$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa File: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (raw, json) Hash identifier: JT5P5GLQoywMnENOsohyrgZZOx13L8cDWuNYZAvSo/w= Subject key identifier: AB:32:C4:76:26:E6:6D:C1:F8:6E:7B:04:C3:6E:05:1A:B6:A7:E2:53 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 74D68E5782F65979B25FC85C36C785BB9DF750A7 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa Signing time: Wed 23 Apr 2025 00:00:13 +0000 ROA not before: Wed 23 Apr 2025 00:00:13 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:d6:8e:57:82:f6:59:79:b2:5f:c8:5c:36:c7:85:bb:9d:f7:50:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 23 00:00:13 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=6c5cedda4a5f0da7b8390c9b54b9b32d514b8def21c46d0a041684253ebef50c, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:19:e6:ef:49:60:eb:8a:2b:98:ab:ac:97:6b: a0:b1:fc:fe:bf:8e:e7:c2:79:32:38:6d:82:24:1e: 2d:ff:7b:1f:38:e3:9e:45:83:53:b4:1b:f1:e6:0b: 7d:54:97:c2:62:6d:96:9f:fd:80:89:4a:7e:8d:d5: f9:45:70:8a:ba:b5:ee:ba:ac:9e:b4:10:86:74:b7: 08:e0:d0:34:f4:26:54:d6:11:22:61:98:c0:51:bc: 4d:45:53:7c:45:b4:7f:62:54:d0:2e:81:64:93:ad: 7a:43:57:e6:95:4d:ed:17:91:fc:47:ce:01:b4:96: 6e:13:a8:e4:8f:82:24:c2:f4:06:53:1f:59:81:6e: 5a:1e:19:3e:0a:f0:26:2e:60:c0:ae:f2:19:ae:41: 1f:b4:98:de:57:aa:a6:08:97:5e:a2:2a:68:82:74: ea:0f:67:2f:f3:bd:32:fd:b0:6d:24:0b:73:2b:fa: 57:f6:98:fe:20:68:00:65:23:df:c3:4b:e8:0c:d2: ec:4a:20:f7:b4:4e:b5:95:3d:38:7a:04:ae:c0:98: 7a:0c:2e:4c:50:0f:83:c2:3a:5b:8f:9c:80:bf:48: 5a:5b:9b:57:7c:21:d5:25:12:f1:09:9e:6b:93:30: aa:ba:7e:02:d9:a6:c3:38:38:f6:1e:eb:0f:98:fb: e6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:32:C4:76:26:E6:6D:C1:F8:6E:7B:04:C3:6E:05:1A:B6:A7:E2:53 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.144.0/22 Signature Algorithm: sha256WithRSAEncryption 12:1e:5d:f7:5d:11:87:7a:3d:dd:7f:20:d8:97:b4:7e:4f:65: da:8b:9b:c5:d5:1d:61:21:9a:9d:5b:12:23:dc:af:54:20:fd: aa:88:96:5b:86:2f:b4:63:56:10:11:4a:bf:34:a1:20:f9:b5: f0:cb:25:36:39:10:c5:d0:73:b4:f2:16:db:1d:1e:58:b2:01: 28:54:d0:52:78:4a:6e:3e:28:98:25:a8:cb:99:88:3b:c5:ff: 5b:15:14:a7:fb:d7:04:01:0a:83:ef:fa:55:6b:8f:bf:fc:57: 8a:0f:79:4e:63:1a:b5:ae:db:f9:8d:bc:d1:82:f7:28:3d:04: 40:92:ba:04:af:b4:22:ac:1c:61:0f:04:cd:0a:ae:ba:70:dc: 83:00:a8:85:3d:15:0d:6d:1a:4e:ac:ba:ca:d3:79:a6:44:94: fb:f2:85:f2:c2:ba:80:fa:f4:4c:8f:3b:71:a7:2d:e0:b4:0f: 90:6b:93:d9:6d:41:5c:0a:75:81:7f:5d:e2:82:6d:9e:56:a0: a8:58:be:f8:cd:26:a4:16:5f:61:79:35:40:33:14:64:e0:0c: 65:ac:d4:4d:9b:ab:60:71:f5:e9:93:3b:b5:2d:22:ce:a3:1f: 83:cd:2a:f6:95:04:40:f5:7c:b2:51:59:3a:26:0e:98:4f:43: f4:e4:ab:85 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUdNaOV4L2WXmyX8hcNseFu533UKcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDQyMzAwMDAxM1oX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNANmM1Y2VkZGE0YTVmMGRhN2I4Mzkw YzliNTRiOWIzMmQ1MTRiOGRlZjIxYzQ2ZDBhMDQxNjg0MjUzZWJlZjUwYzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRnm70lg64ormKusl2ugsfz+v47n wnkyOG2CJB4t/3sfOOOeRYNTtBvx5gt9VJfCYm2Wn/2AiUp+jdX5RXCKurXuuqye tBCGdLcI4NA09CZU1hEiYZjAUbxNRVN8RbR/YlTQLoFkk616Q1fmlU3tF5H8R84B tJZuE6jkj4IkwvQGUx9ZgW5aHhk+CvAmLmDArvIZrkEftJjeV6qmCJdeoipognTq D2cv870y/bBtJAtzK/pX9pj+IGgAZSPfw0voDNLsSiD3tE61lT04egSuwJh6DC5M UA+Dwjpbj5yAv0haW5tXfCHVJRLxCZ5rkzCqun4C2abDODj2HusPmPvmlwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKsyxHYm5m3B+G57BMNuBRq2p+JTMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzFkZmZlYWM4LWI3NzktNDllZi1iYTI3LTU4YmMxOTg5MWU2MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymQMA0GCSqGSIb3DQEBCwUAA4IBAQASHl33XRGHej3dfyDYl7R+ T2Xai5vF1R1hIZqdWxIj3K9UIP2qiJZbhi+0Y1YQEUq/NKEg+bXwyyU2ORDF0HO0 8hbbHR5YsgEoVNBSeEpuPiiYJajLmYg7xf9bFRSn+9cEAQqD7/pVa4+//FeKD3lO Yxq1rtv5jbzRgvcoPQRAkroEr7QirBxhDwTNCq66cNyDAKiFPRUNbRpOrLrK03mm RJT78oXywrqA+vRMjztxpy3gtA+Qa5PZbUFcCnWBf13igm2eVqCoWL74zSakFl9h eTVAMxRk4AxlrNRNm6tgcfXpkzu1LSLOox+DzSr2lQRA9XyyUVk6Jg6YT0P05KuF -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net