$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efe1334d-71f0-409b-b70a-e650ab1bb41d.roa File: efe1334d-71f0-409b-b70a-e650ab1bb41d.roa (raw, json) Hash identifier: 1EqXyQrV7IDnMuGRXD+aXdNdFpZxaR2uhrhAxrORs7c= Subject key identifier: D7:07:E5:F9:08:A3:BF:2A:EF:2C:E0:79:58:82:12:88:7A:F8:D2:11 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 62B9F90CAEF3DEC38995CE14277CB41A7DD39489 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efe1334d-71f0-409b-b70a-e650ab1bb41d.roa Signing time: Wed 11 Feb 2026 00:20:40 +0000 ROA not before: Wed 11 Feb 2026 00:20:40 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:b040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:b9:f9:0c:ae:f3:de:c3:89:95:ce:14:27:7c:b4:1a:7d:d3:94:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 11 00:20:40 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=ed28c42e274dd837097723b5129a50ad8be00516621f94d9eb537a147a66f1d3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0c:71:db:a8:c8:b1:e9:2c:01:6a:2d:01:a7: f9:00:04:36:77:df:db:ba:4c:57:27:47:87:9f:41: fa:64:a6:13:2a:19:62:a2:cd:aa:5c:88:02:02:18: 13:94:d4:25:b7:0d:c9:b7:2e:80:32:06:1a:9f:0b: 60:87:dc:36:14:bc:1b:a6:4a:e7:4e:2d:17:20:64: 31:dc:14:e2:7c:bf:c3:85:60:aa:9c:31:ba:04:08: af:cd:0e:75:67:d5:0e:0d:db:7a:35:c7:85:48:f4: a4:6b:d6:1b:fd:18:ae:98:52:77:8a:af:e1:21:28: 62:b5:a8:c8:cd:ef:81:98:a5:25:1e:d5:fb:0c:b5: 8e:9f:06:8b:f2:18:fb:4c:12:11:c5:82:cb:6d:88: 5f:ac:9d:de:3e:d9:a9:db:de:bb:a1:04:8a:bf:26: 64:ed:94:3d:92:f0:8b:a2:f1:c6:ca:10:9c:8b:58: c4:f7:27:29:a3:c0:ad:e1:3a:a0:07:6a:96:2d:0d: 5a:8a:bf:b1:a9:d7:7c:31:7c:fc:6b:98:37:3c:3b: fc:64:f6:d9:13:ee:44:c0:0a:74:e4:19:ef:4c:c8: 87:ef:cc:8d:d4:d9:1a:4a:13:57:f0:82:a3:cb:57: f0:2a:d3:bb:80:6c:3e:d1:98:68:c7:a5:67:58:59: 26:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:07:E5:F9:08:A3:BF:2A:EF:2C:E0:79:58:82:12:88:7A:F8:D2:11 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/efe1334d-71f0-409b-b70a-e650ab1bb41d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:b040::/46 Signature Algorithm: sha256WithRSAEncryption b3:f1:91:3b:96:56:7f:55:4f:f1:84:71:3d:76:7f:59:ed:39: 9c:6e:7f:d1:41:0a:f0:de:b6:89:a5:49:be:e0:40:9a:f1:30: ae:6d:1b:d1:45:57:df:19:01:61:15:c0:50:2e:66:da:a7:c8: 89:eb:17:c5:19:08:8a:d5:07:6e:db:fa:5e:22:fe:16:b4:fc: fc:71:54:75:61:f3:1d:fb:3c:3d:38:6e:7b:ba:f8:81:82:08: 6b:de:95:f6:40:f6:d9:88:44:9f:eb:8d:3a:33:b3:19:e7:43: 37:26:11:ea:4e:9b:36:5a:76:c1:2e:39:61:1f:99:ec:df:18: 3c:7d:2e:f8:eb:7b:1a:b2:d8:69:b5:df:f1:9a:75:c9:03:b2: 98:ad:78:3e:7e:0e:83:5b:91:3d:bf:18:8d:e3:2e:ba:8e:c6: b7:9a:14:50:ae:74:d7:f6:eb:2b:99:4c:10:87:65:73:3e:92: 44:62:4a:f9:47:35:aa:02:80:da:14:4d:f7:58:05:ea:cb:ba: d8:aa:a2:c2:e1:d6:10:7c:38:41:01:69:73:a6:91:25:2a:ce: a3:e1:62:b5:0e:d3:0c:d9:d8:ee:80:c7:ef:6f:d8:f1:7d:42: fb:4c:22:23:85:74:65:10:ff:f5:80:b0:1e:8f:35:94:14:39: bf:c9:9c:30 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYrn5DK7z3sOJlc4UJ3y0Gn3TlIkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMTAwMjA0MFoX DTI2MDUxMjIzNTk1OVowejFJMEcGA1UEBRNAZWQyOGM0MmUyNzRkZDgzNzA5Nzcy M2I1MTI5YTUwYWQ4YmUwMDUxNjYyMWY5NGQ5ZWI1MzdhMTQ3YTY2ZjFkMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwxx26jIseksAWotAaf5AAQ2d9/b ukxXJ0eHn0H6ZKYTKhlios2qXIgCAhgTlNQltw3Jty6AMgYanwtgh9w2FLwbpkrn Ti0XIGQx3BTifL/DhWCqnDG6BAivzQ51Z9UODdt6NceFSPSka9Yb/RiumFJ3iq/h IShitajIze+BmKUlHtX7DLWOnwaL8hj7TBIRxYLLbYhfrJ3ePtmp2967oQSKvyZk 7ZQ9kvCLovHGyhCci1jE9ycpo8Ct4TqgB2qWLQ1air+xqdd8MXz8a5g3PDv8ZPbZ E+5EwAp05BnvTMiH78yN1NkaShNX8IKjy1fwKtO7gGw+0Zhox6VnWFkmIQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNcH5fkIo78q7yzgeViCEoh6+NIRMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VmZTEzMzRkLTcxZjAtNDA5Yi1iNzBhLWU2NTBhYjFiYjQxZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba87BAMA0GCSqGSIb3DQEBCwUAA4IBAQCz8ZE7llZ/VU/xhHE9 dn9Z7Tmcbn/RQQrw3raJpUm+4ECa8TCubRvRRVffGQFhFcBQLmbap8iJ6xfFGQiK 1Qdu2/peIv4WtPz8cVR1YfMd+zw9OG57uviBgghr3pX2QPbZiESf6406M7MZ50M3 JhHqTps2WnbBLjlhH5ns3xg8fS7463sasthptd/xmnXJA7KYrXg+fg6DW5E9vxiN 4y66jsa3mhRQrnTX9usrmUwQh2VzPpJEYkr5RzWqAoDaFE33WAXqy7rYqqLC4dYQ fDhBAWlzppElKs6j4WK1DtMM2djugMfvb9jxfUL7TCIjhXRlEP/1gLAejzWUFDm/ yZww -----END CERTIFICATE-----Generated at Sun Mar 1 21:49:02 2026 by rpki-client