$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa File: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (raw, json) Hash identifier: KzV8bX75/Zeinz9MFfPrUSUL++GJqbTyriAsomfLsAg= Subject key identifier: 08:EC:A7:07:28:65:AF:9D:3C:B1:1B:FF:87:9A:75:B2:05:0D:4D:99 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 1E4FB4A65D916768A72178D19E5EF2BB1D649AC7 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa Signing time: Wed 23 Apr 2025 00:00:11 +0000 ROA not before: Wed 23 Apr 2025 00:00:11 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:4f:b4:a6:5d:91:67:68:a7:21:78:d1:9e:5e:f2:bb:1d:64:9a:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 23 00:00:11 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=4a99b30e3b7aeef0738f658166a192a3de52c2d17b7c6b3529d9e77becd9c382, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3b:c5:dc:ea:53:6b:00:7b:26:63:a5:26:c3: c8:b7:18:a8:4c:ad:8b:8e:b9:57:0f:5f:95:32:0d: 03:76:79:f4:55:87:9f:af:ff:41:50:0e:8a:20:81: 80:2d:9f:6b:f2:88:c3:e8:d4:f4:d1:90:f2:d3:ce: 86:9b:09:41:d5:82:7d:66:e5:8a:fe:48:54:51:34: 35:3e:ea:69:fb:ba:65:a6:eb:44:68:cf:bc:c3:1c: 0a:42:15:7f:ad:99:0b:54:ea:41:69:46:4a:4b:ba: 8a:7e:cd:a2:6f:5c:b9:d1:fe:aa:d3:fe:28:62:92: 15:b4:3e:a8:33:4d:55:19:e4:14:18:fd:ce:aa:61: 3f:d3:00:18:b3:cb:87:65:bd:dd:54:1f:06:3e:10: eb:b9:6f:ad:77:1a:c9:49:e7:a0:8e:5c:13:50:cc: 7b:ab:12:6a:cb:67:76:6f:b7:4d:01:65:44:0b:84: 2b:b4:f6:e6:96:ef:f8:5c:42:64:1d:b2:2a:e6:ee: 0a:11:a3:c3:5a:2d:c8:09:eb:0e:99:af:4b:ec:4e: da:01:59:1a:cd:1d:12:4c:16:cf:63:e3:67:1b:de: a6:75:45:73:47:44:bc:c3:a1:e2:34:46:82:13:6f: c5:97:28:64:19:89:11:73:13:97:bb:a5:e3:d4:fc: a2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:EC:A7:07:28:65:AF:9D:3C:B1:1B:FF:87:9A:75:B2:05:0D:4D:99 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.232.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:27:a7:36:c5:31:c7:f0:1d:d3:1a:5a:98:f8:0c:c1:23:d0: 15:7e:3c:bf:0b:64:a4:90:ff:c7:b0:fa:88:37:fd:24:af:5e: bb:3c:de:0e:78:a4:d9:53:30:4b:96:2a:24:a8:c4:95:95:76: ca:c8:35:be:a5:0d:0e:0d:7c:49:8a:52:02:ef:94:52:18:30: 99:3c:6d:81:a1:88:73:90:54:0b:56:29:e7:9e:87:82:88:9d: f7:c7:f4:af:20:89:ed:c6:e2:5f:ef:4c:c7:de:a5:0e:bf:92: fb:28:1b:ed:2e:65:f7:11:8c:c5:8d:99:c5:ba:ff:47:dc:e1: 8f:c2:7c:ed:91:0d:a5:91:f7:05:8c:9e:f9:c6:27:ee:93:e5: 40:de:39:01:6f:5b:5f:cf:85:09:87:5e:25:36:c8:32:50:11: de:e7:06:e5:5b:01:54:86:9e:57:e5:e2:c5:05:47:cd:0c:90: b3:35:13:02:8f:f1:e1:3d:59:83:9a:aa:10:20:e3:b9:5c:79: 07:a4:b5:f6:af:55:0a:3d:85:81:64:05:2e:86:e7:1c:90:2b: 94:cb:4e:88:da:ca:4f:05:68:fa:d9:e2:4a:e2:ed:b1:c6:3c: 4b:4d:ca:91:13:66:d9:fb:d1:00:ff:9d:2d:b0:f9:32:28:90: ce:69:19:d4 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUHk+0pl2RZ2inIXjRnl7yux1kmscwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDQyMzAwMDAxMVoX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNANGE5OWIzMGUzYjdhZWVmMDczOGY2 NTgxNjZhMTkyYTNkZTUyYzJkMTdiN2M2YjM1MjlkOWU3N2JlY2Q5YzM4MjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjvF3OpTawB7JmOlJsPItxioTK2L jrlXD1+VMg0Ddnn0VYefr/9BUA6KIIGALZ9r8ojD6NT00ZDy086GmwlB1YJ9ZuWK /khUUTQ1Pupp+7plputEaM+8wxwKQhV/rZkLVOpBaUZKS7qKfs2ib1y50f6q0/4o YpIVtD6oM01VGeQUGP3OqmE/0wAYs8uHZb3dVB8GPhDruW+tdxrJSeegjlwTUMx7 qxJqy2d2b7dNAWVEC4QrtPbmlu/4XEJkHbIq5u4KEaPDWi3ICesOma9L7E7aAVka zR0STBbPY+NnG96mdUVzR0S8w6HiNEaCE2/FlyhkGYkRcxOXu6Xj1Pyi9wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAjspwcoZa+dPLEb/4eadbIFDU2ZMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBjNWM1NGZmLWY5NzctNGI5Ni04Y2U5LWExZWFmMDgyZmU5Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynoMA0GCSqGSIb3DQEBCwUAA4IBAQCMJ6c2xTHH8B3TGlqY+AzB I9AVfjy/C2SkkP/HsPqIN/0kr167PN4OeKTZUzBLliokqMSVlXbKyDW+pQ0ODXxJ ilIC75RSGDCZPG2BoYhzkFQLVinnnoeCiJ33x/SvIIntxuJf70zH3qUOv5L7KBvt LmX3EYzFjZnFuv9H3OGPwnztkQ2lkfcFjJ75xifuk+VA3jkBb1tfz4UJh14lNsgy UBHe5wblWwFUhp5X5eLFBUfNDJCzNRMCj/HhPVmDmqoQIOO5XHkHpLX2r1UKPYWB ZAUuhucckCuUy06I2spPBWj62eJK4u2xxjxLTcqRE2bZ+9EA/50tsPkyKJDOaRnU -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net