$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/93f3d30c-8a89-447b-b341-5c1150a6a651.roa File: 93f3d30c-8a89-447b-b341-5c1150a6a651.roa (raw, json) Hash identifier: TVCs2xxRkq4yzrPZuo5YEAveKVBvgIhqS3hI/gvdtEw= Subject key identifier: FF:6C:AD:45:B8:DC:85:A7:91:7E:DC:93:86:7D:37:39:55:D5:6C:55 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7B8C0504F00556954B40BFA42CB4DC20AE5610A7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/93f3d30c-8a89-447b-b341-5c1150a6a651.roa Signing time: Thu 12 Mar 2026 16:25:00 +0000 ROA not before: Thu 12 Mar 2026 16:25:00 +0000 ROA not after: Wed 10 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dae9:9040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 13:25:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:8c:05:04:f0:05:56:95:4b:40:bf:a4:2c:b4:dc:20:ae:56:10:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Mar 12 16:25:00 2026 GMT Not After : Jun 10 23:59:59 2026 GMT Subject: serialNumber=8f1dc9eb88b6e97b70666ba48e8eacfb44b714abed413f051245cfae505957c9, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6f:f1:af:b5:b0:01:34:d3:86:6d:7f:14:1b: b3:23:5f:97:f9:a6:74:c1:51:ee:d9:b7:8f:e0:42: 52:fa:b9:53:25:69:f3:b8:16:c2:89:71:21:29:35: b9:fc:92:18:73:1b:12:fe:c7:c4:39:a8:39:91:16: 23:95:60:de:d8:05:88:50:cb:21:b5:9c:2d:f0:ba: f8:ec:92:ed:bc:17:be:94:97:4f:da:b5:92:00:7b: 17:96:da:ae:80:62:e3:89:2c:f2:50:69:99:cf:4b: aa:9b:ef:c6:fb:21:76:da:20:bd:7c:d8:1c:f3:48: 76:0d:37:ac:3a:54:a6:b9:a9:0d:23:7e:db:52:c9: 5e:ab:94:27:be:83:3a:b6:e5:01:11:8e:14:d3:b7: 16:e1:5d:c4:ab:c1:dc:d1:a4:ab:0d:ae:fb:4e:e1: b0:09:ab:df:a2:f2:3f:f9:5a:72:4c:74:c0:a9:b6: 8c:ea:24:46:4a:69:98:14:33:cf:25:53:6b:04:b8: 93:0a:3e:ec:35:2c:ab:82:6b:f5:33:6b:7a:a1:d0: ab:94:c3:a0:49:3f:04:5c:a0:cf:dd:50:af:c4:62: 14:f6:23:36:bc:41:bd:4d:ae:01:44:f4:50:f0:4d: 81:a7:c8:b5:66:20:e8:ee:15:4f:28:63:fa:8b:92: 3d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:6C:AD:45:B8:DC:85:A7:91:7E:DC:93:86:7D:37:39:55:D5:6C:55 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/93f3d30c-8a89-447b-b341-5c1150a6a651.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dae9:9040::/48 Signature Algorithm: sha256WithRSAEncryption 94:6e:ed:c8:31:05:83:5a:c3:fd:d7:bb:f6:75:c9:ee:df:49: a3:10:30:3a:bf:cd:0d:07:29:e5:b3:08:aa:cf:62:2f:c2:ae: 06:48:88:52:81:ee:a3:2f:a2:5c:16:31:62:69:b7:0f:c0:64: 74:11:2e:7b:5b:ad:ff:de:75:ff:2b:96:4e:80:b3:32:f0:4d: 45:93:f3:6c:27:8b:df:72:5b:38:e5:ed:5b:82:fa:a9:49:c9: 4f:23:61:f3:01:84:4e:8f:59:eb:a9:92:f7:8f:8b:72:66:be: 65:a5:f2:39:64:eb:c6:4d:45:1e:4e:80:9e:58:7d:32:11:1e: ef:6e:67:20:7f:ec:8a:59:f8:e0:5d:ce:00:0c:0c:cd:84:08: 36:a1:65:29:bf:29:da:03:fb:16:0c:48:7f:76:91:a6:61:e2: 02:1d:20:93:be:15:e1:d0:65:d1:73:5d:24:8a:59:c8:9b:3a: f8:ff:68:e9:9a:97:67:c0:33:ba:91:be:d4:0d:50:81:85:26: 1d:b5:69:5f:b4:fd:1a:97:1c:73:28:eb:44:47:6d:93:25:8b: 18:75:b2:d5:27:1d:1e:74:ab:4d:2a:79:bd:fd:11:a0:aa:7d: db:46:6a:91:ff:12:55:1d:2b:01:b9:1b:a1:e1:e6:c1:29:d0: ba:ac:c1:2e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUe4wFBPAFVpVLQL+kLLTcIK5WEKcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDMxMjE2MjUwMFoX DTI2MDYxMDIzNTk1OVowejFJMEcGA1UEBRNAOGYxZGM5ZWI4OGI2ZTk3YjcwNjY2 YmE0OGU4ZWFjZmI0NGI3MTRhYmVkNDEzZjA1MTI0NWNmYWU1MDU5NTdjOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0G/xr7WwATTThm1/FBuzI1+X+aZ0 wVHu2beP4EJS+rlTJWnzuBbCiXEhKTW5/JIYcxsS/sfEOag5kRYjlWDe2AWIUMsh tZwt8Lr47JLtvBe+lJdP2rWSAHsXltqugGLjiSzyUGmZz0uqm+/G+yF22iC9fNgc 80h2DTesOlSmuakNI37bUsleq5QnvoM6tuUBEY4U07cW4V3Eq8Hc0aSrDa77TuGw CavfovI/+VpyTHTAqbaM6iRGSmmYFDPPJVNrBLiTCj7sNSyrgmv1M2t6odCrlMOg ST8EXKDP3VCvxGIU9iM2vEG9Ta4BRPRQ8E2Bp8i1ZiDo7hVPKGP6i5I9FwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFP9srUW43IWnkX7ck4Z9NzlV1WxVMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkzZjNkMzBjLThhODktNDQ3Yi1iMzQxLTVjMTE1MGE2YTY1MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6ZBAMA0GCSqGSIb3DQEBCwUAA4IBAQCUbu3IMQWDWsP917v2 dcnu30mjEDA6v80NBynlswiqz2Ivwq4GSIhSge6jL6JcFjFiabcPwGR0ES57W63/ 3nX/K5ZOgLMy8E1Fk/NsJ4vfcls45e1bgvqpSclPI2HzAYROj1nrqZL3j4tyZr5l pfI5ZOvGTUUeToCeWH0yER7vbmcgf+yKWfjgXc4ADAzNhAg2oWUpvynaA/sWDEh/ dpGmYeICHSCTvhXh0GXRc10kilnImzr4/2jpmpdnwDO6kb7UDVCBhSYdtWlftP0a lxxzKOtER22TJYsYdbLVJx0edKtNKnm9/RGgqn3bRmqR/xJVHSsBuRuh4ebBKdC6 rMEu -----END CERTIFICATE-----Generated at Thu Mar 19 12:28:04 2026 by rpki-client