$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/59547eed-f394-4d43-b55e-55ee1b7fb6b4.roa File: 59547eed-f394-4d43-b55e-55ee1b7fb6b4.roa (raw, json) Hash identifier: Haq5b+BZoVu8zc9EPuUrM4/AcHMZt66rZvEjno64GoM= Subject key identifier: AD:40:2C:96:55:FE:9F:59:0F:76:AF:C3:CA:91:E1:6F:B6:73:D0:19 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 489A8C5794911D1A85FFD0D804625B500981D325 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/59547eed-f394-4d43-b55e-55ee1b7fb6b4.roa Signing time: Sat 21 Feb 2026 00:01:07 +0000 ROA not before: Sat 21 Feb 2026 00:01:07 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:9a:8c:57:94:91:1d:1a:85:ff:d0:d8:04:62:5b:50:09:81:d3:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 21 00:01:07 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=82afbcc8d9352c54c4ffe0ddc3219cc699d5115238d684f5bababfec2001ccef, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e2:34:01:33:9d:4d:b7:ca:e3:e3:4b:bd:2c: 34:3d:ca:c3:e2:08:9c:00:7e:4c:d1:a1:99:ec:c0: 41:b4:9d:98:8f:f6:a6:22:22:ba:1c:04:cd:0b:70: 0a:3a:36:cc:19:1e:82:dd:6b:e8:ce:1c:87:fb:5c: c9:60:92:5b:80:80:9c:09:0a:91:4f:48:8a:ba:d3: f4:bc:db:ba:9c:93:86:1f:72:fb:e1:c0:81:57:df: 4f:bf:c1:b1:e9:d2:43:e6:1b:e7:3c:1f:04:85:33: 64:f4:f6:b0:3e:4a:95:26:ea:e8:5a:8e:3d:7f:cc: d1:fc:35:53:f6:3f:51:1f:6d:85:fb:84:37:8f:a6: 10:76:09:da:e9:09:57:41:75:eb:2b:7f:63:e5:d3: a2:01:d8:99:0a:a7:d5:ca:e1:a8:66:66:d6:62:b9: 87:f0:4c:b1:10:89:1e:ad:f6:74:ea:99:c8:d1:85: 51:6d:6c:42:7c:3b:f0:39:1a:d6:a4:bd:e7:14:c0: 96:b0:ca:10:d6:58:f0:c1:d5:30:01:c5:76:5d:3b: db:d3:9c:de:a6:5b:9f:a0:03:fc:7e:ef:a8:82:b0: 33:4c:23:c8:2a:42:04:6a:29:a0:ea:26:28:17:3a: d4:0d:f8:3a:2b:94:2f:dd:7c:27:33:e2:65:8e:7c: af:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:40:2C:96:55:FE:9F:59:0F:76:AF:C3:CA:91:E1:6F:B6:73:D0:19 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/59547eed-f394-4d43-b55e-55ee1b7fb6b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:9000::/40 Signature Algorithm: sha256WithRSAEncryption 8d:bd:c9:50:c0:23:df:fb:3d:72:ca:72:31:72:39:11:30:a2: 0f:f6:4f:cc:16:9c:6d:69:ca:2c:65:d5:36:05:21:98:66:51: aa:d7:93:d9:f7:37:39:f8:c6:2a:57:ad:36:d6:95:7a:d6:de: 19:f3:c9:92:e5:25:66:74:70:02:31:53:b5:d6:19:6b:fa:30: a9:80:fa:d9:84:c9:1c:53:f9:6e:d6:06:53:95:bb:66:ed:90: 67:86:3c:1e:d1:60:0d:70:4d:78:6b:c5:6f:0d:32:44:d3:00: a0:95:f0:c5:c8:19:07:f0:c3:88:db:ad:e7:f8:3b:b7:17:fd: c9:88:db:8d:db:9c:83:e8:43:9d:89:d8:cf:db:60:27:ac:72: f4:30:50:c4:9c:d1:03:41:f4:f2:cd:52:f5:71:bf:f1:54:65: 3c:6c:3a:40:de:97:21:d0:1c:5f:65:48:36:ec:c5:d1:df:c1: 95:fa:b2:16:40:23:31:a2:0a:56:32:8d:88:38:8c:25:f2:3c: 4d:04:8a:1f:53:33:81:54:31:f6:de:39:29:9b:d5:6b:c1:77: ed:3d:b0:b5:7e:13:e3:c2:43:f5:3c:ae:73:e7:18:fa:02:9e: 23:33:91:d8:78:cb:9d:f2:51:ca:a8:c9:7a:f0:e4:f5:54:de: 4a:ad:7a:a0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUSJqMV5SRHRqF/9DYBGJbUAmB0yUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMTAwMDEwN1oX DTI2MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAODJhZmJjYzhkOTM1MmM1NGM0ZmZl MGRkYzMyMTljYzY5OWQ1MTE1MjM4ZDY4NGY1YmFiYWJmZWMyMDAxY2NlZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OI0ATOdTbfK4+NLvSw0PcrD4gic AH5M0aGZ7MBBtJ2Yj/amIiK6HATNC3AKOjbMGR6C3WvozhyH+1zJYJJbgICcCQqR T0iKutP0vNu6nJOGH3L74cCBV99Pv8Gx6dJD5hvnPB8EhTNk9PawPkqVJuroWo49 f8zR/DVT9j9RH22F+4Q3j6YQdgna6QlXQXXrK39j5dOiAdiZCqfVyuGoZmbWYrmH 8EyxEIkerfZ06pnI0YVRbWxCfDvwORrWpL3nFMCWsMoQ1ljwwdUwAcV2XTvb05ze plufoAP8fu+ogrAzTCPIKkIEaimg6iYoFzrUDfg6K5Qv3XwnM+JljnyvdwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFK1ALJZV/p9ZD3avw8qR4W+2c9AZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU5NTQ3ZWVkLWYzOTQtNGQ0My1iNTVlLTU1ZWUxYjdmYjZiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaZAwDQYJKoZIhvcNAQELBQADggEBAI29yVDAI9/7PXLKcjFy OREwog/2T8wWnG1pyixl1TYFIZhmUarXk9n3Nzn4xipXrTbWlXrW3hnzyZLlJWZ0 cAIxU7XWGWv6MKmA+tmEyRxT+W7WBlOVu2btkGeGPB7RYA1wTXhrxW8NMkTTAKCV 8MXIGQfww4jbref4O7cX/cmI243bnIPoQ52J2M/bYCescvQwUMSc0QNB9PLNUvVx v/FUZTxsOkDelyHQHF9lSDbsxdHfwZX6shZAIzGiClYyjYg4jCXyPE0Eih9TM4FU MfbeOSmb1WvBd+09sLV+E+PCQ/U8rnPnGPoCniMzkdh4y53yUcqoyXrw5PVU3kqt eqA= -----END CERTIFICATE-----Generated at Mon Mar 2 05:37:14 2026 by rpki-client