$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa File: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (raw, json) Hash identifier: 5CYPHRxWfJ3PEs9eD3Tt3hr4lLWTkgio4seBiepverY= Subject key identifier: 01:8A:0D:4B:21:0F:5E:B3:6B:A2:77:EC:90:32:F0:D2:49:9D:0E:39 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 78FCB96422073B30F186BCFDBC172888E770E1BB Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa Signing time: Wed 23 Apr 2025 00:00:16 +0000 ROA not before: Wed 23 Apr 2025 00:00:16 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:fc:b9:64:22:07:3b:30:f1:86:bc:fd:bc:17:28:88:e7:70:e1:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 23 00:00:16 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=cb36c77d393c7ba6ad5d2c88c650e3a5e460be021ece547a310b89403f2f47a4, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f7:ba:f0:24:b1:63:5b:7c:b6:73:3c:35:24: ee:1f:6e:a2:20:15:de:b8:5a:a3:1c:8b:85:9a:52: 8b:93:5d:57:54:ee:27:ff:72:49:93:47:d2:14:9f: 5a:0d:a6:c7:9e:70:36:1a:d7:ff:c8:75:30:f2:f6: bb:06:44:b4:f8:1c:89:f1:69:95:0c:12:8a:16:5e: 29:33:77:23:29:7e:d1:13:6a:39:35:8b:0a:5c:12: 25:5a:17:4c:c5:c3:0b:c9:af:52:94:01:b9:3b:26: fc:16:e0:e5:2d:f1:bb:2f:1c:4f:93:3c:7d:21:ac: 5c:8e:52:72:c6:86:d4:03:2c:21:45:9d:a5:a1:67: 9f:ad:49:68:2a:e0:67:0c:b4:93:9b:c0:dc:03:89: 44:a1:85:65:1f:1f:aa:8b:d7:fd:2d:bd:8c:ce:69: 99:50:42:cd:07:a1:0a:4a:16:5c:d2:42:e6:8d:a6: 6e:9c:49:b5:98:8a:49:c0:08:56:cf:1e:b6:97:5b: fd:02:38:92:a9:36:df:41:a6:7c:4e:cb:30:b4:ae: 7d:89:0b:7f:c4:90:d8:99:d8:a6:ef:f1:7d:6b:09: 77:0a:77:b3:a5:23:23:2d:e4:35:b5:74:51:2a:3b: d5:68:a3:d7:9b:8a:7a:d8:4a:98:bc:c7:49:43:fb: e5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:8A:0D:4B:21:0F:5E:B3:6B:A2:77:EC:90:32:F0:D2:49:9D:0E:39 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.208.0/20 Signature Algorithm: sha256WithRSAEncryption ba:91:b6:94:e3:36:76:64:8d:0f:b4:fd:4a:24:8d:80:b0:56: 7c:c2:63:5f:23:b0:cb:97:9c:61:d2:05:25:94:fe:e2:d8:7b: 75:e9:55:ca:c9:3e:48:ca:d2:0a:bb:38:24:d3:23:33:d0:a2: c5:a3:7e:2f:43:58:3e:bd:32:d1:fe:18:81:fa:20:e0:0d:51: 81:dd:a5:a5:7a:1f:c6:c5:d4:66:3d:74:aa:7d:54:a4:f8:29: aa:d3:b1:ca:f4:20:0b:bb:83:e4:86:94:a0:f7:2b:0f:8e:54: 30:35:6e:33:87:74:68:b7:b0:85:b8:bf:0c:52:5c:be:cd:44: 48:2c:e1:b6:06:ab:04:af:2d:1e:4a:fa:e5:ac:7f:aa:8e:fb: 62:e8:bd:fc:33:3c:cd:fd:3c:27:d2:de:84:f3:c9:16:5e:09: 2b:df:b7:41:fc:93:09:b9:1b:33:97:06:5b:86:41:78:9c:58: 88:42:d9:0c:b9:7c:92:f2:f6:88:b5:73:4a:3e:d7:55:2f:96: 2a:62:f9:c2:0b:6b:4b:c2:80:a4:8c:82:42:8b:da:10:6a:b1: 04:f0:72:b6:12:f5:26:b2:6b:19:19:5b:1b:43:d4:b0:98:3d: 45:17:a2:24:51:6c:9e:cf:3a:5c:6c:13:0a:ae:1a:8e:69:e6: ea:57:57:0a -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUePy5ZCIHOzDxhrz9vBcoiOdw4bswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDQyMzAwMDAxNloX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAY2IzNmM3N2QzOTNjN2JhNmFkNWQy Yzg4YzY1MGUzYTVlNDYwYmUwMjFlY2U1NDdhMzEwYjg5NDAzZjJmNDdhNDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlPe68CSxY1t8tnM8NSTuH26iIBXe uFqjHIuFmlKLk11XVO4n/3JJk0fSFJ9aDabHnnA2Gtf/yHUw8va7BkS0+ByJ8WmV DBKKFl4pM3cjKX7RE2o5NYsKXBIlWhdMxcMLya9SlAG5Oyb8FuDlLfG7LxxPkzx9 IaxcjlJyxobUAywhRZ2loWefrUloKuBnDLSTm8DcA4lEoYVlHx+qi9f9Lb2MzmmZ UELNB6EKShZc0kLmjaZunEm1mIpJwAhWzx62l1v9AjiSqTbfQaZ8TsswtK59iQt/ xJDYmdim7/F9awl3CnezpSMjLeQ1tXRRKjvVaKPXm4p62EqYvMdJQ/vlPwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAGKDUshD16za6J37JAy8NJJnQ45MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzA1YmM4ZGJiLWM3MGEtNDhkYS1iNDViLTQ0NDgzNjQ2MTRmZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynQMA0GCSqGSIb3DQEBCwUAA4IBAQC6kbaU4zZ2ZI0PtP1KJI2A sFZ8wmNfI7DLl5xh0gUllP7i2Ht16VXKyT5IytIKuzgk0yMz0KLFo34vQ1g+vTLR /hiB+iDgDVGB3aWleh/GxdRmPXSqfVSk+Cmq07HK9CALu4PkhpSg9ysPjlQwNW4z h3Rot7CFuL8MUly+zURILOG2BqsEry0eSvrlrH+qjvti6L38MzzN/Twn0t6E88kW Xgkr37dB/JMJuRszlwZbhkF4nFiIQtkMuXyS8vaItXNKPtdVL5YqYvnCC2tLwoCk jIJCi9oQarEE8HK2EvUmsmsZGVsbQ9SwmD1FF6IkUWyezzpcbBMKrhqOaebqV1cK -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net