$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c5a1a1a0-4f4f-473d-bfac-fd46ff826004.roa File: c5a1a1a0-4f4f-473d-bfac-fd46ff826004.roa (raw, json) Hash identifier: cGJBX4DYqF96tCEngmd+2pLcbWzzdzSC8wUEjogYltY= Subject key identifier: A5:26:D9:0C:CA:FF:13:70:33:40:A2:99:81:72:00:A2:3C:0D:4A:FA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5B53364EE83682A4E019BABED7F5C176951CFF0F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c5a1a1a0-4f4f-473d-bfac-fd46ff826004.roa Signing time: Sun 22 Feb 2026 00:30:15 +0000 ROA not before: Sun 22 Feb 2026 00:30:15 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da12:8400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:53:36:4e:e8:36:82:a4:e0:19:ba:be:d7:f5:c1:76:95:1c:ff:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:30:15 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=545998b0b200e6dc79e6bf5f85c39e5bd84f975149a2a74e86ce9223bb3243f0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2d:66:e5:d6:91:cd:9f:9b:09:e7:51:c9:bc: 1d:5d:7b:9f:0e:0e:e4:24:95:cf:0d:72:f1:a5:20: 65:12:84:b4:db:54:90:bc:6e:33:51:cc:8c:ea:2a: f4:eb:bd:a9:e4:5d:97:d7:9d:08:fe:40:e7:b4:be: 8b:1c:0e:2f:7d:ce:cd:9b:c3:1c:1c:42:7f:a7:39: 5b:e7:73:af:6b:b8:d9:28:eb:9f:7d:f2:1d:b0:c1: a9:34:11:99:52:43:5f:27:25:5c:59:5b:a2:58:cd: 74:6e:91:1c:a8:a0:98:24:d0:1e:4f:18:24:26:5d: fa:08:22:e6:68:43:37:d9:4e:5c:f2:33:92:29:39: 62:20:b2:1e:d1:d6:b3:d5:36:d8:b4:b9:17:45:03: e2:25:06:1a:d3:83:5d:ed:0f:ab:f6:61:01:8d:c1: 18:fa:27:7c:28:65:69:ea:3f:5e:e8:0e:20:9a:ce: fe:81:59:45:6b:fb:0c:c3:0d:94:54:8f:5a:d9:c1: dd:12:61:a0:f7:b2:4b:58:af:0d:52:b9:6a:b1:c4: 5f:99:d6:c2:07:e6:d0:68:b7:5c:e3:be:80:b0:b3: e1:9e:a3:a7:82:25:f8:f9:f9:08:cd:a1:a8:06:e1: b0:fd:69:8a:84:6f:64:87:89:26:2a:4a:f9:6c:3c: ee:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:26:D9:0C:CA:FF:13:70:33:40:A2:99:81:72:00:A2:3C:0D:4A:FA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c5a1a1a0-4f4f-473d-bfac-fd46ff826004.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da12:8400::/38 Signature Algorithm: sha256WithRSAEncryption 82:dc:8e:09:4f:ff:1f:24:45:34:b9:60:a6:8c:26:48:8c:dc: 96:5b:6a:04:c4:19:f6:30:5e:df:f8:57:94:9b:e9:ac:0f:1f: a5:6e:6f:d8:ea:d3:c3:1c:88:d5:4a:a5:0a:61:29:40:e5:1c: 10:6e:74:1b:03:c9:c6:b0:8a:93:9f:e8:57:86:e1:56:5a:97: 13:16:77:8b:28:ee:2f:ad:4e:06:c2:dc:97:f9:41:79:56:79: 8b:a1:75:99:d8:70:cc:45:73:54:d9:c0:05:39:45:34:d4:ce: 3a:83:5d:63:e9:10:e8:72:03:bd:0c:3a:fc:9c:bb:d9:d7:61: 83:01:0d:0d:c1:74:2b:d5:6f:5e:0a:1d:c9:62:2f:f8:ce:89: f2:80:47:bd:ee:0e:b3:fb:1a:79:15:7b:82:80:91:23:6e:30: 26:bc:69:e6:92:03:5b:54:68:26:65:2c:ce:b0:fb:ca:5e:75: 07:e8:af:d0:d7:1e:83:1c:98:31:05:b9:61:27:b4:44:56:6b: 6c:99:9f:46:c6:3a:c9:c6:00:1a:14:98:20:78:02:bd:c4:25: 9c:ef:66:de:f4:5b:73:2f:a1:64:f2:bf:9e:e4:f2:0c:e0:78: a0:5e:c2:07:f5:b1:1d:03:f9:23:e2:81:a0:e4:ed:2e:8e:ee: 50:6e:d2:9f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUW1M2Tug2gqTgGbq+1/XBdpUc/w8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMzAxNVoX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNANTQ1OTk4YjBiMjAwZTZkYzc5ZTZi ZjVmODVjMzllNWJkODRmOTc1MTQ5YTJhNzRlODZjZTkyMjNiYjMyNDNmMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxC1m5daRzZ+bCedRybwdXXufDg7k JJXPDXLxpSBlEoS021SQvG4zUcyM6ir0672p5F2X150I/kDntL6LHA4vfc7Nm8Mc HEJ/pzlb53Ova7jZKOufffIdsMGpNBGZUkNfJyVcWVuiWM10bpEcqKCYJNAeTxgk Jl36CCLmaEM32U5c8jOSKTliILIe0daz1TbYtLkXRQPiJQYa04Nd7Q+r9mEBjcEY +id8KGVp6j9e6A4gms7+gVlFa/sMww2UVI9a2cHdEmGg97JLWK8NUrlqscRfmdbC B+bQaLdc476AsLPhnqOngiX4+fkIzaGoBuGw/WmKhG9kh4kmKkr5bDzu7QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKUm2QzK/xNwM0CimYFyAKI8DUr6MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M1YTFhMWEwLTRmNGYtNDczZC1iZmFjLWZkNDZmZjgyNjAwNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaEoQwDQYJKoZIhvcNAQELBQADggEBAILcjglP/x8kRTS5YKaM JkiM3JZbagTEGfYwXt/4V5Sb6awPH6Vub9jq08MciNVKpQphKUDlHBBudBsDycaw ipOf6FeG4VZalxMWd4so7i+tTgbC3Jf5QXlWeYuhdZnYcMxFc1TZwAU5RTTUzjqD XWPpEOhyA70MOvycu9nXYYMBDQ3BdCvVb14KHcliL/jOifKAR73uDrP7GnkVe4KA kSNuMCa8aeaSA1tUaCZlLM6w+8pedQfor9DXHoMcmDEFuWEntERWa2yZn0bGOsnG ABoUmCB4Ar3EJZzvZt70W3MvoWTyv57k8gzgeKBewgf1sR0D+SPigaDk7S6O7lBu 0p8= -----END CERTIFICATE-----Generated at Mon Mar 2 01:42:52 2026 by rpki-client