$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa File: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (raw, json) Hash identifier: uyHF6RDXBqu8/m5/rxS9tqyNKt4hFLLacYUMWBiJ3LY= Subject key identifier: 8E:86:4E:87:F4:63:75:D6:73:62:01:6B:AA:F8:E2:FA:5C:CD:7B:D8 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 3CC07DFAE9AF65AB8FDE2F2DEE3D1212318844F9 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa Signing time: Tue 24 Feb 2026 00:00:06 +0000 ROA not before: Tue 24 Feb 2026 00:00:06 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:c0:7d:fa:e9:af:65:ab:8f:de:2f:2d:ee:3d:12:12:31:88:44:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Feb 24 00:00:06 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=e7c3075dbb17f54c5d748575a00346e5665508d4ecec05cc15de2e75e468e4af, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:3e:03:40:fe:70:50:30:82:a4:63:96:96:8f: b6:f1:9c:33:a7:67:38:63:59:1e:2f:91:46:c4:6a: ab:0d:f6:4f:f5:b7:41:04:45:fa:c7:b7:31:5e:af: 34:56:38:cf:7f:a4:14:5e:c4:dc:f8:fe:96:eb:70: eb:1b:8f:fb:fc:80:d1:b3:51:cd:f1:b3:bd:b1:38: 37:9a:4f:08:88:88:9f:07:48:01:f2:d3:70:5f:e0: 59:a1:54:0e:e7:14:cf:b2:05:c1:57:9e:da:a5:37: 05:31:36:f6:53:4c:38:26:41:9f:47:74:8e:5e:29: fb:9e:77:f5:99:1a:c2:ca:2f:0e:91:1c:e7:dd:3b: 1e:16:c3:ae:1f:a6:e3:43:63:66:77:60:36:6f:4a: b3:f2:c9:92:89:e6:89:de:35:ea:66:57:34:df:ec: 9a:26:d7:53:78:72:47:5f:df:d0:01:5d:26:4e:61: 94:8a:db:34:cd:aa:0a:e2:ad:09:57:96:01:27:a7: e4:03:90:12:35:cd:12:4d:a9:aa:d2:73:48:4e:a1: 8a:a6:4e:fa:27:27:12:78:e8:42:d3:c5:53:d8:14: 48:88:eb:91:86:ec:4e:b8:74:f0:25:32:50:25:5a: c7:14:03:96:6a:de:f1:73:eb:10:74:06:90:f6:09: 26:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:86:4E:87:F4:63:75:D6:73:62:01:6B:AA:F8:E2:FA:5C:CD:7B:D8 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/19 Signature Algorithm: sha256WithRSAEncryption 12:1c:30:3c:59:a5:c7:8d:71:5e:13:4a:e3:ce:00:28:39:5c: e6:8e:88:02:62:d0:1e:be:e7:d6:79:30:b3:6d:90:16:2d:fc: 97:2f:46:ec:21:16:79:e0:d3:2d:c7:7c:7f:af:5b:2f:cb:7c: 4c:3b:39:8b:c8:e7:c2:76:9b:58:ba:d2:52:39:ed:75:c3:ef: 39:77:bf:8d:a9:7a:7e:a4:cc:3e:e5:7e:3e:78:b5:02:d8:89: 99:72:6e:53:84:6f:21:2f:25:68:61:92:e5:02:e5:62:cc:98: 54:f3:25:5a:91:a2:42:d8:b0:1b:17:1b:15:75:c9:5d:f9:51: 93:14:35:8b:55:a6:4d:c5:e5:f9:7f:2a:c8:19:4f:ab:75:ae: 19:2f:54:55:04:4c:6d:0d:e2:6f:63:12:12:7c:2a:f9:b6:bf: 19:6d:cd:03:b3:1a:a4:7e:03:df:7e:56:bd:76:5c:e1:95:d5: 39:d3:e3:b9:44:82:50:89:2b:80:18:9a:17:d3:94:e6:db:66: 7e:d7:84:e4:61:c2:d1:e1:4e:9c:2a:8c:d7:31:12:75:45:a7: 5d:52:c0:af:a8:f1:f0:47:78:ae:61:ca:af:67:8c:7c:0b:e6: 20:66:7a:be:2c:8f:ec:72:97:aa:e4:b8:d3:ab:8f:89:25:8c: f3:82:e3:88 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUPMB9+umvZauP3i8t7j0SEjGIRPkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI2MDIyNDAwMDAwNloX DTI2MDUyNTIzNTk1OVowejFJMEcGA1UEBRNAZTdjMzA3NWRiYjE3ZjU0YzVkNzQ4 NTc1YTAwMzQ2ZTU2NjU1MDhkNGVjZWMwNWNjMTVkZTJlNzVlNDY4ZTRhZjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkT4DQP5wUDCCpGOWlo+28Zwzp2c4 Y1keL5FGxGqrDfZP9bdBBEX6x7cxXq80VjjPf6QUXsTc+P6W63DrG4/7/IDRs1HN 8bO9sTg3mk8IiIifB0gB8tNwX+BZoVQO5xTPsgXBV57apTcFMTb2U0w4JkGfR3SO Xin7nnf1mRrCyi8OkRzn3TseFsOuH6bjQ2Nmd2A2b0qz8smSieaJ3jXqZlc03+ya JtdTeHJHX9/QAV0mTmGUits0zaoK4q0JV5YBJ6fkA5ASNc0STamq0nNITqGKpk76 JycSeOhC08VT2BRIiOuRhuxOuHTwJTJQJVrHFAOWat7xc+sQdAaQ9gkmBQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFI6GTof0Y3XWc2IBa6r44vpczXvYMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzI0NWZhNGViLTZkMGQtNGRmNy05ZTJkLTI5YTdkMzlhZGNiOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFevjAMA0GCSqGSIb3DQEBCwUAA4IBAQASHDA8WaXHjXFeE0rjzgAo OVzmjogCYtAevufWeTCzbZAWLfyXL0bsIRZ54NMtx3x/r1svy3xMOzmLyOfCdptY utJSOe11w+85d7+NqXp+pMw+5X4+eLUC2ImZcm5ThG8hLyVoYZLlAuVizJhU8yVa kaJC2LAbFxsVdcld+VGTFDWLVaZNxeX5fyrIGU+rda4ZL1RVBExtDeJvYxISfCr5 tr8Zbc0DsxqkfgPffla9dlzhldU50+O5RIJQiSuAGJoX05Tm22Z+14TkYcLR4U6c KozXMRJ1RaddUsCvqPHwR3iuYcqvZ4x8C+YgZnq+LI/scpeq5LjTq4+JJYzzguOI -----END CERTIFICATE-----Generated at Mon Mar 2 01:24:09 2026 by rpki-client