$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2bcbf4a7-a7e0-4f59-b932-d60f1940dff7.roa File: 2bcbf4a7-a7e0-4f59-b932-d60f1940dff7.roa (raw, json) Hash identifier: txbXmeNwt2XijsxZeGr1O8/IRdE8AZUbb5LDgW/Ibiw= Subject key identifier: C0:DE:BF:D4:8F:0A:70:53:D8:C5:1A:40:72:17:EE:80:C6:01:F9:CA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 312A7C058CEDCDE8A5D25AAAC2B52B822107A4E7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2bcbf4a7-a7e0-4f59-b932-d60f1940dff7.roa Signing time: Sat 19 Apr 2025 00:40:23 +0000 ROA not before: Sat 19 Apr 2025 00:40:23 +0000 ROA not after: Sat 24 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:40a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:2a:7c:05:8c:ed:cd:e8:a5:d2:5a:aa:c2:b5:2b:82:21:07:a4:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 19 00:40:23 2025 GMT Not After : May 24 23:59:59 2025 GMT Subject: serialNumber=ae35ee40724a48adfaac49b74cc61ac944cf838bfc55dadede56ce6cfa79d098, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:84:27:23:21:b6:33:7d:b5:bd:b5:24:6f:3d: 68:64:ad:ab:8e:c3:48:96:46:9a:d6:ac:f7:f7:d5: f1:e9:92:3b:1d:52:28:29:80:92:b6:d4:cc:90:ca: 07:94:6e:2a:5a:e5:6f:31:41:d9:42:67:21:08:b1: 75:3e:8d:d2:8b:4d:0c:fe:9c:d3:42:67:14:fe:8f: 66:fd:3f:70:7a:43:b8:89:6a:c3:5e:99:81:c3:6c: 16:d3:05:3d:85:af:ad:fd:e1:d7:8d:80:f6:bd:5c: 39:c1:57:17:a2:d5:67:40:bc:36:59:2b:9b:89:91: 26:61:e4:40:90:0f:7a:39:f7:01:34:61:5b:7b:f3: ec:81:c4:04:b5:19:e1:d5:2f:1f:54:dc:8e:e8:39: 50:41:94:46:b7:bc:93:ea:98:3d:f8:5a:7b:dd:f0: f1:69:24:a7:e1:16:4b:bc:da:10:f7:28:4d:21:c6: 7b:5a:1e:fc:8b:40:0e:95:36:89:f5:5f:84:76:6a: cd:c8:1a:2f:10:45:c8:58:4b:16:44:d7:30:88:18: c5:ae:a5:38:44:5b:75:c5:fa:79:af:2a:64:75:a5: af:8c:15:18:39:69:09:ea:be:8a:99:98:c9:a9:04: 97:ae:71:cd:c8:b1:46:a6:24:c5:d7:4c:a6:7b:89: 79:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:DE:BF:D4:8F:0A:70:53:D8:C5:1A:40:72:17:EE:80:C6:01:F9:CA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2bcbf4a7-a7e0-4f59-b932-d60f1940dff7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:40a0::/48 Signature Algorithm: sha256WithRSAEncryption 4f:a2:e7:06:68:da:e5:41:57:36:74:2b:c1:be:d6:df:c0:95: 14:ae:6b:0b:f0:49:6d:8f:7d:52:f3:80:7a:5b:53:4d:34:1a: 0f:c2:55:db:c5:49:90:98:85:92:f7:ad:8a:47:c3:d1:17:40: da:38:9a:7c:b0:dc:1b:df:86:df:b1:18:59:83:15:49:1a:d3: 6b:96:d7:b5:13:38:42:dd:ea:05:03:b7:20:24:15:9d:20:60: f1:cd:56:92:39:84:ec:68:45:20:58:9d:65:3d:10:d9:90:37: ee:2b:84:92:f2:27:73:60:5b:b5:c3:ce:35:98:30:16:91:a2: 41:ec:7b:97:fd:b3:2d:87:ce:06:0a:a4:73:df:40:c2:cf:f2: aa:f5:cd:53:12:df:20:75:98:fe:81:78:cb:ec:4e:dd:cb:12: dd:60:ba:c1:03:3d:66:ee:a6:d1:95:d1:a7:51:40:f4:94:1a: 92:d6:2a:4b:48:b2:f3:ae:ae:d6:aa:34:f5:ca:e4:c1:92:67: c0:3a:33:a4:ce:6d:f7:f0:07:73:96:35:d6:2b:65:b5:04:63: f5:b0:7e:c4:b5:00:10:f5:b9:de:c6:c2:b3:ec:03:a8:46:dc: 24:56:dc:0d:b9:72:ec:dd:b5:73:98:d7:8a:cc:e4:9d:59:39: 51:6c:67:50 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUMSp8BYztzeil0lqqwrUrgiEHpOcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxOTAwNDAyM1oX DTI1MDUyNDIzNTk1OVowejFJMEcGA1UEBRNAYWUzNWVlNDA3MjRhNDhhZGZhYWM0 OWI3NGNjNjFhYzk0NGNmODM4YmZjNTVkYWRlZGU1NmNlNmNmYTc5ZDA5ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIQnIyG2M321vbUkbz1oZK2rjsNI lkaa1qz399Xx6ZI7HVIoKYCSttTMkMoHlG4qWuVvMUHZQmchCLF1Po3Si00M/pzT QmcU/o9m/T9wekO4iWrDXpmBw2wW0wU9ha+t/eHXjYD2vVw5wVcXotVnQLw2WSub iZEmYeRAkA96OfcBNGFbe/PsgcQEtRnh1S8fVNyO6DlQQZRGt7yT6pg9+Fp73fDx aSSn4RZLvNoQ9yhNIcZ7Wh78i0AOlTaJ9V+EdmrNyBovEEXIWEsWRNcwiBjFrqU4 RFt1xfp5rypkdaWvjBUYOWkJ6r6KmZjJqQSXrnHNyLFGpiTF10yme4l5QQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMDev9SPCnBT2MUaQHIX7oDGAfnKMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJiY2JmNGE3LWE3ZTAtNGY1OS1iOTMyLWQ2MGYxOTQwZGZmNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAECgMA0GCSqGSIb3DQEBCwUAA4IBAQBPoucGaNrlQVc2dCvB vtbfwJUUrmsL8Eltj31S84B6W1NNNBoPwlXbxUmQmIWS962KR8PRF0DaOJp8sNwb 34bfsRhZgxVJGtNrlte1EzhC3eoFA7cgJBWdIGDxzVaSOYTsaEUgWJ1lPRDZkDfu K4SS8idzYFu1w841mDAWkaJB7HuX/bMth84GCqRz30DCz/Kq9c1TEt8gdZj+gXjL 7E7dyxLdYLrBAz1m7qbRldGnUUD0lBqS1ipLSLLzrq7WqjT1yuTBkmfAOjOkzm33 8AdzljXWK2W1BGP1sH7EtQAQ9bnexsKz7AOoRtwkVtwNuXLs3bVzmNeKzOSdWTlR bGdQ -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:42 2025 by rpki-client on console.sobornost.net