$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/55399736-f7a1-421f-ae49-44f3fdfab3e0.roa File: 55399736-f7a1-421f-ae49-44f3fdfab3e0.roa (raw, json) Hash identifier: 8FzxR/DHbcue5ZlxJl8ADjqGq4Wuj54pyaNgGLdNVJA= Subject key identifier: AF:32:B1:30:2C:B5:05:5D:92:EA:9C:93:AD:A1:80:63:90:01:3A:8D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 356CF4E93A8458EABD716A58E36486227AF2D6E8 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/55399736-f7a1-421f-ae49-44f3fdfab3e0.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 122.248.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 00:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:6c:f4:e9:3a:84:58:ea:bd:71:6a:58:e3:64:86:22:7a:f2:d6:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=71394142f5895142e6c4d59ae80f37cf5e151c21cf78112d992859638e0721e9, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:44:e4:5c:8a:91:c0:86:14:06:ca:ae:04:89: 03:c5:a4:f4:e2:4c:f0:79:f7:51:73:e6:9b:89:80: 48:ed:08:bc:67:68:39:24:01:a9:58:25:dd:91:d5: cf:a0:b2:d2:06:1e:c5:12:02:ad:b0:9f:dd:53:e3: c3:1d:c2:73:fd:56:aa:05:c4:43:84:54:ab:aa:fd: bb:86:32:76:06:38:d4:99:fa:67:2a:1b:95:e4:53: 9a:8e:4c:87:3a:94:28:9a:6f:d7:4c:a3:28:77:1d: 32:b7:40:39:c2:47:86:41:e1:3b:35:71:d9:e9:4d: ba:58:57:c6:17:43:94:6e:cf:d1:21:09:fc:0c:a0: e1:82:53:78:5b:bb:8e:6c:14:c2:3d:d5:ca:29:fe: c4:81:55:81:a6:10:b1:a7:cc:d7:e9:d9:69:5e:61: 16:9a:a6:b9:38:97:e0:64:d4:dd:8b:3b:e0:d2:a4: c3:c0:f5:fd:cb:3c:29:80:5f:c2:88:64:cf:6e:d4: 8e:4c:d4:22:ca:51:40:78:73:37:a3:c3:9d:e8:df: 3b:cc:0a:61:aa:dd:af:6e:20:bf:09:96:ee:93:40: 0e:d3:94:8b:3e:56:e6:9f:4e:ce:5b:7e:02:55:ff: 64:56:7d:36:95:17:e8:9e:69:92:d8:17:c4:d1:6e: c5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:32:B1:30:2C:B5:05:5D:92:EA:9C:93:AD:A1:80:63:90:01:3A:8D X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/55399736-f7a1-421f-ae49-44f3fdfab3e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/18 Signature Algorithm: sha256WithRSAEncryption ee:a9:c7:c7:06:a2:e9:6e:ec:bb:e7:34:90:3f:f9:47:be:4f: 61:c0:45:71:67:a0:93:b0:95:3f:28:63:fd:cc:63:0f:97:24: 17:d8:2f:b0:ee:c2:02:d1:cc:03:07:6a:cf:3c:6a:a5:ff:af: 88:c0:d3:00:04:67:cc:db:05:a3:23:7c:66:a2:f9:b5:d7:d2: 3c:15:8a:95:f3:a8:0b:97:d5:03:c3:73:e6:34:b4:10:22:0a: c7:7c:e4:f6:be:5f:ca:bb:e7:60:1a:8e:a9:52:b0:1a:03:52: d7:3c:ee:6f:81:ba:8b:26:f6:17:06:8c:c5:da:0f:bb:33:19: 64:e6:ae:0c:fb:78:65:6a:f3:e3:7b:43:0c:f5:c7:72:61:bd: 6c:c4:38:a4:79:1a:93:d1:a6:07:72:5a:41:7b:7a:66:89:2e: 7f:3d:a8:6d:8f:9e:7f:72:73:1f:4c:aa:fd:9a:cb:a3:65:ee: 77:de:d0:47:c9:1d:a6:02:4b:66:cc:3e:2c:10:1d:5c:4e:75: 41:16:71:73:44:79:db:5f:df:96:b6:a5:a0:d7:86:97:56:a5: 37:28:17:85:78:79:c3:8e:ef:86:60:f3:1a:b9:aa:35:ec:4d: 46:46:f6:a4:2b:ba:a1:f2:4e:9d:96:de:cc:4a:8e:21:1e:5e: 39:32:fc:1d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUNWz06TqEWOq9cWpY42SGInry1ugwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI0MDQxNjAwMDAwMFoX DTI0MDUyMTIzNTk1OVowejFJMEcGA1UEBRNANzEzOTQxNDJmNTg5NTE0MmU2YzRk NTlhZTgwZjM3Y2Y1ZTE1MWMyMWNmNzgxMTJkOTkyODU5NjM4ZTA3MjFlOTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUTkXIqRwIYUBsquBIkDxaT04kzw efdRc+abiYBI7Qi8Z2g5JAGpWCXdkdXPoLLSBh7FEgKtsJ/dU+PDHcJz/VaqBcRD hFSrqv27hjJ2BjjUmfpnKhuV5FOajkyHOpQomm/XTKModx0yt0A5wkeGQeE7NXHZ 6U26WFfGF0OUbs/RIQn8DKDhglN4W7uObBTCPdXKKf7EgVWBphCxp8zX6dlpXmEW mqa5OJfgZNTdizvg0qTDwPX9yzwpgF/CiGTPbtSOTNQiylFAeHM3o8Od6N87zAph qt2vbiC/CZbuk0AO05SLPlbmn07OW34CVf9kVn02lRfonmmS2BfE0W7FpQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFK8ysTAstQVdkuqck62hgGOQATqNMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzU1Mzk5NzM2LWY3YTEtNDIxZi1hZTQ5LTQ0ZjNmZGZhYjNlMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGevjAMA0GCSqGSIb3DQEBCwUAA4IBAQDuqcfHBqLpbuy75zSQP/lH vk9hwEVxZ6CTsJU/KGP9zGMPlyQX2C+w7sIC0cwDB2rPPGql/6+IwNMABGfM2wWj I3xmovm119I8FYqV86gLl9UDw3PmNLQQIgrHfOT2vl/Ku+dgGo6pUrAaA1LXPO5v gbqLJvYXBozF2g+7Mxlk5q4M+3hlavPje0MM9cdyYb1sxDikeRqT0aYHclpBe3pm iS5/Pahtj55/cnMfTKr9msujZe533tBHyR2mAktmzD4sEB1cTnVBFnFzRHnbX9+W tqWg14aXVqU3KBeFeHnDju+GYPMauao17E1GRvakK7qh8k6dlt7MSo4hHl45Mvwd -----END CERTIFICATE-----Generated at Thu May 9 00:30:03 2024 by rpki-client on console-ams.rpki-client.org