$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5ffe65e-7287-4628-8759-7c141866ee12.roa File: e5ffe65e-7287-4628-8759-7c141866ee12.roa (raw, json) Hash identifier: WOshNNHN44lkjwwYO3o4lFftfNKJNNdffFPEszNco4g= Subject key identifier: F4:72:97:AB:0A:DA:44:3A:BB:CA:E5:3B:6D:8E:39:31:19:9E:73:87 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 635C40F9CC524942F16A9133E31F31628D41E560 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5ffe65e-7287-4628-8759-7c141866ee12.roa Signing time: Fri 18 Apr 2025 00:01:12 +0000 ROA not before: Fri 18 Apr 2025 00:01:12 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 159.248.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:03:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:5c:40:f9:cc:52:49:42:f1:6a:91:33:e3:1f:31:62:8d:41:e5:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Apr 18 00:01:12 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=0c7b8ff8d307082f0e07b160b5708814b6628b407419091a20c8eed08a4f2c89, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6e:df:2c:00:f3:6b:13:90:86:30:69:8e:13: 75:d7:5a:2e:49:cb:12:e6:12:af:b8:f6:bf:9b:ef: f9:99:f5:1d:b5:0a:7b:8d:ae:d0:bf:aa:57:5e:20: d4:6e:84:19:19:38:ff:24:26:9e:1f:00:13:71:ba: 4b:59:8a:73:e8:47:e8:be:91:1b:d1:3d:b6:c9:3b: 4f:3a:05:21:2e:2f:01:fe:f3:3d:2a:22:05:48:cb: f8:b2:37:6d:27:ea:78:d2:eb:a8:c9:05:c3:a1:18: 69:01:28:c4:4f:5d:4c:00:21:ab:d2:f7:28:be:12: ed:02:fc:42:c5:a1:6a:33:c3:50:48:4d:6f:d7:b3: af:19:00:60:a2:bd:a0:cd:c1:d2:11:94:4c:c5:39: dd:b0:dd:3d:7e:4c:87:22:ac:1b:cc:4b:55:08:1d: 8d:a0:1d:40:c3:0d:c7:26:8b:5c:4d:55:f6:a5:bd: 5b:92:e6:6d:f7:1c:8d:87:79:ce:84:23:ff:43:c7: 80:12:b9:44:de:18:8f:85:aa:79:fc:39:27:7d:4c: 09:42:53:d3:be:2d:a8:b0:e3:c4:bc:86:66:b2:ee: e1:aa:2f:56:80:a8:dc:21:24:39:52:1f:aa:66:fe: 55:de:c1:ac:55:cc:28:1c:42:c4:68:49:93:1e:1e: aa:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:72:97:AB:0A:DA:44:3A:BB:CA:E5:3B:6D:8E:39:31:19:9E:73:87 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e5ffe65e-7287-4628-8759-7c141866ee12.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.248.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6c:8e:25:cd:54:26:ec:26:c2:10:38:61:0a:1f:b0:cc:34:3f: 60:09:cb:2f:54:92:d9:92:aa:9a:5d:93:f0:c2:0d:b1:ee:f5: 8d:5b:f6:7a:a8:ec:ba:4a:63:57:8f:91:e7:c8:cb:23:91:70: 0e:c7:32:83:68:54:ef:93:2e:26:1c:f9:73:70:1f:62:bb:ae: d5:7a:ff:b0:83:a7:d4:99:4d:12:eb:47:35:8f:75:24:d6:11: e0:1f:4a:1a:71:51:de:ff:ae:aa:49:9b:14:97:01:97:fd:8e: a1:16:c7:62:a3:27:d4:3b:c1:ae:de:a5:4e:51:e7:c6:19:27: 7f:60:44:2d:f0:93:30:aa:8f:a0:18:00:bb:90:73:d7:d8:eb: 18:93:1a:11:2a:15:82:8d:0a:25:81:f5:7a:87:e4:15:f6:0f: a4:b6:d9:3f:f9:8a:5b:a6:9a:d3:94:b2:5a:02:d0:81:44:95: 01:81:e3:bf:61:f1:54:15:15:84:f3:c2:ce:41:16:f9:6e:ac: d2:b6:e2:ed:54:24:70:18:dd:c1:fc:91:89:bf:93:b1:25:d5: bb:f3:b7:98:24:4f:28:b0:d3:cc:87:48:eb:c4:c8:11:7e:76: fe:4c:56:23:58:32:7f:9f:63:dc:e7:74:0b:32:c3:d6:3c:b8: a0:52:92:5e -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUY1xA+cxSSULxapEz4x8xYo1B5WAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MDQxODAwMDExMloX DTI1MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAMGM3YjhmZjhkMzA3MDgyZjBlMDdi MTYwYjU3MDg4MTRiNjYyOGI0MDc0MTkwOTFhMjBjOGVlZDA4YTRmMmM4OTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwG7fLADzaxOQhjBpjhN111ouScsS 5hKvuPa/m+/5mfUdtQp7ja7Qv6pXXiDUboQZGTj/JCaeHwATcbpLWYpz6EfovpEb 0T22yTtPOgUhLi8B/vM9KiIFSMv4sjdtJ+p40uuoyQXDoRhpASjET11MACGr0vco vhLtAvxCxaFqM8NQSE1v17OvGQBgor2gzcHSEZRMxTndsN09fkyHIqwbzEtVCB2N oB1Aww3HJotcTVX2pb1bkuZt9xyNh3nOhCP/Q8eAErlE3hiPhap5/DknfUwJQlPT vi2osOPEvIZmsu7hqi9WgKjcISQ5Uh+qZv5V3sGsVcwoHELEaEmTHh6q5QIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFPRyl6sK2kQ6u8rlO22OOTEZnnOHMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U1ZmZlNjVlLTcyODctNDYyOC04NzU5LTdjMTQxODY2ZWUxMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvYTViMDFiZGQtY2RlYi00Y2ZjLThjOTMtN2U3MGM1ZTA5MzA2LmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAn/gwDQYJKoZIhvcNAQELBQADggEBAGyOJc1UJuwmwhA4YQofsMw0 P2AJyy9UktmSqppdk/DCDbHu9Y1b9nqo7LpKY1ePkefIyyORcA7HMoNoVO+TLiYc +XNwH2K7rtV6/7CDp9SZTRLrRzWPdSTWEeAfShpxUd7/rqpJmxSXAZf9jqEWx2Kj J9Q7wa7epU5R58YZJ39gRC3wkzCqj6AYALuQc9fY6xiTGhEqFYKNCiWB9XqH5BX2 D6S22T/5ilummtOUsloC0IFElQGB479h8VQVFYTzws5BFvlurNK24u1UJHAY3cH8 kYm/k7El1bvzt5gkTyiw08yHSOvEyBF+dv5MViNYMn+fY9zndAsyw9Y8uKBSkl4= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:52 2025 by rpki-client on console.sobornost.net