$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/81118eea-9566-4bf8-8345-117fe601454d.roa File: 81118eea-9566-4bf8-8345-117fe601454d.roa (raw, json) Hash identifier: 08id9XwqiVOb3c4f9HWKFvGrrTrDX5odyu4bpU3m/9g= Subject key identifier: BC:E4:84:71:35:35:4C:DD:CC:26:E8:CB:6D:FF:4F:5F:B4:3F:F2:8D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0ED52A42E2828A6A57D4CBF4439B024426CB1EF6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/81118eea-9566-4bf8-8345-117fe601454d.roa Signing time: Wed 11 Feb 2026 00:10:33 +0000 ROA not before: Wed 11 Feb 2026 00:10:33 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daea:28c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 00:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d5:2a:42:e2:82:8a:6a:57:d4:cb:f4:43:9b:02:44:26:cb:1e:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 11 00:10:33 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=809229fc524d19a75587351b3392c79d6e551af1dc486a5b1edfdfc353c6176a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:2e:68:85:2b:d3:8a:8d:13:72:4d:c5:dd:0a: 75:2f:38:8f:36:4f:34:f0:5a:e8:d1:b7:54:6f:56: 03:b6:15:74:e5:c2:68:f8:52:ef:4c:1c:ca:f1:e8: a4:da:03:da:f8:a4:03:f1:9b:d8:63:50:37:93:db: 7b:43:19:c6:24:be:c2:3b:c2:54:81:99:ed:bb:b3: d4:79:07:e4:f9:a3:07:d0:21:56:f1:54:de:13:dc: bb:89:cb:1f:7a:e6:a2:9b:78:a8:1f:cc:10:d1:95: 7e:85:45:55:71:eb:f7:79:2d:e4:87:1c:77:41:23: d1:59:7c:a6:9f:ed:e7:f2:b9:1e:8b:45:12:7f:58: 5f:95:80:9c:03:9e:86:d6:5d:2f:c0:20:1a:be:b0: 34:04:9b:e3:7f:39:eb:cd:3a:af:8a:b8:07:0b:c3: e0:25:1a:77:1c:db:04:6d:d3:2e:65:95:3b:76:ce: 89:be:e9:e9:5d:f3:06:f9:26:cd:56:af:f1:4a:dd: ca:ed:45:0e:12:67:41:f4:5e:a5:3a:72:6a:de:11: 37:54:d3:0f:18:cd:b8:5e:3e:64:74:1b:11:39:24: a7:c0:2f:fb:b9:1b:77:3a:61:04:68:2a:58:cb:c2: ac:d1:42:5e:2a:b4:b6:e7:9e:97:64:85:19:74:e6: 4d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E4:84:71:35:35:4C:DD:CC:26:E8:CB:6D:FF:4F:5F:B4:3F:F2:8D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/81118eea-9566-4bf8-8345-117fe601454d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daea:28c0::/48 Signature Algorithm: sha256WithRSAEncryption 32:9e:1c:ab:2a:12:ec:48:1d:8b:88:c7:27:56:d4:d5:a1:84: 34:a7:65:11:97:0e:2e:30:72:7d:b0:9b:e3:40:c6:c0:c3:53: 33:97:5f:5f:bc:e3:1e:b3:74:9d:55:06:e2:b8:b1:5b:1c:91: b6:b5:b6:6e:fa:42:06:cb:80:bb:ed:89:36:05:ca:af:85:22: 5e:b4:90:4b:f6:b9:9f:64:f6:bf:b7:33:96:05:c6:69:78:ac: 75:69:2a:dd:ae:67:1c:a8:34:48:ba:f3:cb:60:62:c8:a9:22: 38:7d:06:22:cb:51:ea:21:a2:92:d4:02:7b:ff:d5:94:a8:fc: c4:0b:92:73:25:aa:37:91:09:9b:28:3b:88:61:d0:70:a0:1d: a5:de:6e:78:85:1f:d7:3f:53:30:de:4c:61:e8:5b:5a:cb:b4: 4a:e6:b7:69:eb:ae:6e:fb:c0:85:8b:30:cc:bc:e4:7d:91:22: b3:aa:52:3e:b6:45:f1:fb:c4:08:cc:70:5b:8e:46:0d:56:df: 64:04:b5:07:12:10:09:82:60:00:3b:87:1e:5a:de:91:31:d3: 1d:9b:c6:62:60:ff:22:f5:f9:38:fc:ee:97:e4:27:e7:0f:db: 81:47:b0:d2:02:15:e1:22:dd:4a:f2:b2:4e:c4:90:3f:a6:11: 9e:e9:02:91 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUDtUqQuKCimpX1Mv0Q5sCRCbLHvYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMTAwMTAzM1oX DTI2MDUxMjIzNTk1OVowejFJMEcGA1UEBRNAODA5MjI5ZmM1MjRkMTlhNzU1ODcz NTFiMzM5MmM3OWQ2ZTU1MWFmMWRjNDg2YTViMWVkZmRmYzM1M2M2MTc2YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAli5ohSvTio0Tck3F3Qp1LziPNk80 8Fro0bdUb1YDthV05cJo+FLvTBzK8eik2gPa+KQD8ZvYY1A3k9t7QxnGJL7CO8JU gZntu7PUeQfk+aMH0CFW8VTeE9y7icsfeuaim3ioH8wQ0ZV+hUVVcev3eS3khxx3 QSPRWXymn+3n8rkei0USf1hflYCcA56G1l0vwCAavrA0BJvjfznrzTqvirgHC8Pg JRp3HNsEbdMuZZU7ds6JvunpXfMG+SbNVq/xSt3K7UUOEmdB9F6lOnJq3hE3VNMP GM24Xj5kdBsROSSnwC/7uRt3OmEEaCpYy8Ks0UJeKrS2556XZIUZdOZNRwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLzkhHE1NUzdzCboy23/T1+0P/KNMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzgxMTE4ZWVhLTk1NjYtNGJmOC04MzQ1LTExN2ZlNjAxNDU0ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6ijAMA0GCSqGSIb3DQEBCwUAA4IBAQAynhyrKhLsSB2LiMcn VtTVoYQ0p2URlw4uMHJ9sJvjQMbAw1Mzl19fvOMes3SdVQbiuLFbHJG2tbZu+kIG y4C77Yk2BcqvhSJetJBL9rmfZPa/tzOWBcZpeKx1aSrdrmccqDRIuvPLYGLIqSI4 fQYiy1HqIaKS1AJ7/9WUqPzEC5JzJao3kQmbKDuIYdBwoB2l3m54hR/XP1Mw3kxh 6Ftay7RK5rdp665u+8CFizDMvOR9kSKzqlI+tkXx+8QIzHBbjkYNVt9kBLUHEhAJ gmAAO4ceWt6RMdMdm8ZiYP8i9fk4/O6X5CfnD9uBR7DSAhXhIt1K8rJOxJA/phGe 6QKR -----END CERTIFICATE-----Generated at Sat Feb 21 16:22:26 2026 by rpki-client