$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa File: 22707524-2248-48ea-815f-578f49b19436.roa (raw, json) Hash identifier: 797OBlfgFazj8gZSTz4ZSkWYIL/+olJTMYp/RsGhDeA= Subject key identifier: 0B:F3:30:D5:63:58:2F:68:30:48:AD:70:D9:1E:79:C1:E4:3B:04:A8 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 79841C670A7DE3C38402620B2731F66ABC27C8E7 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa Signing time: Wed 23 Apr 2025 00:00:09 +0000 ROA not before: Wed 23 Apr 2025 00:00:09 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:84:1c:67:0a:7d:e3:c3:84:02:62:0b:27:31:f6:6a:bc:27:c8:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 23 00:00:09 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=ee80c61ca70017188bd1050649f71d5acf273cad84625dd62af2e1e769c11513, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:22:86:fd:c9:bb:30:0a:1e:df:6f:44:ab:b8: c0:91:6f:d6:54:71:f0:24:31:4a:78:70:cc:60:c7: 2d:b1:b7:c7:c1:48:b2:e3:b3:e8:0d:d2:78:ad:60: 5e:0a:f6:a5:f0:72:3d:28:5a:c1:ba:fc:39:e7:f4: 63:6d:2e:2e:29:d7:cf:16:d9:a0:5a:20:46:43:9b: 83:75:93:62:db:13:a7:ea:21:38:b4:6b:f4:d8:98: 8e:68:dd:e8:1e:4c:c7:e2:db:3b:0e:1e:72:a9:ad: 36:28:76:34:56:ae:a0:5a:36:4d:05:40:8a:d3:94: 3f:6f:3b:9c:68:25:a5:44:89:f1:72:b8:9c:cd:af: e3:6d:4d:44:47:18:32:13:82:7b:0c:3f:84:fd:c6: 74:75:87:50:3b:31:91:e2:56:fc:68:46:f7:bc:b5: 4b:09:10:9b:18:20:35:fd:63:3e:44:ce:b4:38:e9: f3:60:c2:53:a8:32:81:96:d2:e7:6b:bb:db:32:fb: bb:38:9b:e1:03:38:32:26:3a:a8:34:b8:b7:31:a7: e7:6f:b7:4b:47:2a:d8:d0:de:9c:fb:2a:8c:5f:8e: 98:3c:35:29:6a:08:80:7e:c7:47:a4:76:db:2e:b2: 63:c4:0e:e5:4a:25:ba:30:4e:ea:45:4b:f8:80:35: 6a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F3:30:D5:63:58:2F:68:30:48:AD:70:D9:1E:79:C1:E4:3B:04:A8 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.150.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:5c:f0:10:0d:d6:1d:fa:c3:9a:46:1c:6c:81:10:8d:77:66: 7d:94:cd:e6:6f:b0:a4:fe:85:bd:45:f5:3a:97:ae:2c:3b:94: 03:9c:3c:0c:48:7c:58:2d:a1:f1:bf:86:e2:ca:11:cb:b9:17: 90:9c:95:8b:0c:43:c8:47:59:ab:d8:bb:1a:ec:e9:dd:ea:99: b2:27:17:95:57:23:20:c3:af:a8:6c:ed:9e:22:0c:23:08:21: 21:3e:b2:3a:98:1c:07:2a:e8:78:f5:a7:4a:ad:82:83:ac:0c: d2:a8:21:c9:a2:c0:28:03:cd:75:bc:fc:4f:09:be:4e:98:ce: c0:8b:85:8a:e1:36:63:df:6e:8b:fa:e3:d1:69:61:82:ae:be: 9a:2f:09:a8:75:80:73:ab:f6:3f:cf:1f:79:8b:82:2f:45:a9: a4:cc:7f:4c:39:50:ef:0b:54:b8:74:51:39:f3:68:06:22:22: 65:3f:e9:a4:14:ad:db:2f:c8:65:84:e6:af:4f:16:42:50:a6: dc:c7:2f:84:a5:9e:23:ea:fe:28:ca:2a:be:59:4a:a6:fa:ac: 87:57:8a:ee:7b:6d:0c:94:26:6c:32:02:bf:c1:3a:89:58:fc: 67:03:4c:80:36:36:51:b9:6b:1f:e8:ec:c0:15:25:ee:2b:0c: dd:74:c2:68 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUeYQcZwp948OEAmILJzH2arwnyOcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDQyMzAwMDAwOVoX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAZWU4MGM2MWNhNzAwMTcxODhiZDEw NTA2NDlmNzFkNWFjZjI3M2NhZDg0NjI1ZGQ2MmFmMmUxZTc2OWMxMTUxMzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4iKG/cm7MAoe329Eq7jAkW/WVHHw JDFKeHDMYMctsbfHwUiy47PoDdJ4rWBeCval8HI9KFrBuvw55/RjbS4uKdfPFtmg WiBGQ5uDdZNi2xOn6iE4tGv02JiOaN3oHkzH4ts7Dh5yqa02KHY0Vq6gWjZNBUCK 05Q/bzucaCWlRInxcricza/jbU1ERxgyE4J7DD+E/cZ0dYdQOzGR4lb8aEb3vLVL CRCbGCA1/WM+RM60OOnzYMJTqDKBltLna7vbMvu7OJvhAzgyJjqoNLi3Mafnb7dL RyrY0N6c+yqMX46YPDUpagiAfsdHpHbbLrJjxA7lSiW6ME7qRUv4gDVqMwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAvzMNVjWC9oMEitcNkeecHkOwSoMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzIyNzA3NTI0LTIyNDgtNDhlYS04MTVmLTU3OGY0OWIxOTQzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArymWMA0GCSqGSIb3DQEBCwUAA4IBAQAbXPAQDdYd+sOaRhxsgRCN d2Z9lM3mb7Ck/oW9RfU6l64sO5QDnDwMSHxYLaHxv4biyhHLuReQnJWLDEPIR1mr 2Lsa7Ond6pmyJxeVVyMgw6+obO2eIgwjCCEhPrI6mBwHKuh49adKrYKDrAzSqCHJ osAoA811vPxPCb5OmM7Ai4WK4TZj326L+uPRaWGCrr6aLwmodYBzq/Y/zx95i4Iv RamkzH9MOVDvC1S4dFE582gGIiJlP+mkFK3bL8hlhOavTxZCUKbcxy+EpZ4j6v4o yiq+WUqm+qyHV4rue20MlCZsMgK/wTqJWPxnA0yANjZRuWsf6OzAFSXuKwzddMJo -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net