$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/54b90195-351e-449b-8720-119c4baa2b80.roa File: 54b90195-351e-449b-8720-119c4baa2b80.roa (raw, json) Hash identifier: ZZR3XNt+wFtpdPgu7SQ1BnKxD3i+OWms8kptdzp9iv4= Subject key identifier: 96:FE:FA:71:25:1E:45:CA:08:41:09:D2:3A:B7:FD:1A:E9:4A:40:F4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6F16B56E95099705125742C73ACC55AF55902E79 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/54b90195-351e-449b-8720-119c4baa2b80.roa Signing time: Wed 11 Feb 2026 00:01:00 +0000 ROA not before: Wed 11 Feb 2026 00:01:00 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:70c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:16:b5:6e:95:09:97:05:12:57:42:c7:3a:cc:55:af:55:90:2e:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 11 00:01:00 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=99fc7284281186b6abfc09599f78fd2f933fa4ffb3065e5cce07ac32bc994039, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:10:de:3e:42:eb:06:24:eb:e6:14:36:ea:d4: 64:c4:9a:dc:da:78:de:bd:0d:17:75:54:f1:45:40: fa:e4:aa:a0:7a:56:b8:62:ca:de:4c:c0:db:98:a3: dd:1b:90:71:7d:ac:d9:0a:79:e5:be:c8:ce:b4:ae: 4d:80:51:4f:ac:b5:dc:a2:a7:03:a4:27:2f:ca:59: 1e:6f:40:93:d0:02:98:3e:64:6c:d6:6b:d2:1e:93: 1c:44:5e:89:7e:b6:a1:17:3a:1d:0a:03:b0:2d:28: 46:67:fc:47:51:f2:6c:67:d1:a1:8b:34:dd:a1:3f: d5:dc:c5:1b:bc:20:c4:c1:3e:74:cf:20:0d:48:13: cd:0b:22:6e:a1:21:22:fc:56:7f:a7:1b:5d:96:50: 4f:7c:ca:49:73:57:d9:ac:b2:62:6d:ea:a3:53:73: ef:37:df:58:dd:dd:82:7a:f1:9a:b7:69:04:33:99: 09:78:c8:ae:d1:82:2e:76:8c:77:af:6c:09:97:31: a3:87:74:fb:09:de:38:e4:88:df:c3:ae:f1:3a:8f: 4d:04:bd:83:35:34:a2:d1:89:36:dd:48:b3:a9:3d: b1:fe:8c:89:23:12:a5:a9:de:da:2a:c1:e2:46:9c: c9:fd:ed:cd:f9:48:df:69:a6:42:da:53:e4:a5:ba: b5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:FE:FA:71:25:1E:45:CA:08:41:09:D2:3A:B7:FD:1A:E9:4A:40:F4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/54b90195-351e-449b-8720-119c4baa2b80.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:70c0::/46 Signature Algorithm: sha256WithRSAEncryption 79:dc:e9:4d:cc:f6:fd:ed:d2:5a:48:77:c6:51:0c:47:d7:00: b4:ba:26:70:4a:0d:47:a0:e7:95:24:75:8b:08:ba:20:b2:c4: 91:46:82:15:f5:d4:4f:a8:9b:54:84:d7:93:13:52:65:bc:cc: 78:5d:e8:6b:77:e2:52:5c:02:d2:11:88:30:1a:f5:77:00:d3: f0:b7:d2:7c:af:e1:93:01:03:46:0e:54:44:4f:22:1c:08:13: 98:d8:bc:17:2f:57:0a:5c:65:82:f5:32:9f:ee:68:26:40:6b: a8:49:99:fa:f1:a6:e9:38:d0:eb:48:ec:ef:cb:b3:a4:a2:1e: 42:a0:2a:78:a5:b6:d1:a9:70:e8:a4:3a:c2:61:36:25:95:d4: 27:03:2e:d9:30:5e:57:35:ac:d7:77:32:4f:d5:86:8f:74:05: c1:99:ff:25:ba:3e:5c:7f:03:52:5c:4c:ad:44:97:16:88:01: ba:bf:38:42:41:6d:d9:29:b6:72:cb:2b:e4:a4:1b:91:f9:a7: c6:37:29:b2:10:1b:7a:38:6d:01:23:0b:56:df:19:32:2a:02: 4d:a9:9b:4f:d5:75:0d:74:61:15:0f:30:ee:06:4c:ca:a4:2c: ef:79:59:71:b2:52:5b:8e:00:57:30:1d:74:b3:a2:b8:a2:27: eb:39:1b:6f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUbxa1bpUJlwUSV0LHOsxVr1WQLnkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxMTAwMDEwMFoX DTI2MDUxMjIzNTk1OVowejFJMEcGA1UEBRNAOTlmYzcyODQyODExODZiNmFiZmMw OTU5OWY3OGZkMmY5MzNmYTRmZmIzMDY1ZTVjY2UwN2FjMzJiYzk5NDAzOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1xDePkLrBiTr5hQ26tRkxJrc2nje vQ0XdVTxRUD65Kqgela4YsreTMDbmKPdG5BxfazZCnnlvsjOtK5NgFFPrLXcoqcD pCcvylkeb0CT0AKYPmRs1mvSHpMcRF6JfrahFzodCgOwLShGZ/xHUfJsZ9GhizTd oT/V3MUbvCDEwT50zyANSBPNCyJuoSEi/FZ/pxtdllBPfMpJc1fZrLJibeqjU3Pv N99Y3d2CevGat2kEM5kJeMiu0YIudox3r2wJlzGjh3T7Cd445Ijfw67xOo9NBL2D NTSi0Yk23UizqT2x/oyJIxKlqd7aKsHiRpzJ/e3N+UjfaaZC2lPkpbq1vwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJb++nElHkXKCEEJ0jq3/RrpSkD0MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU0YjkwMTk1LTM1MWUtNDQ5Yi04NzIwLTExOWM0YmFhMmI4MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba83DAMA0GCSqGSIb3DQEBCwUAA4IBAQB53OlNzPb97dJaSHfG UQxH1wC0uiZwSg1HoOeVJHWLCLogssSRRoIV9dRPqJtUhNeTE1JlvMx4Xehrd+JS XALSEYgwGvV3ANPwt9J8r+GTAQNGDlRETyIcCBOY2LwXL1cKXGWC9TKf7mgmQGuo SZn68abpONDrSOzvy7Okoh5CoCp4pbbRqXDopDrCYTYlldQnAy7ZMF5XNazXdzJP 1YaPdAXBmf8luj5cfwNSXEytRJcWiAG6vzhCQW3ZKbZyyyvkpBuR+afGNymyEBt6 OG0BIwtW3xkyKgJNqZtP1XUNdGEVDzDuBkzKpCzveVlxslJbjgBXMB10s6K4oifr ORtv -----END CERTIFICATE-----Generated at Sun Mar 1 22:16:59 2026 by rpki-client