$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa File: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (raw, json) Hash identifier: Wr+c6Q1I10v8ZDHa1kskBEdqqsWESS2cYOTf7oQrhuo= Subject key identifier: 68:0E:12:3F:78:56:28:CE:A2:5C:B4:F2:EB:16:D6:F7:1F:14:A6:DF Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 7EA13D62D2DE2E9B05B8820D3FACC1A64BFADC35 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa Signing time: Fri 15 May 2026 00:00:13 +0000 ROA not before: Fri 15 May 2026 00:00:13 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 00:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:a1:3d:62:d2:de:2e:9b:05:b8:82:0d:3f:ac:c1:a6:4b:fa:dc:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: May 15 00:00:13 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=aabbef0cc176664e52a7d9ee8f0030bf00bffd69016c94d55775545694890499, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f3:d4:26:8b:f0:07:fc:e8:57:04:1c:20:d8: a2:cc:44:a8:8a:d6:db:c9:e6:9b:da:7d:c3:93:05: cc:ee:e9:2d:d4:e2:26:e1:8e:b6:d3:a1:ce:cb:bd: e3:b6:ba:3d:a6:42:82:4b:7a:2d:c7:2c:6f:6b:8d: 30:5e:b5:40:c4:84:d7:51:ea:22:00:42:da:65:3b: ef:02:01:e7:2e:06:02:4f:3c:4e:e7:f3:4d:a4:0d: 00:25:98:7e:d0:4d:14:f2:01:66:28:94:40:ea:b5: f2:36:8c:de:b7:fb:9c:7e:a2:65:3c:27:81:e6:e5: 5a:cf:1d:0d:01:e7:1f:38:25:c3:89:43:5e:57:41: c5:54:a1:e2:99:d7:f7:e5:5c:9f:d6:fc:a6:70:e2: 76:af:ec:bd:1a:86:13:d2:7d:3e:69:97:61:8e:24: b7:ef:af:b6:b0:04:c2:6d:32:68:05:19:df:1e:94: 31:12:1d:26:38:c9:6b:bb:23:98:9d:ad:6e:72:31: 00:83:aa:82:a8:8f:80:2b:40:db:b4:a5:af:f9:2d: 76:9e:aa:58:4d:e2:50:33:1a:bc:25:e1:4c:12:b3: 7b:ac:fd:8a:ca:6f:c3:b1:71:bb:23:18:1f:ca:78: 1d:5b:99:ad:97:75:5d:98:b4:a8:11:fe:99:77:eb: 32:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:0E:12:3F:78:56:28:CE:A2:5C:B4:F2:EB:16:D6:F7:1F:14:A6:DF X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/19 Signature Algorithm: sha256WithRSAEncryption 68:59:b8:6e:e6:a9:fd:51:0d:f1:13:04:cd:36:87:ed:5e:9e: 02:78:fb:da:b6:e1:6c:30:12:1b:94:2b:5a:c5:a7:2d:b2:d3: e1:b9:0b:6a:65:f7:46:48:07:04:6b:d2:dd:42:70:6e:09:4e: 50:6d:74:83:d4:66:9a:57:1e:f2:c4:fa:f9:8a:87:77:7b:61: c1:f5:58:63:06:98:97:38:c7:cf:c7:29:d7:b8:36:90:89:db: 63:55:3a:02:46:f7:ad:7f:a8:ed:71:62:04:de:00:7e:29:90: 0c:c5:a8:62:a6:ec:46:a6:f0:fe:5f:f3:b9:db:6e:fe:ec:4c: 61:18:a5:f8:fc:d0:af:89:7c:51:b3:e4:9e:c6:df:85:38:16: b4:30:71:99:15:c6:4b:e7:cf:f7:e2:14:b2:95:cc:9f:fd:2c: 10:f6:37:08:06:75:01:c5:c0:fa:0d:01:db:97:c0:d4:b4:cd: 56:4a:dd:9d:17:66:94:84:af:f5:c9:ec:5d:0f:2c:b1:60:74: a5:74:07:54:4b:5e:b5:0a:82:84:41:46:d8:01:c7:bd:bf:ff: 9d:17:72:45:42:fc:a3:fa:9b:73:cb:de:ff:12:d1:06:ea:7b: 80:e2:ff:56:d7:99:41:4b:c2:ce:22:11:ed:a4:e8:c7:52:2f: e9:2c:a0:22 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUfqE9YtLeLpsFuIINP6zBpkv63DUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDUxNTAwMDAxM1oX DTI2MDgxMzIzNTk1OVowejFJMEcGA1UEBRNAYWFiYmVmMGNjMTc2NjY0ZTUyYTdk OWVlOGYwMDMwYmYwMGJmZmQ2OTAxNmM5NGQ1NTc3NTU0NTY5NDg5MDQ5OTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2/PUJovwB/zoVwQcINiizESoitbb yeab2n3DkwXM7ukt1OIm4Y6206HOy73jtro9pkKCS3otxyxva40wXrVAxITXUeoi AELaZTvvAgHnLgYCTzxO5/NNpA0AJZh+0E0U8gFmKJRA6rXyNozet/ucfqJlPCeB 5uVazx0NAecfOCXDiUNeV0HFVKHimdf35Vyf1vymcOJ2r+y9GoYT0n0+aZdhjiS3 76+2sATCbTJoBRnfHpQxEh0mOMlruyOYna1ucjEAg6qCqI+AK0DbtKWv+S12nqpY TeJQMxq8JeFMErN7rP2Kym/DsXG7IxgfyngdW5mtl3VdmLSoEf6Zd+syNQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGgOEj94VijOoly08usW1vcfFKbfMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzI0NWZhNGViLTZkMGQtNGRmNy05ZTJkLTI5YTdkMzlhZGNiOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFevjAMA0GCSqGSIb3DQEBCwUAA4IBAQBoWbhu5qn9UQ3xEwTNNoft Xp4CePvatuFsMBIblCtaxactstPhuQtqZfdGSAcEa9LdQnBuCU5QbXSD1GaaVx7y xPr5iod3e2HB9VhjBpiXOMfPxynXuDaQidtjVToCRvetf6jtcWIE3gB+KZAMxahi puxGpvD+X/O5227+7ExhGKX4/NCviXxRs+Sext+FOBa0MHGZFcZL58/34hSylcyf /SwQ9jcIBnUBxcD6DQHbl8DUtM1WSt2dF2aUhK/1yexdDyyxYHSldAdUS161CoKE QUbYAce9v/+dF3JFQvyj+ptzy97/EtEG6nuA4v9W15lBS8LOIhHtpOjHUi/pLKAi -----END CERTIFICATE-----Generated at Wed Jun 17 12:23:24 2026 by rpki-client