$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a91b902a-3780-4e0a-8062-46df71087b57.roa File: a91b902a-3780-4e0a-8062-46df71087b57.roa (raw, json) Hash identifier: QLlFT3MkeulT6p6Ir7O+ybZyuuMm5uTtmhxU1tmGlTU= Subject key identifier: E9:9A:92:D9:8E:BB:D1:3C:41:A6:81:A5:B0:39:67:83:47:82:98:CB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6E1F6EB9906502478D89D35C605466E1D50D45F4 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a91b902a-3780-4e0a-8062-46df71087b57.roa Signing time: Sat 21 Feb 2026 00:10:13 +0000 ROA not before: Sat 21 Feb 2026 00:10:13 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:b000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 00:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:1f:6e:b9:90:65:02:47:8d:89:d3:5c:60:54:66:e1:d5:0d:45:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 21 00:10:13 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=192e7b02a5f10c55c682030c91bf5423532fcab490e2d26ab384a55e2c6d990e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ae:01:a1:8b:a1:11:7f:94:a1:a2:e1:b1:56: de:65:03:42:58:9a:d6:b0:4b:37:29:08:41:69:c7: 75:6c:97:09:b6:39:65:f0:f6:8b:e9:da:25:ad:39: 51:c1:90:85:f2:f4:42:30:e0:61:c4:de:0a:68:31: fd:4e:15:04:76:6a:95:67:c1:d6:2f:d4:9b:40:c4: 71:a1:7d:0f:1d:a1:cb:dd:8f:40:ef:a4:4c:9c:3e: 53:36:38:f7:e1:d6:4b:cf:ad:da:bb:3f:b8:b2:61: b8:3e:ba:82:9b:a6:ef:f5:68:dd:b6:21:e8:d7:ea: 4f:c2:0e:61:83:ee:21:f1:50:6d:43:6c:eb:ea:6e: b1:e5:e8:9f:42:0a:72:72:e1:f5:ff:51:38:c4:0e: f6:2c:4d:79:2a:f2:44:8e:20:ce:78:d7:f3:cd:16: b6:da:a6:ca:2d:56:07:09:47:a5:ec:0d:91:35:60: 4b:a5:b8:62:4c:c4:c3:18:c2:02:92:90:6c:61:2a: bd:33:cc:5b:29:38:93:9d:6f:93:57:8d:a0:92:65: 36:b0:aa:e8:07:13:7d:6d:26:6d:f7:83:ae:66:c6: 19:a3:58:f9:2e:2f:26:3f:63:c1:cd:dd:5b:5f:a5: 35:5e:9d:0a:a0:46:0c:15:4e:9c:8a:77:06:c1:59: 09:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:9A:92:D9:8E:BB:D1:3C:41:A6:81:A5:B0:39:67:83:47:82:98:CB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a91b902a-3780-4e0a-8062-46df71087b57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:b000::/40 Signature Algorithm: sha256WithRSAEncryption 4e:be:58:7f:9e:cb:1e:e7:6e:98:3e:a0:c8:50:b9:68:63:66: e6:da:a0:59:07:c7:72:eb:b2:5c:ac:6b:51:81:3a:4e:f5:cc: 23:f3:07:2c:d6:e4:64:0d:bf:c6:da:18:2c:5e:ee:c4:aa:78: a9:93:a7:fe:f5:30:49:7a:c6:37:4e:a3:7e:94:11:c3:d4:40: de:ed:cf:68:a5:54:c4:7f:c4:54:36:11:ef:e7:aa:5a:6b:02: 43:2b:e1:39:1b:e3:89:b0:12:bb:6a:ee:47:b8:4a:c1:ed:d5: 69:3d:73:52:07:06:d8:c4:20:af:56:14:51:4e:74:77:14:bd: 00:f2:4a:b2:ef:39:c4:93:f4:9b:ef:55:30:20:6f:20:66:8c: 8a:fe:6d:87:49:82:39:f1:bd:51:26:81:8b:da:fd:4f:49:32: be:32:2b:6e:78:61:1b:7e:7c:7e:55:05:be:96:f2:93:46:4e: 9c:b8:51:d7:8b:bc:bb:23:11:2a:63:e4:d9:ff:85:b1:de:bd: 6f:9e:29:db:a6:bd:77:19:b7:11:89:ae:f9:80:e9:fa:b0:4c: d1:3f:84:5f:6f:f4:1d:91:68:1b:74:1c:45:f2:1b:9c:5e:8d: 21:20:43:a8:93:98:cc:e0:f2:d5:df:a6:85:86:fd:0c:c2:0b: d0:66:95:58 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUbh9uuZBlAkeNidNcYFRm4dUNRfQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMTAwMTAxM1oX DTI2MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAMTkyZTdiMDJhNWYxMGM1NWM2ODIw MzBjOTFiZjU0MjM1MzJmY2FiNDkwZTJkMjZhYjM4NGE1NWUyYzZkOTkwZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAra4BoYuhEX+UoaLhsVbeZQNCWJrW sEs3KQhBacd1bJcJtjll8PaL6dolrTlRwZCF8vRCMOBhxN4KaDH9ThUEdmqVZ8HW L9SbQMRxoX0PHaHL3Y9A76RMnD5TNjj34dZLz63auz+4smG4PrqCm6bv9WjdtiHo 1+pPwg5hg+4h8VBtQ2zr6m6x5eifQgpycuH1/1E4xA72LE15KvJEjiDOeNfzzRa2 2qbKLVYHCUel7A2RNWBLpbhiTMTDGMICkpBsYSq9M8xbKTiTnW+TV42gkmU2sKro BxN9bSZt94OuZsYZo1j5Li8mP2PBzd1bX6U1Xp0KoEYMFU6cincGwVkJrQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOmaktmOu9E8QaaBpbA5Z4NHgpjLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2E5MWI5MDJhLTM3ODAtNGUwYS04MDYyLTQ2ZGY3MTA4N2I1Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/7AwDQYJKoZIhvcNAQELBQADggEBAE6+WH+eyx7nbpg+oMhQ uWhjZubaoFkHx3Lrslysa1GBOk71zCPzByzW5GQNv8baGCxe7sSqeKmTp/71MEl6 xjdOo36UEcPUQN7tz2ilVMR/xFQ2Ee/nqlprAkMr4Tkb44mwErtq7ke4SsHt1Wk9 c1IHBtjEIK9WFFFOdHcUvQDySrLvOcST9JvvVTAgbyBmjIr+bYdJgjnxvVEmgYva /U9JMr4yK254YRt+fH5VBb6W8pNGTpy4UdeLvLsjESpj5Nn/hbHevW+eKdumvXcZ txGJrvmA6fqwTNE/hF9v9B2RaBt0HEXyG5xejSEgQ6iTmMzg8tXfpoWG/QzCC9Bm lVg= -----END CERTIFICATE-----Generated at Sat Feb 21 16:23:53 2026 by rpki-client