$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/122b6540-2716-4812-94bd-babdad6e9125.roa File: 122b6540-2716-4812-94bd-babdad6e9125.roa (raw, json) Hash identifier: CBhNx8ad9JPtYpUyK9MvlYdBm64qU6+C7ftgdnLiGGA= Subject key identifier: B3:5B:E1:5B:4D:BC:06:E5:26:1F:38:8B:2E:8D:71:32:38:32:85:2D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0E723153332AD87A90727181C527FFD454E51113 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/122b6540-2716-4812-94bd-babdad6e9125.roa Signing time: Wed 18 Feb 2026 00:00:49 +0000 ROA not before: Wed 18 Feb 2026 00:00:49 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 00:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:72:31:53:33:2a:d8:7a:90:72:71:81:c5:27:ff:d4:54:e5:11:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 18 00:00:49 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=489b891a4545523463677f7b70d3d626879a4fd292c925ae806cc1635d5e25c0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:15:66:c8:47:ba:11:99:55:3a:a0:9a:76:d0: 81:67:f5:00:6b:ce:3a:4f:0e:9e:70:15:72:91:0b: 8f:d1:54:1f:49:e4:a3:47:09:77:4d:47:02:3a:d1: 0c:ba:c0:a4:e9:24:47:f1:7a:4b:7e:10:e8:d2:a2: 7d:8b:c4:a1:53:48:10:26:ef:70:9f:1d:e7:66:78: c7:e8:cc:12:7d:ab:cf:3e:aa:48:c4:7e:58:48:2a: 33:39:58:9a:ae:9c:2a:f5:da:e8:6d:18:9f:84:44: d2:10:f6:f4:1e:89:be:64:77:56:16:ff:bd:1c:a9: f3:d2:4e:78:27:6c:70:8f:99:b3:af:14:62:87:bb: 82:d0:d5:13:fb:d8:d4:b1:9c:5b:81:bc:52:f2:0f: 9e:e8:29:db:fc:54:11:e0:63:f6:87:99:c4:e1:01: 8a:75:8e:7b:99:37:00:a4:cd:d4:67:fe:d1:24:77: db:50:dd:95:b7:0a:97:68:63:70:96:06:a2:f9:9d: 80:34:c0:44:87:4c:c4:08:26:6d:c1:5d:a4:8b:04: 19:80:43:cb:da:74:37:a5:fa:2b:0d:c5:c0:dc:8d: d8:df:bb:a0:54:5e:3f:4f:3f:6b:00:e5:fd:8f:6d: 41:e2:cc:d4:0e:42:c4:f6:85:52:70:ca:0b:56:a5: 54:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:5B:E1:5B:4D:BC:06:E5:26:1F:38:8B:2E:8D:71:32:38:32:85:2D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/122b6540-2716-4812-94bd-babdad6e9125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:a040::/48 Signature Algorithm: sha256WithRSAEncryption 73:68:10:df:4a:4f:46:93:1e:85:6b:d5:07:19:3c:06:a3:77: 9a:da:d8:d5:df:0a:c7:4d:b4:83:2f:d1:9c:86:6e:70:1b:99: 90:3b:17:c6:fa:75:11:ac:0d:64:c4:a2:61:57:a1:ae:52:48: 8d:27:89:a7:55:50:54:00:a5:e2:d6:c0:78:a4:0b:93:69:45: f2:e1:f0:60:80:1d:2e:ce:3f:e4:ba:8b:f6:43:5f:e9:25:49: e3:e6:9a:a6:c2:d7:75:ce:08:c5:5a:cc:f8:45:fd:2c:94:7d: 0f:d1:79:c9:0d:e3:b5:ff:0d:d7:d2:f9:d9:fd:3b:2c:e8:c3: 11:68:52:21:15:06:3a:6c:06:6e:2b:49:ac:c1:f6:fc:69:c8: 97:c6:12:81:a3:34:21:76:59:5e:aa:38:28:49:70:89:bf:09: 75:ea:f6:e7:5f:c0:53:94:2e:db:e0:05:ea:6f:e0:c0:28:02: 49:fe:0e:55:b3:71:15:f4:bd:c4:fc:64:a7:fc:d4:02:9e:ba: 68:bc:8a:23:8a:f4:11:5a:f6:c9:07:7e:0f:25:18:03:6f:66: 1d:e4:8b:8b:02:61:91:2d:49:09:8c:b9:af:67:2c:f1:0c:7b: e1:88:c1:9c:ad:9f:47:4a:25:f2:21:6a:d6:a8:02:03:52:96: b3:d8:c4:f7 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUDnIxUzMq2HqQcnGBxSf/1FTlERMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxODAwMDA0OVoX DTI2MDUxOTIzNTk1OVowejFJMEcGA1UEBRNANDg5Yjg5MWE0NTQ1NTIzNDYzNjc3 ZjdiNzBkM2Q2MjY4NzlhNGZkMjkyYzkyNWFlODA2Y2MxNjM1ZDVlMjVjMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7xVmyEe6EZlVOqCadtCBZ/UAa846 Tw6ecBVykQuP0VQfSeSjRwl3TUcCOtEMusCk6SRH8XpLfhDo0qJ9i8ShU0gQJu9w nx3nZnjH6MwSfavPPqpIxH5YSCozOViarpwq9drobRifhETSEPb0Hom+ZHdWFv+9 HKnz0k54J2xwj5mzrxRih7uC0NUT+9jUsZxbgbxS8g+e6Cnb/FQR4GP2h5nE4QGK dY57mTcApM3UZ/7RJHfbUN2VtwqXaGNwlgai+Z2ANMBEh0zECCZtwV2kiwQZgEPL 2nQ3pforDcXA3I3Y37ugVF4/Tz9rAOX9j21B4szUDkLE9oVScMoLVqVULwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLNb4VtNvAblJh84iy6NcTI4MoUtMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzEyMmI2NTQwLTI3MTYtNDgxMi05NGJkLWJhYmRhZDZlOTEyNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/6BAMA0GCSqGSIb3DQEBCwUAA4IBAQBzaBDfSk9Gkx6Fa9UH GTwGo3ea2tjV3wrHTbSDL9Gchm5wG5mQOxfG+nURrA1kxKJhV6GuUkiNJ4mnVVBU AKXi1sB4pAuTaUXy4fBggB0uzj/kuov2Q1/pJUnj5pqmwtd1zgjFWsz4Rf0slH0P 0XnJDeO1/w3X0vnZ/Tss6MMRaFIhFQY6bAZuK0mswfb8aciXxhKBozQhdlleqjgo SXCJvwl16vbnX8BTlC7b4AXqb+DAKAJJ/g5Vs3EV9L3E/GSn/NQCnrpovIojivQR WvbJB34PJRgDb2Yd5IuLAmGRLUkJjLmvZyzxDHvhiMGcrZ9HSiXyIWrWqAIDUpaz 2MT3 -----END CERTIFICATE-----Generated at Sat Feb 21 16:25:14 2026 by rpki-client