$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa File: 197500e2-3802-44b2-a561-ca3dad01e209.roa (raw, json) Hash identifier: eU6Fj3F5NtpfXYjk4gNOHS01r0iS5RrZbX91gnuvXBY= Subject key identifier: 12:13:6B:88:41:A9:76:75:F0:36:D6:CF:5E:B1:F2:82:75:6C:3F:C3 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 2784596A3BC44F9E24A5552FA3B19AEE67230043 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa Signing time: Wed 23 Apr 2025 00:00:10 +0000 ROA not before: Wed 23 Apr 2025 00:00:10 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:84:59:6a:3b:c4:4f:9e:24:a5:55:2f:a3:b1:9a:ee:67:23:00:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 23 00:00:10 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=0290253e81ea8498cdbc784c7b2ee35c9d1086d1e46fafd97d3fb74dcf5b4a4c, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fb:eb:81:00:38:ab:3d:c6:01:c8:e4:49:de: 5d:bc:c9:6d:8b:90:74:85:c4:7d:2a:49:e0:b6:d4: ec:9f:56:5c:7e:c1:3b:8a:3e:49:dd:d5:fe:08:58: bb:23:ac:49:3b:27:a4:a1:db:71:9f:c0:51:24:a6: 15:86:61:fa:1c:46:8e:61:1b:d0:18:e3:49:fd:72: ec:8b:99:e3:87:56:df:be:0d:53:03:e8:9b:9d:7d: 7e:d3:dd:93:3a:c7:0f:d3:92:9c:33:00:8e:a9:17: 96:1c:17:ad:ff:5f:28:aa:c8:37:23:be:a1:02:5a: bd:15:31:f5:b0:44:01:b0:60:33:4a:3c:af:12:c6: 88:88:e4:7e:c1:8d:ed:3d:69:72:73:63:3d:c2:ef: e6:15:1b:03:df:e2:fb:f9:0c:b3:21:4a:51:e0:76: 15:d1:8f:69:6d:9d:e9:ba:52:e5:f7:5c:0f:fb:d4: 42:ab:7e:63:41:6a:68:7e:2a:8c:e3:33:53:1c:e1: b3:a3:28:63:03:da:3b:a1:08:3f:04:e0:11:24:b1: 74:ee:a2:84:dd:a3:dd:14:56:f9:04:8b:1a:29:8b: 51:f6:6b:12:d1:53:3d:10:5b:1e:0a:4b:ec:dd:bb: 92:75:77:d4:a7:4e:ee:ba:f7:87:f4:b7:64:a6:a5: 8e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:13:6B:88:41:A9:76:75:F0:36:D6:CF:5E:B1:F2:82:75:6C:3F:C3 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:31:6b:31:d6:1a:b5:5d:e8:7f:b0:d5:2e:dd:60:44:ff:3b: 51:b3:6a:b3:c4:51:33:95:fb:58:49:f9:09:da:1c:a9:27:69: d8:39:b2:bd:d0:65:df:80:1b:bd:fa:6a:4c:a4:b0:50:7c:4d: c7:0f:56:da:b8:c8:5b:2e:03:84:52:bf:b2:17:d7:61:67:9d: e4:65:7b:dc:14:07:b6:b9:5e:0a:a3:e1:ff:57:02:5a:3a:9c: 82:76:aa:68:99:d1:f4:12:20:48:16:5f:9d:bf:73:2d:c8:5c: a9:6c:8f:21:28:9c:a6:0b:3b:f0:4e:19:41:71:bc:38:73:1e: ba:a4:ee:2d:25:b4:96:11:f2:88:58:a1:56:6c:f2:02:46:f3: 7b:ac:9a:7b:db:53:ab:2c:d5:56:63:39:46:f4:08:c6:35:15: 8d:5d:eb:90:eb:dd:3b:b6:41:b7:ea:2a:de:28:a9:02:62:e2: 34:94:7b:4b:d5:25:10:17:d8:e5:9b:04:c2:c1:f6:5d:5b:ea: 3f:1e:31:4e:ac:16:25:02:cd:72:4e:a6:33:2b:d7:8b:7c:d7: c5:84:54:d9:ec:d4:a4:a7:34:b7:62:5e:01:09:49:19:ea:e3: d2:b6:c6:ea:e4:61:bd:46:dc:56:09:94:ac:ff:2b:b2:1b:05: b1:c1:e7:03 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUJ4RZajvET54kpVUvo7Ga7mcjAEMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDQyMzAwMDAxMFoX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAMDI5MDI1M2U4MWVhODQ5OGNkYmM3 ODRjN2IyZWUzNWM5ZDEwODZkMWU0NmZhZmQ5N2QzZmI3NGRjZjViNGE0YzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1fvrgQA4qz3GAcjkSd5dvMlti5B0 hcR9KkngttTsn1ZcfsE7ij5J3dX+CFi7I6xJOyekodtxn8BRJKYVhmH6HEaOYRvQ GONJ/XLsi5njh1bfvg1TA+ibnX1+092TOscP05KcMwCOqReWHBet/18oqsg3I76h Alq9FTH1sEQBsGAzSjyvEsaIiOR+wY3tPWlyc2M9wu/mFRsD3+L7+QyzIUpR4HYV 0Y9pbZ3pulLl91wP+9RCq35jQWpofiqM4zNTHOGzoyhjA9o7oQg/BOARJLF07qKE 3aPdFFb5BIsaKYtR9msS0VM9EFseCkvs3buSdXfUp07uuveH9LdkpqWOHwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBITa4hBqXZ18DbWz16x8oJ1bD/DMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzE5NzUwMGUyLTM4MDItNDRiMi1hNTYxLWNhM2RhZDAxZTIwOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArymAMA0GCSqGSIb3DQEBCwUAA4IBAQAtMWsx1hq1Xeh/sNUu3WBE /ztRs2qzxFEzlftYSfkJ2hypJ2nYObK90GXfgBu9+mpMpLBQfE3HD1bauMhbLgOE Ur+yF9dhZ53kZXvcFAe2uV4Ko+H/VwJaOpyCdqpomdH0EiBIFl+dv3MtyFypbI8h KJymCzvwThlBcbw4cx66pO4tJbSWEfKIWKFWbPICRvN7rJp721OrLNVWYzlG9AjG NRWNXeuQ6907tkG36ireKKkCYuI0lHtL1SUQF9jlmwTCwfZdW+o/HjFOrBYlAs1y TqYzK9eLfNfFhFTZ7NSkpzS3Yl4BCUkZ6uPStsbq5GG9RtxWCZSs/yuyGwWxwecD -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net