$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa File: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (raw, json) Hash identifier: WDRFeeRWzfWTNjPxch/ISaqztm/A/zXdu9/UCLPgABo= Subject key identifier: 80:27:E1:D4:27:E8:BF:D2:AC:88:92:85:34:A1:A0:26:F7:5D:C6:3C Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 7B3D2259C5DBB52AD9BFB7D21D20971E366E542A Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa Signing time: Mon 07 Apr 2025 15:00:03 +0000 ROA not before: Mon 07 Apr 2025 15:00:03 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 43.224.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:3d:22:59:c5:db:b5:2a:d9:bf:b7:d2:1d:20:97:1e:36:6e:54:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 7 15:00:03 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=f000f694e2fc050075d2ec883f7e51ce00b919bf7137185be7f50f82ae91bd50, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:02:39:bb:bb:59:c9:96:d0:0a:f1:f5:8e:93: 01:32:19:82:83:05:57:d8:ea:d1:4b:64:66:03:7e: 56:8d:f2:a5:dd:51:95:c3:b4:2f:f1:55:ef:0c:cd: ac:ff:80:51:0c:f5:49:dd:f1:d6:20:09:76:45:8c: a5:3c:10:50:e2:01:1b:0e:80:65:65:80:de:e4:4b: fe:ab:e4:f2:cd:59:dc:ec:ef:8a:54:87:21:0d:85: c9:d3:69:c4:64:79:eb:cb:83:29:7c:83:48:02:23: 53:22:9d:49:07:fb:9c:69:ad:56:44:11:6b:3b:54: 15:06:5d:ad:be:a7:2e:42:0b:d5:75:12:7d:ca:3c: d7:6b:ff:0d:5a:ad:91:21:3c:f8:f9:c1:20:0a:57: a2:55:a3:46:d3:82:c2:da:c9:b3:2e:57:8b:d4:ac: be:96:be:68:19:29:b4:f1:a0:7d:5e:b6:11:ac:b9: b1:2d:f3:17:fc:68:da:ad:7a:6c:1f:c2:0b:9e:33: c5:e3:f1:68:12:44:ec:e6:a9:73:94:b7:95:27:5e: 2f:f4:05:de:17:f5:f5:3a:8a:4d:d5:89:8e:22:3a: 0e:ae:33:96:99:39:71:3c:33:e8:51:b8:80:84:59: 34:6a:aa:e9:e2:0f:2d:e0:36:84:b2:33:49:56:32: ec:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:27:E1:D4:27:E8:BF:D2:AC:88:92:85:34:A1:A0:26:F7:5D:C6:3C X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.224.144.0/22 Signature Algorithm: sha256WithRSAEncryption 87:a7:64:12:ac:d3:ce:a7:7f:36:fe:4c:5f:c7:68:43:d9:3c: 93:18:79:1c:38:e3:7f:55:7f:39:70:8c:b8:88:cf:f7:6d:30: 5e:93:3e:25:b9:9f:c1:7d:bd:cb:db:1b:b2:3c:e4:cb:b8:3b: be:38:0d:12:28:58:86:3d:16:6a:1e:0c:44:37:ff:07:b4:70: 75:1b:e6:bc:e5:04:35:b8:ed:29:08:3b:82:b3:27:a5:f5:c5: dc:88:7c:ed:4f:17:52:4c:0c:30:37:c5:87:f0:09:0e:7d:d0: 19:cd:e6:80:35:14:1b:23:a0:0b:15:5d:cf:4f:a1:0a:9a:66: cb:84:12:7c:fc:9a:8d:b5:91:3d:19:96:cd:16:fb:d3:52:9a: bd:d4:d4:b4:65:55:66:c9:41:1b:ef:a8:50:6b:3d:62:8b:f8: bc:72:44:2d:c0:79:33:8f:ff:5b:5c:2c:ad:03:10:60:ea:64: 2d:1f:19:5e:c8:98:32:ea:23:d1:06:94:0c:dd:86:0d:fa:f0: 33:66:62:7e:00:2c:86:04:73:96:95:c2:75:b9:1a:3f:a7:25: 38:25:c0:11:49:4f:47:f2:4c:fc:9d:f5:b1:17:47:11:a7:bd: 57:b1:17:eb:77:b7:37:54:01:b9:83:54:1f:c9:8c:28:d8:71: 9f:7b:b7:a9 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUez0iWcXbtSrZv7fSHSCXHjZuVCowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDQwNzE1MDAwM1oX DTI1MDUxMjIzNTk1OVowejFJMEcGA1UEBRNAZjAwMGY2OTRlMmZjMDUwMDc1ZDJl Yzg4M2Y3ZTUxY2UwMGI5MTliZjcxMzcxODViZTdmNTBmODJhZTkxYmQ1MDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogI5u7tZyZbQCvH1jpMBMhmCgwVX 2OrRS2RmA35WjfKl3VGVw7Qv8VXvDM2s/4BRDPVJ3fHWIAl2RYylPBBQ4gEbDoBl ZYDe5Ev+q+TyzVnc7O+KVIchDYXJ02nEZHnry4MpfINIAiNTIp1JB/ucaa1WRBFr O1QVBl2tvqcuQgvVdRJ9yjzXa/8NWq2RITz4+cEgCleiVaNG04LC2smzLleL1Ky+ lr5oGSm08aB9XrYRrLmxLfMX/GjarXpsH8ILnjPF4/FoEkTs5qlzlLeVJ14v9AXe F/X1OopN1YmOIjoOrjOWmTlxPDPoUbiAhFk0aqrp4g8t4DaEsjNJVjLsmQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFIAn4dQn6L/SrIiShTShoCb3XcY8MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2IwYzM4ZjAzLTNjZWQtNDg0ZS1hYTViLTdiMDZmMTI1YWQ3NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK+CQMA0GCSqGSIb3DQEBCwUAA4IBAQCHp2QSrNPOp382/kxfx2hD 2TyTGHkcOON/VX85cIy4iM/3bTBekz4luZ/Bfb3L2xuyPOTLuDu+OA0SKFiGPRZq HgxEN/8HtHB1G+a85QQ1uO0pCDuCsyel9cXciHztTxdSTAwwN8WH8AkOfdAZzeaA NRQbI6ALFV3PT6EKmmbLhBJ8/JqNtZE9GZbNFvvTUpq91NS0ZVVmyUEb76hQaz1i i/i8ckQtwHkzj/9bXCytAxBg6mQtHxleyJgy6iPRBpQM3YYN+vAzZmJ+ACyGBHOW lcJ1uRo/pyU4JcARSU9H8kz8nfWxF0cRp71XsRfrd7c3VAG5g1QfyYwo2HGfe7ep -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net