$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1d075ad8-69d2-4f67-b1e8-f269b1bdda72.roa File: 1d075ad8-69d2-4f67-b1e8-f269b1bdda72.roa (raw, json) Hash identifier: PSjzUUFnPZS+CkizSEAzMSdcfSMDUy5UPVFtlA1uDYk= Subject key identifier: 29:BE:97:CD:99:16:01:DE:29:B6:C5:F5:44:71:4F:6E:7A:53:B2:A9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 275DAC4C07CC641E0834B6C8F188DB9523165EBD Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1d075ad8-69d2-4f67-b1e8-f269b1bdda72.roa Signing time: Fri 13 Feb 2026 00:00:38 +0000 ROA not before: Fri 13 Feb 2026 00:00:38 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 00:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:5d:ac:4c:07:cc:64:1e:08:34:b6:c8:f1:88:db:95:23:16:5e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 13 00:00:38 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=88a33c6515f0ff077377cd8e1e5e18a9bbc8ddb592a0146adc481327cba45da5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a4:27:cd:46:d3:53:13:f2:67:0c:de:5d:6a: 84:98:1d:e8:0a:bd:63:98:bf:2a:52:30:d4:66:49: a1:d9:eb:8c:e6:40:88:db:2c:30:b1:75:c2:55:6e: d8:09:3b:23:03:9b:06:0f:b6:b8:e2:e6:f5:0e:75: be:ee:96:91:a9:61:19:8e:a6:9f:66:a1:11:f2:7d: 92:48:03:8f:fb:39:b2:7e:75:e6:6d:8e:15:0e:92: eb:df:93:af:c7:bf:84:ae:12:cf:f2:d8:2d:d1:da: db:6a:f1:bc:65:57:da:a2:49:21:75:ac:1b:db:92: 39:de:3d:6a:99:01:23:fb:bf:ab:4e:e7:32:cd:b9: 6d:47:53:5d:3b:eb:17:9f:f0:7a:8f:33:6b:c1:6c: 07:e7:be:91:08:08:24:62:14:fe:93:68:c1:60:b6: 21:d7:f4:45:50:5e:c9:a5:db:6d:db:e5:3f:97:3d: e5:90:d3:d5:5a:fd:23:42:c1:74:3f:16:04:62:61: 56:ee:69:65:8e:8a:6e:cf:e4:41:d6:e9:3f:a8:c5: cd:aa:b6:60:8e:7c:05:eb:8f:44:2a:f6:ed:3a:02: 12:0e:a4:25:36:0b:a0:28:56:0c:31:97:ee:d8:b8: b2:99:80:ba:8b:14:04:b2:07:85:d4:7b:8e:5e:8b: d2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:BE:97:CD:99:16:01:DE:29:B6:C5:F5:44:71:4F:6E:7A:53:B2:A9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1d075ad8-69d2-4f67-b1e8-f269b1bdda72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:7000::/40 Signature Algorithm: sha256WithRSAEncryption 34:e4:b9:18:89:ad:ba:97:99:40:fa:da:05:17:9c:3b:d5:d7: 98:ed:23:0f:1c:05:5a:8d:8d:26:23:17:d1:da:86:cc:14:d2: d1:0e:33:6e:94:60:e2:ff:66:c5:42:70:1a:f6:a3:e8:5c:12: 2d:00:50:84:6f:eb:f9:d1:53:43:13:f3:36:e4:c5:fa:e3:89: 0a:2a:fb:ea:db:85:0e:e4:13:c1:61:0c:e8:45:5e:cf:d0:9f: e3:e7:2e:e2:bb:2f:9d:fb:c4:2a:40:63:52:2d:cf:cb:7f:1f: 6a:c6:ee:ee:7c:4a:f2:ab:35:91:e7:b5:53:17:36:8a:ab:2e: 60:46:f6:c0:0e:81:24:1e:2c:49:7f:d9:d8:c0:4d:c0:20:46: 87:20:dc:6c:2d:a3:56:e2:9a:26:e2:4f:d4:a4:f4:3b:0d:54: 2b:34:e3:7b:c1:d6:d5:6f:96:56:df:d6:25:b4:cb:58:e5:af: 0e:d4:3d:22:c7:dd:54:98:94:2a:36:8f:e9:9c:2b:2d:5e:70: ff:c3:c9:eb:03:3a:ee:61:2b:cf:c4:60:0a:47:df:f7:2b:ad: 1b:96:f1:38:50:7b:e4:72:f7:83:52:72:47:b8:9f:9d:7d:91: 52:90:50:4d:6c:b0:9d:d1:61:7f:f9:d8:40:8f:3f:0b:a1:29: 58:6e:b8:fc -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJ12sTAfMZB4INLbI8YjblSMWXr0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMzAwMDAzOFoX DTI2MDUxNDIzNTk1OVowejFJMEcGA1UEBRNAODhhMzNjNjUxNWYwZmYwNzczNzdj ZDhlMWU1ZTE4YTliYmM4ZGRiNTkyYTAxNDZhZGM0ODEzMjdjYmE0NWRhNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKQnzUbTUxPyZwzeXWqEmB3oCr1j mL8qUjDUZkmh2euM5kCI2ywwsXXCVW7YCTsjA5sGD7a44ub1DnW+7paRqWEZjqaf ZqER8n2SSAOP+zmyfnXmbY4VDpLr35Ovx7+ErhLP8tgt0drbavG8ZVfaokkhdawb 25I53j1qmQEj+7+rTucyzbltR1NdO+sXn/B6jzNrwWwH576RCAgkYhT+k2jBYLYh 1/RFUF7Jpdtt2+U/lz3lkNPVWv0jQsF0PxYEYmFW7mlljopuz+RB1uk/qMXNqrZg jnwF649EKvbtOgISDqQlNgugKFYMMZfu2LiymYC6ixQEsgeF1HuOXovStQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCm+l82ZFgHeKbbF9URxT256U7KpMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFkMDc1YWQ4LTY5ZDItNGY2Ny1iMWU4LWYyNjliMWJkZGE3Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9XAwDQYJKoZIhvcNAQELBQADggEBADTkuRiJrbqXmUD62gUX nDvV15jtIw8cBVqNjSYjF9HahswU0tEOM26UYOL/ZsVCcBr2o+hcEi0AUIRv6/nR U0MT8zbkxfrjiQoq++rbhQ7kE8FhDOhFXs/Qn+PnLuK7L537xCpAY1Itz8t/H2rG 7u58SvKrNZHntVMXNoqrLmBG9sAOgSQeLEl/2djATcAgRocg3Gwto1bimibiT9Sk 9DsNVCs043vB1tVvllbf1iW0y1jlrw7UPSLH3VSYlCo2j+mcKy1ecP/DyesDOu5h K8/EYApH3/crrRuW8ThQe+Ry94NScke4n519kVKQUE1ssJ3RYX/52ECPPwuhKVhu uPw= -----END CERTIFICATE-----Generated at Sat Feb 21 13:32:27 2026 by rpki-client