$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f908d384-ebab-4e47-9054-b6225011a89f.roa File: f908d384-ebab-4e47-9054-b6225011a89f.roa (raw, json) Hash identifier: NqUUTl62sk51uHvWdMzRpAwvkJpW+WK2/0igEJRePTE= Subject key identifier: 62:F5:CA:08:D0:87:7F:E6:B8:EE:12:31:34:FE:10:C3:1F:2F:AA:14 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 71D8850C8BE4C99BFBC048BEFAD9B3CB7D614B3B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f908d384-ebab-4e47-9054-b6225011a89f.roa Signing time: Sat 28 Feb 2026 00:01:01 +0000 ROA not before: Sat 28 Feb 2026 00:01:01 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2a:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:d8:85:0c:8b:e4:c9:9b:fb:c0:48:be:fa:d9:b3:cb:7d:61:4b:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 28 00:01:01 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=f43507f584e52694fcefeab973f7ca4435be0e3f643147cc9ddc7427f9c3ff80, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:47:59:11:90:aa:2b:f0:f1:03:f4:ee:3b:a2: 36:a5:b0:4e:20:96:5e:1d:86:d4:67:ff:49:c1:2e: b4:0e:a2:01:16:69:c9:4e:e6:ee:02:03:82:da:17: 05:ab:61:1a:c4:21:e6:c3:48:3b:3c:ba:55:dd:00: fe:c1:99:b6:c1:9c:3a:19:a3:83:98:08:33:64:65: 37:e7:57:87:20:14:df:a7:18:3d:60:8c:c1:70:61: 7f:80:10:fd:ea:9c:5b:62:68:cf:c9:0c:80:16:f2: 90:85:bb:7e:ff:00:96:53:9a:af:e0:2c:d0:18:56: a9:84:1e:2e:ab:1d:29:a0:57:7d:9a:dc:7a:d3:af: 82:28:71:ed:ce:85:91:9c:e0:17:2f:09:08:0a:bd: 3f:b5:d8:ea:0e:fc:61:d8:89:9a:e7:59:5f:29:da: f6:3c:c4:78:e5:cc:d1:0f:70:88:53:36:67:6f:c3: 42:f0:2e:bf:a5:62:cf:04:c8:21:7a:71:6b:de:f1: 2e:16:b7:6b:41:fa:3e:62:e0:dc:fc:dc:74:77:d7: 3a:c9:60:34:cc:86:fd:20:a9:9c:f5:65:32:31:55: 54:f7:72:f5:03:ab:27:74:1e:c7:1c:9e:f6:a8:20: 7f:25:37:a8:ab:79:b4:b4:84:b6:f9:1f:2d:eb:2a: 9d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F5:CA:08:D0:87:7F:E6:B8:EE:12:31:34:FE:10:C3:1F:2F:AA:14 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f908d384-ebab-4e47-9054-b6225011a89f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2a:8000::/36 Signature Algorithm: sha256WithRSAEncryption 44:13:92:63:7f:c4:27:d5:0a:90:1b:38:0d:a3:70:2d:75:7c: c2:f0:5d:49:f4:ae:6b:f0:52:b0:c3:9f:d6:42:fe:37:ae:ba: 2c:8f:06:50:97:40:d3:29:23:e8:7f:12:38:a8:e8:e6:30:a7: 79:23:71:92:27:c7:b2:14:9a:07:6c:1a:53:0b:4d:e2:62:13: 90:e3:28:12:03:2c:7f:bd:8c:7c:76:59:0d:d9:ef:2c:7d:35: bc:61:b9:00:48:2d:2e:c9:4e:ff:93:df:b8:35:46:29:60:b1: f3:9f:cf:82:16:a6:c7:87:c5:78:a5:a4:c2:41:cd:04:64:d3: d4:29:06:44:a3:01:df:74:1b:db:fb:6f:ba:fa:09:1e:93:d9: 95:38:35:8a:e0:c4:7c:61:e4:21:bc:94:5f:76:9d:7d:09:84: 4f:48:f8:86:19:c2:4f:57:07:4f:ce:60:1c:31:6b:bd:85:ee: 45:6b:3e:23:4b:da:15:37:64:a2:31:ee:08:2c:71:7b:c1:1a: 74:fb:e3:28:88:c3:fb:71:bf:80:09:98:33:e9:3c:74:67:e8: 3a:bc:c2:34:1e:f0:14:7e:85:9b:5d:3d:dc:1e:5b:88:07:eb: f2:7e:14:34:de:b7:47:d0:4b:c3:c4:4f:3b:bc:72:3f:ad:70: 30:88:0c:3e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUcdiFDIvkyZv7wEi++tmzy31hSzswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyODAwMDEwMVoX DTI2MDUyOTIzNTk1OVowejFJMEcGA1UEBRNAZjQzNTA3ZjU4NGU1MjY5NGZjZWZl YWI5NzNmN2NhNDQzNWJlMGUzZjY0MzE0N2NjOWRkYzc0MjdmOWMzZmY4MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlUdZEZCqK/DxA/TuO6I2pbBOIJZe HYbUZ/9JwS60DqIBFmnJTubuAgOC2hcFq2EaxCHmw0g7PLpV3QD+wZm2wZw6GaOD mAgzZGU351eHIBTfpxg9YIzBcGF/gBD96pxbYmjPyQyAFvKQhbt+/wCWU5qv4CzQ GFaphB4uqx0poFd9mtx606+CKHHtzoWRnOAXLwkICr0/tdjqDvxh2Ima51lfKdr2 PMR45czRD3CIUzZnb8NC8C6/pWLPBMghenFr3vEuFrdrQfo+YuDc/Nx0d9c6yWA0 zIb9IKmc9WUyMVVU93L1A6sndB7HHJ72qCB/JTeoq3m0tIS2+R8t6yqdTQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGL1ygjQh3/muO4SMTT+EMMfL6oUMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y5MDhkMzg0LWViYWItNGU0Ny05MDU0LWI2MjI1MDExYTg5Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaKoAwDQYJKoZIhvcNAQELBQADggEBAEQTkmN/xCfVCpAbOA2j cC11fMLwXUn0rmvwUrDDn9ZC/jeuuiyPBlCXQNMpI+h/Ejio6OYwp3kjcZInx7IU mgdsGlMLTeJiE5DjKBIDLH+9jHx2WQ3Z7yx9NbxhuQBILS7JTv+T37g1RilgsfOf z4IWpseHxXilpMJBzQRk09QpBkSjAd90G9v7b7r6CR6T2ZU4NYrgxHxh5CG8lF92 nX0JhE9I+IYZwk9XB0/OYBwxa72F7kVrPiNL2hU3ZKIx7ggscXvBGnT74yiIw/tx v4AJmDPpPHRn6Dq8wjQe8BR+hZtdPdweW4gH6/J+FDTet0fQS8PETzu8cj+tcDCI DD4= -----END CERTIFICATE-----Generated at Sun Mar 1 22:03:14 2026 by rpki-client