$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa File: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (raw, json) Hash identifier: qP9MQBbjyyhipmXMyyFrCidGihcQG5k37eJ4xO4wo2g= Subject key identifier: 24:D6:20:5A:59:DE:99:6A:0A:51:65:75:C4:0D:9E:09:43:EF:61:3E Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 60FB02F432A47DDDC946EAD4A2354D3E0873CA53 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa Signing time: Sat 29 Mar 2025 00:00:03 +0000 ROA not before: Sat 29 Mar 2025 00:00:03 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:fb:02:f4:32:a4:7d:dd:c9:46:ea:d4:a2:35:4d:3e:08:73:ca:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001 Validity Not Before: Mar 29 00:00:03 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:72:40:34:ea:de:e6:7b:f6:6f:7e:cd:c8:ec: 2a:fc:96:df:c8:cd:0d:26:c4:04:1a:2a:87:8c:c1: c6:b2:76:4c:b4:d0:60:8a:5c:94:bc:50:0f:33:2c: 88:7d:f2:f2:aa:50:71:ed:2e:18:35:c8:ab:e8:8a: f3:f4:a8:cc:78:f0:f1:26:cb:36:d6:28:ab:93:12: bf:49:23:a1:dc:38:df:7a:2a:1c:a7:03:dd:2b:b2: 16:a9:49:c5:10:7d:83:2f:04:c9:2e:f5:76:64:cc: 07:d1:c1:a9:a5:76:b2:6b:99:16:ec:69:bd:79:f6: 6e:0a:17:ff:31:18:21:1e:52:3b:df:65:b9:56:53: be:de:67:29:67:e5:0a:dd:18:cd:a0:f3:04:4a:af: 5f:c5:83:f7:db:7f:e8:29:e0:b7:50:9e:97:ea:f4: f5:65:07:d8:ff:45:d6:d2:08:02:8d:1a:d5:f4:61: 88:65:4c:5b:05:b3:da:17:8c:91:06:2b:d8:be:3a: a2:0d:5e:ae:1b:0c:4d:23:aa:55:b6:c6:b3:22:fd: 56:8f:bb:ad:1a:f9:7a:0d:bf:ea:af:77:d9:2c:7a: 0d:94:49:7f:46:a5:2d:07:d3:69:0f:a0:01:29:36: 0c:0a:44:1c:a1:9e:35:d9:87:43:e8:e1:52:a8:78: 3b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D6:20:5A:59:DE:99:6A:0A:51:65:75:C4:0D:9E:09:43:EF:61:3E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.240.0/20 Signature Algorithm: sha256WithRSAEncryption fa:f0:44:ad:85:59:78:29:82:d1:5f:37:ed:5c:22:42:af:16: ad:bc:03:fc:ae:28:f1:bc:fc:d5:f5:fa:1e:bf:1a:0f:fa:f1: 41:6f:5e:5e:eb:3b:70:61:c1:6c:ce:a2:63:37:cb:c2:c6:a9: ae:33:e8:64:5f:fd:66:f6:0f:67:ba:3f:a4:24:f1:d7:50:95: 98:6d:ec:bd:c5:d2:a0:8b:a1:41:fc:34:b7:dd:b4:c2:80:e5: e0:f3:b8:c8:76:fa:83:b5:6f:47:d7:bd:3a:e1:0b:2b:b2:e8: 9b:47:cf:32:dc:35:c6:10:20:14:0e:f3:15:95:e8:e0:30:67: a9:17:9d:27:e9:2b:61:25:50:d4:dd:56:af:2f:13:a8:35:77: 66:4f:96:98:02:b8:93:d6:1d:e1:42:25:b3:ef:6d:cb:02:13: d3:f5:7b:28:62:c5:e9:9e:94:75:44:5a:0c:32:37:9f:3b:7d: ac:c7:e1:9c:93:0d:45:9f:01:99:ff:a0:0a:b7:80:dd:3b:18: 6f:40:9e:22:24:b4:63:2a:5a:ef:2e:17:e1:8c:a0:b9:ea:a5: 44:b1:83:7d:cc:ec:a4:b6:6a:73:f3:80:dc:90:dd:ea:2c:5a: f1:23:fa:2e:c3:a8:85:13:04:12:07:74:8c:4c:e5:5f:a9:4c: ec:66:e5:f2 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUYPsC9DKkfd3JRurUojVNPghzylMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDMyOTAwMDAwM1oX DTI1MDUwMzIzNTk1OVowejFJMEcGA1UEBRNANjE0NmJlOThhOTNiYjA2NjVmMWVl NTVjMjllNzY2NjY4ZTQzNzliMmViN2U0ZDM3NjQxMzlhZjk0M2QyZThhMzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXJANOre5nv2b37NyOwq/JbfyM0N JsQEGiqHjMHGsnZMtNBgilyUvFAPMyyIffLyqlBx7S4YNcir6Irz9KjMePDxJss2 1iirkxK/SSOh3DjfeiocpwPdK7IWqUnFEH2DLwTJLvV2ZMwH0cGppXaya5kW7Gm9 efZuChf/MRghHlI732W5VlO+3mcpZ+UK3RjNoPMESq9fxYP323/oKeC3UJ6X6vT1 ZQfY/0XW0ggCjRrV9GGIZUxbBbPaF4yRBivYvjqiDV6uGwxNI6pVtsazIv1Wj7ut Gvl6Db/qr3fZLHoNlEl/RqUtB9NpD6ABKTYMCkQcoZ412YdD6OFSqHg73QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFCTWIFpZ3plqClFldcQNnglD72E+MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzE3N2M5NzAyLWVlMzktNDJkMS1iNzZmLTZjZWU3N2Y0ZmI0NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEevjwMA0GCSqGSIb3DQEBCwUAA4IBAQD68ESthVl4KYLRXzftXCJC rxatvAP8rijxvPzV9foevxoP+vFBb15e6ztwYcFszqJjN8vCxqmuM+hkX/1m9g9n uj+kJPHXUJWYbey9xdKgi6FB/DS33bTCgOXg87jIdvqDtW9H17064QsrsuibR88y 3DXGECAUDvMVlejgMGepF50n6SthJVDU3VavLxOoNXdmT5aYAriT1h3hQiWz723L AhPT9XsoYsXpnpR1RFoMMjefO32sx+Gckw1FnwGZ/6AKt4DdOxhvQJ4iJLRjKlrv LhfhjKC56qVEsYN9zOyktmpz84DckN3qLFrxI/ouw6iFEwQSB3SMTOVfqUzsZuXy -----END CERTIFICATE-----Generated at Sat Apr 5 11:00:25 2025 by rpki-client