$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c40c7106-86b6-4b59-9dc1-1003f0bf118e.roa File: c40c7106-86b6-4b59-9dc1-1003f0bf118e.roa (raw, json) Hash identifier: JgT/X902+UhbkLJFqz7qYIe2J+a7aJkau/I58MTGJb0= Subject key identifier: 62:BB:1C:94:6D:15:5C:7B:BD:51:31:CB:C3:85:5B:7D:05:E8:9E:53 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0D9C944F4208EF27A9863DF60D63A2DD6108D7CE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c40c7106-86b6-4b59-9dc1-1003f0bf118e.roa Signing time: Fri 06 Feb 2026 00:00:35 +0000 ROA not before: Fri 06 Feb 2026 00:00:35 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:a0c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:9c:94:4f:42:08:ef:27:a9:86:3d:f6:0d:63:a2:dd:61:08:d7:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 6 00:00:35 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=d4dfe5b130def2677df279532dc0d2f4c8f6d3580a9d71c87c8012d8414b99be, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1d:e1:99:49:4f:72:81:68:0e:15:91:63:ae: e4:a2:b2:34:df:b5:fe:06:35:77:1f:70:84:1c:d4: d9:40:f4:30:d0:90:3b:c2:d4:c3:af:c3:4e:70:4c: 42:90:fd:e1:c3:df:64:0d:aa:e0:d7:5a:de:f5:f1: f3:c2:84:de:49:7a:92:d3:20:9e:21:17:11:8f:9c: dc:0d:a7:7a:bb:e6:fb:dc:aa:87:5f:19:83:90:52: 9d:77:0f:c1:0b:3d:c4:ac:af:86:d5:92:b2:8a:b8: 29:44:9d:39:ff:c8:45:81:f8:38:30:04:89:c1:aa: c4:91:80:35:53:ac:a6:66:ba:be:41:05:35:21:24: 13:55:c9:48:cf:af:12:a8:a6:6d:ce:c8:2f:0c:81: e8:07:a2:fd:9d:94:4b:61:a7:d1:cf:0e:7d:50:d6: 89:a4:82:c3:39:a8:af:c9:12:3b:70:63:2b:dd:3b: c4:31:10:73:00:27:c8:d8:98:e1:65:71:81:b4:f0: ee:5d:08:ea:34:10:b9:cb:5b:67:c5:1e:af:53:28: b5:a7:19:d1:d1:2f:40:5a:a4:42:e9:25:d4:66:de: d1:56:cd:9d:99:3b:8e:4d:a8:b1:07:49:32:b7:0f: 40:33:99:f0:3b:63:10:fb:52:7e:ce:2f:85:87:82: 41:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:BB:1C:94:6D:15:5C:7B:BD:51:31:CB:C3:85:5B:7D:05:E8:9E:53 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c40c7106-86b6-4b59-9dc1-1003f0bf118e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:a0c0::/46 Signature Algorithm: sha256WithRSAEncryption 20:52:da:9c:0c:96:69:cb:28:66:da:f8:b7:e1:79:8c:f7:5d: 84:a0:ae:e4:ca:55:6c:c0:34:a9:95:6b:00:de:99:34:67:97: f8:68:c7:04:b0:b4:7b:e0:53:09:7a:80:69:4b:f3:f2:7d:cc: e0:86:23:cc:13:af:ba:86:50:04:6e:3c:4c:8b:0f:df:5e:ab: 63:9d:ec:2e:46:ef:1c:cc:46:f0:22:51:16:48:f9:5f:95:29: 73:13:c7:4c:6b:48:cf:0d:19:60:6a:97:8f:ca:8a:84:72:79: bb:7c:ed:c9:79:dd:7b:bd:bf:1e:6f:70:ba:80:6d:b3:c3:28: 99:09:8b:98:05:15:b0:03:d3:2c:72:70:1a:cf:8d:d1:dd:0b: 95:4b:4d:09:c5:72:f1:75:37:80:6a:fd:08:e6:dc:17:87:5b: 32:db:5f:2e:01:27:2c:8a:4d:50:d5:00:4d:fb:03:32:19:88: ae:50:af:dc:f1:83:d2:07:0b:bb:d8:c4:bf:b7:56:3b:77:8b: 08:c8:d7:28:76:30:06:8e:e9:bf:77:0b:47:36:d5:b0:a2:86: 40:4d:0b:cc:2b:33:b5:97:ec:33:e8:25:f1:13:d4:87:30:a1: a5:e5:7b:64:51:b7:d8:93:f8:41:99:23:c6:54:84:fc:95:df: 24:c3:5c:bf -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUDZyUT0II7yephj32DWOi3WEI184wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIwNjAwMDAzNVoX DTI2MDUwNzIzNTk1OVowejFJMEcGA1UEBRNAZDRkZmU1YjEzMGRlZjI2NzdkZjI3 OTUzMmRjMGQyZjRjOGY2ZDM1ODBhOWQ3MWM4N2M4MDEyZDg0MTRiOTliZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0x3hmUlPcoFoDhWRY67korI037X+ BjV3H3CEHNTZQPQw0JA7wtTDr8NOcExCkP3hw99kDarg11re9fHzwoTeSXqS0yCe IRcRj5zcDad6u+b73KqHXxmDkFKddw/BCz3ErK+G1ZKyirgpRJ05/8hFgfg4MASJ warEkYA1U6ymZrq+QQU1ISQTVclIz68SqKZtzsgvDIHoB6L9nZRLYafRzw59UNaJ pILDOaivyRI7cGMr3TvEMRBzACfI2JjhZXGBtPDuXQjqNBC5y1tnxR6vUyi1pxnR 0S9AWqRC6SXUZt7RVs2dmTuOTaixB0kytw9AM5nwO2MQ+1J+zi+Fh4JBJQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGK7HJRtFVx7vVExy8OFW30F6J5TMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M0MGM3MTA2LTg2YjYtNGI1OS05ZGMxLTEwMDNmMGJmMTE4ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAbaaKDAMA0GCSqGSIb3DQEBCwUAA4IBAQAgUtqcDJZpyyhm2vi3 4XmM912EoK7kylVswDSplWsA3pk0Z5f4aMcEsLR74FMJeoBpS/PyfczghiPME6+6 hlAEbjxMiw/fXqtjnewuRu8czEbwIlEWSPlflSlzE8dMa0jPDRlgapePyoqEcnm7 fO3Jed17vb8eb3C6gG2zwyiZCYuYBRWwA9MscnAaz43R3QuVS00JxXLxdTeAav0I 5twXh1sy218uAScsik1Q1QBN+wMyGYiuUK/c8YPSBwu72MS/t1Y7d4sIyNcodjAG jum/dwtHNtWwooZATQvMKzO1l+wz6CXxE9SHMKGl5XtkUbfYk/hBmSPGVIT8ld8k w1y/ -----END CERTIFICATE-----Generated at Mon Mar 2 07:08:19 2026 by rpki-client