$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bffbf7d3-f229-458a-8400-7dc848730d21.roa File: bffbf7d3-f229-458a-8400-7dc848730d21.roa (raw, json) Hash identifier: ugOUcZ3+t8sJsUnCODbp6AdlgBnDFBxhR8xPneRPIqU= Subject key identifier: B6:00:65:9A:9A:36:2A:38:9B:0F:E1:5A:34:3D:58:AF:81:9B:04:02 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1D2A95446B76F62FB02DCF7367F4AB84FFB90FB7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bffbf7d3-f229-458a-8400-7dc848730d21.roa Signing time: Wed 18 Feb 2026 00:01:36 +0000 ROA not before: Wed 18 Feb 2026 00:01:36 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:c080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:2a:95:44:6b:76:f6:2f:b0:2d:cf:73:67:f4:ab:84:ff:b9:0f:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 18 00:01:36 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=22090ee46641cb5886669e3f62964f90dbe9480b52acb2c5c244e2a8e23a5584, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:26:9e:32:87:07:b7:c2:f0:be:ba:85:a1:12: c3:51:17:c7:61:79:7b:95:7e:f6:e5:0a:16:35:92: 85:5d:6c:a9:01:a1:d0:e3:27:06:80:ab:c6:c1:18: 4f:5e:ed:d1:14:fa:1f:a1:40:28:56:ae:42:a1:bf: c7:01:c9:e5:67:81:d3:93:6e:81:a1:b3:8a:94:c6: 9e:b7:f1:5a:b1:24:2f:b0:c0:f6:20:ee:33:2b:26: 98:0b:15:e8:4c:a5:3d:9f:2b:28:43:03:d5:d9:2d: a4:f0:eb:ef:36:38:75:67:d1:58:c6:34:62:2b:8c: 3f:9d:44:54:72:90:5b:f7:58:b0:59:f7:25:a3:31: ef:22:91:5a:91:a4:f5:d8:44:4c:e5:b1:db:7d:c4: a7:0d:a2:1c:ef:e3:1e:11:9d:9c:11:ea:ce:de:c1: e7:cc:1c:22:37:96:2b:4a:fd:44:c3:4e:f5:84:5f: bd:0e:f0:1e:c3:04:c4:a2:08:70:d2:1e:12:e0:ec: 82:e1:55:7a:3d:3a:e4:f8:4b:ec:bc:60:78:db:53: e1:f6:2a:f5:c9:04:c3:ca:47:eb:76:cc:5f:82:ed: 22:5e:17:03:2a:fd:59:dd:33:32:f8:47:a8:74:4f: 3c:86:02:3e:40:7c:52:ff:03:25:6b:de:70:13:c8: 6e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:00:65:9A:9A:36:2A:38:9B:0F:E1:5A:34:3D:58:AF:81:9B:04:02 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bffbf7d3-f229-458a-8400-7dc848730d21.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:c080::/48 Signature Algorithm: sha256WithRSAEncryption 50:d1:d1:1a:89:51:f1:c0:c8:34:1d:3f:f1:82:45:f0:b6:c4: 7f:7a:ac:e8:a8:f2:8a:06:7f:0b:4f:91:4e:be:02:1f:d8:46: 22:67:01:87:30:8b:61:97:c1:ae:d0:30:97:12:84:95:8f:57: 8a:89:a8:d7:e3:21:86:1b:0a:54:8d:c6:43:34:f8:84:61:72: de:a0:02:d5:aa:e0:d2:da:53:ca:bb:c2:46:68:ab:22:6a:53: 73:f2:1a:10:6d:5b:5e:c6:5b:89:21:e9:39:22:48:86:ff:05: 10:99:7d:fa:19:d2:5a:81:a4:81:ff:10:40:41:e7:4c:0d:6e: 80:c3:49:57:53:7e:33:87:33:93:22:a5:29:2e:fa:0d:0a:2f: 6a:9e:7f:4b:07:e1:3a:de:f2:49:04:35:79:f3:72:77:7f:be: 71:9c:43:49:c7:42:01:c5:57:4b:1c:a7:ec:9b:5c:e3:31:05: 8e:7f:5a:46:89:e7:00:67:88:c5:18:ba:3b:eb:a9:75:4a:06: 8e:2f:c3:6c:bc:5c:93:8f:9c:24:42:a5:16:87:99:3e:28:52: 4c:ea:e1:dd:96:72:7a:e0:35:fb:12:83:1b:be:6b:f6:27:f2: a9:00:75:df:32:a2:42:29:13:87:ea:1c:7d:77:33:cf:b9:3c: 6d:e1:62:4b -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUHSqVRGt29i+wLc9zZ/SrhP+5D7cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxODAwMDEzNloX DTI2MDUxOTIzNTk1OVowejFJMEcGA1UEBRNAMjIwOTBlZTQ2NjQxY2I1ODg2NjY5 ZTNmNjI5NjRmOTBkYmU5NDgwYjUyYWNiMmM1YzI0NGUyYThlMjNhNTU4NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSaeMocHt8LwvrqFoRLDURfHYXl7 lX725QoWNZKFXWypAaHQ4ycGgKvGwRhPXu3RFPofoUAoVq5Cob/HAcnlZ4HTk26B obOKlMaet/FasSQvsMD2IO4zKyaYCxXoTKU9nysoQwPV2S2k8OvvNjh1Z9FYxjRi K4w/nURUcpBb91iwWfclozHvIpFakaT12ERM5bHbfcSnDaIc7+MeEZ2cEerO3sHn zBwiN5YrSv1Ew071hF+9DvAewwTEoghw0h4S4OyC4VV6PTrk+EvsvGB421Ph9ir1 yQTDykfrdsxfgu0iXhcDKv1Z3TMy+EeodE88hgI+QHxS/wMla95wE8hukQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLYAZZqaNio4mw/hWjQ9WK+BmwQCMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2JmZmJmN2QzLWYyMjktNDU4YS04NDAwLTdkYzg0ODczMGQyMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8sCAMA0GCSqGSIb3DQEBCwUAA4IBAQBQ0dEaiVHxwMg0HT/x gkXwtsR/eqzoqPKKBn8LT5FOvgIf2EYiZwGHMIthl8Gu0DCXEoSVj1eKiajX4yGG GwpUjcZDNPiEYXLeoALVquDS2lPKu8JGaKsialNz8hoQbVtexluJIek5IkiG/wUQ mX36GdJagaSB/xBAQedMDW6Aw0lXU34zhzOTIqUpLvoNCi9qnn9LB+E63vJJBDV5 83J3f75xnENJx0IBxVdLHKfsm1zjMQWOf1pGiecAZ4jFGLo766l1SgaOL8NsvFyT j5wkQqUWh5k+KFJM6uHdlnJ64DX7EoMbvmv2J/KpAHXfMqJCKROH6hx9dzPPuTxt 4WJL -----END CERTIFICATE-----Generated at Mon Mar 2 01:57:47 2026 by rpki-client