$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa File: d953b731-7921-47dd-abf3-b7b8cc367900.roa (raw, json) Hash identifier: snqPL+PgGEhj6UygAPdpECbQmZbIQC0xfp1LCHtXxQU= Subject key identifier: 3B:0F:10:1F:40:7C:90:17:2C:E3:97:2F:CE:CC:29:46:4D:27:08:84 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 559CBD0A53BB77F35B4984B1389B87121340262D Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa Signing time: Wed 23 Apr 2025 00:00:04 +0000 ROA not before: Wed 23 Apr 2025 00:00:04 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:9c:bd:0a:53:bb:77:f3:5b:49:84:b1:38:9b:87:12:13:40:26:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 23 00:00:04 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=c8b6235035563a9dab2982067e33a81b5e6d8bf14e8d78e3ebd78edbee97ede8, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bc:b8:9d:7e:a9:d2:ce:f8:66:0e:c4:19:03: 5f:20:fc:44:14:cb:14:7e:01:f9:0f:d6:9e:8c:73: 61:87:a1:1b:ac:23:95:9d:34:00:1b:b8:07:b7:ae: 69:32:5f:29:61:1f:64:1d:63:0f:b6:7c:a9:c9:83: f2:65:3a:b7:d3:aa:ff:97:ec:6a:5d:9d:1d:fe:83: c5:cc:4f:98:5c:1d:46:c4:9d:cd:66:45:52:06:01: 61:a9:66:93:38:8c:e3:4f:81:40:3c:52:03:22:45: cb:b2:27:5f:c0:1e:98:b7:b6:7d:32:56:4a:24:c0: fd:80:8c:55:7a:0b:2b:4c:22:70:60:2b:a8:cf:1c: 43:b6:f8:b4:d7:47:fe:4a:f3:35:63:2c:98:9a:af: c7:b5:b3:c7:1c:0c:02:e4:4d:ca:32:7f:0d:12:d6: 38:7a:4c:2e:17:56:5d:31:b4:16:6b:d7:f1:92:19: 7e:9b:a5:35:aa:d8:e0:33:6d:41:a2:54:4f:69:ee: 5f:90:e3:9b:ac:c0:f9:75:5b:0d:71:91:b7:94:53: ce:dc:84:f3:22:2e:e6:19:ec:0f:a2:a2:20:a0:9c: d9:77:f7:01:7a:b1:06:fd:98:28:0b:f2:c6:bc:aa: 8b:97:d7:a2:73:67:39:44:96:2b:7a:e6:1c:00:f8: e8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0F:10:1F:40:7C:90:17:2C:E3:97:2F:CE:CC:29:46:4D:27:08:84 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/18 Signature Algorithm: sha256WithRSAEncryption 66:d1:48:a7:25:b0:3b:52:70:eb:cf:58:9c:db:72:78:b1:23: 91:0b:d3:d6:fe:2e:47:f2:f8:f2:21:81:b4:2f:40:6c:24:46: a1:81:6e:c4:a7:e6:cd:0b:d3:d4:be:a7:ae:e2:b5:4d:61:26: 4c:f4:86:18:d5:91:50:62:79:b0:af:39:52:ce:02:34:6a:aa: 79:bf:66:a2:af:ab:3e:4a:66:30:e6:c4:09:cb:26:74:bd:e6: 31:85:b6:14:4d:df:e3:58:34:13:25:c4:4c:a5:21:60:16:f9: 78:04:e0:d7:66:39:72:19:74:52:1d:d9:d0:c8:29:2f:ff:51: 2f:b3:77:c3:d5:71:04:34:dd:2d:2b:36:02:2b:3c:8d:c2:24: 6c:df:39:af:5f:66:d1:8b:86:2e:aa:eb:a3:27:55:50:d6:f1: 32:36:a2:aa:e5:de:cb:68:e6:af:c5:83:05:5a:e4:40:42:c7: af:76:7a:5d:3b:6b:b1:6c:b8:ec:bd:ee:fc:f9:9d:54:af:5e: 6e:f9:af:02:1c:24:7e:c7:1b:6e:e9:b0:c8:3e:af:2a:76:99: f1:90:f4:48:e6:78:f3:53:1d:ba:c2:80:1a:dc:7f:5b:fb:22: 1b:68:e1:c0:9d:dc:34:45:1d:ed:78:c9:ad:85:16:05:a8:c6: c7:3a:1f:4a -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUVZy9ClO7d/NbSYSxOJuHEhNAJi0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDQyMzAwMDAwNFoX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAYzhiNjIzNTAzNTU2M2E5ZGFiMjk4 MjA2N2UzM2E4MWI1ZTZkOGJmMTRlOGQ3OGUzZWJkNzhlZGJlZTk3ZWRlODEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLy4nX6p0s74Zg7EGQNfIPxEFMsU fgH5D9aejHNhh6EbrCOVnTQAG7gHt65pMl8pYR9kHWMPtnypyYPyZTq306r/l+xq XZ0d/oPFzE+YXB1GxJ3NZkVSBgFhqWaTOIzjT4FAPFIDIkXLsidfwB6Yt7Z9MlZK JMD9gIxVegsrTCJwYCuozxxDtvi010f+SvM1YyyYmq/HtbPHHAwC5E3KMn8NEtY4 ekwuF1ZdMbQWa9fxkhl+m6U1qtjgM21BolRPae5fkOObrMD5dVsNcZG3lFPO3ITz Ii7mGewPoqIgoJzZd/cBerEG/ZgoC/LGvKqLl9eic2c5RJYreuYcAPjoMwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFDsPEB9AfJAXLOOXL87MKUZNJwiEMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2Q5NTNiNzMxLTc5MjEtNDdkZC1hYmYzLWI3YjhjYzM2NzkwMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGevjAMA0GCSqGSIb3DQEBCwUAA4IBAQBm0UinJbA7UnDrz1ic23J4 sSORC9PW/i5H8vjyIYG0L0BsJEahgW7Ep+bNC9PUvqeu4rVNYSZM9IYY1ZFQYnmw rzlSzgI0aqp5v2air6s+SmYw5sQJyyZ0veYxhbYUTd/jWDQTJcRMpSFgFvl4BODX ZjlyGXRSHdnQyCkv/1Evs3fD1XEENN0tKzYCKzyNwiRs3zmvX2bRi4YuquujJ1VQ 1vEyNqKq5d7LaOavxYMFWuRAQsevdnpdO2uxbLjsve78+Z1Ur15u+a8CHCR+xxtu 6bDIPq8qdpnxkPRI5njzUx26woAa3H9b+yIbaOHAndw0RR3teMmthRYFqMbHOh9K -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net