$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f5395226-d3ec-4c71-b20c-8c04577c7df0.roa File: f5395226-d3ec-4c71-b20c-8c04577c7df0.roa (raw, json) Hash identifier: bySB+Up/Q0YdMFglSJ/uBXT72qraqN+ry78G9aSkYFg= Subject key identifier: B4:3C:FF:73:60:A7:12:13:52:5E:97:7D:5D:E1:C7:13:F8:19:75:7D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6CED63571A8FF8E7BE24DD6110064BF274D96324 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f5395226-d3ec-4c71-b20c-8c04577c7df0.roa Signing time: Sun 22 Feb 2026 00:21:12 +0000 ROA not before: Sun 22 Feb 2026 00:21:12 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daa0:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:ed:63:57:1a:8f:f8:e7:be:24:dd:61:10:06:4b:f2:74:d9:63:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:21:12 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=c363a651740a2d4113a4854d5dad8992514a43faa5a1972b8eac007ed5ad119d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:52:4e:b7:3c:32:c1:4d:88:3e:0c:8d:a3:8c: 61:c3:81:5a:80:30:e3:34:00:28:e1:cf:a5:82:48: 21:72:cd:18:1e:3c:56:f3:f1:95:61:8b:6a:f6:a2: 15:c7:1c:b3:4a:1e:c9:73:35:5c:db:85:ce:7d:da: 70:92:15:7b:ee:37:55:b0:21:06:ee:9a:74:0a:7a: 61:b4:52:e3:54:31:c0:5c:8d:45:52:28:cc:97:0d: 1c:f1:b6:53:44:2c:72:86:0e:eb:3d:f3:a2:c3:98: 3c:95:8e:7f:83:45:4f:76:aa:cc:37:19:96:0c:71: 8d:69:98:70:60:80:29:c5:0a:fc:f0:bf:59:62:a3: 84:04:ff:64:f3:c8:7f:df:dd:40:f7:18:35:b8:63: 6d:31:ec:c7:e1:6f:d5:c8:a9:f0:cc:f5:9d:ba:6b: 72:a5:8c:b1:d2:66:f5:00:ab:4d:fe:26:1a:e1:e2: f5:20:05:25:3b:ac:0c:60:0a:b5:3f:4e:7b:8a:bc: ab:41:80:2a:ce:7d:01:4b:f4:78:c6:18:c1:32:fe: 93:24:eb:a8:a4:5f:7f:2a:29:55:8a:f3:3e:3a:ff: 48:d5:ac:14:57:e4:ad:76:10:a8:32:c5:6a:92:18: a9:07:6b:72:d2:78:52:ca:49:cb:64:1e:f6:e6:3a: 03:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3C:FF:73:60:A7:12:13:52:5E:97:7D:5D:E1:C7:13:F8:19:75:7D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f5395226-d3ec-4c71-b20c-8c04577c7df0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daa0:9000::/40 Signature Algorithm: sha256WithRSAEncryption 05:ff:8d:ca:74:63:f4:09:2f:c2:75:f7:8c:de:6f:5b:90:4c: 88:14:7b:d4:3f:04:d9:86:c5:c0:8c:1c:60:53:a1:aa:35:7d: 11:6a:41:ab:79:d4:43:33:30:17:fe:67:7e:a5:52:48:5f:38: 0b:81:0a:03:dd:ab:16:12:1c:2a:bf:22:39:1e:13:c0:56:6c: a4:e9:27:4f:b4:71:75:47:e6:1e:78:b2:c2:c1:a1:60:d6:43: 83:92:dc:2d:2b:87:24:de:01:7d:0e:c1:88:58:d3:38:e3:8e: 2a:a9:59:c5:5d:86:4f:d0:be:18:59:61:6c:15:45:2e:cf:87: 6f:24:e5:88:6e:5e:ac:46:31:20:bb:73:f0:fc:e8:c9:d1:ad: ff:88:00:37:47:ca:ee:be:56:3a:e8:fd:87:d0:0e:d4:ac:35: c6:40:d1:f3:40:d4:92:8c:57:ef:69:4d:fe:76:09:2c:2e:c2: 3d:f6:32:74:31:e0:d0:34:0d:ca:36:b7:6f:b0:bd:94:92:f1: 79:c8:c6:43:27:b2:12:e4:db:c1:bb:53:4a:c7:34:4b:0b:56: 17:96:2c:7b:52:7a:02:88:b3:1a:01:8b:c3:77:62:66:59:ac: 83:d0:27:2b:4a:ae:04:77:a3:c8:49:e9:04:aa:76:b7:fb:19: c5:ec:38:c0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUbO1jVxqP+Oe+JN1hEAZL8nTZYyQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMjExMloX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAYzM2M2E2NTE3NDBhMmQ0MTEzYTQ4 NTRkNWRhZDg5OTI1MTRhNDNmYWE1YTE5NzJiOGVhYzAwN2VkNWFkMTE5ZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVJOtzwywU2IPgyNo4xhw4FagDDj NAAo4c+lgkghcs0YHjxW8/GVYYtq9qIVxxyzSh7JczVc24XOfdpwkhV77jdVsCEG 7pp0CnphtFLjVDHAXI1FUijMlw0c8bZTRCxyhg7rPfOiw5g8lY5/g0VPdqrMNxmW DHGNaZhwYIApxQr88L9ZYqOEBP9k88h/391A9xg1uGNtMezH4W/VyKnwzPWdumty pYyx0mb1AKtN/iYa4eL1IAUlO6wMYAq1P057iryrQYAqzn0BS/R4xhjBMv6TJOuo pF9/KilVivM+Ov9I1awUV+StdhCoMsVqkhipB2ty0nhSyknLZB725joDHQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLQ8/3NgpxITUl6XfV3hxxP4GXV9MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y1Mzk1MjI2LWQzZWMtNGM3MS1iMjBjLThjMDQ1NzdjN2RmMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaoJAwDQYJKoZIhvcNAQELBQADggEBAAX/jcp0Y/QJL8J194ze b1uQTIgUe9Q/BNmGxcCMHGBToao1fRFqQat51EMzMBf+Z36lUkhfOAuBCgPdqxYS HCq/IjkeE8BWbKTpJ0+0cXVH5h54ssLBoWDWQ4OS3C0rhyTeAX0OwYhY0zjjjiqp WcVdhk/QvhhZYWwVRS7Ph28k5YhuXqxGMSC7c/D86MnRrf+IADdHyu6+Vjro/YfQ DtSsNcZA0fNA1JKMV+9pTf52CSwuwj32MnQx4NA0Dco2t2+wvZSS8XnIxkMnshLk 28G7U0rHNEsLVheWLHtSegKIsxoBi8N3YmZZrIPQJytKrgR3o8hJ6QSqdrf7GcXs OMA= -----END CERTIFICATE-----Generated at Sun Mar 1 23:50:15 2026 by rpki-client