$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa File: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (raw, json) Hash identifier: vW8hXHGe+eosGjnyK85vNW/30QKnvDmChUh3HJ3mdPI= Subject key identifier: 19:16:AA:89:E7:D4:AF:79:76:4B:FE:DD:25:0B:92:78:FA:3A:A1:9F Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 238A97673FC34DAD499733DE6132A547C3C860FA Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa Signing time: Fri 17 Oct 2025 00:01:25 +0000 ROA not before: Fri 17 Oct 2025 00:01:25 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:8a:97:67:3f:c3:4d:ad:49:97:33:de:61:32:a5:47:c3:c8:60:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Oct 17 00:01:25 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=aa296c4300ac65cee86834c3338b2c52abe2bd5db6d79a78c764db570bdae5a9, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0a:24:77:d2:bc:4f:fb:56:d1:94:73:63:00: da:43:e8:a6:ac:15:9c:31:1a:56:d1:3f:24:a0:8a: 69:b5:d5:24:6f:37:01:31:2f:6e:07:dd:54:4d:01: 9e:3d:c8:6c:21:02:ef:fb:f8:1d:bd:0c:06:f1:b6: 57:cb:44:72:ec:5b:f7:25:71:cd:9b:2d:fc:10:25: f3:70:77:53:e9:65:53:63:3e:9c:6f:7d:69:f1:95: 57:6c:7b:72:a3:36:9a:66:c0:8e:af:8d:42:82:89: 37:1d:a6:85:e8:28:b7:80:4e:5a:2d:fa:15:6f:b2: 5f:b3:ad:03:df:25:6f:d3:51:65:e8:f7:65:54:18: 75:09:83:c5:54:4f:4d:8e:28:97:6d:fc:43:29:93: 74:bd:ad:d7:9e:ed:d6:88:ae:63:36:c7:5e:ce:84: 18:4b:d0:08:ae:92:46:8f:6d:1d:36:c0:e2:e6:3d: 85:85:85:bc:43:df:31:74:a1:ec:58:4e:17:88:e3: 27:51:65:60:22:e8:9e:4c:76:4f:e3:e6:0a:33:df: 5b:ef:91:e5:61:7d:41:11:92:b1:ac:8b:54:24:99: 61:8a:91:62:63:b8:d2:2a:e8:1a:76:f5:a3:b2:0f: 5e:12:ad:ab:ed:66:fc:98:c0:77:4b:d9:af:51:bd: 56:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:16:AA:89:E7:D4:AF:79:76:4B:FE:DD:25:0B:92:78:FA:3A:A1:9F X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/19 Signature Algorithm: sha256WithRSAEncryption 30:1b:93:74:26:3e:42:b9:b9:5d:01:d0:98:c2:8c:10:ae:07: 79:16:2b:7a:b7:f3:e4:b2:69:26:5d:5b:36:e5:87:35:df:0e: 2c:2d:94:d7:94:eb:a0:e7:8e:95:03:fb:70:9e:61:3c:e1:4d: 35:a7:40:70:90:16:51:42:f6:c8:37:96:cb:d7:d8:ec:1d:fc: ab:c7:d4:9e:b6:53:36:47:cb:8a:57:b0:58:33:49:6d:53:49: 45:c2:06:65:27:c4:15:76:35:f7:d2:79:69:e0:13:2c:e9:1d: fb:c8:d9:95:5d:4d:86:ff:9c:dd:79:ae:2c:9e:42:9e:3b:a5: e9:3a:bc:65:5a:44:95:55:69:c9:78:43:8b:a0:92:9e:a6:5c: d3:e5:5a:72:93:4a:dd:9c:6e:7b:00:46:9f:af:3c:0c:be:1c: a6:64:b1:fa:12:73:75:c6:29:d4:29:d3:15:90:96:4d:b0:c2: 45:c2:8a:ef:6d:fe:da:0d:ac:b3:b6:27:8c:01:87:75:67:96: 51:c4:cb:2b:59:a9:50:29:83:af:13:01:54:20:47:72:15:b4: 85:d0:56:d4:37:e5:ab:da:65:29:65:de:4d:ff:c9:c5:a5:e1: 65:bb:b2:a1:43:c3:2d:cf:46:70:38:c1:95:2d:92:b5:37:ae: 8d:70:e4:e7 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUI4qXZz/DTa1JlzPeYTKlR8PIYPowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTAxNzAwMDEyNVoX DTI1MTEyMTIzNTk1OVowejFJMEcGA1UEBRNAYWEyOTZjNDMwMGFjNjVjZWU4Njgz NGMzMzM4YjJjNTJhYmUyYmQ1ZGI2ZDc5YTc4Yzc2NGRiNTcwYmRhZTVhOTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwokd9K8T/tW0ZRzYwDaQ+imrBWc MRpW0T8koIpptdUkbzcBMS9uB91UTQGePchsIQLv+/gdvQwG8bZXy0Ry7Fv3JXHN my38ECXzcHdT6WVTYz6cb31p8ZVXbHtyozaaZsCOr41Cgok3HaaF6Ci3gE5aLfoV b7Jfs60D3yVv01Fl6PdlVBh1CYPFVE9NjiiXbfxDKZN0va3Xnu3WiK5jNsdezoQY S9AIrpJGj20dNsDi5j2FhYW8Q98xdKHsWE4XiOMnUWVgIuieTHZP4+YKM99b75Hl YX1BEZKxrItUJJlhipFiY7jSKugadvWjsg9eEq2r7Wb8mMB3S9mvUb1WBQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBkWqonn1K95dkv+3SULknj6OqGfMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzI0NWZhNGViLTZkMGQtNGRmNy05ZTJkLTI5YTdkMzlhZGNiOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFevjAMA0GCSqGSIb3DQEBCwUAA4IBAQAwG5N0Jj5CubldAdCYwowQ rgd5Fit6t/PksmkmXVs25Yc13w4sLZTXlOug546VA/twnmE84U01p0BwkBZRQvbI N5bL19jsHfyrx9SetlM2R8uKV7BYM0ltU0lFwgZlJ8QVdjX30nlp4BMs6R37yNmV XU2G/5zdea4snkKeO6XpOrxlWkSVVWnJeEOLoJKeplzT5Vpyk0rdnG57AEafrzwM vhymZLH6EnN1xinUKdMVkJZNsMJFworvbf7aDayztieMAYd1Z5ZRxMsrWalQKYOv EwFUIEdyFbSF0FbUN+Wr2mUpZd5N/8nFpeFlu7KhQ8Mtz0ZwOMGVLZK1N66NcOTn -----END CERTIFICATE-----Generated at Sat Oct 18 13:49:46 2025 by rpki-client