$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ed72331d-bbd1-45c2-9d41-bea51c97f1be.roa File: ed72331d-bbd1-45c2-9d41-bea51c97f1be.roa (raw, json) Hash identifier: bW0QpzSGDTAFg7QbNeetabXK6klpvgcWkY/Mgdm7/WM= Subject key identifier: 17:61:41:2B:B2:37:09:02:60:EC:82:0F:C3:A4:30:9C:E1:A3:B9:28 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 340773652BA61324AADDABC0A0DFA8DE885C4A36 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ed72331d-bbd1-45c2-9d41-bea51c97f1be.roa Signing time: Sat 14 Feb 2026 00:00:52 +0000 ROA not before: Sat 14 Feb 2026 00:00:52 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:07:73:65:2b:a6:13:24:aa:dd:ab:c0:a0:df:a8:de:88:5c:4a:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 14 00:00:52 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=9a10073d4e779ffd734647eea041bcfa48b2c98f1d19cb374bef18b5fbe422df, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6f:b3:48:4e:26:7a:9e:ee:39:ec:14:80:32: fd:a4:80:a3:f4:8f:1f:3d:d7:1f:b8:02:90:56:e8: 1b:b1:2c:2c:b8:0e:26:bb:46:61:cb:25:bf:94:1d: 42:27:4c:fd:83:c0:2c:5a:9d:5e:3f:87:ff:cf:06: 17:e0:74:49:84:34:f8:ac:20:c7:8e:05:4a:be:fd: e4:ca:c5:6b:c5:6d:9f:80:23:ab:a2:b0:24:b7:a9: d9:0b:f9:29:5e:9d:dd:b5:34:c1:97:09:76:d3:1d: 11:0d:33:d6:ed:63:a9:0d:8e:4b:57:fe:ee:fa:e2: 3d:1f:38:89:a7:6c:6e:04:23:aa:98:fd:8f:33:28: ef:7b:d6:99:7c:84:e3:7d:97:e4:44:03:26:5a:c5: 6a:6d:11:94:53:f0:04:1d:04:a0:d1:e8:28:b4:e8: 42:eb:55:ff:ef:fc:16:b9:57:7d:5d:04:7a:47:c9: c8:b1:45:7b:f2:ac:b3:9f:09:82:fc:4c:db:ce:59: b1:6f:46:94:44:86:c7:f2:ea:bf:0e:17:b4:c8:61: f1:5f:67:95:4f:7a:15:02:9d:be:b6:47:88:22:91: d2:f9:c5:8b:1a:a0:99:3b:e7:63:80:fd:da:3f:5a: 11:dc:40:ae:2f:a4:ad:d1:16:4a:c6:15:18:2f:d7: 8e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:61:41:2B:B2:37:09:02:60:EC:82:0F:C3:A4:30:9C:E1:A3:B9:28 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ed72331d-bbd1-45c2-9d41-bea51c97f1be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:7000::/40 Signature Algorithm: sha256WithRSAEncryption 4b:0e:5c:c8:4c:65:8a:b7:6e:97:02:48:f0:2d:bc:fd:e9:7a: 13:fc:45:bf:5d:bc:cd:c6:d4:7a:d1:a1:eb:d2:75:49:d3:43: 78:14:e0:32:4a:d0:42:8f:3f:4e:38:91:a6:a4:ce:f8:8f:d7: 26:15:1f:42:ac:39:ba:d3:6b:b1:e2:ec:d7:53:32:88:0f:a3: c8:a1:b6:88:e0:75:58:bb:89:9a:a3:e7:bd:d5:bc:0f:27:49: 6c:90:48:e0:3a:16:56:2c:2f:21:3a:7e:a9:e7:ee:0d:5a:1d: 64:bc:1c:66:9b:f3:d6:2c:ac:af:31:44:59:35:8f:6f:d6:81: 9d:f0:ee:6c:91:46:a7:58:ff:d4:e8:23:83:cd:4b:d5:2c:b2: ae:7d:6e:c4:93:49:a8:9a:ef:5b:14:93:ea:5b:cf:af:9d:88: 93:e4:47:76:f5:2a:5c:64:81:55:f8:ec:cc:86:83:1c:b8:d9: b5:1d:49:18:c8:a9:b0:d5:bb:ec:5d:0e:36:ab:36:ec:f6:60: 1f:b7:23:58:db:8a:fb:b6:99:23:ae:5d:e7:64:f7:0b:9b:80: 78:d2:5a:fd:74:ec:80:d4:01:90:92:19:36:5c:b6:29:4b:bf: 73:a4:fc:40:07:6b:34:f4:d4:d3:3a:77:f6:59:ba:2e:10:6b: a4:00:59:b3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNAdzZSumEySq3avAoN+o3ohcSjYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNDAwMDA1MloX DTI2MDUxNTIzNTk1OVowejFJMEcGA1UEBRNAOWExMDA3M2Q0ZTc3OWZmZDczNDY0 N2VlYTA0MWJjZmE0OGIyYzk4ZjFkMTljYjM3NGJlZjE4YjVmYmU0MjJkZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzW+zSE4mep7uOewUgDL9pICj9I8f PdcfuAKQVugbsSwsuA4mu0ZhyyW/lB1CJ0z9g8AsWp1eP4f/zwYX4HRJhDT4rCDH jgVKvv3kysVrxW2fgCOrorAkt6nZC/kpXp3dtTTBlwl20x0RDTPW7WOpDY5LV/7u +uI9HziJp2xuBCOqmP2PMyjve9aZfITjfZfkRAMmWsVqbRGUU/AEHQSg0egotOhC 61X/7/wWuVd9XQR6R8nIsUV78qyznwmC/Ezbzlmxb0aURIbH8uq/Dhe0yGHxX2eV T3oVAp2+tkeIIpHS+cWLGqCZO+djgP3aP1oR3ECuL6St0RZKxhUYL9eOlQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBdhQSuyNwkCYOyCD8OkMJzho7koMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VkNzIzMzFkLWJiZDEtNDVjMi05ZDQxLWJlYTUxYzk3ZjFiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauXAwDQYJKoZIhvcNAQELBQADggEBAEsOXMhMZYq3bpcCSPAt vP3pehP8Rb9dvM3G1HrRoevSdUnTQ3gU4DJK0EKPP044kaakzviP1yYVH0KsObrT a7Hi7NdTMogPo8ihtojgdVi7iZqj573VvA8nSWyQSOA6FlYsLyE6fqnn7g1aHWS8 HGab89YsrK8xRFk1j2/WgZ3w7myRRqdY/9ToI4PNS9Ussq59bsSTSaia71sUk+pb z6+diJPkR3b1KlxkgVX47MyGgxy42bUdSRjIqbDVu+xdDjarNuz2YB+3I1jbivu2 mSOuXedk9wubgHjSWv107IDUAZCSGTZctilLv3Ok/EAHazT01NM6d/ZZui4Qa6QA WbM= -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:11 2026 by rpki-client