$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f863355c-0a33-4eb1-b2bb-b0c40c0693cf.roa File: f863355c-0a33-4eb1-b2bb-b0c40c0693cf.roa (raw, json) Hash identifier: kMh0QtimhQRNglhgBxdzNU64veQxq4xD2JCdcCMh89I= Subject key identifier: A9:47:06:27:39:39:1F:81:7F:09:48:46:32:35:64:84:CB:C3:DC:CD Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 24D65982B166A5B134045B52480D5E98678CFAE9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f863355c-0a33-4eb1-b2bb-b0c40c0693cf.roa Signing time: Fri 20 Feb 2026 00:01:36 +0000 ROA not before: Fri 20 Feb 2026 00:01:36 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:7000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:d6:59:82:b1:66:a5:b1:34:04:5b:52:48:0d:5e:98:67:8c:fa:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:01:36 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=e46c48ffdcd0eaab232c634c9ffe1353b98741a85762ecf780baaa13d7a618ce, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2a:3e:f3:4e:cd:ca:c7:c0:a5:8a:51:a6:ed: 2c:c3:32:03:06:46:69:d8:3d:87:1e:a9:18:0d:8b: 39:f0:d9:04:d3:2c:e3:f6:0c:b4:a4:9c:cc:3d:d3: 9c:e7:c7:67:02:85:96:17:b9:85:66:16:9a:31:fc: 14:24:77:de:0a:14:7b:1f:46:fa:26:f3:c8:98:0a: a8:b3:b9:5f:3e:e1:ea:75:4c:66:4c:a8:63:af:17: 3c:d6:0d:90:b6:a6:7c:ff:01:7f:1b:ed:28:65:7f: f9:5a:8b:74:e6:bb:31:dd:73:4f:c6:88:1e:60:24: 41:e3:1e:25:c4:14:55:7d:b8:84:59:53:ed:3e:33: b2:31:b8:97:07:36:3c:5c:2a:a5:87:47:68:2d:d6: 3b:97:80:ee:95:ee:99:04:48:d7:f6:8b:03:fc:ad: 6a:39:8e:f7:be:f9:74:71:73:8b:05:04:d9:fc:c3: d9:de:99:61:f4:88:76:0c:62:c2:9a:27:fb:46:af: 8a:aa:99:f2:dc:8c:69:9f:df:41:66:f1:9c:ed:88: 68:e2:89:3b:b0:79:e1:a4:2a:ae:f7:b1:ea:8f:cf: c8:e1:59:a6:55:9c:cf:41:f6:f7:0c:43:8a:d7:36: 6d:2e:5b:d0:7d:98:a4:10:f2:6f:f6:2b:ce:26:6c: 48:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:47:06:27:39:39:1F:81:7F:09:48:46:32:35:64:84:CB:C3:DC:CD X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f863355c-0a33-4eb1-b2bb-b0c40c0693cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:7000::/40 Signature Algorithm: sha256WithRSAEncryption 3e:25:75:f2:61:a7:3e:09:50:2f:db:a1:ca:36:9b:34:63:3f: 4e:9b:b5:de:65:40:0c:92:08:e3:9a:71:a8:8f:3b:bc:d5:49: 20:31:ca:95:0f:49:f7:50:92:d8:2e:16:bb:9f:67:93:99:e3: 3e:97:c1:44:a7:43:b4:0b:ee:e3:f3:0e:a0:a8:3e:63:6e:75: 7c:cf:2d:42:b4:14:b6:8c:a8:b6:83:f6:68:b2:cd:7a:8f:cb: 3b:f5:a8:d9:ed:b9:40:7c:40:70:be:51:14:6f:32:2e:61:2e: 6b:57:5a:d8:06:af:90:ef:52:53:5a:e2:57:58:c3:89:85:24: 2d:d5:24:71:ed:8b:93:4f:8e:b3:38:1d:d2:27:fa:82:7a:eb: 8f:c9:4d:1e:2c:15:86:86:c5:e2:91:7f:14:9a:41:97:f6:8d: 44:88:e3:c3:9d:0a:a3:a9:04:3c:1a:4e:e6:73:8f:64:35:fd: cb:30:a9:7b:e3:e2:5b:6b:ec:a6:fd:6f:2f:89:15:9f:9b:26: 5d:63:f8:54:9f:08:a6:90:67:a2:8c:65:ad:78:d7:d4:70:ed: ce:04:37:6a:c8:4c:9d:ed:98:41:e4:e5:1f:72:8b:6d:3c:53: a0:c5:b6:00:f7:15:df:0a:73:5e:45:0c:ef:ef:80:e8:f5:87: ca:c4:ad:ed -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJNZZgrFmpbE0BFtSSA1emGeM+ukwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMDEzNloX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAZTQ2YzQ4ZmZkY2QwZWFhYjIzMmM2 MzRjOWZmZTEzNTNiOTg3NDFhODU3NjJlY2Y3ODBiYWFhMTNkN2E2MThjZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSo+807NysfApYpRpu0swzIDBkZp 2D2HHqkYDYs58NkE0yzj9gy0pJzMPdOc58dnAoWWF7mFZhaaMfwUJHfeChR7H0b6 JvPImAqos7lfPuHqdUxmTKhjrxc81g2QtqZ8/wF/G+0oZX/5Wot05rsx3XNPxoge YCRB4x4lxBRVfbiEWVPtPjOyMbiXBzY8XCqlh0doLdY7l4Dule6ZBEjX9osD/K1q OY73vvl0cXOLBQTZ/MPZ3plh9Ih2DGLCmif7Rq+Kqpny3Ixpn99BZvGc7Yho4ok7 sHnhpCqu97Hqj8/I4VmmVZzPQfb3DEOK1zZtLlvQfZikEPJv9ivOJmxIWwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKlHBic5OR+BfwlIRjI1ZITLw9zNMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y4NjMzNTVjLTBhMzMtNGViMS1iMmJiLWIwYzQwYzA2OTNjZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/3AwDQYJKoZIhvcNAQELBQADggEBAD4ldfJhpz4JUC/boco2 mzRjP06btd5lQAySCOOacaiPO7zVSSAxypUPSfdQktguFrufZ5OZ4z6XwUSnQ7QL 7uPzDqCoPmNudXzPLUK0FLaMqLaD9miyzXqPyzv1qNntuUB8QHC+URRvMi5hLmtX WtgGr5DvUlNa4ldYw4mFJC3VJHHti5NPjrM4HdIn+oJ664/JTR4sFYaGxeKRfxSa QZf2jUSI48OdCqOpBDwaTuZzj2Q1/cswqXvj4ltr7Kb9by+JFZ+bJl1j+FSfCKaQ Z6KMZa1419Rw7c4EN2rITJ3tmEHk5R9yi208U6DFtgD3Fd8Kc15FDO/vgOj1h8rE re0= -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:09 2026 by rpki-client