$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f49edff2-b901-48af-872b-a91e228adb05.roa File: f49edff2-b901-48af-872b-a91e228adb05.roa (raw, json) Hash identifier: yeKnvIH1voPVAB5/y5dDGoVJmUqe4YL1s7G5x7Eun9w= Subject key identifier: 8E:23:4F:DB:93:E8:EB:6E:64:F6:E0:7F:15:B6:D0:76:D9:67:DF:CE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1C93B0AF180152587BFF966D00D68E271DA4C796 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f49edff2-b901-48af-872b-a91e228adb05.roa Signing time: Wed 11 Feb 2026 00:01:20 +0000 ROA not before: Wed 11 Feb 2026 00:01:20 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:9040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:93:b0:af:18:01:52:58:7b:ff:96:6d:00:d6:8e:27:1d:a4:c7:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 11 00:01:20 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=247c38d645334bd79543b2e0febbc394c9c7ce4a8896ff231c17a809f1bf136b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fd:ab:ef:f8:e8:04:f1:6a:e5:2f:7e:56:78: 46:ce:0e:48:c0:71:85:b8:e0:74:1a:ed:b9:0d:5d: 3f:fa:02:59:4f:5a:22:70:b8:76:23:45:fa:e8:4e: b2:8d:c2:2f:dc:e8:d4:fd:6b:9e:f5:0a:2a:82:e0: de:17:34:8e:dc:52:43:f7:e7:93:af:6c:70:18:dc: 3f:59:c9:94:14:00:f1:8b:5e:2d:20:d2:7f:90:03: 4f:37:b2:86:76:f5:a4:41:b6:8b:fe:02:5a:47:92: bb:10:84:28:f0:b2:bd:17:57:66:98:a0:0d:58:88: fd:9a:14:77:d4:38:be:e0:18:d0:32:df:cd:98:3c: 4a:4d:d2:4d:b5:03:f7:1f:b0:5f:ea:ca:cc:53:f4: aa:7c:1d:c4:4f:ac:f2:d8:44:b5:39:9a:ac:11:88: b2:51:e1:9d:cf:84:ce:e9:a4:d8:6b:23:42:cf:42: 38:81:ad:63:c2:0a:07:1b:85:7d:b2:aa:37:8c:44: 61:89:0d:74:bd:16:2b:96:8e:ac:4d:03:1a:59:e1: 38:59:c7:49:f4:26:94:77:d4:e9:93:5a:ab:a0:f8: 9d:d9:10:11:12:8c:26:bc:2d:6d:96:a1:a9:8a:01: 90:9e:1c:41:49:6c:65:bb:29:4e:d6:ae:4f:4c:91: 85:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:23:4F:DB:93:E8:EB:6E:64:F6:E0:7F:15:B6:D0:76:D9:67:DF:CE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f49edff2-b901-48af-872b-a91e228adb05.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:9040::/46 Signature Algorithm: sha256WithRSAEncryption a4:b4:0d:60:70:ec:ac:2f:59:03:27:68:27:40:8d:b4:4d:d4: be:76:28:99:2f:37:e2:8f:8a:ed:2c:32:8b:c3:72:4e:6e:fa: 79:f4:1f:2d:56:6d:07:e5:71:7b:ed:ac:59:d7:e9:59:b5:30: 53:6e:c3:63:09:eb:3b:db:04:b8:ae:94:fa:a8:d0:ef:eb:c9: c8:e3:d2:d4:3f:30:6e:da:a5:b5:28:50:7e:14:a3:1d:8e:9b: 08:5b:91:51:c7:df:7a:43:be:1b:6c:45:98:dc:13:40:33:c8: b8:7a:7c:7d:38:0f:e1:97:18:83:fb:b1:6a:f4:24:66:62:19: 0d:8b:50:e2:e7:2b:38:61:be:81:fc:bf:5d:0b:5d:9c:f0:c9: 1b:a9:6a:4a:3f:c9:20:d2:be:ba:3b:be:b2:27:30:84:a3:7f: f6:e6:77:f9:92:36:0c:1d:3b:15:5f:3e:8a:31:cb:9f:9a:1b: 16:6c:aa:5e:92:68:1a:1c:1b:eb:23:60:3b:22:92:aa:a3:d6: 5f:6b:77:83:a8:8a:24:49:b2:0a:ad:c0:7c:a4:84:f0:53:b0: e2:4e:7e:ee:c5:69:20:e3:57:dc:2e:df:05:64:cf:b8:7f:80: 59:cd:98:c8:ac:77:9f:21:de:c8:35:de:1f:2a:4d:52:2d:f7: f1:d4:d9:ce -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUHJOwrxgBUlh7/5ZtANaOJx2kx5YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMTAwMDEyMFoX DTI2MDUxMjIzNTk1OVowejFJMEcGA1UEBRNAMjQ3YzM4ZDY0NTMzNGJkNzk1NDNi MmUwZmViYmMzOTRjOWM3Y2U0YTg4OTZmZjIzMWMxN2E4MDlmMWJmMTM2YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtP2r7/joBPFq5S9+VnhGzg5IwHGF uOB0Gu25DV0/+gJZT1oicLh2I0X66E6yjcIv3OjU/Wue9QoqguDeFzSO3FJD9+eT r2xwGNw/WcmUFADxi14tINJ/kANPN7KGdvWkQbaL/gJaR5K7EIQo8LK9F1dmmKAN WIj9mhR31Di+4BjQMt/NmDxKTdJNtQP3H7Bf6srMU/SqfB3ET6zy2ES1OZqsEYiy UeGdz4TO6aTYayNCz0I4ga1jwgoHG4V9sqo3jERhiQ10vRYrlo6sTQMaWeE4WcdJ 9CaUd9Tpk1qroPid2RAREowmvC1tlqGpigGQnhxBSWxluylO1q5PTJGFfQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFI4jT9uT6OtuZPbgfxW20HbZZ9/OMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y0OWVkZmYyLWI5MDEtNDhhZi04NzJiLWE5MWUyMjhhZGIwNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba85BAMA0GCSqGSIb3DQEBCwUAA4IBAQCktA1gcOysL1kDJ2gn QI20TdS+diiZLzfij4rtLDKLw3JObvp59B8tVm0H5XF77axZ1+lZtTBTbsNjCes7 2wS4rpT6qNDv68nI49LUPzBu2qW1KFB+FKMdjpsIW5FRx996Q74bbEWY3BNAM8i4 enx9OA/hlxiD+7Fq9CRmYhkNi1Di5ys4Yb6B/L9dC12c8MkbqWpKP8kg0r66O76y JzCEo3/25nf5kjYMHTsVXz6KMcufmhsWbKpekmgaHBvrI2A7IpKqo9Zfa3eDqIok SbIKrcB8pITwU7DiTn7uxWkg41fcLt8FZM+4f4BZzZjIrHefId7INd4fKk1SLffx 1NnO -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:30 2026 by rpki-client