$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9b4623a6-3162-48fd-9091-235f75f6c97d.roa File: 9b4623a6-3162-48fd-9091-235f75f6c97d.roa (raw, json) Hash identifier: bRFZ6mJTVmFkobVI/QgGCa3jSiykKUDqpgst3oKlWp0= Subject key identifier: 66:1C:6B:AD:CE:E4:8B:81:5F:07:56:94:DF:A0:16:1F:43:C2:71:AC Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 50E2563ACB50421643E94C24625E1AD844743E98 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9b4623a6-3162-48fd-9091-235f75f6c97d.roa Signing time: Tue 17 Feb 2026 00:00:11 +0000 ROA not before: Tue 17 Feb 2026 00:00:11 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:daf4:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e2:56:3a:cb:50:42:16:43:e9:4c:24:62:5e:1a:d8:44:74:3e:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 17 00:00:11 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=96d6ccecc5d892a35d14b4d1a39ad17a08c21d4943faa2113564ec5aa2984b3a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:06:ab:9e:0f:09:33:77:7e:1a:57:24:c1:ad: 9a:22:e6:c6:95:4a:ab:91:dd:42:77:99:fe:7f:39: 89:30:12:bb:88:a4:e7:29:55:14:41:10:9a:c8:6e: 52:b7:ef:90:f1:23:f4:a9:04:10:52:64:73:3d:9b: 2f:ce:3e:c9:7c:54:7d:a9:a9:f6:9c:35:c6:55:02: 67:7e:2e:09:68:56:f7:b9:b9:56:d9:17:01:c5:dd: 16:7d:26:65:0a:af:43:b1:3c:cb:64:12:d2:b2:b5: 2a:9f:aa:9b:0d:c2:d0:ad:13:10:42:1b:36:b8:1e: 21:22:8c:24:49:db:4d:0d:15:67:4c:e2:a8:50:08: 3a:f9:f9:81:e9:34:a1:3c:9e:b3:04:6c:74:a1:63: 4f:62:c8:1f:76:89:1d:58:d1:a3:c6:d1:6d:c1:f2: 4b:02:0b:e6:9c:17:9b:cd:7c:2a:2b:e6:e2:cf:1b: c3:6e:92:3b:4c:9b:56:e3:43:6b:4f:31:fd:83:ed: c3:ec:36:b3:d6:c7:f3:2b:5f:f0:b5:96:65:54:a9: d8:6b:7c:12:82:06:b5:6c:54:42:8d:5c:1d:a0:b1: bf:f9:b7:cc:95:97:3d:1d:29:a5:77:bb:3c:d9:a3: 8c:6c:d8:c8:65:74:26:d7:c6:31:64:ae:c8:26:0e: 1b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:1C:6B:AD:CE:E4:8B:81:5F:07:56:94:DF:A0:16:1F:43:C2:71:AC X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9b4623a6-3162-48fd-9091-235f75f6c97d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf4:4000::/40 Signature Algorithm: sha256WithRSAEncryption 8a:97:0f:2e:6a:e3:db:97:5d:2e:b5:16:de:54:57:12:fe:67: ee:21:57:3d:b8:ed:f8:c5:54:48:ed:3d:28:ce:fd:e2:f4:d6: 9f:81:35:6d:9e:fa:65:67:f4:25:fc:20:07:b3:b8:b4:f1:98: 72:5d:51:33:aa:39:e1:74:2f:b4:81:67:a0:1a:6f:39:eb:59: 1c:04:4b:33:fa:ce:a4:f9:af:17:4e:ab:6e:a0:02:f4:17:9c: 86:0a:78:c7:51:22:37:06:04:87:f9:6a:22:28:55:29:fd:64: b4:25:02:aa:48:d3:2f:8d:eb:77:90:37:ce:9e:8b:b1:56:d4: c2:34:61:43:17:e0:a2:1c:b3:e5:15:20:d6:e4:9c:e0:61:07: f3:4e:46:37:9b:de:80:69:23:48:d5:c2:68:94:0b:16:fa:c2: 5a:8f:99:bb:6d:f8:94:89:9c:64:e1:9f:a7:35:95:b1:8e:ea: 37:e2:01:38:1b:17:d3:f8:1d:01:00:0d:76:f6:0b:ef:e9:98: 9c:69:f2:23:c3:4a:a2:44:49:e0:6d:3e:52:2f:47:3d:2a:6b: 60:52:fb:18:85:26:cf:bd:99:8d:36:57:6e:6e:f8:7c:67:75: 6f:c5:48:e0:c9:8a:98:c2:8e:c0:1f:f4:86:2e:c3:e4:0e:dc: 47:fa:de:c0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUOJWOstQQhZD6UwkYl4a2ER0PpgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIxNzAwMDAxMVoX DTI2MDUxODIzNTk1OVowejFJMEcGA1UEBRNAOTZkNmNjZWNjNWQ4OTJhMzVkMTRi NGQxYTM5YWQxN2EwOGMyMWQ0OTQzZmFhMjExMzU2NGVjNWFhMjk4NGIzYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQarng8JM3d+Glckwa2aIubGlUqr kd1Cd5n+fzmJMBK7iKTnKVUUQRCayG5St++Q8SP0qQQQUmRzPZsvzj7JfFR9qan2 nDXGVQJnfi4JaFb3ublW2RcBxd0WfSZlCq9DsTzLZBLSsrUqn6qbDcLQrRMQQhs2 uB4hIowkSdtNDRVnTOKoUAg6+fmB6TShPJ6zBGx0oWNPYsgfdokdWNGjxtFtwfJL AgvmnBebzXwqK+bizxvDbpI7TJtW40NrTzH9g+3D7Daz1sfzK1/wtZZlVKnYa3wS gga1bFRCjVwdoLG/+bfMlZc9HSmld7s82aOMbNjIZXQm18YxZK7IJg4bmwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGYca63O5IuBXwdWlN+gFh9DwnGsMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzliNDYyM2E2LTMxNjItNDhmZC05MDkxLTIzNWY3NWY2Yzk3ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9EAwDQYJKoZIhvcNAQELBQADggEBAIqXDy5q49uXXS61Ft5U VxL+Z+4hVz247fjFVEjtPSjO/eL01p+BNW2e+mVn9CX8IAezuLTxmHJdUTOqOeF0 L7SBZ6AabznrWRwESzP6zqT5rxdOq26gAvQXnIYKeMdRIjcGBIf5aiIoVSn9ZLQl AqpI0y+N63eQN86ei7FW1MI0YUMX4KIcs+UVINbknOBhB/NORjeb3oBpI0jVwmiU Cxb6wlqPmbtt+JSJnGThn6c1lbGO6jfiATgbF9P4HQEADXb2C+/pmJxp8iPDSqJE SeBtPlIvRz0qa2BS+xiFJs+9mY02V25u+HxndW/FSODJipjCjsAf9IYuw+QO3Ef6 3sA= -----END CERTIFICATE-----Generated at Mon Mar 2 01:58:02 2026 by rpki-client