$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa File: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (raw, json) Hash identifier: 5kzdK9AjyaCql5M01GVW6devRv8Kmhkc7+LTJZGwFYg= Subject key identifier: 26:07:4B:EB:5E:4C:A7:2F:57:0C:48:9E:30:57:82:DB:F2:03:B7:74 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 045DCC6BC0ABC761FC3D682924570DD867B4D4F5 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa Signing time: Wed 23 Apr 2025 00:00:13 +0000 ROA not before: Wed 23 Apr 2025 00:00:13 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:5d:cc:6b:c0:ab:c7:61:fc:3d:68:29:24:57:0d:d8:67:b4:d4:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 23 00:00:13 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=f450eb99c5a40d7f3ecb2bcb10679e46bf654d67cd5c543ac632903666cb8d56, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:63:20:21:73:8b:2b:2d:7c:a9:8b:3c:c5:97: 1d:ff:62:ec:8e:76:54:92:8a:9d:ec:08:3b:80:09: ad:e0:1e:a3:8c:d0:c0:0d:a5:98:0d:a7:ea:53:f2: 9c:53:29:17:75:d8:2b:8f:94:b9:15:2f:02:5c:19: 0c:78:3b:1e:7e:30:1c:3d:6f:70:47:b7:eb:93:f7: a3:2f:ae:a1:18:db:f6:b6:cc:3a:ff:2e:29:4a:99: 63:d5:0b:24:a9:63:71:33:a3:fd:9f:55:4a:8b:7d: ea:e9:7d:51:b0:6e:06:f7:f4:25:a4:6d:48:be:9e: db:8d:25:a2:47:03:c4:c8:39:78:cd:54:45:e5:4c: 8d:7f:73:05:00:d9:fe:20:2c:1e:92:bc:c6:58:49: 84:9a:f0:fb:69:25:91:0f:fd:67:3a:16:8b:31:af: 3d:e4:4d:88:04:23:92:5d:73:15:af:9d:73:9d:aa: 18:c1:90:9d:ad:37:c3:09:4a:7c:8f:c0:f6:be:aa: b4:95:29:bf:8f:0c:1c:42:9c:af:6d:51:53:24:c6: c1:b2:d2:4b:3d:fc:00:df:0f:65:72:d8:37:2a:d3: 43:de:3e:b0:0d:80:2f:64:c0:3b:39:8f:44:a0:44: fa:f1:b9:38:9a:8a:91:93:34:d4:f3:03:2c:99:04: 6a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:07:4B:EB:5E:4C:A7:2F:57:0C:48:9E:30:57:82:DB:F2:03:B7:74 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.200.0/21 Signature Algorithm: sha256WithRSAEncryption 99:37:34:eb:83:0b:e7:90:5c:17:fc:ef:f3:e6:23:cf:9f:53: 95:e3:ba:14:64:cd:0b:d5:49:9c:dd:be:d5:72:09:20:26:c3: 96:04:9f:70:af:9c:97:33:38:51:c5:cd:e5:e2:bb:52:57:09: ad:63:cd:3b:97:c7:00:da:1e:3c:18:10:ce:8d:3a:fe:da:46: 75:25:d6:9a:40:47:b0:5a:60:c7:86:19:7b:5c:b2:70:92:64: 4b:81:f0:fc:c5:49:b2:2e:cb:1e:dc:1e:b8:63:8e:8f:d6:e1: 5a:14:cb:f0:96:f8:9e:19:e6:74:b0:33:60:60:f6:92:72:b7: 2a:8e:fb:fb:ba:04:5f:2d:40:73:de:7a:13:dc:c5:7b:4e:b3: 9a:60:7f:d1:8f:87:26:3f:0c:2b:15:7c:29:af:7e:5c:45:cf: f2:8e:b2:d2:7a:a5:3c:6b:1d:8e:6a:57:d1:d0:d5:ca:ad:6d: d6:1a:b6:3a:0f:1f:7f:2c:14:dc:8b:07:cd:30:5c:bd:3a:ed: 97:7b:4a:59:27:72:f3:2d:e9:55:98:f7:c1:5b:05:49:1b:ec: aa:af:f0:54:f4:04:7c:1c:cb:b3:9d:6b:ce:f5:6a:cf:0b:ae: 9f:09:c4:b1:4e:09:f1:ab:42:02:e6:64:08:b3:73:4c:98:ad: 62:36:17:af -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUBF3Ma8Crx2H8PWgpJFcN2Ge01PUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDQyMzAwMDAxM1oX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAZjQ1MGViOTljNWE0MGQ3ZjNlY2Iy YmNiMTA2NzllNDZiZjY1NGQ2N2NkNWM1NDNhYzYzMjkwMzY2NmNiOGQ1NjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WMgIXOLKy18qYs8xZcd/2LsjnZU koqd7Ag7gAmt4B6jjNDADaWYDafqU/KcUykXddgrj5S5FS8CXBkMeDsefjAcPW9w R7frk/ejL66hGNv2tsw6/y4pSplj1QskqWNxM6P9n1VKi33q6X1RsG4G9/QlpG1I vp7bjSWiRwPEyDl4zVRF5UyNf3MFANn+ICwekrzGWEmEmvD7aSWRD/1nOhaLMa89 5E2IBCOSXXMVr51znaoYwZCdrTfDCUp8j8D2vqq0lSm/jwwcQpyvbVFTJMbBstJL PfwA3w9lctg3KtND3j6wDYAvZMA7OY9EoET68bk4moqRkzTU8wMsmQRqCQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFCYHS+teTKcvVwxInjBXgtvyA7d0MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBiZjE1ZDNmLWM1NDYtNGJiNi1hNzY0LTgyMTY1YzM4NGQzNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrynIMA0GCSqGSIb3DQEBCwUAA4IBAQCZNzTrgwvnkFwX/O/z5iPP n1OV47oUZM0L1Umc3b7VcgkgJsOWBJ9wr5yXMzhRxc3l4rtSVwmtY807l8cA2h48 GBDOjTr+2kZ1JdaaQEewWmDHhhl7XLJwkmRLgfD8xUmyLsse3B64Y46P1uFaFMvw lvieGeZ0sDNgYPaScrcqjvv7ugRfLUBz3noT3MV7TrOaYH/Rj4cmPwwrFXwpr35c Rc/yjrLSeqU8ax2OalfR0NXKrW3WGrY6Dx9/LBTciwfNMFy9Ou2Xe0pZJ3LzLelV mPfBWwVJG+yqr/BU9AR8HMuznWvO9WrPC66fCcSxTgnxq0IC5mQIs3NMmK1iNhev -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net