$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e80caea-8844-429b-9344-5e99f4990e79.roa File: 1e80caea-8844-429b-9344-5e99f4990e79.roa (raw, json) Hash identifier: CaJZ+2y//Qb2k+qkaXgNwMjrntkNncbrG8wrEzseiJ0= Subject key identifier: 33:21:F9:8B:E5:CD:35:A5:71:D6:19:92:9F:A3:D9:B7:8C:4F:84:1E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 60FB6A7FB6CAE5672A477C75978607FA40543654 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e80caea-8844-429b-9344-5e99f4990e79.roa Signing time: Sat 19 Apr 2025 00:50:19 +0000 ROA not before: Sat 19 Apr 2025 00:50:19 +0000 ROA not after: Sat 24 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:4800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:fb:6a:7f:b6:ca:e5:67:2a:47:7c:75:97:86:07:fa:40:54:36:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 19 00:50:19 2025 GMT Not After : May 24 23:59:59 2025 GMT Subject: serialNumber=26784d2512f6d945002d078ef72670d24a818b8a6c18a23c30c0df23bac60e95, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:70:a6:f7:9b:5b:4e:00:11:bb:33:35:8b:5a: 2c:1d:15:c8:e3:9d:a7:06:69:44:f0:73:c0:64:dd: 48:73:a6:4f:dc:8f:ae:6f:98:e9:92:63:50:f8:66: 02:2d:55:9d:7f:e0:fa:48:2f:c5:74:c8:f2:07:89: 50:fe:c5:04:8c:ea:02:cb:f6:c7:92:10:59:9c:c8: e6:9c:56:09:a7:db:1e:a7:19:06:72:10:9b:23:59: 43:ef:ad:24:91:4f:9f:b6:87:95:47:c7:a4:7c:f1: 3a:28:9c:b4:53:aa:1b:c8:cb:c4:59:75:80:61:1c: 3e:bb:4d:9a:38:6c:40:1b:f8:45:41:33:58:01:15: 3c:b7:ad:24:86:32:6f:d7:49:99:b0:77:c9:7d:da: 8e:c6:4b:e1:83:36:2d:5a:53:c9:1d:84:80:62:e7: 6f:e3:06:9f:de:ed:35:e6:43:cb:1a:fa:ca:9f:b2: 6b:bf:d2:7e:f7:f6:b3:48:a3:41:7b:50:26:ea:bc: 5d:b7:db:23:78:8c:c7:e6:00:bd:d0:38:ab:55:b4: a5:62:00:d0:ef:6d:0d:6f:3d:21:2e:ef:84:f1:11: d2:79:da:43:91:da:f4:fd:b9:b6:77:62:e6:0f:21: 12:11:29:ef:51:52:58:29:7a:f9:e9:01:52:e4:c9: 10:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:21:F9:8B:E5:CD:35:A5:71:D6:19:92:9F:A3:D9:B7:8C:4F:84:1E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1e80caea-8844-429b-9344-5e99f4990e79.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:4800::/40 Signature Algorithm: sha256WithRSAEncryption 80:7c:c4:9c:00:6f:cb:7b:28:2a:35:b1:f3:1c:56:51:ae:ad: bd:1d:e2:00:1a:ce:2c:50:7c:d0:a1:53:ab:eb:13:18:9a:ed: 77:fa:53:7c:1b:a5:04:38:c4:81:45:76:ac:a4:93:61:d3:52: aa:c6:f6:20:31:e7:b6:a4:8d:07:87:56:08:5e:af:f3:92:bc: db:4a:eb:3a:92:28:ec:0e:44:b3:9f:9a:91:7d:dd:e9:e0:d6: 80:20:71:ef:86:52:d0:06:90:6c:50:30:b5:d4:35:04:42:be: 08:88:a4:86:3d:92:c3:53:6b:a2:6c:06:3d:b9:34:d1:44:d4: b2:fa:da:64:a4:b9:2e:c7:bd:da:7f:c8:8d:b9:06:ba:4a:61: 26:1a:c1:5e:72:8f:5d:1a:46:59:75:ab:67:a2:c3:33:26:43: d2:41:78:f2:00:8c:38:78:ab:3b:a9:d9:b7:27:c4:f8:b7:96: ce:ed:6f:a4:e0:f0:a2:ac:2c:17:6a:f1:02:d7:d0:62:8c:07: 2b:90:60:80:51:f8:43:f8:6c:e3:73:07:f2:e4:3b:f8:f8:fd: b9:d9:66:1b:e4:66:ae:25:9c:16:ae:13:e3:bc:29:85:21:eb: 7c:80:9c:ee:14:9e:09:01:5b:c9:26:97:cf:20:3f:32:66:ef: f2:60:20:7b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYPtqf7bK5WcqR3x1l4YH+kBUNlQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxOTAwNTAxOVoX DTI1MDUyNDIzNTk1OVowejFJMEcGA1UEBRNAMjY3ODRkMjUxMmY2ZDk0NTAwMmQw NzhlZjcyNjcwZDI0YTgxOGI4YTZjMThhMjNjMzBjMGRmMjNiYWM2MGU5NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43Cm95tbTgARuzM1i1osHRXI452n BmlE8HPAZN1Ic6ZP3I+ub5jpkmNQ+GYCLVWdf+D6SC/FdMjyB4lQ/sUEjOoCy/bH khBZnMjmnFYJp9sepxkGchCbI1lD760kkU+ftoeVR8ekfPE6KJy0U6obyMvEWXWA YRw+u02aOGxAG/hFQTNYARU8t60khjJv10mZsHfJfdqOxkvhgzYtWlPJHYSAYudv 4waf3u015kPLGvrKn7Jrv9J+9/azSKNBe1Am6rxdt9sjeIzH5gC90DirVbSlYgDQ 720Nbz0hLu+E8RHSedpDkdr0/bm2d2LmDyESESnvUVJYKXr56QFS5MkQ4QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDMh+YvlzTWlcdYZkp+j2beMT4QeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFlODBjYWVhLTg4NDQtNDI5Yi05MzQ0LTVlOTlmNDk5MGU3OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOEgwDQYJKoZIhvcNAQELBQADggEBAIB8xJwAb8t7KCo1sfMc VlGurb0d4gAazixQfNChU6vrExia7Xf6U3wbpQQ4xIFFdqykk2HTUqrG9iAx57ak jQeHVgher/OSvNtK6zqSKOwORLOfmpF93eng1oAgce+GUtAGkGxQMLXUNQRCvgiI pIY9ksNTa6JsBj25NNFE1LL62mSkuS7Hvdp/yI25BrpKYSYawV5yj10aRll1q2ei wzMmQ9JBePIAjDh4qzup2bcnxPi3ls7tb6Tg8KKsLBdq8QLX0GKMByuQYIBR+EP4 bONzB/LkO/j4/bnZZhvkZq4lnBauE+O8KYUh63yAnO4UngkBW8kml88gPzJm7/Jg IHs= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:41 2025 by rpki-client on console.sobornost.net