$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/55399736-f7a1-421f-ae49-44f3fdfab3e0.roa File: 55399736-f7a1-421f-ae49-44f3fdfab3e0.roa (raw, json) Hash identifier: PA+C/wNgJXA8pesxMyr+3h/a6hfB/Y/iEs709ZGhF+4= Subject key identifier: 77:0F:1F:20:FF:8A:D3:5D:8C:38:5F:24:7B:E8:E1:9B:62:A3:70:4E Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 18F0917FA029A631B56FAB3B045609B67613C626 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/55399736-f7a1-421f-ae49-44f3fdfab3e0.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 122.248.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:f0:91:7f:a0:29:a6:31:b5:6f:ab:3b:04:56:09:b6:76:13:c6:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=f38033798072fa4f7df5fac6babff60c6411bdaf68611386db71f46c44ff6d18, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a2:7d:3c:d4:7c:e9:d4:cf:f1:56:67:f3:9b: bf:fe:0d:4d:65:72:2a:5e:38:50:af:ee:38:4c:f0: 73:b3:5b:99:ef:49:6b:ee:31:fd:07:23:b2:f3:fb: 1d:62:87:29:11:f1:40:8e:f9:5e:37:66:cd:67:d2: e0:9f:6c:e9:56:03:59:12:f8:ff:f2:88:d0:5f:0c: b8:83:66:8a:b9:2d:a3:30:a6:2f:9d:14:d8:f3:d6: 5e:c5:83:ad:a7:80:44:28:5f:e1:08:a9:9b:6d:54: 90:44:85:3d:8b:3e:53:57:96:d0:af:47:b6:35:36: 11:54:0e:27:89:da:65:c5:4a:4b:eb:24:72:ac:35: 2c:cd:aa:96:d5:24:a6:a7:af:2c:1a:99:84:64:67: 29:6d:26:d5:18:f6:81:e7:19:26:31:30:f2:0b:b4: 70:09:07:a1:eb:ac:91:91:a9:fd:87:f5:8f:d3:7e: 9e:78:a3:b6:35:4c:16:aa:ca:3c:fc:71:7c:03:33: 68:a5:4b:a8:66:25:65:82:41:5d:f7:d0:ae:0f:a6: 5d:dc:e5:3f:fe:d7:73:36:34:93:4a:de:b1:39:4c: ff:ec:d0:2a:2d:df:49:86:10:59:a5:f3:de:a8:80: 88:f7:ed:0a:60:1f:1c:91:e2:12:82:58:8c:72:2f: 03:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:0F:1F:20:FF:8A:D3:5D:8C:38:5F:24:7B:E8:E1:9B:62:A3:70:4E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/55399736-f7a1-421f-ae49-44f3fdfab3e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/18 Signature Algorithm: sha256WithRSAEncryption 4a:6b:58:b3:a1:59:42:bb:78:51:92:8a:73:2b:4e:18:5c:90: 64:db:93:63:37:28:44:8f:03:5e:cb:19:87:84:a4:bf:6e:f6: 11:05:9d:fb:3a:ad:6d:86:7e:7f:85:dd:1f:6c:e2:e4:7b:6d: 55:d4:5b:96:e7:21:be:f9:80:1a:38:4a:90:84:86:1b:a5:81: 29:15:31:8c:11:3e:28:93:d7:31:e5:ff:0e:3d:82:25:5c:39: dc:21:f0:1e:0e:1d:ec:7d:3a:8c:41:e3:bc:fb:6f:1e:09:37: ec:79:1b:23:1a:b9:30:93:d0:e9:7b:1c:1a:7e:2f:cb:a2:28: 06:56:bd:50:71:17:b8:c0:4b:f6:5e:3a:98:7d:6f:c2:88:61: 16:63:fc:9b:d8:c9:54:21:4e:43:28:0e:da:38:01:1e:6a:92: 50:59:a5:42:62:ce:e5:41:0e:93:65:e1:5a:53:a5:08:60:0b: cf:45:1f:69:16:c2:ab:5d:a6:33:68:7f:bc:df:3b:40:89:a7: 4b:c8:8c:a8:f4:71:3c:5d:b8:fa:8e:95:09:23:e7:ee:a1:d4: 6a:72:16:bd:53:ab:2e:91:ed:0a:f2:f9:6c:e1:89:88:21:01: b2:5f:60:fa:d5:6b:af:8b:50:00:65:f5:bd:94:9c:30:05:7b: fc:b2:5d:9c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUGPCRf6AppjG1b6s7BFYJtnYTxiYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MTEwNDAwMDAwMFoX DTI0MTIwOTIzNTk1OVowejFJMEcGA1UEBRNAZjM4MDMzNzk4MDcyZmE0ZjdkZjVm YWM2YmFiZmY2MGM2NDExYmRhZjY4NjExMzg2ZGI3MWY0NmM0NGZmNmQxODEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqJ9PNR86dTP8VZn85u//g1NZXIq XjhQr+44TPBzs1uZ70lr7jH9ByOy8/sdYocpEfFAjvleN2bNZ9Lgn2zpVgNZEvj/ 8ojQXwy4g2aKuS2jMKYvnRTY89ZexYOtp4BEKF/hCKmbbVSQRIU9iz5TV5bQr0e2 NTYRVA4nidplxUpL6yRyrDUszaqW1SSmp68sGpmEZGcpbSbVGPaB5xkmMTDyC7Rw CQeh66yRkan9h/WP036eeKO2NUwWqso8/HF8AzNopUuoZiVlgkFd99CuD6Zd3OU/ /tdzNjSTSt6xOUz/7NAqLd9JhhBZpfPeqICI9+0KYB8ckeISgliMci8DKwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHcPHyD/itNdjDhfJHvo4Ztio3BOMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzU1Mzk5NzM2LWY3YTEtNDIxZi1hZTQ5LTQ0ZjNmZGZhYjNlMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGevjAMA0GCSqGSIb3DQEBCwUAA4IBAQBKa1izoVlCu3hRkopzK04Y XJBk25NjNyhEjwNeyxmHhKS/bvYRBZ37Oq1thn5/hd0fbOLke21V1FuW5yG++YAa OEqQhIYbpYEpFTGMET4ok9cx5f8OPYIlXDncIfAeDh3sfTqMQeO8+28eCTfseRsj Grkwk9Dpexwafi/LoigGVr1QcRe4wEv2XjqYfW/CiGEWY/yb2MlUIU5DKA7aOAEe apJQWaVCYs7lQQ6TZeFaU6UIYAvPRR9pFsKrXaYzaH+83ztAiadLyIyo9HE8Xbj6 jpUJI+fuodRqcha9U6suke0K8vls4YmIIQGyX2D61Wuvi1AAZfW9lJwwBXv8sl2c -----END CERTIFICATE-----Generated at Thu Nov 21 18:50:38 2024 by rpki-client on console-ams.rpki-client.org