$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa File: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (raw, json) Hash identifier: 8pbrlWeDTsmzN4t4I9XM8Tm+FCp8sgg1LYPJ72x8tr8= Subject key identifier: 3D:EA:F5:E4:6C:F1:3B:C9:3C:C0:35:3A:D0:63:1D:7E:91:3A:F6:FC Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1AAA919A2C250EA7321B5827C0E2754EF88AD1B9 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa Signing time: Fri 13 Jun 2025 00:00:02 +0000 ROA not before: Fri 13 Jun 2025 00:00:02 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:aa:91:9a:2c:25:0e:a7:32:1b:58:27:c0:e2:75:4e:f8:8a:d1:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Jun 13 00:00:02 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=d950fee2b0ee717954fe1b5c79967137bf11d0cc686d8354795338a51265ab20, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:15:23:f3:f2:b4:30:e7:44:a9:05:43:5c:5b: 38:cf:55:5f:be:0a:a8:ce:72:4c:4d:cb:f2:8b:69: ef:d3:71:82:b4:ed:4d:42:1f:bb:ba:b2:f7:75:89: 44:4b:c7:0b:50:f3:1c:0c:9e:42:73:01:46:26:74: 5a:66:c6:b0:50:6d:1e:e4:e9:00:98:8c:d3:86:af: 2f:bd:66:69:a6:c0:b0:2d:cf:ad:01:2c:4d:cd:21: 74:e6:7b:02:52:ea:54:0b:28:7c:e8:15:13:69:b7: 6c:b2:46:a7:f9:4d:23:83:44:b7:96:28:3b:af:53: c1:21:7e:cd:44:78:9a:8b:ba:b6:14:62:bb:2a:66: 0a:dc:51:0d:52:14:f7:8a:db:cd:b0:53:4c:85:8c: d4:1d:68:c4:e2:60:93:54:d3:97:31:b3:55:21:9e: 2c:67:40:78:fc:06:a1:d4:68:ea:02:87:09:05:e0: c5:e1:3a:56:8e:d0:cf:f2:38:c4:b4:ff:ce:50:77: 0f:c1:a9:e0:51:f7:46:2c:f4:e0:68:69:60:62:06: 32:97:11:d1:29:26:78:0f:e8:bb:ba:73:f3:18:b5: 6f:2c:38:1a:cb:91:bf:65:29:92:1c:d9:03:0e:f0: 8e:95:8e:60:7d:ce:3b:c4:d0:d3:fc:aa:2a:fe:d4: 4b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:EA:F5:E4:6C:F1:3B:C9:3C:C0:35:3A:D0:63:1D:7E:91:3A:F6:FC X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.232.0/21 Signature Algorithm: sha256WithRSAEncryption 89:f0:f3:59:79:ca:8b:84:a4:20:ec:9e:f7:0d:c0:3a:85:81: 5b:52:0b:f0:bd:56:9b:b1:97:89:d8:d7:f5:39:7c:53:e5:3c: b0:b6:b3:ba:41:23:40:18:76:c1:00:68:8e:3c:69:46:f3:a7: 29:d4:f8:8c:13:90:8d:e2:ee:59:8d:35:7b:53:bc:a1:b7:db: 82:73:34:ff:9d:11:e9:e7:ed:61:73:ef:6c:95:35:f4:94:57: fc:a0:14:cf:82:a6:ca:f2:b5:18:8f:54:d3:9f:e4:ce:63:0f: b2:b3:b7:11:8b:69:61:5a:b9:a7:05:46:15:b1:38:cc:78:bc: be:74:b1:8e:8a:f7:76:db:26:91:c0:47:f4:a9:4b:8e:8a:65: 57:99:49:2e:de:5f:dd:59:45:4d:5e:5b:6c:d4:ba:8e:27:e2: 74:ad:cc:75:7e:7f:2f:83:bc:4d:1d:69:b2:dd:48:aa:58:4e: a7:d0:cc:6a:5e:af:ec:b9:8d:a0:c2:d9:40:f0:ff:92:d2:b0: 0d:6c:f0:55:d1:e2:b1:75:ae:94:5a:47:79:53:2d:9c:25:b8: 23:a4:bd:81:2a:33:6d:29:82:32:a1:1c:63:c2:b6:bd:ad:5b: e3:7d:88:59:d8:7e:84:0a:ad:e3:c8:85:91:10:56:75:44:1b: bd:02:77:d8 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUGqqRmiwlDqcyG1gnwOJ1TviK0bkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDYxMzAwMDAwMloX DTI1MDcxODIzNTk1OVowejFJMEcGA1UEBRNAZDk1MGZlZTJiMGVlNzE3OTU0ZmUx YjVjNzk5NjcxMzdiZjExZDBjYzY4NmQ4MzU0Nzk1MzM4YTUxMjY1YWIyMDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRUj8/K0MOdEqQVDXFs4z1Vfvgqo znJMTcvyi2nv03GCtO1NQh+7urL3dYlES8cLUPMcDJ5CcwFGJnRaZsawUG0e5OkA mIzThq8vvWZppsCwLc+tASxNzSF05nsCUupUCyh86BUTabdsskan+U0jg0S3lig7 r1PBIX7NRHiai7q2FGK7KmYK3FENUhT3itvNsFNMhYzUHWjE4mCTVNOXMbNVIZ4s Z0B4/Aah1GjqAocJBeDF4TpWjtDP8jjEtP/OUHcPwangUfdGLPTgaGlgYgYylxHR KSZ4D+i7unPzGLVvLDgay5G/ZSmSHNkDDvCOlY5gfc47xNDT/Koq/tRLNwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFD3q9eRs8TvJPMA1OtBjHX6ROvb8MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2UzMmM5Y2JkLWEyNDEtNGRmNi05OWJiLWU3ZDE1YWJlNGIzYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDevjoMA0GCSqGSIb3DQEBCwUAA4IBAQCJ8PNZecqLhKQg7J73DcA6 hYFbUgvwvVabsZeJ2Nf1OXxT5TywtrO6QSNAGHbBAGiOPGlG86cp1PiME5CN4u5Z jTV7U7yht9uCczT/nRHp5+1hc+9slTX0lFf8oBTPgqbK8rUYj1TTn+TOYw+ys7cR i2lhWrmnBUYVsTjMeLy+dLGOivd22yaRwEf0qUuOimVXmUku3l/dWUVNXlts1LqO J+J0rcx1fn8vg7xNHWmy3UiqWE6n0MxqXq/suY2gwtlA8P+S0rANbPBV0eKxda6U Wkd5Uy2cJbgjpL2BKjNtKYIyoRxjwra9rVvjfYhZ2H6ECq3jyIWREFZ1RBu9AnfY -----END CERTIFICATE-----Generated at Sat Jun 14 06:20:24 2025 by rpki-client