$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/db5682b0-dca6-45be-b164-56698b11cc97.roa File: db5682b0-dca6-45be-b164-56698b11cc97.roa (raw, json) Hash identifier: gRPMl+yoo25B4ulX+3YUyGR64Z/ejh0i2i5DcJv6AuE= Subject key identifier: 4F:5C:DB:46:B2:04:0C:C9:96:D0:FA:D1:C6:B4:23:0D:CA:83:2D:2E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 284010E140D5E844E63C6BA9409ABA16CF0C7D04 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/db5682b0-dca6-45be-b164-56698b11cc97.roa Signing time: Fri 20 Feb 2026 00:20:06 +0000 ROA not before: Fri 20 Feb 2026 00:20:06 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:40:10:e1:40:d5:e8:44:e6:3c:6b:a9:40:9a:ba:16:cf:0c:7d:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:20:06 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=46b020927d1459b7fae51dfd65118f84701a25e32b654ad8065dfa9630bdcc58, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:23:53:d8:23:c3:3a:48:a0:e4:1b:7d:f3:9a: b7:39:51:2e:b3:da:ba:da:40:c5:c8:63:72:8f:28: 53:96:b9:a6:75:39:86:c6:ce:46:f1:3f:05:76:bd: 3d:d0:96:ed:e1:25:a7:e2:f3:58:28:58:e1:2b:4d: 76:f7:a6:94:67:b5:be:bf:11:6b:2f:17:8a:b2:a0: 76:6b:26:31:2d:77:76:61:df:c7:4e:26:f0:ad:72: 42:46:f2:29:97:5d:12:4f:b6:56:31:84:a9:f1:14: a3:80:8c:c3:26:80:5c:1b:12:c7:49:ce:e2:ee:cb: 9a:5e:a0:74:b3:0e:8b:e0:77:be:52:0d:8c:1e:eb: 8b:bf:ae:56:e5:e1:f4:20:3d:8f:be:b4:f4:1c:4e: 3c:fd:b5:bc:97:2e:10:60:78:51:a3:46:f2:30:e1: 2b:d3:c5:64:74:62:a6:7c:d5:32:6f:5b:4e:5e:73: e9:fb:81:a2:00:fb:45:d8:31:81:17:be:90:76:65: ee:5f:13:9d:0e:49:ba:fc:8b:fb:8f:bc:40:92:34: df:2c:55:ed:33:45:46:b7:47:a9:f9:e4:c8:94:17: eb:98:06:98:eb:03:2e:37:77:d2:23:ef:24:89:f8: 5c:2b:cc:6b:6c:a4:2c:0a:a5:c1:64:4f:04:81:f1: bf:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:5C:DB:46:B2:04:0C:C9:96:D0:FA:D1:C6:B4:23:0D:CA:83:2D:2E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/db5682b0-dca6-45be-b164-56698b11cc97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:10c0::/48 Signature Algorithm: sha256WithRSAEncryption 2c:55:2f:01:5c:86:81:17:be:a1:9a:56:1c:33:a0:06:2a:55: 14:aa:d8:c7:10:77:d6:61:51:c4:cf:5a:a1:33:79:93:20:3d: 55:be:d5:47:07:9e:e8:dc:a4:7b:c5:38:0d:7a:e1:4d:e7:05: 99:85:17:b7:5d:e7:61:cf:ce:e6:6d:7d:b6:fb:2b:2b:0d:ed: 91:b3:8d:d4:9a:33:e3:99:e7:68:eb:ba:30:15:31:bf:00:13: 6f:b7:9d:31:11:b6:4c:ea:48:d4:94:ab:6d:d8:42:0f:3b:a3: 38:b9:97:9e:f1:74:a5:f1:13:e5:3f:77:2d:37:88:7d:40:41: 3c:93:97:6e:77:8c:eb:72:ce:29:e7:5c:ef:45:6d:d3:06:0d: 3d:a5:53:bd:5f:71:c6:6d:e1:77:7b:fc:8d:6a:71:f4:fb:be: ff:e8:b4:f1:35:bb:0a:d5:9e:cc:e4:77:51:84:46:7f:0c:13: a2:66:87:24:f0:5e:72:c9:c8:5c:d2:91:f6:3a:d3:51:81:15: 44:4d:f3:28:c2:b4:7a:a0:52:9f:c5:cf:7b:8f:40:d9:92:fc: 72:4d:b3:b4:0a:16:52:8f:88:9e:af:14:7e:ce:1a:98:f7:5e: 2c:5b:61:52:9d:73:0d:dc:97:9d:4d:e9:12:d1:6e:f1:79:3f: 03:52:5d:57 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUKEAQ4UDV6ETmPGupQJq6Fs8MfQQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMjAwNloX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNANDZiMDIwOTI3ZDE0NTliN2ZhZTUx ZGZkNjUxMThmODQ3MDFhMjVlMzJiNjU0YWQ4MDY1ZGZhOTYzMGJkY2M1ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1iNT2CPDOkig5Bt985q3OVEus9q6 2kDFyGNyjyhTlrmmdTmGxs5G8T8Fdr090Jbt4SWn4vNYKFjhK01296aUZ7W+vxFr LxeKsqB2ayYxLXd2Yd/HTibwrXJCRvIpl10ST7ZWMYSp8RSjgIzDJoBcGxLHSc7i 7suaXqB0sw6L4He+Ug2MHuuLv65W5eH0ID2PvrT0HE48/bW8ly4QYHhRo0byMOEr 08VkdGKmfNUyb1tOXnPp+4GiAPtF2DGBF76QdmXuXxOdDkm6/Iv7j7xAkjTfLFXt M0VGt0ep+eTIlBfrmAaY6wMuN3fSI+8kifhcK8xrbKQsCqXBZE8EgfG/vQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFE9c20ayBAzJltD60ca0Iw3Kgy0uMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2RiNTY4MmIwLWRjYTYtNDViZS1iMTY0LTU2Njk4YjExY2M5Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8hDAMA0GCSqGSIb3DQEBCwUAA4IBAQAsVS8BXIaBF76hmlYc M6AGKlUUqtjHEHfWYVHEz1qhM3mTID1VvtVHB57o3KR7xTgNeuFN5wWZhRe3Xedh z87mbX22+ysrDe2Rs43UmjPjmedo67owFTG/ABNvt50xEbZM6kjUlKtt2EIPO6M4 uZee8XSl8RPlP3ctN4h9QEE8k5dud4zrcs4p51zvRW3TBg09pVO9X3HGbeF3e/yN anH0+77/6LTxNbsK1Z7M5HdRhEZ/DBOiZock8F5yychc0pH2OtNRgRVETfMowrR6 oFKfxc97j0DZkvxyTbO0ChZSj4ierxR+zhqY914sW2FSnXMN3JedTekS0W7xeT8D Ul1X -----END CERTIFICATE-----Generated at Mon Mar 2 05:30:32 2026 by rpki-client