$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/906f0342-21a8-43e4-b1c7-2dd4127cb6b5.roa File: 906f0342-21a8-43e4-b1c7-2dd4127cb6b5.roa (raw, json) Hash identifier: JZNLIoAx1glQ8HtX4VswbC7Vl+H3gSbCAxuJ7Fdv2eM= Subject key identifier: F1:B1:09:A0:94:EE:C5:F5:92:C5:2F:70:2A:8F:33:87:F1:F7:26:F1 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1AF559F2B5ED56A3BD83374B0258D52C4FA1140B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/906f0342-21a8-43e4-b1c7-2dd4127cb6b5.roa Signing time: Thu 26 Feb 2026 00:00:12 +0000 ROA not before: Thu 26 Feb 2026 00:00:12 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daed:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:f5:59:f2:b5:ed:56:a3:bd:83:37:4b:02:58:d5:2c:4f:a1:14:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 26 00:00:12 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=e140a1d288d3203f3a4ab6022500685c5cc2f50bbe160cafd5fdded0cba31c02, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:65:9a:65:21:39:c3:fe:96:e2:6e:66:89:1a: be:da:69:e8:40:a5:87:6a:b1:9b:52:aa:16:d8:0b: ab:44:db:48:52:b1:a1:af:9f:c0:db:e2:d8:d8:a7: f3:82:ef:77:d4:64:f7:8a:88:87:87:c6:8f:fc:5e: d7:eb:61:54:79:ba:86:0f:f4:a6:49:db:3e:0b:31: dc:80:bc:fc:43:0d:fd:d5:3e:a8:fb:78:d5:fe:12: 5c:f8:ef:7e:5c:b3:58:b6:19:cc:fa:b9:7b:0d:56: 6f:b0:2e:b9:fc:63:10:0b:9f:73:a6:2b:3a:cf:c4: dd:33:26:04:24:3f:ae:73:1c:fe:76:9e:4c:8a:f7: 56:ac:fc:b8:04:02:29:42:99:e0:65:fc:f1:1e:c3: a3:bb:ec:77:ef:6f:45:77:8f:3b:1d:00:13:0a:1d: 77:b9:1a:b6:11:e7:ed:c3:1d:00:af:85:4d:81:a8: 78:c7:45:f9:0d:11:3e:de:7c:4f:f7:cd:58:9a:5a: 61:3b:fc:b6:91:ca:43:b2:d2:f1:05:36:04:61:98: ec:81:2c:57:77:3a:cd:1c:63:d7:9f:a3:38:63:36: 78:92:f1:19:0e:1d:3a:64:2d:d6:e3:f9:4f:1a:a5: 97:d3:1b:6b:23:b7:6b:1b:5f:51:f3:f1:b1:df:38: c9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:B1:09:A0:94:EE:C5:F5:92:C5:2F:70:2A:8F:33:87:F1:F7:26:F1 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/906f0342-21a8-43e4-b1c7-2dd4127cb6b5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daed:1000::/40 Signature Algorithm: sha256WithRSAEncryption 3b:3e:75:7c:5c:df:0f:9e:8a:81:42:7a:ee:9a:af:a7:e1:43: 11:a7:74:63:cf:56:19:e3:b4:37:a6:c2:22:18:9a:89:95:d6: cb:61:bb:be:30:bb:26:ed:88:93:1b:bd:48:1c:97:4d:c1:d1: 96:ec:e6:12:91:1e:29:e4:71:c0:af:a2:df:f7:61:80:39:41: a8:1a:38:e7:ea:0b:13:80:19:65:43:d6:ee:b0:73:de:b3:f0: 60:6c:1e:19:6d:1d:e3:0a:41:36:d2:53:a3:31:ec:52:76:66: 5d:ac:70:ed:62:8a:be:03:84:02:9e:7a:78:90:77:8b:d8:c5: 15:bf:84:2b:08:c8:c6:10:57:43:c3:8f:39:c2:31:09:eb:d8: e1:57:94:d0:a0:9d:db:27:76:b6:72:5f:81:10:0d:e6:eb:01: 96:39:42:e2:b7:97:60:ca:fe:d8:c6:f5:ec:73:b9:f1:90:f7: db:7b:61:85:a6:63:6e:7d:2c:f8:6f:d9:c5:f3:5b:ad:96:68: c4:99:42:74:f3:4f:71:43:7a:76:61:b7:c3:61:9b:5c:ca:fa: 66:55:12:59:c6:4e:6a:70:6c:69:02:55:eb:50:29:03:f8:ce: c4:34:95:cb:27:e0:4e:b4:17:74:be:d9:78:a5:83:61:b8:47: 0a:9c:7d:b6 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUGvVZ8rXtVqO9gzdLAljVLE+hFAswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyNjAwMDAxMloX DTI2MDUyNzIzNTk1OVowejFJMEcGA1UEBRNAZTE0MGExZDI4OGQzMjAzZjNhNGFi NjAyMjUwMDY4NWM1Y2MyZjUwYmJlMTYwY2FmZDVmZGRlZDBjYmEzMWMwMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmWWaZSE5w/6W4m5miRq+2mnoQKWH arGbUqoW2AurRNtIUrGhr5/A2+LY2Kfzgu931GT3ioiHh8aP/F7X62FUebqGD/Sm Sds+CzHcgLz8Qw391T6o+3jV/hJc+O9+XLNYthnM+rl7DVZvsC65/GMQC59zpis6 z8TdMyYEJD+ucxz+dp5MivdWrPy4BAIpQpngZfzxHsOju+x3729Fd487HQATCh13 uRq2Eeftwx0Ar4VNgah4x0X5DRE+3nxP981YmlphO/y2kcpDstLxBTYEYZjsgSxX dzrNHGPXn6M4YzZ4kvEZDh06ZC3W4/lPGqWX0xtrI7drG19R8/Gx3zjJXwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPGxCaCU7sX1ksUvcCqPM4fx9ybxMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkwNmYwMzQyLTIxYTgtNDNlNC1iMWM3LTJkZDQxMjdjYjZiNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba7RAwDQYJKoZIhvcNAQELBQADggEBADs+dXxc3w+eioFCeu6a r6fhQxGndGPPVhnjtDemwiIYmomV1sthu74wuybtiJMbvUgcl03B0Zbs5hKRHink ccCvot/3YYA5QagaOOfqCxOAGWVD1u6wc96z8GBsHhltHeMKQTbSU6Mx7FJ2Zl2s cO1iir4DhAKeeniQd4vYxRW/hCsIyMYQV0PDjznCMQnr2OFXlNCgndsndrZyX4EQ DebrAZY5QuK3l2DK/tjG9exzufGQ99t7YYWmY259LPhv2cXzW62WaMSZQnTzT3FD enZht8Nhm1zK+mZVElnGTmpwbGkCVetQKQP4zsQ0lcsn4E60F3S+2Xilg2G4Rwqc fbY= -----END CERTIFICATE-----Generated at Sun Mar 1 23:52:57 2026 by rpki-client