$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa File: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (raw, json) Hash identifier: fNmV2qAMORxEAu3Pvbdbb9tEgEtKVpyZDbDOI5HP9sA= Subject key identifier: 93:0F:E3:D5:13:68:D4:93:C3:76:FC:72:C8:65:E2:5D:14:AA:D0:FC Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 0F3148EBC97AAACCC2A11A2C63CEFC41794E6D0E Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa Signing time: Wed 23 Apr 2025 00:00:11 +0000 ROA not before: Wed 23 Apr 2025 00:00:11 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.130.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:31:48:eb:c9:7a:aa:cc:c2:a1:1a:2c:63:ce:fc:41:79:4e:6d:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 23 00:00:11 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=bc36c93ae9b073fa552c30649796302308b0b6abb15151f105a197eaff6ab673, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c6:4a:84:2a:1f:d4:31:f9:64:2d:9e:bd:aa: c0:55:19:43:e4:ba:ba:34:07:5d:7f:b2:da:b7:7b: dd:d8:56:5e:6e:76:f9:aa:03:c5:f4:e2:87:eb:18: 1a:4b:b3:82:07:39:d5:fe:b4:f7:0b:60:8a:29:6f: a5:e9:a1:4b:d7:f0:7c:31:67:7d:1a:07:e0:97:8c: 57:ec:51:c4:75:90:26:db:c9:52:49:99:ef:08:e6: bd:2f:c5:c8:37:ab:79:ff:48:2d:7e:29:41:25:89: 0f:ca:db:5c:42:ee:83:c5:a8:a1:f3:73:d3:33:70: d2:18:aa:a3:da:3d:ce:41:99:4b:38:08:91:69:b4: de:89:d1:6b:4a:8c:02:ea:f1:af:37:86:8c:9c:63: 52:fc:c6:fd:53:28:9f:31:f9:58:30:35:8a:9f:9f: f7:a5:3c:d1:5a:93:4b:20:b5:c1:eb:31:58:e6:00: db:f1:cb:34:24:02:54:ee:d8:8b:fd:93:08:f1:de: dd:06:4c:7c:1a:29:a1:48:cf:24:1c:2d:04:0d:94: 81:b5:30:ef:43:fd:7e:e8:b0:33:cb:16:54:89:84: 08:c3:64:62:f0:c0:11:ec:38:42:de:99:72:ee:96: c3:80:a3:09:56:94:5d:4b:61:52:f4:f7:60:5d:d1: dd:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:0F:E3:D5:13:68:D4:93:C3:76:FC:72:C8:65:E2:5D:14:AA:D0:FC X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.130.0/23 Signature Algorithm: sha256WithRSAEncryption d7:51:ff:d6:07:a8:67:d9:b6:d2:e7:e3:38:c9:f6:1a:cf:d7: d4:75:51:d0:ad:bb:f5:f1:98:89:30:02:77:6a:52:af:64:cc: 31:a5:18:04:f1:40:a0:d9:f2:16:16:05:3d:72:a7:7f:50:06: ae:b3:47:ff:f4:e0:e9:e5:82:df:f1:d8:f3:27:d0:ae:85:88: 8d:48:d6:24:ac:ea:c5:e9:b3:48:5b:3d:be:8d:a9:53:47:f7: e7:f6:1e:df:56:5c:61:ce:ed:ca:cc:5e:d6:99:5c:6a:00:f7: 64:40:a5:92:2e:5d:2a:50:e2:00:fa:71:0c:cc:25:18:d9:d4: 70:77:f2:d1:e0:f7:d4:ce:d7:e2:d3:44:5f:88:79:b9:dc:88: 90:3b:c6:2b:c9:2d:be:d2:06:51:67:42:d2:35:05:56:49:e0: d4:4a:fc:3c:24:62:c6:3b:61:f3:36:30:a4:53:98:b0:4c:ef: 0e:97:9a:99:ba:19:77:09:de:16:54:d8:9c:de:0c:6e:e2:f2: e6:df:53:c5:b9:33:0c:83:bc:1a:a9:98:02:96:92:21:67:80: f8:8e:f9:23:79:ee:df:6f:1e:c9:98:ec:03:03:20:9b:4c:fb: db:8b:71:c8:02:55:24:29:00:c3:33:a7:dc:e4:d0:64:23:28: be:27:c7:07 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUDzFI68l6qszCoRosY878QXlObQ4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDQyMzAwMDAxMVoX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAYmMzNmM5M2FlOWIwNzNmYTU1MmMz MDY0OTc5NjMwMjMwOGIwYjZhYmIxNTE1MWYxMDVhMTk3ZWFmZjZhYjY3MzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8ZKhCof1DH5ZC2evarAVRlD5Lq6 NAddf7Lat3vd2FZebnb5qgPF9OKH6xgaS7OCBznV/rT3C2CKKW+l6aFL1/B8MWd9 Ggfgl4xX7FHEdZAm28lSSZnvCOa9L8XIN6t5/0gtfilBJYkPyttcQu6Dxaih83PT M3DSGKqj2j3OQZlLOAiRabTeidFrSowC6vGvN4aMnGNS/Mb9UyifMflYMDWKn5/3 pTzRWpNLILXB6zFY5gDb8cs0JAJU7tiL/ZMI8d7dBkx8GimhSM8kHC0EDZSBtTDv Q/1+6LAzyxZUiYQIw2Ri8MAR7DhC3ply7pbDgKMJVpRdS2FS9PdgXdHd9QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFJMP49UTaNSTw3b8cshl4l0UqtD8MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQyOTMyZGQ0LTI3MjAtNDdiMy1hNDcyLWZjMmM4YTUwYTQ2Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymCMA0GCSqGSIb3DQEBCwUAA4IBAQDXUf/WB6hn2bbS5+M4yfYa z9fUdVHQrbv18ZiJMAJ3alKvZMwxpRgE8UCg2fIWFgU9cqd/UAaus0f/9ODp5YLf 8djzJ9CuhYiNSNYkrOrF6bNIWz2+jalTR/fn9h7fVlxhzu3KzF7WmVxqAPdkQKWS Ll0qUOIA+nEMzCUY2dRwd/LR4PfUztfi00RfiHm53IiQO8YryS2+0gZRZ0LSNQVW SeDUSvw8JGLGO2HzNjCkU5iwTO8Ol5qZuhl3Cd4WVNic3gxu4vLm31PFuTMMg7wa qZgClpIhZ4D4jvkjee7fbx7JmOwDAyCbTPvbi3HIAlUkKQDDM6fc5NBkIyi+J8cH -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net