$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5b5ea3b5-d1e1-4482-9795-44899d6c1b41.roa File: 5b5ea3b5-d1e1-4482-9795-44899d6c1b41.roa (raw, json) Hash identifier: uSSviHbIqUhAMe1bhTdVFHvvrj5LImpRHmF5jrrxgO8= Subject key identifier: C7:42:FB:2F:3F:66:AB:86:22:DA:D3:A3:8A:98:31:D9:84:D3:9B:8B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 27E2AC2747C87C96F08DFAA7256B56B1B8615B8C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5b5ea3b5-d1e1-4482-9795-44899d6c1b41.roa Signing time: Fri 20 Feb 2026 00:30:17 +0000 ROA not before: Fri 20 Feb 2026 00:30:17 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:7000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:e2:ac:27:47:c8:7c:96:f0:8d:fa:a7:25:6b:56:b1:b8:61:5b:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 20 00:30:17 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=daec1fb97884a905c5b3b8c659477043fd66beae4cc34a6123ce59e9c8d37b1f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:81:08:f6:62:14:de:26:d6:f1:5d:c7:f6:fc: a2:01:3e:8d:71:eb:41:69:ec:95:d1:8f:91:37:32: b5:87:7a:6c:7f:b1:e1:93:4a:b1:b6:30:f0:fd:b2: 08:b9:2e:ae:ca:d3:95:fb:9d:04:88:e0:32:a0:d9: 27:3b:85:80:8a:b3:35:c2:19:54:eb:e3:83:4c:78: f1:d5:c8:bc:a6:9f:a2:d0:0c:f0:fa:9f:3e:3d:8f: fc:fe:08:ae:a8:c0:10:a7:e5:b5:ab:7d:9f:6d:0c: c7:7e:54:c7:0a:b0:63:39:c2:54:39:e2:8a:0b:ac: 5e:ce:aa:cb:f2:cd:5b:af:8c:78:a4:e7:ad:1a:5d: 14:a4:73:4b:7c:d0:0f:63:8b:56:4c:12:b2:c7:9e: 3f:47:c6:61:85:41:18:47:d9:7e:d3:95:41:e7:4f: 7d:57:a3:e3:4f:cd:99:a4:ed:98:40:5c:4d:ff:e5: c8:bd:1a:98:4e:a2:f8:52:cf:06:02:db:7b:80:50: ca:77:84:74:95:0c:e0:ed:5d:f9:6d:16:d3:ac:d2: 51:e8:27:92:29:9e:1e:a3:0c:25:fc:a7:27:a8:4e: 46:6d:b3:b8:75:e1:9c:ba:6b:44:f9:7d:af:94:dd: d0:c3:5f:99:6c:f6:3b:19:70:05:f7:dd:54:5b:ff: b1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:42:FB:2F:3F:66:AB:86:22:DA:D3:A3:8A:98:31:D9:84:D3:9B:8B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5b5ea3b5-d1e1-4482-9795-44899d6c1b41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:7000::/40 Signature Algorithm: sha256WithRSAEncryption 53:fb:78:b1:46:b8:20:5f:4c:74:89:8b:31:b7:5a:a8:97:47: cd:50:ba:9b:e6:bb:a9:09:dd:a6:1d:7a:4f:11:03:08:5d:f4: b1:4f:46:ce:96:3f:96:0f:89:06:74:a4:bf:53:a4:a3:56:ed: 70:0c:2f:cc:c0:32:f1:bb:6a:19:78:4e:f4:c6:a2:a2:8e:5d: 4e:4f:4c:f2:5b:fc:0e:ab:ca:35:fc:fb:3a:db:c3:f5:96:b5: 8c:84:b2:d5:1b:f7:81:b2:95:e2:0e:35:77:31:d0:ad:8f:30: bd:32:31:98:13:72:f4:c1:c2:5f:1b:5a:2d:91:36:61:ea:ad: 9d:77:d6:d6:cc:8f:31:5c:59:84:c9:7d:4b:95:2b:99:f1:df: 3c:35:10:f8:66:08:ad:20:d5:48:4c:a8:25:cb:65:2b:58:aa: 45:63:5a:8e:d3:57:b5:ec:ff:c6:a1:a0:7b:06:5e:46:df:5c: a1:a9:9e:e5:ec:bc:de:f2:62:81:6e:b5:5a:b1:8c:7e:e5:42: b0:84:b2:39:7d:c3:fb:94:33:c5:f6:73:4a:d3:e9:c1:5d:0f: 73:b4:59:6e:cf:3b:44:d7:ec:6c:eb:30:8a:da:19:28:ee:7a: 36:c2:d7:7d:6b:ed:97:da:96:b7:95:0e:53:df:26:9d:4b:37: f0:43:d5:1e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUJ+KsJ0fIfJbwjfqnJWtWsbhhW4wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMDAwMzAxN1oX DTI2MDUyMTIzNTk1OVowejFJMEcGA1UEBRNAZGFlYzFmYjk3ODg0YTkwNWM1YjNi OGM2NTk0NzcwNDNmZDY2YmVhZTRjYzM0YTYxMjNjZTU5ZTljOGQzN2IxZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYEI9mIU3ibW8V3H9vyiAT6NcetB aeyV0Y+RNzK1h3psf7Hhk0qxtjDw/bIIuS6uytOV+50EiOAyoNknO4WAirM1whlU 6+ODTHjx1ci8pp+i0Azw+p8+PY/8/giuqMAQp+W1q32fbQzHflTHCrBjOcJUOeKK C6xezqrL8s1br4x4pOetGl0UpHNLfNAPY4tWTBKyx54/R8ZhhUEYR9l+05VB5099 V6PjT82ZpO2YQFxN/+XIvRqYTqL4Us8GAtt7gFDKd4R0lQzg7V35bRbTrNJR6CeS KZ4eowwl/KcnqE5GbbO4deGcumtE+X2vlN3Qw1+ZbPY7GXAF991UW/+xXQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMdC+y8/ZquGItrTo4qYMdmE05uLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzViNWVhM2I1LWQxZTEtNDQ4Mi05Nzk1LTQ0ODk5ZDZjMWI0MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYXAwDQYJKoZIhvcNAQELBQADggEBAFP7eLFGuCBfTHSJizG3 WqiXR81Qupvmu6kJ3aYdek8RAwhd9LFPRs6WP5YPiQZ0pL9TpKNW7XAML8zAMvG7 ahl4TvTGoqKOXU5PTPJb/A6ryjX8+zrbw/WWtYyEstUb94GyleIONXcx0K2PML0y MZgTcvTBwl8bWi2RNmHqrZ131tbMjzFcWYTJfUuVK5nx3zw1EPhmCK0g1UhMqCXL ZStYqkVjWo7TV7Xs/8ahoHsGXkbfXKGpnuXsvN7yYoFutVqxjH7lQrCEsjl9w/uU M8X2c0rT6cFdD3O0WW7PO0TX7GzrMIraGSjuejbC131r7ZfalreVDlPfJp1LN/BD 1R4= -----END CERTIFICATE-----Generated at Mon Mar 2 03:33:11 2026 by rpki-client