$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa File: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (raw, json) Hash identifier: Rh/0b9lgrc187n91KIAUDjR8RC1URjBeRg7L6sXQbko= Subject key identifier: 38:E8:80:FC:8B:11:39:26:6A:27:09:63:48:B4:18:3B:6B:17:FD:79 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 4B49BAAEA45288985EDE1BE2B1C07F57A8B79AC5 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa Signing time: Wed 23 Apr 2025 00:00:07 +0000 ROA not before: Wed 23 Apr 2025 00:00:07 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:49:ba:ae:a4:52:88:98:5e:de:1b:e2:b1:c0:7f:57:a8:b7:9a:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 23 00:00:07 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=24ec15f10727fcb83b0a99528c4f999c30259b4ab80b06e20738b4fbe0b13a6d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:36:70:af:23:59:da:24:a6:ac:8b:45:d7:22: 5a:f8:d0:f2:1e:48:4d:d7:56:75:56:32:c4:de:75: 7b:15:e8:43:e0:b2:d6:17:d5:dc:f4:d5:ca:a3:aa: 37:ad:74:79:b7:63:f3:e7:ca:9c:7f:d0:95:85:a4: 94:64:34:55:87:c5:3d:6f:cb:a8:0c:83:1e:dc:5c: 05:15:54:77:cb:45:36:bc:62:da:77:e0:7c:84:52: 06:1f:75:f0:ce:51:fc:d0:f0:68:1c:e5:8d:db:90: 03:66:2b:31:eb:56:88:c8:e9:f2:ba:0e:bf:18:c6: 85:5a:4d:ec:3b:0a:60:c0:72:a3:1c:0e:87:20:fd: 19:ff:48:32:c5:0e:5a:7d:c5:08:e3:96:b0:ac:0c: 0b:73:9a:2c:8d:80:d8:44:fc:a3:21:56:7a:9b:2e: fc:42:2b:de:e7:93:f4:3e:a1:cc:2c:ca:7c:83:b3: fc:5e:51:a4:26:a6:38:da:ac:ca:5c:cc:ce:fd:02: fb:ea:59:23:c8:4b:95:f2:ce:04:1c:b1:59:2b:f4: 80:63:33:e0:e2:6c:04:cf:1a:d3:08:cf:db:28:2f: 84:00:d1:5a:a1:5f:eb:63:d8:8f:fd:c6:b1:3a:92: 35:8c:0f:38:b7:4c:af:e1:0b:06:af:05:3d:c5:bd: c5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:E8:80:FC:8B:11:39:26:6A:27:09:63:48:B4:18:3B:6B:17:FD:79 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/19 Signature Algorithm: sha256WithRSAEncryption 99:b3:aa:94:77:b4:6f:8d:1b:bf:d3:b8:5a:67:89:d6:68:19: 60:ec:06:e8:65:7b:f8:d1:ab:74:74:bb:99:c9:41:3e:21:87: 84:e8:0b:c6:a4:3c:60:10:b3:1a:59:56:66:48:f1:69:aa:8c: d1:71:e2:e2:50:a6:9d:83:d4:0e:e3:70:fd:a5:8f:ec:1f:57: d3:c1:76:dd:5b:b1:f9:a1:e1:4f:94:12:01:c9:0e:6f:12:7f: 2a:6a:91:62:38:5f:ec:9f:00:62:2d:f0:31:37:8c:d5:ca:1b: c1:88:15:32:13:b8:f1:ff:70:5f:5b:b0:cd:d6:28:9a:7f:f4: e2:93:fa:f6:e7:1b:8f:42:c4:7c:f8:d1:54:47:a0:e9:f1:2e: 3d:c8:74:e1:a0:05:7a:df:85:1c:a5:ed:52:be:10:8d:56:3e: 6c:14:68:63:95:71:9a:cc:40:f8:be:91:a9:6c:8b:1c:c9:5d: c1:1b:f8:04:f5:47:b7:18:86:fc:db:93:52:d5:e7:26:13:18: 28:3b:46:aa:f6:98:5c:14:c9:66:8e:10:7b:ab:dc:fa:45:70: 4e:df:f3:00:35:58:64:77:2f:6c:1c:b4:c0:37:45:8f:c6:e0: 00:3a:51:57:75:6b:5c:7a:e2:6d:8f:57:70:45:94:da:3e:4f: 79:bf:95:da -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUS0m6rqRSiJhe3hviscB/V6i3msUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDQyMzAwMDAwN1oX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAMjRlYzE1ZjEwNzI3ZmNiODNiMGE5 OTUyOGM0Zjk5OWMzMDI1OWI0YWI4MGIwNmUyMDczOGI0ZmJlMGIxM2E2ZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujZwryNZ2iSmrItF1yJa+NDyHkhN 11Z1VjLE3nV7FehD4LLWF9Xc9NXKo6o3rXR5t2Pz58qcf9CVhaSUZDRVh8U9b8uo DIMe3FwFFVR3y0U2vGLad+B8hFIGH3XwzlH80PBoHOWN25ADZisx61aIyOnyug6/ GMaFWk3sOwpgwHKjHA6HIP0Z/0gyxQ5afcUI45awrAwLc5osjYDYRPyjIVZ6my78 Qive55P0PqHMLMp8g7P8XlGkJqY42qzKXMzO/QL76lkjyEuV8s4EHLFZK/SAYzPg 4mwEzxrTCM/bKC+EANFaoV/rY9iP/caxOpI1jA84t0yv4QsGrwU9xb3F/wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFDjogPyLETkmaicJY0i0GDtrF/15MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzI0NWZhNGViLTZkMGQtNGRmNy05ZTJkLTI5YTdkMzlhZGNiOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFevjAMA0GCSqGSIb3DQEBCwUAA4IBAQCZs6qUd7RvjRu/07haZ4nW aBlg7AboZXv40at0dLuZyUE+IYeE6AvGpDxgELMaWVZmSPFpqozRceLiUKadg9QO 43D9pY/sH1fTwXbdW7H5oeFPlBIByQ5vEn8qapFiOF/snwBiLfAxN4zVyhvBiBUy E7jx/3BfW7DN1iiaf/Tik/r25xuPQsR8+NFUR6Dp8S49yHThoAV634Ucpe1SvhCN Vj5sFGhjlXGazED4vpGpbIscyV3BG/gE9Ue3GIb825NS1ecmExgoO0aq9phcFMlm jhB7q9z6RXBO3/MANVhkdy9sHLTAN0WPxuAAOlFXdWtceuJtj1dwRZTaPk95v5Xa -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net