$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f28624f2-29a1-4d66-bb6c-dd38f883f14b.roa File: f28624f2-29a1-4d66-bb6c-dd38f883f14b.roa (raw, json) Hash identifier: cw030LLXeiYNr7P9nHYX5LTzUEN+7voyIVqmIWXoJSU= Subject key identifier: F3:1D:3E:BA:F8:BE:D2:AF:38:42:26:41:85:58:85:1A:DA:74:03:4F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5649102FF0BDF3134462F190822A3398D27A9EC6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f28624f2-29a1-4d66-bb6c-dd38f883f14b.roa Signing time: Sun 22 Feb 2026 00:40:37 +0000 ROA not before: Sun 22 Feb 2026 00:40:37 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da19:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:49:10:2f:f0:bd:f3:13:44:62:f1:90:82:2a:33:98:d2:7a:9e:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:40:37 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=8c9e7e7847a149a0b6aae446a4268b21037ed79123f7ad41f367abc444eed3b8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:24:b8:65:34:a3:77:4f:4c:33:f0:4e:26:ba: 07:c8:fc:6f:55:5c:de:54:5c:b6:20:b8:37:30:8d: 78:d7:44:59:bd:ec:59:0a:71:a3:18:f8:56:bc:1e: 74:63:a9:0a:67:86:60:61:78:d2:74:09:d5:47:54: 61:76:a5:29:b8:9d:cd:a7:73:cf:cb:74:22:da:11: d5:bf:b9:12:2c:2c:1e:d1:a0:9e:da:63:f2:33:1e: 7c:f2:42:cb:eb:1a:a0:87:35:65:fa:68:a1:8d:81: 00:9e:5a:54:81:50:b2:73:33:a8:b3:f4:01:55:e3: 7a:36:26:c2:e9:95:06:82:a7:ba:1c:31:18:fc:04: 39:58:68:4c:12:30:88:26:6a:e3:92:ea:95:d8:17: 4a:8b:63:22:97:3e:00:a7:b5:25:a6:a3:ec:52:af: 33:20:b7:b7:a1:0f:10:91:ee:da:27:04:70:3c:7c: 54:68:0f:fd:f0:c8:6b:85:88:f6:47:ec:fb:2a:1c: d6:df:e4:90:a5:dd:65:a1:9d:07:49:27:1e:d3:b8: 82:2d:b7:7d:78:f7:43:6f:05:a3:49:12:7e:76:31: cd:42:e6:b9:be:66:12:2c:22:7a:9f:08:5a:62:11: 64:16:2c:0e:f7:0b:90:42:80:44:e8:f3:53:ae:2f: fc:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:1D:3E:BA:F8:BE:D2:AF:38:42:26:41:85:58:85:1A:DA:74:03:4F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f28624f2-29a1-4d66-bb6c-dd38f883f14b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da19:c00::/38 Signature Algorithm: sha256WithRSAEncryption 4c:ce:d1:ff:fe:c3:6e:f6:7d:d0:52:20:40:64:67:ed:fe:29: 56:9c:7b:af:7d:63:e4:02:96:23:6b:6e:ab:54:9b:08:62:9c: 21:03:b7:a5:ba:96:9c:f2:be:1e:66:00:5b:af:05:64:e8:9a: fa:6e:e3:39:8d:81:ab:40:91:48:78:4a:28:3e:e8:58:09:56: 95:01:00:8c:86:04:39:4c:cd:40:99:ea:2c:af:06:2c:24:6c: 2c:e5:45:25:ad:3c:c8:11:32:97:e8:03:d9:fb:e7:72:e3:11: 00:ab:70:15:68:11:ea:81:b9:1a:2e:ca:8b:21:97:95:0a:48: 13:f7:a2:a1:96:88:ba:61:93:93:d4:75:22:81:b0:2e:7d:19: 7a:10:b0:4e:ad:cc:03:c3:d5:d1:13:b3:04:cd:50:7c:07:d9: 45:71:ac:00:45:34:1f:26:43:e4:8e:5b:42:30:cd:8a:f7:d5: ea:ba:d6:e9:b3:c5:cc:ba:62:26:28:7d:52:31:40:d4:ec:5f: 22:91:33:e4:54:02:22:47:62:30:05:09:80:a4:23:8e:59:98: 79:a2:ef:45:51:5c:52:24:1d:a8:c0:79:01:f5:04:4a:36:0a: 23:aa:b0:37:76:ed:45:60:6b:12:4c:0a:48:d9:77:7d:99:8a: bd:82:71:42 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUVkkQL/C98xNEYvGQgiozmNJ6nsYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwNDAzN1oX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAOGM5ZTdlNzg0N2ExNDlhMGI2YWFl NDQ2YTQyNjhiMjEwMzdlZDc5MTIzZjdhZDQxZjM2N2FiYzQ0NGVlZDNiODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCS4ZTSjd09MM/BOJroHyPxvVVze VFy2ILg3MI1410RZvexZCnGjGPhWvB50Y6kKZ4ZgYXjSdAnVR1RhdqUpuJ3Np3PP y3Qi2hHVv7kSLCwe0aCe2mPyMx588kLL6xqghzVl+mihjYEAnlpUgVCyczOos/QB VeN6NibC6ZUGgqe6HDEY/AQ5WGhMEjCIJmrjkuqV2BdKi2Milz4Ap7UlpqPsUq8z ILe3oQ8Qke7aJwRwPHxUaA/98MhrhYj2R+z7KhzW3+SQpd1loZ0HSSce07iCLbd9 ePdDbwWjSRJ+djHNQua5vmYSLCJ6nwhaYhFkFiwO9wuQQoBE6PNTri/87wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPMdPrr4vtKvOEImQYVYhRradANPMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2YyODYyNGYyLTI5YTEtNGQ2Ni1iYjZjLWRkMzhmODgzZjE0Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaGQwwDQYJKoZIhvcNAQELBQADggEBAEzO0f/+w272fdBSIEBk Z+3+KVace699Y+QCliNrbqtUmwhinCEDt6W6lpzyvh5mAFuvBWTomvpu4zmNgatA kUh4Sig+6FgJVpUBAIyGBDlMzUCZ6iyvBiwkbCzlRSWtPMgRMpfoA9n753LjEQCr cBVoEeqBuRouyoshl5UKSBP3oqGWiLphk5PUdSKBsC59GXoQsE6tzAPD1dETswTN UHwH2UVxrABFNB8mQ+SOW0IwzYr31eq61umzxcy6YiYofVIxQNTsXyKRM+RUAiJH YjAFCYCkI45ZmHmi70VRXFIkHajAeQH1BEo2CiOqsDd27UVgaxJMCkjZd32Zir2C cUI= -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:40 2026 by rpki-client