$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d0716d05-e421-4b76-b3d0-5a92c5c93094.roa File: d0716d05-e421-4b76-b3d0-5a92c5c93094.roa (raw, json) Hash identifier: g7x/qhSPXfrqau0bwKajBFb0rV/87eAOYXo/QcfH2AI= Subject key identifier: C8:CB:D2:1D:AA:4F:46:9F:A4:21:55:AB:8F:7D:D9:4E:29:2C:97:04 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 29B4793794220698C006037A5A5AA244C76D5F25 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d0716d05-e421-4b76-b3d0-5a92c5c93094.roa Signing time: Wed 18 Feb 2026 00:00:10 +0000 ROA not before: Wed 18 Feb 2026 00:00:10 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:70c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:b4:79:37:94:22:06:98:c0:06:03:7a:5a:5a:a2:44:c7:6d:5f:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 18 00:00:10 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=1229a0abef40cdc86f1901fe8ab97beaff30bb786570d4f899549553903663f6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ca:3e:75:a8:0d:2e:91:b8:c7:bb:ac:a8:2c: c2:37:57:50:a8:a7:be:08:e3:11:47:87:e4:eb:03: 7e:d5:ef:58:16:a9:5c:1a:c2:63:ff:4e:10:f9:8b: db:d2:7a:a8:ca:1a:23:04:9a:56:bf:a6:cf:08:6a: 9e:11:48:5e:68:a7:40:7a:a0:59:72:76:b6:b1:50: 99:f4:47:a0:aa:85:8b:29:c5:23:0f:3d:ed:6c:30: 98:30:52:b9:bd:b7:8a:d8:01:2a:24:4c:22:90:d4: 1d:e6:5a:b3:3d:28:43:65:95:47:b6:cd:89:a1:50: ac:59:db:d7:ca:51:6f:61:6d:d7:d5:70:c5:3d:35: bb:ae:b7:4d:a3:0f:4f:53:c7:74:f7:92:dc:64:92: de:17:51:75:ee:ee:e4:92:ac:df:3c:f9:81:7d:d3: af:34:7a:62:eb:2c:ba:44:65:07:4f:3a:5d:89:8d: 68:2d:9f:7e:23:dc:4e:04:b0:27:0e:59:a8:2d:71: 94:14:ad:66:55:c9:db:f0:ad:f0:a0:21:d4:a4:98: 70:fe:c9:2f:34:a8:76:b4:51:27:e5:da:0b:fe:30: b6:2b:91:b9:03:ea:ea:8b:0e:e6:fe:63:61:25:74: d8:f6:25:fc:e4:3b:b7:91:55:fd:d2:d2:b4:85:7f: 04:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CB:D2:1D:AA:4F:46:9F:A4:21:55:AB:8F:7D:D9:4E:29:2C:97:04 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d0716d05-e421-4b76-b3d0-5a92c5c93094.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:70c0::/48 Signature Algorithm: sha256WithRSAEncryption 3e:a7:78:aa:3b:d7:d6:dd:d1:32:e4:75:0f:63:36:39:fa:fa: af:69:a8:96:b6:a4:a9:32:e7:d2:85:39:fd:a1:a9:4a:ee:d3: c2:30:e0:c9:fd:fc:cc:cc:97:fd:e3:8b:70:f0:21:ec:5d:f0: 06:0a:b0:66:98:f2:2c:a4:fe:37:1e:4c:3a:37:7d:dc:13:fc: f3:c8:c7:62:9f:b3:ce:14:57:1a:de:7d:26:d3:ce:d9:ab:74: a9:ab:c9:e2:c5:b5:99:e4:fa:f6:55:2d:62:a6:6b:11:fa:39: 2d:6e:9b:01:ba:dc:5c:73:f9:ed:ad:0c:9d:d7:63:13:85:b0: 14:54:db:b6:a1:57:10:9f:c4:3f:3d:a9:c5:42:21:fc:8f:9c: f0:7e:bc:23:eb:43:85:a8:27:07:21:2e:74:2b:80:34:34:4e: 53:e6:14:15:f9:a7:03:2e:3e:12:ea:0d:32:7a:56:eb:2a:5f: 15:79:2b:d6:b4:00:25:16:5d:33:9b:b5:8e:6e:73:63:ab:9e: 89:f7:c9:07:8a:35:2b:67:63:ed:eb:75:8b:5a:ca:17:c2:0e: 50:b0:2e:d8:11:b1:2a:19:e5:a5:e3:43:0f:a7:6f:e5:3e:b1: 52:a0:af:3f:35:bb:2d:6d:ac:5a:35:41:a0:57:56:b9:25:3a: 7c:3a:62:5b -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUKbR5N5QiBpjABgN6WlqiRMdtXyUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxODAwMDAxMFoX DTI2MDUxOTIzNTk1OVowejFJMEcGA1UEBRNAMTIyOWEwYWJlZjQwY2RjODZmMTkw MWZlOGFiOTdiZWFmZjMwYmI3ODY1NzBkNGY4OTk1NDk1NTM5MDM2NjNmNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8o+dagNLpG4x7usqCzCN1dQqKe+ COMRR4fk6wN+1e9YFqlcGsJj/04Q+Yvb0nqoyhojBJpWv6bPCGqeEUheaKdAeqBZ cna2sVCZ9EegqoWLKcUjDz3tbDCYMFK5vbeK2AEqJEwikNQd5lqzPShDZZVHts2J oVCsWdvXylFvYW3X1XDFPTW7rrdNow9PU8d095LcZJLeF1F17u7kkqzfPPmBfdOv NHpi6yy6RGUHTzpdiY1oLZ9+I9xOBLAnDlmoLXGUFK1mVcnb8K3woCHUpJhw/skv NKh2tFEn5doL/jC2K5G5A+rqiw7m/mNhJXTY9iX85Du3kVX90tK0hX8ETQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMjL0h2qT0afpCFVq4992U4pLJcEMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2QwNzE2ZDA1LWU0MjEtNGI3Ni1iM2QwLTVhOTJjNWM5MzA5NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/3DAMA0GCSqGSIb3DQEBCwUAA4IBAQA+p3iqO9fW3dEy5HUP YzY5+vqvaaiWtqSpMufShTn9oalK7tPCMODJ/fzMzJf944tw8CHsXfAGCrBmmPIs pP43Hkw6N33cE/zzyMdin7POFFca3n0m087Zq3Spq8nixbWZ5Pr2VS1ipmsR+jkt bpsButxcc/ntrQyd12MThbAUVNu2oVcQn8Q/PanFQiH8j5zwfrwj60OFqCcHIS50 K4A0NE5T5hQV+acDLj4S6g0yelbrKl8VeSvWtAAlFl0zm7WObnNjq56J98kHijUr Z2Pt63WLWsoXwg5QsC7YEbEqGeWl40MPp2/lPrFSoK8/NbstbaxaNUGgV1a5JTp8 OmJb -----END CERTIFICATE-----Generated at Sun Mar 1 23:39:03 2026 by rpki-client