:C4:C7:A7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4DC9DD5A3B4886A0B030B74F88BA8E6603278535 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a22c3d64-afd9-44fd-96c2-3def5d30f274.roa Signing time: Fri 20 Feb 2026 00:21:18 +0000 ROA not before: Fri 20 Feb 2026 00:21:18 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c9:dd:5a:3b:48:86:a0:b0:30:b7:4f:88:ba:8e:66:03:27:85:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:21:18 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=d6d5d0a4631e1531e9596525867ea30c8cf2566583cd8a506a4f3b00ccdb50d1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0d:83:ac:fe:01:e2:c7:3f:86:8d:67:f6:0a: f1:41:8d:44:95:6d:86:f7:5c:20:59:14:f2:10:37: 64:85:ab:ac:ef:c5:84:0e:6e:07:fc:ed:48:f7:ec: d5:f4:29:0e:62:e2:61:83:99:b6:1d:96:e6:5d:0f: 23:69:77:d1:f8:0f:bb:62:92:b7:1c:b6:2d:75:5d: 8a:eb:5d:dc:fc:21:28:cb:0b:40:d8:f0:e8:9f:bd: 42:47:06:54:00:1b:d4:2e:42:b8:d1:14:a1:df:d1: 69:d7:ab:5e:ad:19:f4:d5:ee:51:dc:c3:d3:d9:b5: ca:67:c4:dc:a9:fa:78:1d:a1:e9:fa:5c:d4:be:9d: b9:2f:4c:b7:c3:98:ff:03:ff:77:dc:34:97:04:0f: c0:35:bb:6e:56:3b:e3:20:fb:13:a8:50:b5:07:4f: 64:cd:58:69:bb:67:de:ec:67:0b:c3:cc:3b:53:af: 0c:69:c4:c5:3e:6e:1b:87:23:61:53:4f:f2:56:09: 05:15:3a:5f:15:61:da:60:f7:cf:02:4a:21:ab:70: 22:37:63:78:bf:e2:b9:27:b3:04:20:c3:35:96:a7: 84:5f:b8:62:93:b9:bc:b1:65:5a:9c:63:38:00:d2: 53:bb:83:8e:49:b2:b2:ef:4a:fa:23:8c:44:e5:64: 9e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:77:16:7C:1C:67:E9:78:69:AB:18:2A:25:28:CA:87:F9:C4:C7:A7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a22c3d64-afd9-44fd-96c2-3def5d30f274.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:8c0::/48 Signature Algorithm: sha256WithRSAEncryption 24:5f:b7:fc:a2:fe:6f:dd:52:6c:27:84:ef:95:fd:71:ce:69: 4c:65:43:3e:96:01:c4:e3:63:c0:1d:10:cc:00:26:bb:c5:3d: 25:07:33:f3:d7:1f:83:fb:12:ee:08:53:c0:d7:14:e9:4a:bc: 7a:a1:2f:1a:34:97:57:15:0b:72:27:cc:3a:57:96:16:72:52: e1:96:37:8f:b1:d6:c7:85:b3:28:a8:cc:df:31:b9:9d:cc:59: b8:d3:28:25:31:7a:95:09:e2:51:d9:ef:92:5d:0e:0a:8f:e4: ea:ae:c6:39:d3:a5:ce:1e:2a:76:c6:3f:fa:b7:46:46:e8:74: 34:8b:af:04:c9:d3:cf:1d:b0:74:a2:fb:68:6b:ef:97:bb:54: 05:c3:8f:aa:d7:0a:4e:d6:17:af:8f:8b:42:04:3b:35:dd:62: 41:63:50:5f:c2:89:28:67:65:96:84:b8:9c:65:fa:70:0e:7b: 36:bf:c8:89:7a:61:d3:eb:21:ec:45:ac:a1:ee:58:d1:4e:9f: 15:e1:79:c7:5d:9b:b6:52:ed:08:b5:ce:a4:09:a2:b0:6e:41: ae:f9:e2:80:f9:5a:58:51:2d:6b:d0:bf:a8:d5:e1:b0:0a:9b: 14:ce:67:cb:a1:3a:99:57:af:5a:0a:b0:27:6f:64:00:f6:ce: 62:5f:22:4c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUTcndWjtIhqCwMLdPiLqOZgMnhTUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMjExOFoX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAZDZkNWQwYTQ2MzFlMTUzMWU5NTk2 NTI1ODY3ZWEzMGM4Y2YyNTY2NTgzY2Q4YTUwNmE0ZjNiMDBjY2RiNTBkMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnA2DrP4B4sc/ho1n9grxQY1ElW2G 91wgWRTyEDdkhaus78WEDm4H/O1I9+zV9CkOYuJhg5m2HZbmXQ8jaXfR+A+7YpK3 HLYtdV2K613c/CEoywtA2PDon71CRwZUABvULkK40RSh39Fp16terRn01e5R3MPT 2bXKZ8Tcqfp4HaHp+lzUvp25L0y3w5j/A/933DSXBA/ANbtuVjvjIPsTqFC1B09k zVhpu2fe7GcLw8w7U68MacTFPm4bhyNhU0/yVgkFFTpfFWHaYPfPAkohq3AiN2N4 v+K5J7MEIMM1lqeEX7hik7m8sWVanGM4ANJTu4OOSbKy70r6I4xE5WSeFwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFt3FnwcZ+l4aasYKiUoyof5xMenMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EyMmMzZDY0LWFmZDktNDRmZC05NmMyLTNkZWY1ZDMwZjI3NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYQjAMA0GCSqGSIb3DQEBCwUAA4IBAQAkX7f8ov5v3VJsJ4Tv lf1xzmlMZUM+lgHE42PAHRDMACa7xT0lBzPz1x+D+xLuCFPA1xTpSrx6oS8aNJdX FQtyJ8w6V5YWclLhljePsdbHhbMoqMzfMbmdzFm40yglMXqVCeJR2e+SXQ4Kj+Tq rsY506XOHip2xj/6t0ZG6HQ0i68EydPPHbB0ovtoa++Xu1QFw4+q1wpO1hevj4tC BDs13WJBY1BfwokoZ2WWhLicZfpwDns2v8iJemHT6yHsRayh7ljRTp8V4XnHXZu2 Uu0Itc6kCaKwbkGu+eKA+VpYUS1r0L+o1eGwCpsUzmfLoTqZV69aCrAnb2QA9s5i XyJM -----END CERTIFICATE-----Generated at Mon Mar 2 03:31:36 2026 by rpki-client