$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd2b2e92-17ea-4b49-b199-9af23a32900f.roa File: fd2b2e92-17ea-4b49-b199-9af23a32900f.roa (raw, json) Hash identifier: 94p2enhbqd4SfQJ1GoAJCNXnhVesqXJgzqLu0INHpfw= Subject key identifier: 0A:66:08:62:91:85:6E:27:A9:23:51:C2:BB:99:4C:B2:5C:F6:E1:FB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 44BEB7046751C6451016EEF7F9F1C0D1EDD9FD80 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd2b2e92-17ea-4b49-b199-9af23a32900f.roa Signing time: Sat 28 Feb 2026 00:00:41 +0000 ROA not before: Sat 28 Feb 2026 00:00:41 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2a:8800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:be:b7:04:67:51:c6:45:10:16:ee:f7:f9:f1:c0:d1:ed:d9:fd:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 28 00:00:41 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=53e84ffcf63d1118478f0c3afc7ff3ee1427fc718d8f396bd409c923d2792404, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d9:22:97:4f:87:45:a7:16:24:55:4a:f0:99: ec:e0:af:c2:69:8b:90:c1:6e:53:f8:75:af:d1:32: cc:8b:2f:51:01:49:36:7e:c7:3d:a2:ed:08:d3:07: 81:3e:8d:aa:45:49:d7:ce:31:1d:19:e3:7b:c6:36: 95:a2:d8:63:7b:f2:26:7f:07:f9:35:4f:56:8e:24: b8:1c:03:ba:f1:d2:56:b5:47:42:76:03:55:b1:79: f7:79:36:40:61:4d:e4:95:a2:21:66:d3:42:49:7b: ae:b8:e3:49:69:31:6a:0b:4f:2a:d0:65:9c:f7:62: 84:bc:28:d8:5f:09:ae:ef:96:fb:0c:26:d2:d2:4b: 55:27:e7:a2:51:49:9f:20:b7:6b:31:a6:0f:90:b9: e6:4a:ca:9f:dc:19:a3:2e:27:84:3a:91:d6:d7:d2: fd:ce:20:e7:db:3f:d5:e8:cd:65:8e:37:33:70:b3: 32:0b:56:72:e1:29:d8:eb:25:68:f0:34:16:ed:fe: db:b8:60:81:4b:17:44:cd:9a:bd:a8:b3:f3:92:f0: b7:2f:05:e1:b6:2e:ef:b3:23:8c:51:09:dc:df:b1: 6d:71:b9:58:93:12:ac:4c:f2:f0:d6:35:2b:8d:bc: 93:5c:fc:6a:a7:ab:a3:44:61:0d:49:31:8f:1f:4a: 07:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:66:08:62:91:85:6E:27:A9:23:51:C2:BB:99:4C:B2:5C:F6:E1:FB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd2b2e92-17ea-4b49-b199-9af23a32900f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2a:8800::/37 Signature Algorithm: sha256WithRSAEncryption 6c:44:15:7f:40:ef:6e:a9:51:b5:98:5e:0d:ca:5d:71:ae:17: 42:3f:67:ef:d3:fa:2f:9d:bc:74:3b:9d:e7:02:cf:1a:bb:fa: a8:2d:5a:d0:cc:19:e8:63:d4:0c:bf:22:d1:2c:94:0a:83:24: d7:9a:28:48:0d:4d:fb:c6:1f:e9:28:0b:35:cf:97:77:1a:61: 2b:6e:cb:2f:16:9d:4f:af:43:23:cb:d8:c1:d4:3e:57:3b:32: 47:f1:88:e7:1f:c8:f8:eb:dd:40:d7:de:25:8b:00:99:06:63: 87:bb:cb:fe:39:e0:59:1e:1a:5f:a0:f7:0c:35:2b:c5:b2:67: c6:eb:67:a1:b6:77:d1:b1:1d:0a:c6:c6:4e:91:8d:2c:f4:79: 97:51:64:e6:9d:94:8f:3f:e6:0b:ac:35:13:9b:21:bd:4e:41: e1:8c:79:99:3f:78:f6:0d:80:4c:fd:24:19:e9:13:fe:f0:a8: b5:61:7a:2d:e4:a3:51:2f:34:68:d8:15:b3:be:b8:a9:2f:5c: 39:9a:ed:a4:01:86:89:d5:81:58:c5:f6:24:8e:b7:38:c8:41: a3:f8:c4:89:cb:f1:63:3c:a3:59:c2:d1:8c:58:7e:b9:02:3c: 60:c7:a5:41:51:66:e6:3b:62:80:68:7d:2d:2e:d9:e0:a2:16: 00:40:69:f3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIURL63BGdRxkUQFu73+fHA0e3Z/YAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyODAwMDA0MVoX DTI2MDUyOTIzNTk1OVowejFJMEcGA1UEBRNANTNlODRmZmNmNjNkMTExODQ3OGYw YzNhZmM3ZmYzZWUxNDI3ZmM3MThkOGYzOTZiZDQwOWM5MjNkMjc5MjQwNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudkil0+HRacWJFVK8Jns4K/CaYuQ wW5T+HWv0TLMiy9RAUk2fsc9ou0I0weBPo2qRUnXzjEdGeN7xjaVothje/Imfwf5 NU9WjiS4HAO68dJWtUdCdgNVsXn3eTZAYU3klaIhZtNCSXuuuONJaTFqC08q0GWc 92KEvCjYXwmu75b7DCbS0ktVJ+eiUUmfILdrMaYPkLnmSsqf3BmjLieEOpHW19L9 ziDn2z/V6M1ljjczcLMyC1Zy4SnY6yVo8DQW7f7buGCBSxdEzZq9qLPzkvC3LwXh ti7vsyOMUQnc37FtcblYkxKsTPLw1jUrjbyTXPxqp6ujRGENSTGPH0oHEwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFApmCGKRhW4nqSNRwruZTLJc9uH7MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ZkMmIyZTkyLTE3ZWEtNGI0OS1iMTk5LTlhZjIzYTMyOTAwZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYDJAbaKogwDQYJKoZIhvcNAQELBQADggEBAGxEFX9A726pUbWYXg3K XXGuF0I/Z+/T+i+dvHQ7necCzxq7+qgtWtDMGehj1Ay/ItEslAqDJNeaKEgNTfvG H+koCzXPl3caYStuyy8WnU+vQyPL2MHUPlc7MkfxiOcfyPjr3UDX3iWLAJkGY4e7 y/454FkeGl+g9ww1K8WyZ8brZ6G2d9GxHQrGxk6RjSz0eZdRZOadlI8/5gusNROb Ib1OQeGMeZk/ePYNgEz9JBnpE/7wqLVhei3ko1EvNGjYFbO+uKkvXDma7aQBhonV gVjF9iSOtzjIQaP4xInL8WM8o1nC0YxYfrkCPGDHpUFRZuY7YoBofS0u2eCiFgBA afM= -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:34 2026 by rpki-client