$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa File: 74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa (raw, json) Hash identifier: OTtbI+AqHa7IMUb459/OtfVvgv0CNVRjV1VRiYtAXus= Subject key identifier: 26:1D:A8:3C:D8:2F:1F:A5:7B:1E:3D:26:E5:04:FA:FC:4D:6D:B6:36 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 6A11932ECC84FE6F64917E7F699EC11440D19267 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa Signing time: Wed 23 Apr 2025 00:00:15 +0000 ROA not before: Wed 23 Apr 2025 00:00:15 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:11:93:2e:cc:84:fe:6f:64:91:7e:7f:69:9e:c1:14:40:d1:92:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 23 00:00:15 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=d4cad42e4ee5a51a4cc5075dbda88a0d80cfbbac7f96e0d789983dab0d7dfbd9, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:00:3a:38:a2:79:29:3b:df:1e:37:4b:a6:fb: 7f:0e:14:ce:29:12:57:a2:1c:dc:bd:88:84:1a:2d: f2:be:14:64:28:4d:76:60:87:cb:5d:63:b7:66:af: 27:c7:da:e1:36:d9:38:12:61:6f:ac:15:70:5f:51: 20:c3:0a:cc:34:99:f1:d0:49:0c:99:fe:c4:a0:2b: 7b:8e:6f:52:dc:87:13:9a:c7:98:e9:ac:26:fd:cb: a1:2b:c3:f9:c1:14:d2:e1:35:78:d0:72:94:3c:8d: 9d:72:e8:84:f1:d5:35:58:54:fc:4d:57:71:84:d8: fd:2a:5b:b3:08:94:f7:9c:3b:8e:b3:1a:ef:d7:4e: cf:37:e9:ad:52:88:37:1b:8c:4b:92:c6:1c:bb:c1: de:f9:28:be:58:27:36:17:17:82:c0:97:b9:96:65: ce:ff:58:10:eb:ff:f4:93:cd:58:93:63:f3:19:58: d9:50:86:c8:54:22:01:a5:fc:d7:bd:55:1f:9f:33: 46:9f:2e:18:0e:7c:6f:20:b2:16:0d:e6:1d:4e:9d: 71:ea:18:a5:2d:f6:ee:4b:35:7f:f3:89:68:40:e4: a9:02:98:9c:33:3b:29:87:34:77:ce:61:e4:fa:18: 29:d1:4a:d5:1d:1d:5b:1b:8e:0a:8f:33:77:79:d8: f3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:1D:A8:3C:D8:2F:1F:A5:7B:1E:3D:26:E5:04:FA:FC:4D:6D:B6:36 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/74efe8b3-d39c-4a8b-9b7b-5994aa4c8d82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.240.0/20 Signature Algorithm: sha256WithRSAEncryption 1f:f1:c2:40:00:76:a3:10:fe:21:94:a2:d9:54:91:da:96:33: 00:6c:b4:9c:91:b1:72:3f:c7:75:ff:25:60:15:d5:5c:09:72: 12:6e:9e:f5:d4:99:2a:e3:c2:96:32:98:5a:e0:45:85:4a:91: 33:4b:34:4e:50:76:66:b2:80:de:20:e7:d0:bb:a8:b5:fd:ba: 82:15:9d:bc:f4:ac:78:07:d1:63:fe:b7:e2:a7:34:2f:94:6a: 57:db:94:3a:5f:44:57:96:cb:d6:29:b8:69:7c:08:33:ca:e8: 11:f0:0a:6e:fc:5b:19:73:8a:e5:e7:82:22:96:64:d9:92:be: 66:af:dc:b4:32:18:66:00:fc:55:2e:49:ef:66:6c:28:56:fd: b8:9e:8d:89:0f:99:4f:35:6f:81:e2:86:77:d4:87:73:f5:18: 59:eb:b0:f1:19:c4:a6:31:c7:01:be:02:e6:72:4a:99:21:98: 2a:d7:a4:c7:27:7f:6f:b3:78:4d:7d:e5:46:d9:0e:45:d9:45: 1f:60:69:aa:08:9b:3f:f3:68:fa:07:4a:5d:32:32:7c:fa:7a: 74:a4:8e:a2:cb:21:2a:81:78:a5:2c:45:d7:64:e8:e4:83:21: f4:ac:3e:6e:61:43:f1:24:0b:0a:42:54:b7:b8:f3:58:c6:fd: fe:61:54:02 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUahGTLsyE/m9kkX5/aZ7BFEDRkmcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDQyMzAwMDAxNVoX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNAZDRjYWQ0MmU0ZWU1YTUxYTRjYzUw NzVkYmRhODhhMGQ4MGNmYmJhYzdmOTZlMGQ3ODk5ODNkYWIwZDdkZmJkOTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AA6OKJ5KTvfHjdLpvt/DhTOKRJX ohzcvYiEGi3yvhRkKE12YIfLXWO3Zq8nx9rhNtk4EmFvrBVwX1EgwwrMNJnx0EkM mf7EoCt7jm9S3IcTmseY6awm/cuhK8P5wRTS4TV40HKUPI2dcuiE8dU1WFT8TVdx hNj9KluzCJT3nDuOsxrv107PN+mtUog3G4xLksYcu8He+Si+WCc2FxeCwJe5lmXO /1gQ6//0k81Yk2PzGVjZUIbIVCIBpfzXvVUfnzNGny4YDnxvILIWDeYdTp1x6hil LfbuSzV/84loQOSpApicMzsphzR3zmHk+hgp0UrVHR1bG44KjzN3edjzGwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFCYdqDzYLx+lex49JuUE+vxNbbY2MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 Lzc0ZWZlOGIzLWQzOWMtNGE4Yi05YjdiLTU5OTRhYTRjOGQ4Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynwMA0GCSqGSIb3DQEBCwUAA4IBAQAf8cJAAHajEP4hlKLZVJHa ljMAbLSckbFyP8d1/yVgFdVcCXISbp711Jkq48KWMpha4EWFSpEzSzROUHZmsoDe IOfQu6i1/bqCFZ289Kx4B9Fj/rfipzQvlGpX25Q6X0RXlsvWKbhpfAgzyugR8Apu /FsZc4rl54IilmTZkr5mr9y0MhhmAPxVLknvZmwoVv24no2JD5lPNW+B4oZ31Idz 9RhZ67DxGcSmMccBvgLmckqZIZgq16THJ39vs3hNfeVG2Q5F2UUfYGmqCJs/82j6 B0pdMjJ8+np0pI6iyyEqgXilLEXXZOjkgyH0rD5uYUPxJAsKQlS3uPNYxv3+YVQC -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net