$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa File: 55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa (raw, json) Hash identifier: HHJWK5Bo2FUHSxSj0yTCMW8Z0gtyz7HLOu6HKtXwnPo= Subject key identifier: C9:FB:A0:DE:5E:9A:BF:20:DF:0B:BA:45:A9:A8:AC:2F:55:C1:B1:FE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 57F5067118E92E11B56651CB2C5A9C197200F7B5 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa Signing time: Sun 22 Feb 2026 00:01:14 +0000 ROA not before: Sun 22 Feb 2026 00:01:14 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:f5:06:71:18:e9:2e:11:b5:66:51:cb:2c:5a:9c:19:72:00:f7:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:01:14 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=e614f59845265c191aba214d66b063db6b6131687a79369ca202e40d51628e98, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e1:83:92:68:07:34:4f:c1:88:00:52:ca:34: 35:9e:77:15:bb:5e:f4:c5:44:b5:8d:1e:3f:5e:cc: 80:2d:b8:46:f3:dc:1c:09:dd:11:a6:ac:2d:80:bf: b3:31:9f:b6:de:de:9d:51:e6:76:eb:6a:95:f2:b0: d3:27:ba:e9:f0:b7:f2:eb:12:f0:17:78:00:c9:8f: 4b:84:5d:23:37:cc:16:c4:aa:e3:f4:06:8d:95:b4: 21:6a:8a:78:04:90:82:cb:dd:62:b3:91:65:7a:5a: 3f:1a:71:2a:24:f8:fc:1a:4a:c5:17:50:ea:48:16: c7:51:5b:1d:76:a3:38:9e:36:a1:61:61:4c:57:57: 92:44:4a:ad:54:da:19:49:a3:d1:a9:a2:41:3c:06: ef:54:f6:88:7a:05:9e:90:e3:84:57:98:42:77:7a: 6e:ad:4c:55:c5:20:6b:4a:2f:04:1e:5b:5a:6f:6c: ff:7a:e7:6e:74:cc:9a:43:79:82:52:30:48:d7:c6: 4e:65:30:d8:e2:0b:2c:a3:5f:23:bf:66:a4:9d:76: 63:77:d1:0c:34:fc:45:93:38:94:c7:b9:b7:e3:1d: 32:c9:7f:9b:0e:3c:47:f1:23:13:e4:11:85:6e:0e: b4:f2:f2:9b:63:2a:90:d4:ef:60:72:3e:6d:59:84: b3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:FB:A0:DE:5E:9A:BF:20:DF:0B:BA:45:A9:A8:AC:2F:55:C1:B1:FE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55de4d3c-c262-44e2-9b4b-4db6bedc8c6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:800::/40 Signature Algorithm: sha256WithRSAEncryption 46:88:50:60:d5:16:be:ec:59:23:26:42:d7:f8:7f:9e:9f:2f: d4:1f:ef:ed:6d:69:57:66:41:41:66:e6:01:5c:f3:07:4f:8c: d9:5c:0b:2e:fa:bb:73:d9:af:fc:59:6c:49:2f:a8:d8:9c:bd: e0:b6:8e:ba:33:69:e0:5c:81:a5:a4:e1:5e:ea:df:83:76:95: 06:02:c9:e0:21:ad:71:1e:bd:fc:ee:54:27:ed:c4:fd:6a:54: d4:1d:19:25:b6:fb:31:7a:24:2d:fd:9c:27:eb:21:9f:ce:18: e6:53:55:26:87:49:a6:a9:c4:17:ad:9a:60:0e:28:36:8b:96: 0e:e4:ca:91:2b:d5:13:11:3d:2c:47:ce:7a:f8:0c:7a:19:42: 04:0b:72:c6:c2:a7:0e:96:ce:ee:9b:32:20:1e:16:90:a6:c7: b4:33:30:75:a4:0e:8b:8b:f1:a3:19:16:20:1e:3d:9b:14:2d: 7c:7a:50:2f:4a:78:4b:2e:bc:54:e0:99:c9:4f:20:14:cb:e4: 45:95:93:85:f7:d3:1e:22:83:69:00:f5:b4:6f:1f:3d:11:55: 61:b8:97:a8:3b:dd:9e:25:cc:d7:ce:9c:d0:73:09:e6:09:8d: 89:ab:5c:1e:c5:66:70:34:25:2f:89:f1:96:9e:2f:67:06:ed: 57:b2:9b:a9 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUV/UGcRjpLhG1ZlHLLFqcGXIA97UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMDExNFoX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAZTYxNGY1OTg0NTI2NWMxOTFhYmEy MTRkNjZiMDYzZGI2YjYxMzE2ODdhNzkzNjljYTIwMmU0MGQ1MTYyOGU5ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+GDkmgHNE/BiABSyjQ1nncVu170 xUS1jR4/XsyALbhG89wcCd0RpqwtgL+zMZ+23t6dUeZ262qV8rDTJ7rp8Lfy6xLw F3gAyY9LhF0jN8wWxKrj9AaNlbQhaop4BJCCy91is5Flelo/GnEqJPj8GkrFF1Dq SBbHUVsddqM4njahYWFMV1eSREqtVNoZSaPRqaJBPAbvVPaIegWekOOEV5hCd3pu rUxVxSBrSi8EHltab2z/eududMyaQ3mCUjBI18ZOZTDY4gsso18jv2aknXZjd9EM NPxFkziUx7m34x0yyX+bDjxH8SMT5BGFbg608vKbYyqQ1O9gcj5tWYSzEQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMn7oN5emr8g3wu6RamorC9VwbH+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU1ZGU0ZDNjLWMyNjItNDRlMi05YjRiLTRkYjZiZWRjOGM2Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaAgwDQYJKoZIhvcNAQELBQADggEBAEaIUGDVFr7sWSMmQtf4 f56fL9Qf7+1taVdmQUFm5gFc8wdPjNlcCy76u3PZr/xZbEkvqNicveC2jrozaeBc gaWk4V7q34N2lQYCyeAhrXEevfzuVCftxP1qVNQdGSW2+zF6JC39nCfrIZ/OGOZT VSaHSaapxBetmmAOKDaLlg7kypEr1RMRPSxHznr4DHoZQgQLcsbCpw6Wzu6bMiAe FpCmx7QzMHWkDouL8aMZFiAePZsULXx6UC9KeEsuvFTgmclPIBTL5EWVk4X30x4i g2kA9bRvHz0RVWG4l6g73Z4lzNfOnNBzCeYJjYmrXB7FZnA0JS+J8ZaeL2cG7Vey m6k= -----END CERTIFICATE-----Generated at Mon Mar 2 05:07:22 2026 by rpki-client