$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a376ad6c-f011-4c0c-850e-ba1508e41fe7.roa File: a376ad6c-f011-4c0c-850e-ba1508e41fe7.roa (raw, json) Hash identifier: c7r04kR/+IEJM3Byv1RUfH8DIFP/H7xztIWPi4j60nY= Subject key identifier: CD:87:9C:A5:73:2C:A3:83:CE:0B:FC:73:2C:36:43:5C:73:D9:E6:06 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 45CD0EB88D5AAC26B155FB628047CD4200A5F192 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a376ad6c-f011-4c0c-850e-ba1508e41fe7.roa Signing time: Sat 21 Feb 2026 00:00:03 +0000 ROA not before: Sat 21 Feb 2026 00:00:03 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 126.210.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:cd:0e:b8:8d:5a:ac:26:b1:55:fb:62:80:47:cd:42:00:a5:f1:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 21 00:00:03 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=2f696f98471a337ddcd20507bbcee1fc7ef09c8efc43a3f47de62440d47a806f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:63:27:e6:e3:65:63:f7:bd:df:30:25:1a: cb:ad:1c:4a:22:c2:75:ad:4f:17:96:81:e0:69:93: b3:ce:82:fc:1e:b4:e0:68:83:eb:99:e5:9d:09:56: d4:4b:8a:37:54:b8:fc:d0:98:da:c8:de:cd:18:e2: 86:b9:22:c4:b3:63:5c:56:30:58:47:7d:87:11:28: 3f:84:56:da:97:b8:35:a3:8f:e9:82:cb:8f:34:78: 67:b3:d9:3d:35:d4:c8:f0:aa:fe:2b:92:b5:ed:46: f8:1c:36:ca:bc:b4:a7:85:e4:f8:39:2a:e0:a6:6d: b6:67:0c:c8:3c:02:29:0f:57:85:1b:a0:57:38:73: 35:9b:74:47:00:f9:e9:44:8f:90:da:9a:69:90:18: 28:45:6a:9f:b5:26:bb:05:a2:a3:8d:21:5e:2a:28: 94:85:a4:8c:4f:22:dc:c1:46:d5:2d:67:eb:fc:5b: 3c:44:0a:7d:ad:29:f5:f5:92:2c:42:20:d4:1f:c9: 1e:f3:2a:70:3a:77:38:f2:a1:e7:6e:1c:11:f7:f2: 1f:5f:7b:a7:76:24:14:03:69:82:5e:af:0c:2e:bc: b8:ac:22:2c:90:70:d3:60:9f:6e:1c:0a:6f:82:7a: 6f:66:53:a1:a1:d3:03:68:4e:ca:62:b0:cb:dd:66: 88:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:87:9C:A5:73:2C:A3:83:CE:0B:FC:73:2C:36:43:5C:73:D9:E6:06 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a376ad6c-f011-4c0c-850e-ba1508e41fe7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 126.210.0.0/16 Signature Algorithm: sha256WithRSAEncryption b0:ab:d3:04:26:8b:6a:8f:2b:6a:8d:76:79:f1:9a:ee:2b:11: c6:a7:f0:64:4f:bc:60:cf:49:99:55:47:a9:1f:40:97:4c:1c: 75:14:d5:61:f1:3c:a8:af:dd:b1:33:7d:c4:d5:37:1d:45:62: 1f:77:d0:3a:fd:42:0e:d0:c1:c6:4f:68:21:b7:ee:36:42:db: 88:20:b3:d0:80:3b:2b:e4:92:8a:88:9f:aa:9f:c4:d6:ec:5f: 36:cb:7f:c7:e3:85:08:47:9d:1a:98:b6:3c:9f:8e:bc:ac:c3: 8c:5b:49:ae:d3:48:00:64:cc:de:f9:f7:cc:1e:33:41:3a:89: 52:df:6e:12:ba:f7:ec:7e:0e:e2:ee:32:73:88:0c:cb:37:36: 3d:41:99:99:58:7d:e8:9e:30:c1:db:12:51:29:f6:3c:dc:86: 8b:d4:ea:0c:7e:74:8f:60:eb:2f:4d:94:73:ca:b7:72:59:6c: 7d:57:f3:54:00:6d:08:11:02:39:bd:4d:2b:e9:dc:06:6d:56: 77:d6:e3:9a:98:f0:8c:db:f7:bf:83:b3:7c:57:40:00:80:85: 0d:b6:36:a2:e6:ce:ba:b1:b3:b8:dd:07:7f:4d:7d:99:d8:7f: 9d:62:f3:c7:1a:1c:00:45:0a:fe:36:c6:52:20:a3:1a:98:4f: bd:72:29:38 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIURc0OuI1arCaxVftigEfNQgCl8ZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMTAwMDAwM1oX DTI2MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAMmY2OTZmOTg0NzFhMzM3ZGRjZDIw NTA3YmJjZWUxZmM3ZWYwOWM4ZWZjNDNhM2Y0N2RlNjI0NDBkNDdhODA2ZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIJjJ+bjZWP3vd8wJRrLrRxKIsJ1 rU8XloHgaZOzzoL8HrTgaIPrmeWdCVbUS4o3VLj80JjayN7NGOKGuSLEs2NcVjBY R32HESg/hFbal7g1o4/pgsuPNHhns9k9NdTI8Kr+K5K17Ub4HDbKvLSnheT4OSrg pm22ZwzIPAIpD1eFG6BXOHM1m3RHAPnpRI+Q2pppkBgoRWqftSa7BaKjjSFeKiiU haSMTyLcwUbVLWfr/Fs8RAp9rSn19ZIsQiDUH8ke8ypwOnc48qHnbhwR9/IfX3un diQUA2mCXq8MLry4rCIskHDTYJ9uHApvgnpvZlOhodMDaE7KYrDL3WaIkwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFM2HnKVzLKODzgv8cyw2Q1xz2eYGMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EzNzZhZDZjLWYwMTEtNGMwYy04NTBlLWJhMTUwOGU0MWZlNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAftIwDQYJKoZIhvcNAQELBQADggEBALCr0wQmi2qPK2qNdnnxmu4r Ecan8GRPvGDPSZlVR6kfQJdMHHUU1WHxPKiv3bEzfcTVNx1FYh930Dr9Qg7QwcZP aCG37jZC24ggs9CAOyvkkoqIn6qfxNbsXzbLf8fjhQhHnRqYtjyfjrysw4xbSa7T SABkzN7598weM0E6iVLfbhK69+x+DuLuMnOIDMs3Nj1BmZlYfeieMMHbElEp9jzc hovU6gx+dI9g6y9NlHPKt3JZbH1X81QAbQgRAjm9TSvp3AZtVnfW45qY8Izb97+D s3xXQACAhQ22NqLmzrqxs7jdB39NfZnYf51i88caHABFCv42xlIgoxqYT71yKTg= -----END CERTIFICATE-----Generated at Sun Mar 1 23:58:04 2026 by rpki-client