$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7b65b6ed-9125-422d-8aa2-da4ed8c043f2.roa File: 7b65b6ed-9125-422d-8aa2-da4ed8c043f2.roa (raw, json) Hash identifier: dH0Qy5f5uxov0y+2eUXoYR3i9OJNqlZ3VfpGnod6o3s= Subject key identifier: 05:D2:75:6E:FB:10:BF:91:77:F2:52:7D:E6:28:2A:9B:47:55:71:5E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 021813DDCD6AEC6FFFE812E5203301B8B67FFB66 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7b65b6ed-9125-422d-8aa2-da4ed8c043f2.roa Signing time: Wed 11 Feb 2026 00:01:15 +0000 ROA not before: Wed 11 Feb 2026 00:01:15 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daea:c0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 00:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:18:13:dd:cd:6a:ec:6f:ff:e8:12:e5:20:33:01:b8:b6:7f:fb:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 11 00:01:15 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=42ed864ede43d8f64882e0734fee73e8e3d9290de0a12aa6a0f4d04cc5525f78, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:75:ba:44:87:7a:f6:8f:1a:0f:95:6e:ee:25: af:4a:6c:da:ff:45:28:16:ea:a2:20:09:3b:1f:2b: 4a:8d:ab:1a:62:a6:5f:48:0d:7f:9a:96:85:7c:62: c7:95:cc:4a:f9:07:ba:37:3b:87:bb:53:f3:43:46: 21:cd:76:57:e6:77:b9:0d:cd:b3:d5:be:de:46:f1: 12:19:0a:12:3f:9e:9f:7f:85:2a:70:4c:89:f5:d5: e0:f2:e7:a2:d4:f9:32:75:5c:99:54:2f:b3:fc:04: 32:70:3c:01:7b:44:6d:dc:11:ca:24:13:f7:79:eb: 64:b6:a0:d5:59:4e:bc:1c:05:06:d1:3d:dc:54:bb: d9:42:36:74:0c:b0:b6:e7:eb:c8:85:8a:a6:c3:90: ff:b2:5a:02:af:70:46:af:a8:2d:2c:33:2b:68:38: 4c:e8:f8:dc:94:9b:43:fe:62:45:b9:f6:09:16:6d: ab:8e:7a:5f:c3:72:18:a4:43:2a:9f:7e:fe:0f:f9: 77:61:3c:69:6a:c7:b9:76:bd:1c:f5:28:79:ca:07: d3:ea:c7:3d:ba:64:38:80:6e:55:a8:a4:64:39:4e: 07:98:f7:31:49:81:a9:21:e5:fb:4b:04:6b:96:4f: 19:02:c9:4e:de:e7:65:e8:07:f8:b4:f1:80:73:e4: 7c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D2:75:6E:FB:10:BF:91:77:F2:52:7D:E6:28:2A:9B:47:55:71:5E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7b65b6ed-9125-422d-8aa2-da4ed8c043f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daea:c0c0::/48 Signature Algorithm: sha256WithRSAEncryption 32:a3:ad:0b:fc:4a:b4:37:a2:84:a5:f0:cc:e9:1b:e8:cc:00: 82:56:11:9e:cd:7d:00:06:7a:ab:81:65:63:74:a9:b0:5f:f9: bc:97:ac:de:1a:7f:89:3d:d1:65:6f:20:d6:f4:c8:d8:e2:c3: 86:70:1c:55:b6:1f:fc:60:bd:12:ed:74:20:c9:c7:de:65:a4: ba:9c:61:93:00:62:7c:55:6a:46:bd:b8:1c:76:2a:5c:4b:94: 6a:7a:a8:95:20:4b:08:e9:e2:d8:50:da:fd:3a:ac:a1:f3:21: b4:22:ad:14:94:e7:0a:f3:0a:14:79:53:8a:74:f9:d0:8d:0d: 64:00:57:e2:80:5a:bc:66:11:71:11:42:1d:75:fb:2b:15:a8: 47:d6:f1:f8:f3:a9:53:1d:a8:0b:87:c8:e7:c9:0b:63:bf:09: 5a:7f:f1:c8:36:e8:88:b3:3f:8e:d6:a0:5a:05:f7:6c:81:84: d0:8a:c1:1f:84:45:55:06:8e:eb:e6:04:da:03:6b:88:20:b9: 6c:38:f3:f2:87:20:e2:f2:0d:fa:74:65:5f:7b:24:e8:a4:72: 62:8a:4e:c7:77:20:c5:49:55:07:fd:d3:ce:11:e9:4e:31:ed: 55:00:5f:20:8b:1d:70:d9:59:fe:f6:a5:32:d7:26:ac:a0:1e: c9:af:20:d3 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUAhgT3c1q7G//6BLlIDMBuLZ/+2YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMTAwMDExNVoX DTI2MDUxMjIzNTk1OVowejFJMEcGA1UEBRNANDJlZDg2NGVkZTQzZDhmNjQ4ODJl MDczNGZlZTczZThlM2Q5MjkwZGUwYTEyYWE2YTBmNGQwNGNjNTUyNWY3ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHW6RId69o8aD5Vu7iWvSmza/0Uo FuqiIAk7HytKjasaYqZfSA1/mpaFfGLHlcxK+Qe6NzuHu1PzQ0YhzXZX5ne5Dc2z 1b7eRvESGQoSP56ff4UqcEyJ9dXg8uei1PkydVyZVC+z/AQycDwBe0Rt3BHKJBP3 eetktqDVWU68HAUG0T3cVLvZQjZ0DLC25+vIhYqmw5D/sloCr3BGr6gtLDMraDhM 6PjclJtD/mJFufYJFm2rjnpfw3IYpEMqn37+D/l3YTxpase5dr0c9Sh5ygfT6sc9 umQ4gG5VqKRkOU4HmPcxSYGpIeX7SwRrlk8ZAslO3udl6Af4tPGAc+R8ywIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAXSdW77EL+Rd/JSfeYoKptHVXFeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdiNjViNmVkLTkxMjUtNDIyZC04YWEyLWRhNGVkOGMwNDNmMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6sDAMA0GCSqGSIb3DQEBCwUAA4IBAQAyo60L/Eq0N6KEpfDM 6RvozACCVhGezX0ABnqrgWVjdKmwX/m8l6zeGn+JPdFlbyDW9MjY4sOGcBxVth/8 YL0S7XQgycfeZaS6nGGTAGJ8VWpGvbgcdipcS5RqeqiVIEsI6eLYUNr9Oqyh8yG0 Iq0UlOcK8woUeVOKdPnQjQ1kAFfigFq8ZhFxEUIddfsrFahH1vH486lTHagLh8jn yQtjvwlaf/HINuiIsz+O1qBaBfdsgYTQisEfhEVVBo7r5gTaA2uIILlsOPPyhyDi 8g36dGVfeyTopHJiik7HdyDFSVUH/dPOEelOMe1VAF8gix1w2Vn+9qUy1yasoB7J ryDT -----END CERTIFICATE-----Generated at Sat Feb 21 16:23:07 2026 by rpki-client