$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e3ded5c4-f2d6-4dc4-b01c-590927072e2e.roa File: e3ded5c4-f2d6-4dc4-b01c-590927072e2e.roa (raw, json) Hash identifier: hODnYLeb/49HYF7I9oXzaqYNCcmgFPfzQg2Ccey5exY= Subject key identifier: DB:31:CE:9C:34:52:1F:51:73:D2:26:B1:48:B8:CE:7A:84:0B:30:0B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 72E5C445983CD76BF307E235BA5B25C44BFCFFAC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e3ded5c4-f2d6-4dc4-b01c-590927072e2e.roa Signing time: Wed 18 Feb 2026 00:00:51 +0000 ROA not before: Wed 18 Feb 2026 00:00:51 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:e5:c4:45:98:3c:d7:6b:f3:07:e2:35:ba:5b:25:c4:4b:fc:ff:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 18 00:00:51 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=bcea5fb56481cd0bcec84b7896ea30bb2e5619802152c73b1e8791062eb68345, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:49:8f:20:57:81:c0:e9:0b:6b:b5:5c:5f:fc: a2:d4:c6:39:a5:00:79:30:df:a1:bf:aa:f5:46:12: eb:5e:ca:46:85:02:2b:f4:da:47:b5:44:01:1d:0e: 57:e7:86:99:b0:51:53:86:89:c3:33:b7:8a:f8:6b: a2:d6:cc:aa:c3:c1:d6:15:6a:97:6c:e9:2d:10:32: 39:15:39:2d:f9:4a:fd:67:6f:ff:65:3a:d2:95:3b: 92:0f:65:4d:50:3f:bb:5a:16:99:2e:3c:41:81:29: 4f:02:6f:f9:79:70:03:37:ba:69:70:0d:e3:87:37: 5e:5e:64:c9:a3:76:1e:d6:b7:fc:21:18:89:01:71: 7f:85:72:a5:a3:18:9d:d5:58:68:4f:a8:24:96:6d: 37:ff:42:c6:59:4e:dd:ac:18:22:c4:77:5b:fe:ca: c8:b2:46:a6:26:34:61:93:50:34:f5:c9:a4:09:2d: cb:08:64:35:5a:a9:6e:86:8f:8e:88:fb:61:e5:6a: 0d:13:c3:8a:b6:95:69:39:3b:07:db:f0:76:ba:4c: 9d:e6:83:10:e7:9e:b7:fd:bf:f2:77:e4:52:c0:46: 29:f4:59:72:e1:15:97:f6:1b:c6:44:3f:6c:2e:56: 89:b0:c1:a2:a1:76:20:d1:d0:20:ff:e2:26:c2:90: ca:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:31:CE:9C:34:52:1F:51:73:D2:26:B1:48:B8:CE:7A:84:0B:30:0B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e3ded5c4-f2d6-4dc4-b01c-590927072e2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 51:d5:59:f4:bf:cb:bf:90:c9:63:a2:e2:59:cd:11:1c:7a:98: 45:87:de:fc:3a:e1:4f:0c:9b:e6:21:1e:47:63:18:40:f6:c5: 84:57:92:22:b2:91:d4:4f:dc:4c:18:f5:a6:56:05:82:b5:7c: fa:c4:4a:44:c0:e0:a7:34:9b:d2:3f:05:f9:e8:1f:b7:23:4c: ac:01:81:fb:72:28:74:1e:2b:a2:1f:7d:0a:f3:3a:d0:29:fd: 25:56:97:d7:49:eb:35:de:92:56:47:27:e1:26:d3:e3:40:c2: f7:1e:f0:c7:ec:80:3d:d6:1f:b9:0f:83:1e:99:46:a3:d8:a3: c1:37:cd:6f:63:b2:7d:ac:ed:e5:5d:76:92:17:d2:d6:4c:35: 69:f6:0e:78:03:b0:e5:e2:3f:fe:54:41:e8:cc:4f:a9:89:dd: 25:a4:a8:c1:7a:33:57:f4:0c:a1:a0:32:0b:22:cc:0e:03:ee: 51:e0:01:b1:e7:60:86:d1:10:b5:83:15:5b:2f:da:83:80:43: ac:42:da:a9:ec:5e:b9:e5:c4:cf:ed:90:99:4f:b5:1a:de:4e: 0e:07:29:26:4b:9f:59:f2:30:c0:61:2f:a2:60:9f:67:6a:7b: 19:84:c1:64:c3:db:f6:b2:41:1d:69:45:1c:b3:f7:f7:b1:e8: f0:9c:c8:8e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUcuXERZg812vzB+I1ulslxEv8/6wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxODAwMDA1MVoX DTI2MDUxOTIzNTk1OVowejFJMEcGA1UEBRNAYmNlYTVmYjU2NDgxY2QwYmNlYzg0 Yjc4OTZlYTMwYmIyZTU2MTk4MDIxNTJjNzNiMWU4NzkxMDYyZWI2ODM0NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UmPIFeBwOkLa7VcX/yi1MY5pQB5 MN+hv6r1RhLrXspGhQIr9NpHtUQBHQ5X54aZsFFThonDM7eK+Gui1syqw8HWFWqX bOktEDI5FTkt+Ur9Z2//ZTrSlTuSD2VNUD+7WhaZLjxBgSlPAm/5eXADN7ppcA3j hzdeXmTJo3Ye1rf8IRiJAXF/hXKloxid1VhoT6gklm03/0LGWU7drBgixHdb/srI skamJjRhk1A09cmkCS3LCGQ1Wqluho+OiPth5WoNE8OKtpVpOTsH2/B2ukyd5oMQ 5563/b/yd+RSwEYp9Fly4RWX9hvGRD9sLlaJsMGioXYg0dAg/+ImwpDKJQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNsxzpw0Uh9Rc9ImsUi4znqECzALMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2UzZGVkNWM0LWYyZDYtNGRjNC1iMDFjLTU5MDkyNzA3MmUyZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYYDAMA0GCSqGSIb3DQEBCwUAA4IBAQBR1Vn0v8u/kMljouJZ zREcephFh978OuFPDJvmIR5HYxhA9sWEV5IispHUT9xMGPWmVgWCtXz6xEpEwOCn NJvSPwX56B+3I0ysAYH7cih0HiuiH30K8zrQKf0lVpfXSes13pJWRyfhJtPjQML3 HvDH7IA91h+5D4MemUaj2KPBN81vY7J9rO3lXXaSF9LWTDVp9g54A7Dl4j/+VEHo zE+pid0lpKjBejNX9AyhoDILIswOA+5R4AGx52CG0RC1gxVbL9qDgEOsQtqp7F65 5cTP7ZCZT7Ua3k4OBykmS59Z8jDAYS+iYJ9nansZhMFkw9v2skEdaUUcs/f3sejw nMiO -----END CERTIFICATE-----Generated at Sun Mar 1 22:05:17 2026 by rpki-client