$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d13b2d76-a2f8-43ce-8976-3dc7df2b46ff.roa File: d13b2d76-a2f8-43ce-8976-3dc7df2b46ff.roa (raw, json) Hash identifier: WoZg35iajkKxJ8F2IFlX/bVFdw3W31zUxuyNGsH9sOU= Subject key identifier: C4:CD:EB:1C:7C:F3:E6:45:7D:92:DF:54:F0:0E:81:14:DD:F0:3F:9A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0CF73CDA0D4A9101218087C93E3C6B6F5A480865 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d13b2d76-a2f8-43ce-8976-3dc7df2b46ff.roa Signing time: Sat 21 Feb 2026 00:10:12 +0000 ROA not before: Sat 21 Feb 2026 00:10:12 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 126.190.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:f7:3c:da:0d:4a:91:01:21:80:87:c9:3e:3c:6b:6f:5a:48:08:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 21 00:10:12 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=0a138dddb271e2beb09ae95af6fd3e9893ef9beeceb272e21263bf3c6673ac24, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:77:50:07:65:ab:b5:fe:fe:87:ab:88:4f:c1: 76:49:18:52:77:91:b0:f8:42:5e:53:a7:7d:74:26: af:6f:48:67:92:2d:23:4f:82:17:97:8f:da:d0:61: c1:65:7f:c4:7b:3a:1d:40:ff:38:aa:e2:13:57:cc: d4:c6:25:2a:e8:aa:04:9c:49:81:4f:0e:d6:b0:7f: 37:4e:80:f0:8d:a1:03:23:21:68:72:3d:5c:0b:be: c6:fa:0e:c0:16:02:5b:21:13:ec:a1:6c:4c:11:cf: 15:d3:28:b1:f7:be:10:f4:96:a5:32:69:86:cc:90: 8a:a9:4f:7b:02:8a:a9:cd:ed:04:11:46:de:73:0c: fc:05:0a:73:b3:6d:ed:af:af:98:86:db:5b:34:4d: f0:65:c7:63:b0:82:bb:37:3a:b7:01:16:fb:77:2b: 48:aa:64:af:6f:20:76:2d:79:61:68:e2:49:53:53: d1:ee:80:87:d4:27:6c:f4:a7:11:55:61:a9:c2:f9: c4:da:ef:71:e5:05:44:f6:93:d1:4e:4e:a4:ba:0e: b4:8d:bb:96:ad:68:fa:02:5d:b3:ee:e1:b9:61:3f: 1c:88:3a:a1:a0:dc:5e:08:d3:84:a7:16:da:bd:fe: 91:95:b5:a6:5f:52:17:35:45:ca:86:2e:65:c8:ae: e4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:CD:EB:1C:7C:F3:E6:45:7D:92:DF:54:F0:0E:81:14:DD:F0:3F:9A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d13b2d76-a2f8-43ce-8976-3dc7df2b46ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 126.190.0.0/16 Signature Algorithm: sha256WithRSAEncryption b0:e0:69:ed:59:c9:27:05:ac:1b:1c:38:7a:b5:20:e8:8e:49: 03:00:61:e5:0f:d6:44:fb:4f:c6:7f:c6:3b:35:7b:76:bd:8e: 03:3f:ae:ec:af:01:06:1a:2d:b1:05:c0:a2:aa:23:21:6e:f3: 42:91:9f:63:62:15:f1:73:52:66:22:bb:ec:37:36:6f:88:f3: e4:63:ee:d5:9f:8d:58:fb:66:34:69:4d:8f:2b:c8:50:94:b5: 05:4d:c7:9c:33:b9:5b:60:3b:ec:7c:e1:4a:b1:a7:80:d8:d0: 95:02:76:88:9c:cc:03:08:12:6a:fc:7e:ec:b1:d0:64:6d:e8: 1a:50:a0:e0:24:1a:ed:fc:57:d7:f5:31:85:a7:5d:fe:08:72: 28:e3:a4:35:d5:c2:b1:62:fe:41:f7:3b:7a:55:78:2e:af:cd: 1a:62:15:a8:46:0c:30:f6:bf:65:30:b6:f0:ed:3b:61:8a:bf: 5d:5a:58:2d:33:b2:8f:44:94:cc:79:aa:ad:c6:a9:f0:42:9f: ce:a4:7f:85:a3:ee:81:28:d3:37:12:67:64:c8:e1:44:4f:e0: 59:cc:11:40:44:ee:d2:e8:ec:af:36:b9:92:7a:5f:2d:c6:0c: ac:6c:bf:08:93:2a:2e:65:f8:87:c2:18:4a:d2:bd:03:19:90: bb:a8:e8:85 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUDPc82g1KkQEhgIfJPjxrb1pICGUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMTAwMTAxMloX DTI2MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAMGExMzhkZGRiMjcxZTJiZWIwOWFl OTVhZjZmZDNlOTg5M2VmOWJlZWNlYjI3MmUyMTI2M2JmM2M2NjczYWMyNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHdQB2Wrtf7+h6uIT8F2SRhSd5Gw +EJeU6d9dCavb0hnki0jT4IXl4/a0GHBZX/EezodQP84quITV8zUxiUq6KoEnEmB Tw7WsH83ToDwjaEDIyFocj1cC77G+g7AFgJbIRPsoWxMEc8V0yix974Q9JalMmmG zJCKqU97Aoqpze0EEUbecwz8BQpzs23tr6+YhttbNE3wZcdjsIK7Nzq3ARb7dytI qmSvbyB2LXlhaOJJU1PR7oCH1Cds9KcRVWGpwvnE2u9x5QVE9pPRTk6kug60jbuW rWj6Al2z7uG5YT8ciDqhoNxeCNOEpxbavf6RlbWmX1IXNUXKhi5lyK7kswIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFMTN6xx88+ZFfZLfVPAOgRTd8D+aMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2QxM2IyZDc2LWEyZjgtNDNjZS04OTc2LTNkYzdkZjJiNDZmZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAfr4wDQYJKoZIhvcNAQELBQADggEBALDgae1ZyScFrBscOHq1IOiO SQMAYeUP1kT7T8Z/xjs1e3a9jgM/ruyvAQYaLbEFwKKqIyFu80KRn2NiFfFzUmYi u+w3Nm+I8+Rj7tWfjVj7ZjRpTY8ryFCUtQVNx5wzuVtgO+x84Uqxp4DY0JUCdoic zAMIEmr8fuyx0GRt6BpQoOAkGu38V9f1MYWnXf4IcijjpDXVwrFi/kH3O3pVeC6v zRpiFahGDDD2v2UwtvDtO2GKv11aWC0zso9ElMx5qq3GqfBCn86kf4Wj7oEo0zcS Z2TI4URP4FnMEUBE7tLo7K82uZJ6Xy3GDKxsvwiTKi5l+IfCGErSvQMZkLuo6IU= -----END CERTIFICATE-----Generated at Sun Mar 1 21:50:25 2026 by rpki-client