$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f6f0cefe-48aa-47d9-9887-859511074a41.roa File: f6f0cefe-48aa-47d9-9887-859511074a41.roa (raw, json) Hash identifier: Ra2UXK29mTdqWmPkPOzBSnlCFwvDtk48SE3G4crakUY= Subject key identifier: 1F:E7:C7:B4:A7:1C:6B:00:6E:7D:C7:A8:D2:5A:D9:E0:28:E1:9B:56 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 08DDBE9E650E165BB76B6D20178B137B51B670A0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f6f0cefe-48aa-47d9-9887-859511074a41.roa Signing time: Wed 11 Feb 2026 00:00:04 +0000 ROA not before: Wed 11 Feb 2026 00:00:04 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daea:880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 00:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:dd:be:9e:65:0e:16:5b:b7:6b:6d:20:17:8b:13:7b:51:b6:70:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 11 00:00:04 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=e31a0de5b2ce6f7881f0ff4a764907c1706b7c3e0a481cc9f9420699c450b1da, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:73:b9:22:33:d5:1d:15:d1:6d:e1:6a:c2:77: c7:a0:30:45:df:cd:45:71:bf:5a:e5:ab:d6:23:d8: ab:dd:c7:a6:22:86:eb:c9:aa:5c:92:ec:d3:f9:29: 43:78:80:9b:6a:2a:8a:ae:0d:6e:54:70:77:5f:a2: 3c:f5:ef:b2:07:2c:c7:6f:d8:40:72:ef:ca:dc:e9: 41:80:55:bf:b3:56:65:c8:fb:f5:1a:24:c0:1f:95: 8f:ec:50:3c:a6:57:4f:5f:0c:44:ec:cd:34:1b:ad: 45:e9:15:ef:bb:0f:e4:cd:ca:31:9b:01:67:82:24: d0:85:5a:fe:be:93:5c:26:ee:58:6d:ec:2d:3c:df: 79:fb:03:ad:d9:bc:e9:b1:ac:6d:65:98:e1:f5:6f: 6b:04:0e:10:68:55:6d:e5:6a:d1:86:03:12:52:90: 21:14:d1:b7:25:28:74:69:18:bd:36:84:5a:0c:7a: 45:dc:a6:43:20:90:e1:00:05:39:e6:35:b5:81:f3: 19:46:8b:f8:d5:9d:1c:4c:1e:67:da:8e:c2:dc:33: f3:f9:b0:7e:e9:b6:54:9b:8b:5c:c7:d8:1e:74:3a: 3b:7d:39:b5:fb:8c:f5:cd:22:d0:eb:58:64:0b:ce: 87:f4:66:02:ea:43:27:c6:03:dc:5d:3a:eb:f9:ff: 45:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E7:C7:B4:A7:1C:6B:00:6E:7D:C7:A8:D2:5A:D9:E0:28:E1:9B:56 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f6f0cefe-48aa-47d9-9887-859511074a41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daea:880::/48 Signature Algorithm: sha256WithRSAEncryption 78:2a:4d:dc:ef:cf:c2:6e:3f:77:17:3d:15:2c:00:90:ce:2f: 24:c7:8b:e5:75:8a:b7:4c:c6:cb:c2:c7:1c:3b:7f:68:b2:74: f1:db:2f:b4:4d:1d:e1:be:f1:3a:15:31:9c:e7:3b:ac:4e:49: 86:46:a4:7b:f4:a3:50:97:45:57:b8:60:3f:af:9c:e5:e8:3a: 4d:9f:69:5b:0b:24:64:b4:9e:0f:08:87:12:69:18:17:ce:68: 80:d1:0d:76:e8:7b:39:51:0e:95:72:21:01:e2:30:3e:69:5f: 78:0f:21:c0:12:71:be:f8:4a:4e:0f:27:77:8e:74:7e:9c:06: e1:8f:94:79:69:56:f8:aa:cc:b5:5a:d7:e1:a1:d4:39:72:69: a6:2c:1f:c4:25:da:5b:a1:c5:4d:f0:d6:4a:bd:9d:59:b6:a3: 49:59:e4:c8:64:23:77:24:10:0c:a3:60:80:44:26:b3:33:ea: 01:52:42:1c:26:b9:67:ef:99:79:34:5a:2e:81:5b:46:8c:bd: 55:12:8d:70:11:2b:51:f2:90:c6:65:d6:f6:49:d5:97:75:20: e3:07:3e:8f:e4:16:72:8e:8c:c0:ee:6d:dd:8a:bf:27:5f:4f: 0b:4c:44:4b:ba:83:bf:8e:66:c0:f9:8b:11:a4:73:70:08:18: d0:88:3a:4d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUCN2+nmUOFlu3a20gF4sTe1G2cKAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMTAwMDAwNFoX DTI2MDUxMjIzNTk1OVowejFJMEcGA1UEBRNAZTMxYTBkZTViMmNlNmY3ODgxZjBm ZjRhNzY0OTA3YzE3MDZiN2MzZTBhNDgxY2M5Zjk0MjA2OTljNDUwYjFkYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnO5IjPVHRXRbeFqwnfHoDBF381F cb9a5avWI9ir3cemIobryapckuzT+SlDeICbaiqKrg1uVHB3X6I89e+yByzHb9hA cu/K3OlBgFW/s1ZlyPv1GiTAH5WP7FA8pldPXwxE7M00G61F6RXvuw/kzcoxmwFn giTQhVr+vpNcJu5YbewtPN95+wOt2bzpsaxtZZjh9W9rBA4QaFVt5WrRhgMSUpAh FNG3JSh0aRi9NoRaDHpF3KZDIJDhAAU55jW1gfMZRov41Z0cTB5n2o7C3DPz+bB+ 6bZUm4tcx9gedDo7fTm1+4z1zSLQ61hkC86H9GYC6kMnxgPcXTrr+f9FnwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFB/nx7SnHGsAbn3HqNJa2eAo4ZtWMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y2ZjBjZWZlLTQ4YWEtNDdkOS05ODg3LTg1OTUxMTA3NGE0MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6giAMA0GCSqGSIb3DQEBCwUAA4IBAQB4Kk3c78/Cbj93Fz0V LACQzi8kx4vldYq3TMbLwsccO39osnTx2y+0TR3hvvE6FTGc5zusTkmGRqR79KNQ l0VXuGA/r5zl6DpNn2lbCyRktJ4PCIcSaRgXzmiA0Q126Hs5UQ6VciEB4jA+aV94 DyHAEnG++EpODyd3jnR+nAbhj5R5aVb4qsy1WtfhodQ5cmmmLB/EJdpbocVN8NZK vZ1ZtqNJWeTIZCN3JBAMo2CARCazM+oBUkIcJrln75l5NFougVtGjL1VEo1wEStR 8pDGZdb2SdWXdSDjBz6P5BZyjozA7m3dir8nX08LTERLuoO/jmbA+YsRpHNwCBjQ iDpN -----END CERTIFICATE-----Generated at Sat Feb 21 16:25:09 2026 by rpki-client