$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f7ec8552-7ddb-4978-bb8c-fc97d0625b4c.roa File: f7ec8552-7ddb-4978-bb8c-fc97d0625b4c.roa (raw, json) Hash identifier: IEGaOtTfHu9dx1bYAuu6s9P1XyJLzSCyrPripzYhkKs= Subject key identifier: 00:B3:89:E0:3E:DE:EB:05:5F:F3:E5:47:FE:A0:2B:78:47:51:F1:07 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 637A9CB44624A9B91B78C020E2FF5ACB5F531940 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f7ec8552-7ddb-4978-bb8c-fc97d0625b4c.roa Signing time: Fri 20 Feb 2026 00:01:15 +0000 ROA not before: Fri 20 Feb 2026 00:01:15 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:4020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:7a:9c:b4:46:24:a9:b9:1b:78:c0:20:e2:ff:5a:cb:5f:53:19:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:01:15 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=1237916e6b25eb10957e70e58272ad9100117b8637fd6879bdb311bf86451206, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:83:03:e0:0b:e5:98:ee:73:4a:4d:fa:a9:42: ce:ca:e1:2b:2d:e9:77:89:e1:89:79:b7:e6:f1:c1: 78:4c:13:2a:7f:28:34:c4:9d:dd:08:7e:3b:7c:e7: 05:fc:56:0a:ca:e6:53:d6:1d:e9:df:41:32:30:53: b1:e1:ae:98:09:5c:5a:0e:75:b0:c0:3c:17:0a:24: 44:04:d2:a1:93:37:4b:50:94:dc:38:c0:a2:26:17: 85:d4:27:79:10:b4:a7:70:63:57:1a:a5:ae:f4:cf: 35:bd:68:64:57:a3:83:5f:04:b9:8f:54:23:74:fb: 28:34:2b:80:c8:12:93:54:c0:4a:5f:45:e2:51:11: b2:5b:ef:d9:58:5b:6a:46:c3:ff:d9:ae:27:42:26: a6:4f:59:3f:d1:ad:29:bc:8e:e9:c6:3a:5b:f3:aa: e5:e4:e2:4b:d8:43:3b:12:60:74:9d:f7:62:e4:dd: 50:ff:65:48:6c:dd:ab:90:d3:c7:54:91:6b:8c:3f: 66:7f:5c:d0:0f:93:c5:76:f9:7b:f8:6c:69:73:61: ad:34:2a:5e:c9:dc:2e:52:94:bc:e4:09:1c:5f:bd: c8:9b:a6:b7:e8:fa:4a:bf:98:92:f1:f6:72:e6:6f: 1d:d5:2e:cb:8b:a7:a9:07:36:b2:3c:52:4c:87:5a: cf:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B3:89:E0:3E:DE:EB:05:5F:F3:E5:47:FE:A0:2B:78:47:51:F1:07 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f7ec8552-7ddb-4978-bb8c-fc97d0625b4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:4020::/48 Signature Algorithm: sha256WithRSAEncryption 93:1b:2a:b6:1a:3c:29:7d:a3:4c:0a:4b:d2:ba:39:a9:91:e9: fb:f6:04:34:bd:e9:ce:45:56:9d:f9:ea:0a:ef:10:e9:da:62: f7:0f:c0:2e:06:a7:bf:3f:8b:4d:ad:e2:92:fc:20:44:c5:b9: f8:93:df:ed:f4:4b:d9:1c:c9:91:99:04:61:45:00:6c:87:16: d0:5f:55:97:38:42:ee:d5:5b:19:b3:06:2b:ea:f0:4b:8f:b5: 0e:7b:d8:48:ab:0a:ab:c2:9a:37:5d:55:41:ee:fc:90:61:ad: f7:fb:f6:2b:3e:a8:bd:7c:55:b3:44:f5:59:ce:44:8a:44:1e: 60:ce:64:a7:72:a6:d5:0e:3a:71:47:52:09:33:f8:a5:dd:82: 88:99:38:e3:e1:b6:58:90:bd:6e:7e:0c:e9:53:e7:46:e6:cd: 36:f2:c5:9e:aa:63:a0:5e:a7:24:cc:89:ad:4f:f8:54:b9:36: 3c:e3:89:a5:88:64:c1:11:84:62:08:eb:98:62:a8:6a:ff:a0: a5:1d:27:58:e2:35:0f:0c:d1:f4:de:be:d6:85:a2:99:a1:69: 31:42:0f:ba:bb:64:68:83:49:d1:5d:a3:a1:b7:38:0f:66:23: 21:07:c8:97:f8:e6:a6:8b:47:ad:15:46:88:3e:cc:68:f7:d1: 61:fb:06:a7 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUY3qctEYkqbkbeMAg4v9ay19TGUAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMDExNVoX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAMTIzNzkxNmU2YjI1ZWIxMDk1N2U3 MGU1ODI3MmFkOTEwMDExN2I4NjM3ZmQ2ODc5YmRiMzExYmY4NjQ1MTIwNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4MD4AvlmO5zSk36qULOyuErLel3 ieGJebfm8cF4TBMqfyg0xJ3dCH47fOcF/FYKyuZT1h3p30EyMFOx4a6YCVxaDnWw wDwXCiREBNKhkzdLUJTcOMCiJheF1Cd5ELSncGNXGqWu9M81vWhkV6ODXwS5j1Qj dPsoNCuAyBKTVMBKX0XiURGyW+/ZWFtqRsP/2a4nQiamT1k/0a0pvI7pxjpb86rl 5OJL2EM7EmB0nfdi5N1Q/2VIbN2rkNPHVJFrjD9mf1zQD5PFdvl7+Gxpc2GtNCpe ydwuUpS85AkcX73Im6a36PpKv5iS8fZy5m8d1S7Li6epBzayPFJMh1rPtQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFACzieA+3usFX/PlR/6gK3hHUfEHMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y3ZWM4NTUyLTdkZGItNDk3OC1iYjhjLWZjOTdkMDYyNWI0Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaOEAgMA0GCSqGSIb3DQEBCwUAA4IBAQCTGyq2GjwpfaNMCkvS ujmpken79gQ0venORVad+eoK7xDp2mL3D8AuBqe/P4tNreKS/CBExbn4k9/t9EvZ HMmRmQRhRQBshxbQX1WXOELu1VsZswYr6vBLj7UOe9hIqwqrwpo3XVVB7vyQYa33 +/YrPqi9fFWzRPVZzkSKRB5gzmSncqbVDjpxR1IJM/il3YKImTjj4bZYkL1ufgzp U+dG5s028sWeqmOgXqckzImtT/hUuTY844mliGTBEYRiCOuYYqhq/6ClHSdY4jUP DNH03r7WhaKZoWkxQg+6u2Rog0nRXaOhtzgPZiMhB8iX+Oami0etFUaIPsxo99Fh +wan -----END CERTIFICATE-----Generated at Mon Mar 2 10:52:44 2026 by rpki-client