$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa File: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (raw, json) Hash identifier: dvRUX4oeoJxdYeJcXaOx2heD6pheCRMn8wlMKNvyjBQ= Subject key identifier: 8F:B3:82:DB:7C:73:C6:6C:1D:F6:9F:E3:E2:4C:13:D3:EB:D9:70:E3 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 6CC1DAC07FC5703C4361496715FDF1794EB555D0 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa Signing time: Wed 23 Apr 2025 00:00:04 +0000 ROA not before: Wed 23 Apr 2025 00:00:04 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:c1:da:c0:7f:c5:70:3c:43:61:49:67:15:fd:f1:79:4e:b5:55:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 23 00:00:04 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=3bfedbaab8394c9bf63429b507d9698d1fab756086e447593ac6fd7749917752, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:52:bf:58:fd:71:c1:50:99:f8:8c:be:29:22: c4:b0:5f:f4:5e:30:8b:a8:39:f1:44:e8:0d:30:93: 06:03:14:a7:cd:be:ff:6c:56:b0:bd:75:12:51:20: a7:fb:05:92:b2:08:88:cc:09:cb:4b:24:98:8a:24: 4e:5d:a3:87:27:bc:bc:b6:03:25:f9:2c:e0:cf:38: 37:27:5d:14:9c:44:87:b0:25:a7:5e:b0:db:71:d0: 50:3b:d9:04:7d:02:97:cd:bb:16:e6:34:56:21:04: 15:6e:18:b2:4c:11:02:34:bc:9d:9c:33:23:08:e5: a0:45:b4:02:85:eb:74:e9:66:45:52:71:0c:4b:65: f0:63:50:88:e2:a6:ca:c4:c5:71:43:19:1d:59:8c: d8:fa:a6:ce:dd:6b:77:80:4c:e4:13:2a:cd:a5:28: aa:a7:cf:ae:05:bb:cb:65:1d:82:03:15:72:74:cb: 4e:57:aa:02:cd:67:30:fb:e4:3f:ad:c2:f5:2b:3c: a5:a1:3b:06:20:c4:42:f6:bc:27:61:87:90:b2:b3: e2:73:2e:4a:58:68:79:a1:b7:66:97:e4:87:c3:20: 86:ef:8f:62:64:b6:83:e3:cc:83:ec:f3:18:42:29: 9d:9f:dc:8f:69:c6:f6:d5:29:5f:c7:3f:aa:e9:ec: 30:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B3:82:DB:7C:73:C6:6C:1D:F6:9F:E3:E2:4C:13:D3:EB:D9:70:E3 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.193.0/24 Signature Algorithm: sha256WithRSAEncryption 96:ca:5c:72:d4:e6:a9:76:19:d5:f6:23:21:66:86:76:07:05: 19:1f:39:f8:c8:aa:6a:5e:53:78:be:6f:dc:fa:ee:6e:d0:18: 17:d8:a2:8b:fc:33:cb:3e:c1:05:7f:a6:76:c0:eb:18:3e:bd: ed:84:56:98:01:cd:f0:13:c8:32:5a:56:3b:b7:5a:bc:b1:a8: d9:6f:b8:29:8c:b7:b1:53:a5:77:49:e2:59:4d:a6:92:68:78: 50:3f:f5:51:44:58:92:f4:60:e7:38:b0:df:46:4c:08:11:e0: fe:90:07:2d:22:32:d1:a9:dc:f4:34:fe:8b:e7:b6:8c:3c:0f: 52:13:e7:11:5f:09:67:6b:38:be:4e:56:4a:f9:2d:0c:8b:fc: 0c:8e:b9:a0:a1:4c:26:1d:6c:f2:09:bf:f6:9e:62:55:90:d0: 24:7b:5b:53:4d:f4:60:f1:78:d1:12:a2:96:7c:07:bf:dc:19: f1:8e:ae:9c:23:f5:c3:5d:dd:de:1d:a7:a9:2a:eb:7f:b1:7a: 0f:75:b8:eb:58:0e:0f:5e:48:d3:01:55:32:6a:93:4c:89:44: 37:6e:6a:9c:db:71:8d:e8:0c:62:ed:9d:42:4d:f4:f5:bd:56: 43:ab:ad:53:db:43:e8:fb:f6:a9:b3:f5:9a:2b:00:bc:22:3d: 79:ff:c6:07 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUbMHawH/FcDxDYUlnFf3xeU61VdAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDQyMzAwMDAwNFoX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAM2JmZWRiYWFiODM5NGM5YmY2MzQy OWI1MDdkOTY5OGQxZmFiNzU2MDg2ZTQ0NzU5M2FjNmZkNzc0OTkxNzc1MjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzVK/WP1xwVCZ+Iy+KSLEsF/0XjCL qDnxROgNMJMGAxSnzb7/bFawvXUSUSCn+wWSsgiIzAnLSySYiiROXaOHJ7y8tgMl +Szgzzg3J10UnESHsCWnXrDbcdBQO9kEfQKXzbsW5jRWIQQVbhiyTBECNLydnDMj COWgRbQChet06WZFUnEMS2XwY1CI4qbKxMVxQxkdWYzY+qbO3Wt3gEzkEyrNpSiq p8+uBbvLZR2CAxVydMtOV6oCzWcw++Q/rcL1KzyloTsGIMRC9rwnYYeQsrPicy5K WGh5obdml+SHwyCG749iZLaD48yD7PMYQimdn9yPacb21Slfxz+q6ewwDwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFI+zgtt8c8ZsHfaf4+JME9Pr2XDjMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzJmNDdkY2RkLWMzODQtNGViMi1hZWZkLWY0YWQ2NGYyNmNjZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArynBMA0GCSqGSIb3DQEBCwUAA4IBAQCWylxy1OapdhnV9iMhZoZ2 BwUZHzn4yKpqXlN4vm/c+u5u0BgX2KKL/DPLPsEFf6Z2wOsYPr3thFaYAc3wE8gy WlY7t1q8sajZb7gpjLexU6V3SeJZTaaSaHhQP/VRRFiS9GDnOLDfRkwIEeD+kAct IjLRqdz0NP6L57aMPA9SE+cRXwlnazi+TlZK+S0Mi/wMjrmgoUwmHWzyCb/2nmJV kNAke1tTTfRg8XjREqKWfAe/3Bnxjq6cI/XDXd3eHaepKut/sXoPdbjrWA4PXkjT AVUyapNMiUQ3bmqc23GN6Axi7Z1CTfT1vVZDq61T20Po+/aps/WaKwC8Ij15/8YH -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net