$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa File: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (raw, json) Hash identifier: RU8pQCkJlVdVPaUNRm3XJa/pKv5/97Eclu4tmxE7kvc= Subject key identifier: F9:61:1C:86:1C:9D:92:2D:A0:EE:D7:77:FA:57:EE:2B:0E:78:7F:A5 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 5E30C3EC44B743FB1BD46ECB02088B13CA5989F2 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa Signing time: Wed 23 Apr 2025 00:00:09 +0000 ROA not before: Wed 23 Apr 2025 00:00:09 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:30:c3:ec:44:b7:43:fb:1b:d4:6e:cb:02:08:8b:13:ca:59:89:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 23 00:00:09 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=645bafa493c44f00de8021c1099963738069d393c7599173306af912aa7aaf78, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c8:65:b2:64:28:3d:7b:88:77:e1:1e:0c:7b: 9b:52:23:7f:aa:3c:2b:12:cd:52:c1:1c:09:00:ab: 8a:6c:87:e2:ca:7c:01:d4:78:d9:5d:c5:ab:92:cd: 86:82:13:c0:ad:e1:0a:69:ae:45:1d:20:35:b2:4c: f4:50:14:ff:17:c4:bf:ea:6d:53:98:c2:9e:c2:a8: 25:4c:9c:8a:fb:60:8b:93:f3:0a:37:48:06:e5:ff: 8a:4f:c0:49:db:a8:54:57:3b:7e:12:c3:1d:81:0f: 64:8e:0d:1e:83:ec:4f:54:06:22:e1:e9:05:d5:24: cf:ec:b3:9d:15:bd:7a:f8:85:29:93:be:34:b6:97: 56:0e:29:6b:3b:05:02:88:b5:f8:5f:2e:54:75:fc: f5:13:56:dc:c4:99:27:82:aa:83:17:fa:c1:af:96: 32:b5:47:35:e7:d4:5e:82:d2:5b:96:4e:17:b6:23: 9e:b8:40:de:7b:fe:90:1b:17:0b:b6:e9:eb:ac:8a: 20:1a:55:a3:31:2b:4d:6f:1b:48:b5:cf:aa:95:a4: f7:2d:38:ed:90:fb:ab:c9:71:65:47:72:c0:ba:c4: 21:ee:77:0d:0f:cc:fd:3c:bf:70:9b:10:c8:c0:c8: 70:fb:d7:83:14:9c:10:aa:c0:41:d2:bf:f5:ea:28: cc:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:61:1C:86:1C:9D:92:2D:A0:EE:D7:77:FA:57:EE:2B:0E:78:7F:A5 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/18 Signature Algorithm: sha256WithRSAEncryption 06:a0:71:a8:83:90:60:9f:fc:44:a2:ce:53:39:77:45:03:a8: 32:b6:3c:d3:cd:14:77:07:c7:5e:4e:b3:07:ae:73:11:59:e3: c7:37:28:fc:61:ad:1e:85:56:ca:1b:26:f5:79:c7:d4:63:40: 08:09:4e:b9:7d:c0:34:39:4f:b5:1d:16:54:4f:d6:b2:b7:38: 0e:bc:1d:6c:d5:09:07:f4:7b:bf:58:ac:48:19:da:be:40:38: f2:cb:8a:8e:6e:29:b9:f1:21:86:78:4c:9e:53:e3:35:5b:a4: 02:b2:48:fa:f8:d7:20:18:90:e7:9e:d3:66:36:6a:45:9d:67: 18:67:2a:07:08:48:bb:51:21:54:d2:67:57:1f:0f:ac:bc:7d: 92:26:37:51:94:b8:a6:6c:98:69:9f:ae:67:cc:43:3e:c9:e3: 7e:3f:35:cf:8a:36:85:70:0f:f3:b8:8f:38:fb:85:0a:ea:d6: cf:67:91:f3:ea:27:d2:ca:cf:c0:a3:28:0c:a9:f2:c2:cf:e1: 8e:76:39:92:ac:e6:8c:41:3e:16:12:b8:07:b5:d3:f2:fc:dd: 8d:f0:a3:fb:f7:61:9b:15:1a:40:9d:ae:a1:a8:1c:53:a4:71: 1a:53:0f:38:cb:b3:27:e9:5d:b3:ec:f0:05:e2:07:53:6a:2a: 98:7e:44:ba -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUXjDD7ES3Q/sb1G7LAgiLE8pZifIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDQyMzAwMDAwOVoX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNANjQ1YmFmYTQ5M2M0NGYwMGRlODAy MWMxMDk5OTYzNzM4MDY5ZDM5M2M3NTk5MTczMzA2YWY5MTJhYTdhYWY3ODEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwchlsmQoPXuId+EeDHubUiN/qjwr Es1SwRwJAKuKbIfiynwB1HjZXcWrks2GghPAreEKaa5FHSA1skz0UBT/F8S/6m1T mMKewqglTJyK+2CLk/MKN0gG5f+KT8BJ26hUVzt+EsMdgQ9kjg0eg+xPVAYi4ekF 1STP7LOdFb16+IUpk740tpdWDilrOwUCiLX4Xy5Udfz1E1bcxJkngqqDF/rBr5Yy tUc159RegtJblk4XtiOeuEDee/6QGxcLtunrrIogGlWjMStNbxtItc+qlaT3LTjt kPuryXFlR3LAusQh7ncND8z9PL9wmxDIwMhw+9eDFJwQqsBB0r/16ijMAQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPlhHIYcnZItoO7Xd/pX7isOeH+lMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzllMzdmODU1LTQ4YmYtNDIwYS1hODZjLTVlZWI0ZmMxZjc5MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrymAMA0GCSqGSIb3DQEBCwUAA4IBAQAGoHGog5Bgn/xEos5TOXdF A6gytjzTzRR3B8deTrMHrnMRWePHNyj8Ya0ehVbKGyb1ecfUY0AICU65fcA0OU+1 HRZUT9aytzgOvB1s1QkH9Hu/WKxIGdq+QDjyy4qObim58SGGeEyeU+M1W6QCskj6 +NcgGJDnntNmNmpFnWcYZyoHCEi7USFU0mdXHw+svH2SJjdRlLimbJhpn65nzEM+ yeN+PzXPijaFcA/zuI84+4UK6tbPZ5Hz6ifSys/AoygMqfLCz+GOdjmSrOaMQT4W ErgHtdPy/N2N8KP792GbFRpAna6hqBxTpHEaUw84y7Mn6V2z7PAF4gdTaiqYfkS6 -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net