$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa File: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (raw, json) Hash identifier: Kc0XLw9eBx4ghIL+7KXd6FxYjRku8SBDxi7Q2XTfbv0= Subject key identifier: D2:FF:C9:1D:51:AA:11:E3:99:5B:AF:66:9D:E4:95:AC:90:88:1F:D4 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 24CBC9517923CEA751DB78565480593D2FA3745A Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa Signing time: Wed 23 Apr 2025 00:00:07 +0000 ROA not before: Wed 23 Apr 2025 00:00:07 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:cb:c9:51:79:23:ce:a7:51:db:78:56:54:80:59:3d:2f:a3:74:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 23 00:00:07 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=7a242778111250f1eb0527370ecaa5794da3f2e5ae1609a61642980059f9018b, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:58:56:20:ee:87:c5:bd:c1:e3:64:8c:e4:1e: 7b:b6:85:56:99:aa:ad:d8:05:7a:82:4b:c2:76:cb: 0d:e2:c3:26:d8:aa:f5:e7:9c:62:42:7e:cc:e3:a9: 60:af:d3:63:8c:52:d5:90:e9:9b:85:dd:f1:51:ea: 72:57:7c:f7:05:7e:71:24:30:ce:b4:66:3e:2a:7e: 31:03:f4:21:40:79:1e:8b:f7:5f:2b:8b:4c:fb:c8: 54:27:41:43:a2:16:69:04:8c:9f:36:ed:a2:e2:e7: 89:d6:6f:99:1d:fe:ea:99:f6:04:f2:db:8e:fa:04: dc:79:53:e8:90:0e:77:90:bb:11:ac:2e:a1:09:80: 61:c2:32:e3:51:fd:4c:49:38:0b:a1:e8:2d:0e:c3: 9f:36:5f:d3:e0:78:b6:47:bf:df:ab:af:41:6d:de: e1:a1:71:f2:68:bb:dc:ef:a9:4c:cb:f5:51:88:52: bb:2d:15:80:61:6d:f1:57:aa:da:13:ce:80:40:0a: 71:48:ce:db:fc:80:ce:d3:71:cb:cd:87:a9:d3:e2: 9e:f5:70:6f:01:8e:7b:23:32:b1:42:87:4d:6d:3a: 1e:f1:9d:9c:a5:12:40:c7:03:ea:db:d8:c9:ce:2a: 07:33:d3:94:f3:77:a8:96:72:17:21:c9:d4:66:63: aa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:FF:C9:1D:51:AA:11:E3:99:5B:AF:66:9D:E4:95:AC:90:88:1F:D4 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.194.0/23 Signature Algorithm: sha256WithRSAEncryption 22:2a:c1:d8:bf:a1:67:4f:0b:19:a8:ba:48:13:72:58:f1:bf: 75:f3:6f:da:3e:70:1d:68:0f:dd:eb:d6:68:c7:e4:f3:90:71: 8c:2a:01:96:8f:2d:1d:d0:c8:57:98:d2:36:2f:c5:5e:57:94: 33:af:b4:8a:41:74:ad:64:5e:b8:49:dc:e4:a0:e4:9e:3e:b6: d5:dc:e6:2b:b0:35:cb:19:bd:c8:04:34:52:63:11:dd:ac:fe: 4f:0c:95:65:8e:7b:1d:f8:44:2e:82:b2:38:d0:11:5b:e2:64: 47:54:b0:fc:bb:8c:d8:35:28:9f:ec:bb:37:e3:1f:06:9c:c8: 85:5f:77:75:13:d7:9c:86:4b:1c:80:82:e2:5f:98:9e:e2:df: 37:6f:86:a5:fa:c5:b9:d0:f2:c6:8f:0d:ed:02:73:fd:36:0b: c2:7e:bd:df:a5:6c:fd:ee:c1:3c:f8:4c:b0:ca:c1:04:6d:a5: cb:f7:70:87:9b:c8:35:b3:48:ed:0c:58:0b:d0:bb:1a:82:75: 63:14:45:40:c6:7e:f5:21:62:9e:01:8d:df:ef:a8:18:69:30: 1e:43:d8:4b:89:c2:a7:0a:b5:a6:a8:76:a9:cb:56:d5:1d:da: 49:8c:59:7a:0e:3a:fe:23:3c:90:48:dd:a6:67:93:fd:69:c6: 05:67:55:0b -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUJMvJUXkjzqdR23hWVIBZPS+jdFowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDQyMzAwMDAwN1oX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAN2EyNDI3NzgxMTEyNTBmMWViMDUy NzM3MGVjYWE1Nzk0ZGEzZjJlNWFlMTYwOWE2MTY0Mjk4MDA1OWY5MDE4YjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAilhWIO6Hxb3B42SM5B57toVWmaqt 2AV6gkvCdssN4sMm2Kr155xiQn7M46lgr9NjjFLVkOmbhd3xUepyV3z3BX5xJDDO tGY+Kn4xA/QhQHkei/dfK4tM+8hUJ0FDohZpBIyfNu2i4ueJ1m+ZHf7qmfYE8tuO +gTceVPokA53kLsRrC6hCYBhwjLjUf1MSTgLoegtDsOfNl/T4Hi2R7/fq69Bbd7h oXHyaLvc76lMy/VRiFK7LRWAYW3xV6raE86AQApxSM7b/IDO03HLzYep0+Ke9XBv AY57IzKxQodNbToe8Z2cpRJAxwPq29jJzioHM9OU83eolnIXIcnUZmOqxwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFNL/yR1RqhHjmVuvZp3klayQiB/UMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzZjZjU3YWE2LTZiYTMtNDNhZi1iYmQ1LTQ0NDg1ZTNiOWY2Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynCMA0GCSqGSIb3DQEBCwUAA4IBAQAiKsHYv6FnTwsZqLpIE3JY 8b9182/aPnAdaA/d69Zox+TzkHGMKgGWjy0d0MhXmNI2L8VeV5Qzr7SKQXStZF64 SdzkoOSePrbV3OYrsDXLGb3IBDRSYxHdrP5PDJVljnsd+EQugrI40BFb4mRHVLD8 u4zYNSif7Ls34x8GnMiFX3d1E9echkscgILiX5ie4t83b4al+sW50PLGjw3tAnP9 NgvCfr3fpWz97sE8+EywysEEbaXL93CHm8g1s0jtDFgL0LsagnVjFEVAxn71IWKe AY3f76gYaTAeQ9hLicKnCrWmqHapy1bVHdpJjFl6Djr+IzyQSN2mZ5P9acYFZ1UL -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net