$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f6380258-f2e2-4e11-a03e-5d303ceea0d2.roa File: f6380258-f2e2-4e11-a03e-5d303ceea0d2.roa (raw, json) Hash identifier: qsFYkyjV9FS/+nOlqmK6Lvd4Nr0qsOEWUcNiJlw/VQ8= Subject key identifier: 89:3B:A5:09:A5:94:D2:BF:26:E8:FD:8E:97:A3:1D:AE:44:69:82:13 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 79806F6512806CA7FDEB2576D1F1699EFD4FE01D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f6380258-f2e2-4e11-a03e-5d303ceea0d2.roa Signing time: Sun 22 Feb 2026 00:10:19 +0000 ROA not before: Sun 22 Feb 2026 00:10:19 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:80:6f:65:12:80:6c:a7:fd:eb:25:76:d1:f1:69:9e:fd:4f:e0:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:10:19 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=2e815573d7e52e76cf958ab16512f6dd7fd3b9813f802374e3174984c518386b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:10:62:92:51:25:8c:d2:8c:a7:4d:64:93:9b: c0:ab:df:fd:ba:02:8d:f3:46:4f:3a:52:28:57:f1: 28:42:a0:47:68:d3:d0:e4:54:2a:18:7e:07:41:24: ae:e2:f4:90:71:77:17:0a:71:fc:37:1b:b2:45:46: 44:a5:56:5f:7d:13:73:be:fc:10:6b:d6:aa:ff:25: 15:10:db:f0:6b:8f:b5:1e:01:f3:ba:86:71:18:b0: a6:3a:8f:46:d5:6b:4b:b0:30:ac:c6:5b:2b:24:06: 54:31:08:3d:fd:99:47:52:52:2e:6d:88:3f:38:a9: 47:50:ad:d9:34:0d:2e:1a:89:28:81:cd:a1:bd:50: 00:d9:95:4a:41:33:f4:41:93:8a:0b:09:20:87:72: 9b:48:06:45:3a:44:da:30:51:01:ec:53:82:c3:f3: 18:66:78:96:76:d7:ed:f6:e3:65:a6:81:11:ec:02: 10:2e:fa:3d:1c:d3:00:72:38:57:e9:84:8a:cd:ad: 64:1d:61:77:54:37:7f:d5:88:e4:6d:7f:74:de:03: b9:bd:f4:4e:b2:71:40:6b:1b:84:b5:91:5b:da:aa: 09:03:29:94:0a:97:9f:32:ed:0a:9e:9e:08:33:c8: b4:3c:e5:2f:61:37:6e:8d:70:fe:4e:79:92:a8:21: 39:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:3B:A5:09:A5:94:D2:BF:26:E8:FD:8E:97:A3:1D:AE:44:69:82:13 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f6380258-f2e2-4e11-a03e-5d303ceea0d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:e000::/40 Signature Algorithm: sha256WithRSAEncryption 11:cd:93:3a:48:89:a0:6f:1e:48:00:04:d5:22:e4:09:e4:f8: e3:cd:e2:94:a2:c5:57:50:b3:65:5c:ae:90:cd:bc:40:34:ae: 4e:13:2f:34:e4:71:e4:9d:22:52:1b:34:87:73:a8:fb:a9:b8: a3:f9:06:51:e0:09:03:3e:50:21:ea:16:1c:53:ea:bc:db:83: 49:3c:45:86:5f:23:18:10:f9:1f:ca:69:4e:a4:06:5a:b4:eb: b5:7b:6f:b5:30:90:e6:ba:01:9a:91:2d:fc:81:90:82:ba:55: f6:d9:54:90:93:4a:91:50:87:ed:ee:87:ce:62:8e:fb:37:71: 5d:b9:7b:1a:38:fe:d3:88:9b:6a:f1:a5:1c:b1:26:6e:65:c5: da:3f:62:0b:89:eb:fb:a3:ee:13:d3:76:ba:f3:00:cb:3f:18: 3b:66:d4:a5:3e:b2:7e:6b:de:71:16:e8:bd:4e:ff:1b:5e:fe: 4f:83:9a:85:1c:c3:6a:77:02:1a:d4:2e:74:3e:f3:99:74:c1: 73:9d:6c:b3:3b:f3:75:79:fc:78:a8:03:e3:ce:43:6b:c7:f5: 8f:66:1f:a0:1a:04:2a:66:03:c7:f4:cb:25:de:21:be:0e:8a: be:d0:6b:2f:67:fa:2e:72:cb:18:ca:ce:4a:6c:f4:b3:b2:cf: c5:d5:a8:43 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUeYBvZRKAbKf96yV20fFpnv1P4B0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMTAxOVoX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAMmU4MTU1NzNkN2U1MmU3NmNmOTU4 YWIxNjUxMmY2ZGQ3ZmQzYjk4MTNmODAyMzc0ZTMxNzQ5ODRjNTE4Mzg2YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4BBiklEljNKMp01kk5vAq9/9ugKN 80ZPOlIoV/EoQqBHaNPQ5FQqGH4HQSSu4vSQcXcXCnH8NxuyRUZEpVZffRNzvvwQ a9aq/yUVENvwa4+1HgHzuoZxGLCmOo9G1WtLsDCsxlsrJAZUMQg9/ZlHUlIubYg/ OKlHUK3ZNA0uGokogc2hvVAA2ZVKQTP0QZOKCwkgh3KbSAZFOkTaMFEB7FOCw/MY ZniWdtft9uNlpoER7AIQLvo9HNMAcjhX6YSKza1kHWF3VDd/1YjkbX903gO5vfRO snFAaxuEtZFb2qoJAymUCpefMu0Knp4IM8i0POUvYTdujXD+TnmSqCE50wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFIk7pQmllNK/Juj9jpejHa5EaYITMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y2MzgwMjU4LWYyZTItNGUxMS1hMDNlLTVkMzAzY2VlYTBkMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaueAwDQYJKoZIhvcNAQELBQADggEBABHNkzpIiaBvHkgABNUi 5Ank+OPN4pSixVdQs2VcrpDNvEA0rk4TLzTkceSdIlIbNIdzqPupuKP5BlHgCQM+ UCHqFhxT6rzbg0k8RYZfIxgQ+R/KaU6kBlq067V7b7UwkOa6AZqRLfyBkIK6VfbZ VJCTSpFQh+3uh85ijvs3cV25exo4/tOIm2rxpRyxJm5lxdo/YguJ6/uj7hPTdrrz AMs/GDtm1KU+sn5r3nEW6L1O/xte/k+DmoUcw2p3AhrULnQ+85l0wXOdbLM783V5 /HioA+POQ2vH9Y9mH6AaBCpmA8f0yyXeIb4Oir7Qay9n+i5yyxjKzkps9LOyz8XV qEM= -----END CERTIFICATE-----Generated at Sun Mar 1 23:36:29 2026 by rpki-client