$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e753598e-1ecf-44ae-b979-871b11fed24b.roa File: e753598e-1ecf-44ae-b979-871b11fed24b.roa (raw, json) Hash identifier: M2KHP7pVGX+xMNw9QkPQfM9nVyxQo6zWfxe2AgcTWRQ= Subject key identifier: F0:30:58:F6:BD:E7:8C:1E:B1:DF:BA:7C:8A:FA:C5:6C:8A:61:9A:E6 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1F43A01ABAB2020969FA27865F70C69040F41A58 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e753598e-1ecf-44ae-b979-871b11fed24b.roa Signing time: Wed 18 Feb 2026 00:01:33 +0000 ROA not before: Wed 18 Feb 2026 00:01:33 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:a0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:43:a0:1a:ba:b2:02:09:69:fa:27:86:5f:70:c6:90:40:f4:1a:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 18 00:01:33 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=a5cb392d1c41b331e72fd3d05067a5279592cbe469290a9b295c1341a85e72f0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2b:1c:26:5f:58:42:12:8d:df:d9:af:ce:3a: c5:12:5a:cd:75:fd:fb:49:24:89:c0:a7:87:1d:12: 34:6a:cb:de:dc:8a:1c:d0:f9:e9:2d:71:7b:74:85: ee:c4:90:cf:4d:98:62:91:d9:ff:5e:09:22:ae:17: 45:0c:bc:f7:9a:23:1e:f8:aa:a6:56:44:8f:35:66: d2:29:6d:62:e1:0b:59:7c:80:12:87:3b:87:e5:33: 35:1e:13:e6:08:32:ae:22:68:27:ce:6b:e6:21:ad: b3:8f:b6:36:c2:55:6d:19:b2:f5:be:c8:ab:56:39: cb:76:b0:55:33:b6:eb:1f:63:f7:2b:15:36:28:7e: bc:60:47:34:5e:3d:c3:f1:88:3f:54:ac:ca:f8:3e: d9:4b:17:9d:6c:b8:88:4c:38:33:fa:8a:f7:3d:c5: 90:d2:8a:7c:0d:63:9f:c2:40:9e:a9:e1:a1:ae:b2: 2d:82:1d:c0:d4:7f:97:95:d1:5f:99:b4:66:7c:d0: 59:26:89:87:a2:11:4d:27:e4:ea:f3:20:a8:75:47: 96:86:8f:e9:fc:32:72:08:09:9c:c1:08:f8:38:59: 47:f4:15:ce:0d:7c:87:30:cc:71:a8:fa:0e:8c:d8: 68:fe:01:b7:b0:ff:aa:4b:a6:25:af:0b:1d:61:a7: 23:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:30:58:F6:BD:E7:8C:1E:B1:DF:BA:7C:8A:FA:C5:6C:8A:61:9A:E6 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e753598e-1ecf-44ae-b979-871b11fed24b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:a0c0::/48 Signature Algorithm: sha256WithRSAEncryption 83:14:59:4e:99:c2:d9:89:0c:d6:e9:dd:af:ae:49:a4:d4:e4: bb:60:71:68:97:6e:ef:11:c3:12:1b:0a:25:0a:e8:d4:bb:20: 4c:70:6d:df:64:58:b7:0c:e1:7f:76:15:ea:ba:46:ea:36:8c: fd:31:41:25:c8:f0:df:89:5b:90:9c:c2:b1:ae:3a:52:df:4b: b3:b7:b3:24:2b:7d:8b:bc:06:64:9a:78:0f:02:b9:70:ec:a6: 6c:ba:97:42:fb:fb:79:04:6b:39:89:2f:7f:65:9d:03:6e:c9: 6b:7a:2b:e6:26:d2:d8:27:50:72:4b:d0:75:0c:fb:48:fe:bb: 96:1c:a8:8a:e8:4d:36:e0:79:35:a1:00:db:22:cf:a8:fa:70: 7c:3d:95:b4:84:09:f1:00:f4:73:cf:bf:a6:e2:32:29:c3:22: 5c:e1:c0:08:30:be:19:7d:0a:60:d9:d0:d0:8b:5f:56:c5:c1: 02:71:61:7f:a9:42:f6:d1:34:fc:3a:dc:ae:1a:22:d8:f0:82: 6a:41:0b:62:ed:93:6f:b6:63:da:b9:10:e4:1a:50:28:6b:42: b7:64:e8:1b:63:55:c8:f5:65:b6:1f:e8:f5:78:0c:9f:9a:c2: 3b:ab:65:d4:ed:6f:f1:78:14:ae:af:98:2c:47:79:7d:31:f4: 45:f1:6f:c4 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUH0OgGrqyAglp+ieGX3DGkED0GlgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxODAwMDEzM1oX DTI2MDUxOTIzNTk1OVowejFJMEcGA1UEBRNAYTVjYjM5MmQxYzQxYjMzMWU3MmZk M2QwNTA2N2E1Mjc5NTkyY2JlNDY5MjkwYTliMjk1YzEzNDFhODVlNzJmMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCscJl9YQhKN39mvzjrFElrNdf37 SSSJwKeHHRI0asve3Ioc0PnpLXF7dIXuxJDPTZhikdn/XgkirhdFDLz3miMe+Kqm VkSPNWbSKW1i4QtZfIAShzuH5TM1HhPmCDKuImgnzmvmIa2zj7Y2wlVtGbL1vsir VjnLdrBVM7brH2P3KxU2KH68YEc0Xj3D8Yg/VKzK+D7ZSxedbLiITDgz+or3PcWQ 0op8DWOfwkCeqeGhrrItgh3A1H+XldFfmbRmfNBZJomHohFNJ+Tq8yCodUeWho/p /DJyCAmcwQj4OFlH9BXODXyHMMxxqPoOjNho/gG3sP+qS6YlrwsdYacjsQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPAwWPa954wesd+6fIr6xWyKYZrmMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U3NTM1OThlLTFlY2YtNDRhZS1iOTc5LTg3MWIxMWZlZDI0Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYaDAMA0GCSqGSIb3DQEBCwUAA4IBAQCDFFlOmcLZiQzW6d2v rkmk1OS7YHFol27vEcMSGwolCujUuyBMcG3fZFi3DOF/dhXqukbqNoz9MUElyPDf iVuQnMKxrjpS30uzt7MkK32LvAZkmngPArlw7KZsupdC+/t5BGs5iS9/ZZ0Dbslr eivmJtLYJ1ByS9B1DPtI/ruWHKiK6E024Hk1oQDbIs+o+nB8PZW0hAnxAPRzz7+m 4jIpwyJc4cAIML4ZfQpg2dDQi19WxcECcWF/qUL20TT8OtyuGiLY8IJqQQti7ZNv tmPauRDkGlAoa0K3ZOgbY1XI9WW2H+j1eAyfmsI7q2XU7W/xeBSur5gsR3l9MfRF 8W/E -----END CERTIFICATE-----Generated at Sun Mar 1 22:05:06 2026 by rpki-client