$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0508eaff-f950-49b5-b1ff-bbf90813c764.roa File: 0508eaff-f950-49b5-b1ff-bbf90813c764.roa (raw, json) Hash identifier: WBqH7GEnLm1ZhuEaHP6su+SHqKa3NdRgM7FbJ+Zh1n4= Subject key identifier: 1F:4C:77:52:C5:06:59:35:E1:07:15:97:E3:D6:43:B1:99:97:EB:42 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 579D8DB418AE62CD5571A93623CF70692D41A60C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0508eaff-f950-49b5-b1ff-bbf90813c764.roa Signing time: Mon 21 Apr 2025 15:02:01 +0000 ROA not before: Mon 21 Apr 2025 15:02:01 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:b040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:9d:8d:b4:18:ae:62:cd:55:71:a9:36:23:cf:70:69:2d:41:a6:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 21 15:02:01 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=f69eebaa6e48e623d15114aa0a5f4a40eebc80e15f5c776b7434d50aedac77fc, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:91:9f:f5:78:bc:9c:00:41:fd:20:d7:e5:e9: f5:19:1d:95:0c:07:cd:39:b0:10:a4:38:b4:f7:1e: 89:df:cd:0e:1c:a3:c0:b9:9c:3c:c1:6a:ad:c0:b2: c3:92:89:49:00:e9:66:96:73:54:fb:62:80:68:76: 09:f0:75:66:03:5e:9b:17:08:8b:5f:e7:ec:05:84: 98:55:63:42:c1:1b:c5:1a:6b:09:33:07:80:d5:58: 08:83:b2:be:65:71:1a:c0:25:dc:53:9f:ee:18:e4: da:80:af:18:65:f4:c9:95:d1:61:10:f6:a6:dd:aa: 14:4d:27:68:7b:aa:8e:d9:d8:3a:3f:b0:8b:96:74: ad:33:f0:b3:16:46:35:92:07:96:3c:d1:d7:d5:9d: 04:17:00:fb:ec:28:a9:41:79:7c:50:f9:5e:f4:92: d5:6b:d2:70:c9:67:8e:17:b5:49:69:2b:53:7e:61: 8a:b5:38:8c:b6:b3:9d:25:cf:51:3c:51:ce:fe:8b: c2:68:1b:41:a9:90:ad:87:4f:fd:f0:b8:d1:3d:e1: 2b:35:2b:04:20:97:15:ad:f1:26:4b:e3:23:d7:d8: 48:be:c4:7e:6d:eb:d0:63:32:7a:1e:59:9e:90:3f: fd:08:d2:38:31:c7:a3:2d:3e:cf:68:dc:28:16:e6: 9e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:4C:77:52:C5:06:59:35:E1:07:15:97:E3:D6:43:B1:99:97:EB:42 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0508eaff-f950-49b5-b1ff-bbf90813c764.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:b040::/46 Signature Algorithm: sha256WithRSAEncryption 8f:d9:27:9f:e3:fd:b3:9e:95:54:49:74:3d:90:58:62:71:20: 78:42:92:20:8c:8c:31:af:df:24:6d:b7:ac:f2:57:5e:af:7d: a4:7a:34:a0:69:7e:20:da:90:67:de:9a:2e:50:5f:93:38:a4: 1c:22:1a:f0:61:c0:e4:90:32:f4:2e:af:49:20:98:fb:bf:e8: 99:54:6b:f1:79:1f:41:47:bf:cb:32:8a:51:7f:e0:be:a9:15: c9:53:f3:ef:dc:b3:09:56:51:4e:2b:1f:5b:b1:77:ef:7a:91: d6:96:27:c3:81:0b:82:a4:0d:56:02:ec:08:94:5f:da:46:11: 6b:64:30:c8:f1:55:86:28:48:93:d2:7b:2d:95:4c:d1:8e:15: 14:ad:1c:48:57:91:d4:56:04:b5:62:3c:78:78:7b:a0:7e:9e: 5c:c1:a5:bc:e2:95:bc:99:61:8a:5a:14:92:a4:0d:58:0d:66: a2:eb:20:fe:70:04:dd:f3:c0:6a:e4:28:9a:68:55:49:be:c6: b9:c2:a3:4e:f1:57:3c:fd:39:6c:69:da:64:4f:f7:35:9f:e6: ed:c3:5e:d7:33:f3:fe:ce:64:e7:55:00:10:a9:64:57:30:21: 0f:5b:fa:eb:28:6e:b9:f7:2c:4f:ca:58:84:d1:45:bc:a1:c3: 97:f9:99:4e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUV52NtBiuYs1Vcak2I89waS1BpgwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQyMTE1MDIwMVoX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAZjY5ZWViYWE2ZTQ4ZTYyM2QxNTEx NGFhMGE1ZjRhNDBlZWJjODBlMTVmNWM3NzZiNzQzNGQ1MGFlZGFjNzdmYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpGf9Xi8nABB/SDX5en1GR2VDAfN ObAQpDi09x6J380OHKPAuZw8wWqtwLLDkolJAOlmlnNU+2KAaHYJ8HVmA16bFwiL X+fsBYSYVWNCwRvFGmsJMweA1VgIg7K+ZXEawCXcU5/uGOTagK8YZfTJldFhEPam 3aoUTSdoe6qO2dg6P7CLlnStM/CzFkY1kgeWPNHX1Z0EFwD77CipQXl8UPle9JLV a9JwyWeOF7VJaStTfmGKtTiMtrOdJc9RPFHO/ovCaBtBqZCth0/98LjRPeErNSsE IJcVrfEmS+Mj19hIvsR+bevQYzJ6HlmekD/9CNI4McejLT7PaNwoFuae3QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFB9Md1LFBlk14QcVl+PWQ7GZl+tCMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA1MDhlYWZmLWY5NTAtNDliNS1iMWZmLWJiZjkwODEzYzc2NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba+7BAMA0GCSqGSIb3DQEBCwUAA4IBAQCP2Sef4/2znpVUSXQ9 kFhicSB4QpIgjIwxr98kbbes8lder32kejSgaX4g2pBn3pouUF+TOKQcIhrwYcDk kDL0Lq9JIJj7v+iZVGvxeR9BR7/LMopRf+C+qRXJU/Pv3LMJVlFOKx9bsXfvepHW lifDgQuCpA1WAuwIlF/aRhFrZDDI8VWGKEiT0nstlUzRjhUUrRxIV5HUVgS1Yjx4 eHugfp5cwaW84pW8mWGKWhSSpA1YDWai6yD+cATd88Bq5CiaaFVJvsa5wqNO8Vc8 /TlsadpkT/c1n+btw17XM/P+zmTnVQAQqWRXMCEPW/rrKG659yxPyliE0UW8ocOX +ZlO -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:40 2025 by rpki-client on console.sobornost.net