$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb256107-485a-42e4-8372-1aca6582970f.roa File: eb256107-485a-42e4-8372-1aca6582970f.roa (raw, json) Hash identifier: FP+hEOMVSi+AJTdKxUmYWmRBBGfP71bBA7U2DOKAd/Y= Subject key identifier: 9B:48:1F:DF:EB:33:C2:EA:D1:14:C4:FD:8E:CC:4E:2B:F1:AE:C6:C5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 66039BB504570EEE5E6DBA421A9F80AE48036E2D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb256107-485a-42e4-8372-1aca6582970f.roa Signing time: Sat 14 Feb 2026 00:00:53 +0000 ROA not before: Sat 14 Feb 2026 00:00:53 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daee::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:03:9b:b5:04:57:0e:ee:5e:6d:ba:42:1a:9f:80:ae:48:03:6e:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 14 00:00:53 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=499273e07c73859d3a4f6c56b7cd7c5e94b69f35501896689fb80be8da495845, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5b:2c:dc:7b:19:8f:38:8b:6b:3f:9a:23:66: 35:bc:97:59:59:82:65:04:25:6e:0a:01:78:9a:05: 6f:7b:50:13:3f:80:e1:70:56:8e:08:47:42:92:f0: 56:04:34:b1:6d:ed:fd:e9:36:78:a2:11:19:df:79: b2:4f:6e:c3:6b:49:b0:db:20:8b:e7:f9:79:28:4e: bd:8f:8b:8f:f6:62:14:a6:0d:94:11:23:13:f3:2a: 92:e9:ca:a0:ab:a0:d0:7a:48:54:21:f1:d7:5f:dd: 80:f4:82:26:5f:87:05:3a:39:7d:b1:fa:6a:91:16: c4:6c:ba:88:4d:02:1c:f9:1c:1d:3e:5d:c4:32:fe: 7c:16:26:ca:5f:23:4c:a6:42:13:ca:6f:68:83:d8: 92:af:1e:1c:00:3e:ac:58:be:48:6f:16:c6:01:ef: a8:76:22:5b:72:6a:c6:8b:98:c8:51:28:4e:ae:33: 15:2c:c2:d7:bb:22:4c:5f:49:02:a0:36:a9:11:96: 7e:2c:b6:e3:21:59:7d:21:2f:f4:81:c2:27:26:ea: f6:61:be:70:62:03:58:9d:a5:cf:6e:af:a4:d2:c0: ef:e9:cc:83:42:36:03:25:b4:30:17:fd:0a:3f:91: dd:c5:ed:67:2d:b3:ab:5d:05:f6:ec:3f:8f:e1:0b: 07:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:48:1F:DF:EB:33:C2:EA:D1:14:C4:FD:8E:CC:4E:2B:F1:AE:C6:C5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb256107-485a-42e4-8372-1aca6582970f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daee::/32 Signature Algorithm: sha256WithRSAEncryption 1e:5b:95:48:f1:a0:e5:c5:82:60:8c:68:5a:ad:30:5b:a8:9c: ac:b2:dd:ba:2b:8d:f4:fb:db:cb:5f:21:46:e0:df:66:9a:97: c9:83:e7:03:4e:54:21:82:14:fc:81:2f:03:23:7e:5a:fe:97: 88:19:5a:c3:c9:d3:a9:17:c8:9b:6f:8a:17:9e:20:da:fe:89: 8d:7d:c9:35:5e:4a:61:35:8d:9e:3f:47:13:42:a0:1e:b6:aa: 62:e5:bd:aa:32:62:61:66:66:20:20:89:aa:bb:ee:07:d8:7c: b4:41:88:5a:e2:57:d7:82:94:a7:83:91:8d:32:6d:28:33:e5: 7f:a7:ed:fa:a6:fb:48:ec:5d:ca:9f:64:15:0b:06:45:85:c9: dc:0c:17:06:a1:cc:f7:78:97:67:cd:72:96:ed:0a:77:fa:d8: dc:15:1d:c0:59:07:7f:46:65:de:d7:ec:2b:10:24:a9:60:ae: 1f:c0:39:31:fd:91:84:21:ae:a5:c9:04:4c:83:79:47:9b:d6: 6f:f5:58:2f:5a:df:84:42:6d:15:e1:da:f1:f4:73:95:74:1f: df:5c:cd:3d:a5:bc:3e:c5:44:e8:10:38:74:ee:5e:66:72:91: 38:46:ac:c3:1d:14:eb:b3:39:96:f4:6a:9a:0a:24:80:db:e9: dd:e0:cb:86 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUZgObtQRXDu5ebbpCGp+ArkgDbi0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNDAwMDA1M1oX DTI2MDUxNTIzNTk1OVowejFJMEcGA1UEBRNANDk5MjczZTA3YzczODU5ZDNhNGY2 YzU2YjdjZDdjNWU5NGI2OWYzNTUwMTg5NjY4OWZiODBiZThkYTQ5NTg0NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Vss3HsZjziLaz+aI2Y1vJdZWYJl BCVuCgF4mgVve1ATP4DhcFaOCEdCkvBWBDSxbe396TZ4ohEZ33myT27Da0mw2yCL 5/l5KE69j4uP9mIUpg2UESMT8yqS6cqgq6DQekhUIfHXX92A9IImX4cFOjl9sfpq kRbEbLqITQIc+RwdPl3EMv58FibKXyNMpkITym9og9iSrx4cAD6sWL5IbxbGAe+o diJbcmrGi5jIUShOrjMVLMLXuyJMX0kCoDapEZZ+LLbjIVl9IS/0gcInJur2Yb5w YgNYnaXPbq+k0sDv6cyDQjYDJbQwF/0KP5Hdxe1nLbOrXQX27D+P4QsH8QIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFJtIH9/rM8Lq0RTE/Y7MTivxrsbFMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ViMjU2MTA3LTQ4NWEtNDJlNC04MzcyLTFhY2E2NTgyOTcwZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAba7jANBgkqhkiG9w0BAQsFAAOCAQEAHluVSPGg5cWCYIxoWq0w W6icrLLduiuN9Pvby18hRuDfZpqXyYPnA05UIYIU/IEvAyN+Wv6XiBlaw8nTqRfI m2+KF54g2v6JjX3JNV5KYTWNnj9HE0KgHraqYuW9qjJiYWZmICCJqrvuB9h8tEGI WuJX14KUp4ORjTJtKDPlf6ft+qb7SOxdyp9kFQsGRYXJ3AwXBqHM93iXZ81ylu0K d/rY3BUdwFkHf0Zl3tfsKxAkqWCuH8A5Mf2RhCGupckETIN5R5vWb/VYL1rfhEJt FeHa8fRzlXQf31zNPaW8PsVE6BA4dO5eZnKROEaswx0U67M5lvRqmgokgNvp3eDL hg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:53:43 2026 by rpki-client