$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1f0c58f3-95ea-40f6-ad92-e52e7261f262.roa File: 1f0c58f3-95ea-40f6-ad92-e52e7261f262.roa (raw, json) Hash identifier: 4h599s0gKjOvOzkcaLxY5fqx5xzqvA2q+b4ztKDBfoQ= Subject key identifier: A8:DD:AB:A1:45:58:30:77:78:4D:49:97:09:F5:F6:4C:EF:9D:A3:64 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 23E93EAA35A9660D404C718BC24CDD4A458BC4 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1f0c58f3-95ea-40f6-ad92-e52e7261f262.roa Signing time: Sat 19 Apr 2025 00:10:45 +0000 ROA not before: Sat 19 Apr 2025 00:10:45 +0000 ROA not after: Sat 24 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:7040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e9:3e:aa:35:a9:66:0d:40:4c:71:8b:c2:4c:dd:4a:45:8b:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 19 00:10:45 2025 GMT Not After : May 24 23:59:59 2025 GMT Subject: serialNumber=89e4b81c7f42a15f68df54fe17d48a300669022ffa1f3f4b143fca95d12b6627, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:a1:da:44:41:16:ef:ce:9b:99:62:53:70:b2: 1c:51:0b:38:cb:23:2d:16:b8:9d:a4:c9:94:d5:39: 26:a6:6f:d0:7a:6d:ac:c4:82:34:13:6f:48:a6:88: a6:cb:cc:49:36:b5:95:2f:fc:27:c2:33:6f:62:9a: 89:02:85:3d:2f:1b:a1:ba:93:40:76:2c:ac:db:3a: 3f:90:a6:ef:fe:67:3e:64:3a:ec:4a:10:4a:ad:6b: 97:a5:5c:ee:5b:3f:96:1d:c2:85:4f:b5:0c:74:b4: 44:5e:a6:38:42:db:5c:a3:c0:e2:de:87:cc:42:71: 83:61:6b:b0:5a:31:a5:c3:56:d8:dd:cc:c8:b0:df: 2a:09:9b:cc:d0:0e:74:d9:c7:ab:3f:e2:6e:9c:0a: 19:b5:3b:6d:51:80:26:15:f3:b2:c9:f1:8a:96:2a: db:69:58:eb:8a:33:5c:2a:8c:ba:2c:7b:52:ad:58: c6:b7:a4:bb:fd:e8:b3:25:a3:6a:3e:b9:89:bc:85: 90:25:bf:9a:bc:cd:ad:49:ae:ad:e2:31:5f:7b:e5: be:11:41:ba:3d:33:02:56:f3:29:97:10:0a:91:39: e2:db:c0:5a:c8:28:04:05:90:48:24:e3:2a:c6:f2: 7d:51:6c:10:b3:bd:27:d3:11:21:53:8b:62:2e:26: 5e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:DD:AB:A1:45:58:30:77:78:4D:49:97:09:F5:F6:4C:EF:9D:A3:64 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1f0c58f3-95ea-40f6-ad92-e52e7261f262.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:7040::/48 Signature Algorithm: sha256WithRSAEncryption 62:da:30:a2:e0:a7:c2:2b:f9:6e:f0:b2:e5:87:81:79:80:af: 4a:e7:f4:65:42:f6:c4:1a:52:06:95:52:6c:a1:eb:53:f4:d9: 60:7e:75:ac:0b:1a:58:6d:10:cc:28:48:65:41:42:f1:ad:58: 81:91:47:6c:33:d9:e6:d7:df:c8:0d:07:ff:8c:81:45:e2:b4: db:b0:92:69:e6:41:f1:79:fa:41:50:44:7c:c2:56:fa:33:85: ce:d2:d5:9b:55:d2:91:ba:07:16:8a:0c:bd:c5:38:37:92:68: 97:99:4c:2c:6f:15:41:cb:3a:27:ca:0b:7f:86:c5:9e:b5:32: 3c:65:6f:75:a0:05:dd:8e:52:b0:78:55:25:24:4b:30:37:5c: 5a:e0:e9:71:03:f6:18:c0:ac:a7:c4:a8:f0:4a:be:dd:7c:08: cf:5a:10:2d:5c:1c:e0:ac:3a:b8:3c:42:f5:86:2e:82:f1:47: 81:f7:a1:92:b7:05:a5:0a:f5:95:58:53:0c:ac:64:1f:b4:c3: de:1c:09:d6:19:8c:68:7e:61:ba:24:d9:aa:1f:b6:83:cb:1d: 9c:11:6c:54:d8:df:0b:72:5b:44:91:73:d3:6c:ad:91:c3:40: 52:e0:c5:30:bd:b8:ae:50:17:2b:77:8b:7d:e7:58:21:7b:d4: d9:e4:42:d7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgITI+k+qjWpZg1ATHGLwkzdSkWLxDANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTFGNjM1RjAwMDAxMTAvBgNVBAUTKDQwNzY4MjU1MjRE MkM2NkQyRTEwNDM2RkU2NUU5M0U4QzFCRDRBMzcwHhcNMjUwNDE5MDAxMDQ1WhcN MjUwNTI0MjM1OTU5WjB6MUkwRwYDVQQFE0A4OWU0YjgxYzdmNDJhMTVmNjhkZjU0 ZmUxN2Q0OGEzMDA2NjkwMjJmZmExZjNmNGIxNDNmY2E5NWQxMmI2NjI3MS0wKwYD VQQDEyRjMGJmMGZlOC03MTdjLTRmNzItOWI0NS1jOWM1MTkxMzJhODEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNodpEQRbvzpuZYlNwshxRCzjLIy0W uJ2kyZTVOSamb9B6bazEgjQTb0imiKbLzEk2tZUv/CfCM29imokChT0vG6G6k0B2 LKzbOj+Qpu/+Zz5kOuxKEEqta5elXO5bP5YdwoVPtQx0tERepjhC21yjwOLeh8xC cYNha7BaMaXDVtjdzMiw3yoJm8zQDnTZx6s/4m6cChm1O21RgCYV87LJ8YqWKttp WOuKM1wqjLose1KtWMa3pLv96LMlo2o+uYm8hZAlv5q8za1Jrq3iMV975b4RQbo9 MwJW8ymXEAqROeLbwFrIKAQFkEgk4yrG8n1RbBCzvSfTESFTi2IuJl6TAgMBAAGj ggJLMIICRzAdBgNVHQ4EFgQUqN2roUVYMHd4TUmXCfX2TO+do2QwHwYDVR0jBBgw FoAUQHaCVSTSxm0uEENv5l6T6MG9SjcwDgYDVR0PAQH/BAQDAgeAMH4GCCsGAQUF BwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBv c2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL1FIYUNWU1RT eG0wdUVFTnY1bDZUNk1HOVNqYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEv MWYwYzU4ZjMtOTVlYS00MGY2LWFkOTItZTUyZTcyNjFmMjYyLnJvYTCBlQYDVR0f BIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFt YXpvbmF3cy5jb20vdm9sdW1lLzA4YzJmMjY0LTIzZjktNDlmYi05ZDQzLWY4YjUw YmVjOTI2MS83YmExNzg2My1hNjEzLTQxOTctOWVkNS1iZWRhNmE4OTg2OWYuY3Js MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAkBtr/cEAwDQYJKoZIhvcNAQELBQADggEBAGLaMKLgp8Ir+W7wsuWH gXmAr0rn9GVC9sQaUgaVUmyh61P02WB+dawLGlhtEMwoSGVBQvGtWIGRR2wz2ebX 38gNB/+MgUXitNuwkmnmQfF5+kFQRHzCVvozhc7S1ZtV0pG6BxaKDL3FODeSaJeZ TCxvFUHLOifKC3+GxZ61Mjxlb3WgBd2OUrB4VSUkSzA3XFrg6XED9hjArKfEqPBK vt18CM9aEC1cHOCsOrg8QvWGLoLxR4H3oZK3BaUK9ZVYUwysZB+0w94cCdYZjGh+ Ybok2aoftoPLHZwRbFTY3wtyW0SRc9NsrZHDQFLgxTC9uK5QFyt3i33nWCF71Nnk Qtc= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:41 2025 by rpki-client on console.sobornost.net