$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/b3ba338e-4843-454b-abe5-65f09756225a.roa File: b3ba338e-4843-454b-abe5-65f09756225a.roa (raw, json) Hash identifier: eptWax8q+JOtZKjpJaa5BqXwHYObIO0PLM5pW6H/QLM= Subject key identifier: 58:A1:AD:05:EF:E4:EE:BF:B3:4C:2C:5D:95:DC:B5:A3:03:8D:0C:D7 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 1CDF285A727550A657AE6BDB526215DBF5C52F61 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/b3ba338e-4843-454b-abe5-65f09756225a.roa Signing time: Wed 23 Apr 2025 00:00:06 +0000 ROA not before: Wed 23 Apr 2025 00:00:06 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:df:28:5a:72:75:50:a6:57:ae:6b:db:52:62:15:db:f5:c5:2f:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Apr 23 00:00:06 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=44ad414e5de089123c1eb66d209ec504db8c069b6a02236eb69d0c7c4cc10cb3, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:03:4b:14:32:33:eb:7e:71:bb:27:a2:b5:ab: 95:24:f4:9e:26:5e:18:06:a2:bc:1f:49:c0:ac:2d: 1d:cc:67:a1:5f:7e:9c:fd:93:1a:fc:3b:e0:73:3d: ad:11:1e:3f:26:36:b6:39:e9:65:a4:39:63:48:c8: e6:e3:52:32:c1:cd:c2:8f:4e:6f:02:3f:26:bc:7a: 73:95:08:47:e0:81:6d:f9:7e:63:3e:9a:9e:f2:45: 7d:a4:c4:be:4d:0a:5f:72:4a:bb:a9:12:85:f7:b7: 22:e3:71:8b:0f:14:d7:11:b3:3e:5b:43:11:34:25: fe:2c:82:fb:cf:4b:df:60:50:08:09:6f:64:8f:e1: 7a:d4:c0:11:14:0d:ed:5b:53:8b:60:79:a3:15:42: 6f:ea:de:37:25:82:79:70:ee:43:ca:b0:60:9e:ab: ab:63:52:96:ff:25:1a:eb:01:6f:dc:45:1c:3b:9b: a7:da:f0:2f:e5:1d:05:8d:c3:ac:62:5e:bd:8a:25: 96:da:f3:51:d4:7b:b6:56:d8:c5:91:8f:b0:b4:7a: 53:89:88:1f:cb:d0:0f:e4:9e:36:e9:19:b4:0c:60: 31:8b:14:26:ec:d3:7b:84:ff:2f:a3:69:c9:05:fe: 32:23:d6:64:83:7d:ff:37:65:4a:2b:e9:9c:b7:78: 97:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A1:AD:05:EF:E4:EE:BF:B3:4C:2C:5D:95:DC:B5:A3:03:8D:0C:D7 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/b3ba338e-4843-454b-abe5-65f09756225a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:8c:cd:ee:5a:70:7d:38:00:d1:d6:66:2a:32:4b:c4:fb:8d: 56:15:e1:45:76:4e:a9:af:20:82:43:8b:20:24:1d:d2:c3:41: e6:03:59:24:b7:7b:1c:3e:ff:82:ed:cc:c0:08:0f:ef:d6:4d: 39:3b:1a:55:2f:5b:73:4c:2f:99:02:39:b2:c0:9a:11:f3:9e: 9b:00:35:e6:43:5c:ef:de:b6:ab:fb:26:fb:54:a0:13:83:ca: 91:f2:bd:f5:e8:76:9a:a2:1e:94:35:0d:18:25:47:25:e0:bf: bf:fd:9d:2e:a6:35:d8:4a:c2:3f:d2:73:f2:c8:24:83:44:47: 90:4f:5b:27:a6:ac:ec:d9:25:6f:da:81:aa:e0:e9:1e:b4:ee: 35:9b:4e:4a:56:5e:86:97:3d:84:6c:ee:37:4a:53:c8:97:a0: 6d:8a:74:df:c1:fd:a2:0f:7e:80:31:89:35:35:43:e0:56:29: 70:8f:38:c2:16:71:9d:41:8a:72:f9:58:cc:95:9d:99:2b:62: 73:72:2c:8d:71:22:37:ab:d7:fa:cb:f4:a3:f9:88:65:a0:2c: 71:d7:2e:2c:10:82:7a:c6:35:40:3d:85:2f:57:25:aa:54:ec: a8:6a:99:b4:2c:dd:c7:50:4d:2c:b9:67:86:e3:c4:1e:a9:20: 53:91:8f:96 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUHN8oWnJ1UKZXrmvbUmIV2/XFL2EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDQyMzAwMDAwNloX DTI1MDUyODIzNTk1OVowejFJMEcGA1UEBRNANDRhZDQxNGU1ZGUwODkxMjNjMWVi NjZkMjA5ZWM1MDRkYjhjMDY5YjZhMDIyMzZlYjY5ZDBjN2M0Y2MxMGNiMzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgNLFDIz635xuyeitauVJPSeJl4Y BqK8H0nArC0dzGehX36c/ZMa/Dvgcz2tER4/Jja2OellpDljSMjm41Iywc3Cj05v Aj8mvHpzlQhH4IFt+X5jPpqe8kV9pMS+TQpfckq7qRKF97ci43GLDxTXEbM+W0MR NCX+LIL7z0vfYFAICW9kj+F61MARFA3tW1OLYHmjFUJv6t43JYJ5cO5DyrBgnqur Y1KW/yUa6wFv3EUcO5un2vAv5R0FjcOsYl69iiWW2vNR1Hu2VtjFkY+wtHpTiYgf y9AP5J426Rm0DGAxixQm7NN7hP8vo2nJBf4yI9Zkg33/N2VKK+mct3iX9wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFFihrQXv5O6/s0wsXZXctaMDjQzXMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2IzYmEzMzhlLTQ4NDMtNDU0Yi1hYmU1LTY1ZjA5NzU2MjI1YS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArynAMA0GCSqGSIb3DQEBCwUAA4IBAQA+jM3uWnB9OADR1mYqMkvE +41WFeFFdk6pryCCQ4sgJB3Sw0HmA1kkt3scPv+C7czACA/v1k05OxpVL1tzTC+Z AjmywJoR856bADXmQ1zv3rar+yb7VKATg8qR8r316Haaoh6UNQ0YJUcl4L+//Z0u pjXYSsI/0nPyyCSDREeQT1snpqzs2SVv2oGq4OketO41m05KVl6Glz2EbO43SlPI l6BtinTfwf2iD36AMYk1NUPgVilwjzjCFnGdQYpy+VjMlZ2ZK2JzciyNcSI3q9f6 y/Sj+YhloCxx1y4sEIJ6xjVAPYUvVyWqVOyoapm0LN3HUE0suWeG48QeqSBTkY+W -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net