$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d50e303a-6697-4780-b749-2eb970425fe8.roa File: d50e303a-6697-4780-b749-2eb970425fe8.roa (raw, json) Hash identifier: mAAS81hpIcbV7XQd/I1BtlLxcghHpJsQI+aKQMdrXh4= Subject key identifier: A4:F6:48:A6:2D:2C:B8:A0:44:2B:42:C2:FC:B2:79:77:B8:6B:79:84 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6D1DAB0BF79EDCC4DC0EF091C3F99D7DFA651838 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d50e303a-6697-4780-b749-2eb970425fe8.roa Signing time: Sun 15 Feb 2026 00:00:32 +0000 ROA not before: Sun 15 Feb 2026 00:00:32 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:7000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 00:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1d:ab:0b:f7:9e:dc:c4:dc:0e:f0:91:c3:f9:9d:7d:fa:65:18:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 15 00:00:32 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=25c9d1692716126a80dcdea79e17340d654119d1b45d0c317b23b8d20f7229bf, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2d:b0:39:b9:11:ae:94:33:8d:63:81:07:b5: ad:84:05:d1:e1:f8:78:c2:1d:e5:3c:9c:6f:d0:4e: 52:ad:ee:2e:0a:62:8e:c1:99:ff:32:4e:7f:ac:69: 8f:47:2f:f6:ef:22:82:4a:42:45:19:3f:e8:5c:90: 4d:a8:11:8c:9d:2d:56:33:06:3d:76:16:c7:f9:85: ee:96:a4:01:60:34:4a:cd:50:1e:81:68:63:22:29: ad:37:71:57:d1:c0:17:da:68:ef:9b:00:eb:1a:23: 4c:71:04:71:b0:26:28:2f:84:28:c9:33:d1:b6:1c: e5:2c:80:1a:fa:e1:28:0d:d6:8c:44:50:55:ba:5d: bc:f2:6c:9d:a1:46:f2:9c:44:21:81:12:97:9c:de: 9f:ab:fb:be:d3:e1:9b:64:b9:fe:af:4d:5d:6b:f4: 6f:3c:c9:54:9d:1b:97:49:a0:f6:23:57:d4:43:7a: 13:11:cb:f2:8e:da:c0:70:06:b7:5e:3f:68:db:bb: d8:a9:84:d9:0a:87:b1:f4:96:b5:9f:9a:f5:56:03: 85:a2:d2:b4:b7:cb:88:eb:b2:4a:a7:2d:17:c9:ac: 53:e8:96:24:19:12:b3:67:65:c5:fc:6e:41:b3:c1: 7a:6c:92:64:8b:3a:3f:17:ba:32:fd:2b:a2:21:8b: 55:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F6:48:A6:2D:2C:B8:A0:44:2B:42:C2:FC:B2:79:77:B8:6B:79:84 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d50e303a-6697-4780-b749-2eb970425fe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:7000::/40 Signature Algorithm: sha256WithRSAEncryption 0f:b5:7e:6e:bb:6a:cf:6a:62:70:e9:81:19:0b:23:e6:93:39: 46:22:2d:ce:59:df:a7:4d:d8:dd:f2:b9:6a:6a:ab:fb:1e:e8: 40:e1:71:af:26:e6:5a:b7:87:8b:c7:28:a7:c6:76:aa:f8:0d: a2:fc:f8:fd:a5:cd:a6:68:91:4a:42:20:86:61:11:3e:d7:7d: 29:58:52:e4:b9:2d:84:b6:71:b8:a4:ee:4b:b9:7f:81:37:f5: 6d:2d:12:b8:2c:02:8e:d6:86:47:3e:e0:5b:31:3b:60:b5:18: 53:68:5f:7b:de:bf:80:7b:48:20:60:b4:a0:fe:98:10:87:b8: 25:d0:3b:be:51:64:f2:c9:e3:d8:17:f7:92:b1:6e:b2:4a:18: 65:a9:13:ed:9f:3f:1c:15:69:a6:47:00:24:26:9d:38:ea:62: e9:e1:e6:ca:5f:b3:3d:b2:5a:fa:0c:95:33:af:bd:7f:26:f0: c1:df:41:5c:c8:71:20:6f:44:76:59:28:ff:c7:ba:89:3b:2c: 88:54:e6:f8:8a:0d:53:ed:b1:ba:e6:e1:36:3d:d8:d3:8a:bc: 34:3b:1c:13:9d:ce:d1:64:77:1f:37:45:76:ec:3c:ad:5f:df: 88:c6:69:2f:86:60:05:04:86:83:f2:0a:b5:22:8b:e3:15:37: 90:3b:79:6b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUbR2rC/ee3MTcDvCRw/mdffplGDgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNTAwMDAzMloX DTI2MDUxNjIzNTk1OVowejFJMEcGA1UEBRNAMjVjOWQxNjkyNzE2MTI2YTgwZGNk ZWE3OWUxNzM0MGQ2NTQxMTlkMWI0NWQwYzMxN2IyM2I4ZDIwZjcyMjliZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsC2wObkRrpQzjWOBB7WthAXR4fh4 wh3lPJxv0E5Sre4uCmKOwZn/Mk5/rGmPRy/27yKCSkJFGT/oXJBNqBGMnS1WMwY9 dhbH+YXulqQBYDRKzVAegWhjIimtN3FX0cAX2mjvmwDrGiNMcQRxsCYoL4QoyTPR thzlLIAa+uEoDdaMRFBVul288mydoUbynEQhgRKXnN6fq/u+0+GbZLn+r01da/Rv PMlUnRuXSaD2I1fUQ3oTEcvyjtrAcAa3Xj9o27vYqYTZCoex9Ja1n5r1VgOFotK0 t8uI67JKpy0XyaxT6JYkGRKzZ2XF/G5Bs8F6bJJkizo/F7oy/SuiIYtVxQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKT2SKYtLLigRCtCwvyyeXe4a3mEMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q1MGUzMDNhLTY2OTctNDc4MC1iNzQ5LTJlYjk3MDQyNWZlOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9nAwDQYJKoZIhvcNAQELBQADggEBAA+1fm67as9qYnDpgRkL I+aTOUYiLc5Z36dN2N3yuWpqq/se6EDhca8m5lq3h4vHKKfGdqr4DaL8+P2lzaZo kUpCIIZhET7XfSlYUuS5LYS2cbik7ku5f4E39W0tErgsAo7Whkc+4FsxO2C1GFNo X3vev4B7SCBgtKD+mBCHuCXQO75RZPLJ49gX95KxbrJKGGWpE+2fPxwVaaZHACQm nTjqYunh5spfsz2yWvoMlTOvvX8m8MHfQVzIcSBvRHZZKP/Huok7LIhU5viKDVPt sbrm4TY92NOKvDQ7HBOdztFkdx83RXbsPK1f34jGaS+GYAUEhoPyCrUii+MVN5A7 eWs= -----END CERTIFICATE-----Generated at Sat Feb 21 16:24:38 2026 by rpki-client