$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa File: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (raw, json) Hash identifier: PARNEnUNMqJNis6uThL9iPY+YceqLih3wSCIL0eeeU4= Subject key identifier: 37:8E:66:64:13:3C:2E:3D:53:41:D9:C7:E7:B9:93:00:69:8C:E0:3E Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 62A5902CCA1AF6948EB1BB13650109D5F2379637 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa Signing time: Fri 13 Jun 2025 00:00:05 +0000 ROA not before: Fri 13 Jun 2025 00:00:05 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:a5:90:2c:ca:1a:f6:94:8e:b1:bb:13:65:01:09:d5:f2:37:96:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 13 00:00:05 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=dd639aeb4f762989515d5b91a15b6e1d4527d6abed676b18e76ed274d5939612, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7b:57:89:d3:bf:d9:a1:8f:9d:07:2d:f8:62: d0:ab:32:b2:d1:0d:55:85:21:24:ab:f3:63:90:be: 77:27:26:04:d2:d6:2f:87:23:9c:bc:eb:83:dc:36: be:e4:58:e5:28:f8:11:0c:95:04:5d:6d:90:73:5b: 97:66:fb:d4:15:e9:12:19:e9:b1:96:39:46:9d:8d: 77:64:90:1e:58:f6:c6:27:10:6e:4f:99:7c:6d:a6: 2f:7a:1c:df:9c:0f:d3:fb:ce:8a:c2:33:05:3c:0e: c1:3c:f2:30:1e:bd:81:92:34:11:d5:a1:79:fa:da: b9:c1:85:bf:c0:de:f1:92:7b:5d:0f:f8:ea:2b:a1: cf:cd:5c:b0:6e:02:95:b5:2a:f9:a2:78:4a:55:20: f9:a3:92:de:fe:6e:aa:f8:44:b9:81:83:35:3e:be: 13:55:e3:64:52:1e:5d:ea:29:54:f2:c0:80:51:91: 04:22:5a:e2:3d:2d:8c:80:f2:a0:19:64:d6:4e:89: 1a:78:4e:3e:a2:20:2e:90:54:57:95:be:d2:df:a2: e7:e9:e1:3c:57:84:72:4c:4e:6a:06:c4:65:ce:74: 7b:ac:cb:54:38:89:8b:9b:0a:9f:60:96:64:31:66: a7:db:8e:7a:77:6c:47:3b:0c:0b:5f:e8:08:9e:79: c6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8E:66:64:13:3C:2E:3D:53:41:D9:C7:E7:B9:93:00:69:8C:E0:3E X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.240.0/20 Signature Algorithm: sha256WithRSAEncryption 0b:4e:aa:00:35:be:2e:28:28:f9:c0:ad:0a:97:2a:c8:cd:00: 87:87:81:93:21:7b:15:35:c9:5a:04:04:ba:ae:65:5d:89:09: e5:67:03:a7:97:41:43:22:ce:97:fd:64:a1:a2:9e:83:10:df: 34:10:c9:c9:04:da:60:2b:f6:ae:e9:8e:f7:1a:b1:f5:5d:86: 8d:bf:b3:54:e2:87:6f:ea:7b:17:3f:91:26:18:af:cc:a1:ae: 81:c6:26:66:8f:50:ca:31:c1:cd:c8:fb:2d:a9:a5:d8:ea:dd: bf:31:1d:32:db:34:76:23:aa:ab:7f:6a:ce:47:b3:64:76:e5: 6d:1f:f8:ae:4c:97:04:87:12:b7:3d:65:5c:e2:94:cd:86:be: cb:95:6c:2c:89:d3:8f:ae:ef:ba:99:4e:64:75:f2:35:18:5c: 65:f8:2b:97:28:18:fe:2e:6d:a1:cf:71:f4:f1:48:22:05:9a: e4:bd:4c:d6:7e:ac:e2:86:48:72:19:b6:34:43:e7:d1:67:3d: 8f:f5:1a:63:e2:43:52:e4:c9:73:71:77:5f:15:e3:e9:a1:76: f2:03:3b:9e:f6:99:9c:bf:1f:d9:95:2c:49:3b:3d:99:39:a8: ae:52:dd:be:8b:43:98:cb:c8:7d:b7:97:e3:ec:fd:0c:24:59: 10:20:37:ab -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUYqWQLMoa9pSOsbsTZQEJ1fI3ljcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxMzAwMDAwNVoX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAZGQ2MzlhZWI0Zjc2Mjk4OTUxNWQ1 YjkxYTE1YjZlMWQ0NTI3ZDZhYmVkNjc2YjE4ZTc2ZWQyNzRkNTkzOTYxMjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3tXidO/2aGPnQct+GLQqzKy0Q1V hSEkq/NjkL53JyYE0tYvhyOcvOuD3Da+5FjlKPgRDJUEXW2Qc1uXZvvUFekSGemx ljlGnY13ZJAeWPbGJxBuT5l8baYvehzfnA/T+86KwjMFPA7BPPIwHr2BkjQR1aF5 +tq5wYW/wN7xkntdD/jqK6HPzVywbgKVtSr5onhKVSD5o5Le/m6q+ES5gYM1Pr4T VeNkUh5d6ilU8sCAUZEEIlriPS2MgPKgGWTWTokaeE4+oiAukFRXlb7S36Ln6eE8 V4RyTE5qBsRlznR7rMtUOImLmwqfYJZkMWan2456d2xHOwwLX+gInnnGdQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFDeOZmQTPC49U0HZx+e5kwBpjOA+MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzE3N2M5NzAyLWVlMzktNDJkMS1iNzZmLTZjZWU3N2Y0ZmI0NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEevjwMA0GCSqGSIb3DQEBCwUAA4IBAQALTqoANb4uKCj5wK0KlyrI zQCHh4GTIXsVNclaBAS6rmVdiQnlZwOnl0FDIs6X/WShop6DEN80EMnJBNpgK/au 6Y73GrH1XYaNv7NU4odv6nsXP5EmGK/Moa6BxiZmj1DKMcHNyPstqaXY6t2/MR0y 2zR2I6qrf2rOR7NkduVtH/iuTJcEhxK3PWVc4pTNhr7LlWwsidOPru+6mU5kdfI1 GFxl+CuXKBj+Lm2hz3H08UgiBZrkvUzWfqzihkhyGbY0Q+fRZz2P9Rpj4kNS5Mlz cXdfFePpoXbyAzue9pmcvx/ZlSxJOz2ZOaiuUt2+i0OYy8h9t5fj7P0MJFkQIDer -----END CERTIFICATE-----Generated at Sat Jun 14 06:14:11 2025 by rpki-client