$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1aaf6328-08de-4735-8d71-2cf6b53109d4.roa File: 1aaf6328-08de-4735-8d71-2cf6b53109d4.roa (raw, json) Hash identifier: h5eOVwWxWFxtXEGWlclsikMBg9tY84Y3iz4BfngpCu8= Subject key identifier: E9:DD:08:9A:E6:99:C9:D7:EF:B2:73:F1:D6:EE:3F:02:61:9D:B2:76 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 62949A768E6E7D36987D5FFCF34A5639F9A1C6A9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1aaf6328-08de-4735-8d71-2cf6b53109d4.roa Signing time: Sat 19 Apr 2025 00:41:45 +0000 ROA not before: Sat 19 Apr 2025 00:41:45 +0000 ROA not after: Sat 24 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:2080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:94:9a:76:8e:6e:7d:36:98:7d:5f:fc:f3:4a:56:39:f9:a1:c6:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 19 00:41:45 2025 GMT Not After : May 24 23:59:59 2025 GMT Subject: serialNumber=6fd75abc6f7bd5694948402c97eb22bfdba223e00699ddeb0d765fab27b23f0d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4f:96:89:3b:e0:f8:07:06:5f:61:ea:5d:07: 6b:48:88:ae:2b:2e:d4:03:eb:2a:e3:7a:79:81:a0: e7:cd:7d:aa:c8:f0:53:e7:9e:02:1b:c0:d2:15:71: ff:4d:b2:5b:0b:bc:ec:42:46:2c:8f:35:92:3d:d5: bd:12:6f:01:03:45:c9:c5:a1:72:99:35:00:e5:01: 03:2e:1f:18:2b:42:f3:f6:e1:8e:3d:b7:a7:b2:b4: ca:88:1f:a3:3c:e3:92:54:0e:b9:23:4c:8b:06:10: f5:e2:49:1f:ce:58:e7:05:d1:79:d2:8e:09:ed:06: a6:45:d9:15:79:0f:b7:5a:87:e3:5f:04:2a:0b:2a: d9:b5:1e:89:32:ab:d2:46:9b:c5:a0:7d:1f:a6:8b: 4f:af:ad:4b:8f:b0:4e:cb:79:79:2a:60:4a:cb:db: c5:c5:cd:d8:49:c7:79:bf:7b:62:c5:80:b5:30:0f: 75:27:9a:fc:aa:43:86:39:ce:97:bb:0a:9c:b5:b7: 52:0c:5e:df:c8:3d:6f:d1:f1:9c:40:b2:11:60:83: 01:c2:3b:c2:2b:e2:7e:d4:7c:e6:c7:86:14:66:f3: 61:00:ec:35:4f:23:5f:d0:a2:55:69:1e:3b:b7:1a: 41:73:75:1a:36:8c:ac:6e:ca:4b:de:35:9e:56:39: 68:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:DD:08:9A:E6:99:C9:D7:EF:B2:73:F1:D6:EE:3F:02:61:9D:B2:76 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1aaf6328-08de-4735-8d71-2cf6b53109d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:2080::/48 Signature Algorithm: sha256WithRSAEncryption 72:46:e0:e0:db:4e:6a:61:48:c3:26:f0:f4:2a:56:8d:2d:4e: 57:92:67:e7:4c:47:42:c7:b1:8d:b7:db:27:7e:8c:05:ed:5d: f0:64:a0:63:34:21:8e:49:9a:07:7b:97:19:db:2a:90:dc:05: 43:6c:8e:f4:b2:08:1b:31:48:c7:12:f7:44:34:e4:66:5c:b6: 0a:fd:c1:e4:a6:1f:8e:0c:40:17:e4:fe:ab:0f:3c:c0:e0:33: 0d:ab:53:43:3d:3d:09:64:d5:d5:c9:34:7c:33:ca:f2:60:6a: 3e:25:05:7f:a2:e5:bd:da:de:71:ec:32:25:a9:a4:5b:9e:4d: 01:8e:47:3d:bd:ea:fb:c1:13:ec:44:0c:1c:f9:8b:eb:05:e2: 22:73:5a:6a:94:77:a7:78:86:7e:9a:89:fd:90:71:aa:22:c8: a6:1c:f8:89:33:da:71:c2:1b:fd:19:99:a2:b1:af:f3:e9:7e: f0:37:d5:c9:9c:f8:0b:92:c6:34:c0:69:63:9a:f1:37:19:bf: 15:c2:fa:97:59:8b:3f:c8:03:c2:ff:0f:47:cb:b5:31:c5:83: cf:33:e1:c1:c5:35:10:0d:d5:82:ee:ae:4a:20:98:fd:f3:d1: aa:a2:e6:77:2a:57:9e:fe:5e:c4:f3:33:1f:0f:ff:05:dd:53: ba:11:19:18 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYpSado5ufTaYfV/880pWOfmhxqkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxOTAwNDE0NVoX DTI1MDUyNDIzNTk1OVowejFJMEcGA1UEBRNANmZkNzVhYmM2ZjdiZDU2OTQ5NDg0 MDJjOTdlYjIyYmZkYmEyMjNlMDA2OTlkZGViMGQ3NjVmYWIyN2IyM2YwZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy0+WiTvg+AcGX2HqXQdrSIiuKy7U A+sq43p5gaDnzX2qyPBT554CG8DSFXH/TbJbC7zsQkYsjzWSPdW9Em8BA0XJxaFy mTUA5QEDLh8YK0Lz9uGOPbensrTKiB+jPOOSVA65I0yLBhD14kkfzljnBdF50o4J 7QamRdkVeQ+3WofjXwQqCyrZtR6JMqvSRpvFoH0fpotPr61Lj7BOy3l5KmBKy9vF xc3YScd5v3tixYC1MA91J5r8qkOGOc6XuwqctbdSDF7fyD1v0fGcQLIRYIMBwjvC K+J+1Hzmx4YUZvNhAOw1TyNf0KJVaR47txpBc3UaNoysbspL3jWeVjloFwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFOndCJrmmcnX77Jz8dbuPwJhnbJ2MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFhYWY2MzI4LTA4ZGUtNDczNS04ZDcxLTJjZjZiNTMxMDlkNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaACCAMA0GCSqGSIb3DQEBCwUAA4IBAQByRuDg205qYUjDJvD0 KlaNLU5XkmfnTEdCx7GNt9snfowF7V3wZKBjNCGOSZoHe5cZ2yqQ3AVDbI70sggb MUjHEvdENORmXLYK/cHkph+ODEAX5P6rDzzA4DMNq1NDPT0JZNXVyTR8M8ryYGo+ JQV/ouW92t5x7DIlqaRbnk0Bjkc9ver7wRPsRAwc+YvrBeIic1pqlHeneIZ+mon9 kHGqIsimHPiJM9pxwhv9GZmisa/z6X7wN9XJnPgLksY0wGljmvE3Gb8VwvqXWYs/ yAPC/w9Hy7UxxYPPM+HBxTUQDdWC7q5KIJj989GqouZ3Klee/l7E8zMfD/8F3VO6 ERkY -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:41 2025 by rpki-client on console.sobornost.net