$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2f2d32b4-5213-4ecc-9172-ea72fd47e165.roa File: 2f2d32b4-5213-4ecc-9172-ea72fd47e165.roa (raw, json) Hash identifier: RI9B6y6qcluJAG6UQIx9+W0DUZQF/T/vkO6ilSwkQdU= Subject key identifier: DD:A0:0E:E5:B3:5E:EB:E7:79:3A:BB:64:29:D4:2C:10:E7:B8:84:32 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6E8C90C9EA52196C9C889F667F905E93CCC8A8DE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2f2d32b4-5213-4ecc-9172-ea72fd47e165.roa Signing time: Fri 18 Apr 2025 00:00:13 +0000 ROA not before: Fri 18 Apr 2025 00:00:13 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:8c:90:c9:ea:52:19:6c:9c:88:9f:66:7f:90:5e:93:cc:c8:a8:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 18 00:00:13 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=72d493fb5833f3080a67687dbbd2ceba34794b65e246a40b63efdf198db433de, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:77:d5:de:d0:17:19:36:0e:aa:f6:f1:95:b5: 96:c0:6b:31:93:6e:a2:85:6b:21:c9:fa:31:8e:7c: 90:28:07:fd:53:a2:3a:15:94:22:b1:66:39:30:2f: 0d:00:d6:0b:1e:15:c1:5f:1b:c8:8e:23:3c:df:46: b6:5a:45:42:40:8b:c1:be:f0:91:dc:7b:23:8e:5f: d0:32:a7:bc:23:60:54:7d:cf:36:49:e5:24:b0:f2: 1c:1b:65:21:27:ea:d7:c5:39:58:e1:5f:84:63:40: 1f:7f:68:32:36:10:fb:b3:a4:ef:3f:f5:36:7c:2b: b7:0a:24:68:48:83:e8:f0:93:49:32:a7:44:09:28: 7b:98:d4:fa:cb:be:87:88:10:6a:de:96:86:63:19: ce:c1:db:27:36:37:cf:75:cc:ca:66:44:99:ff:39: 26:6f:c2:a8:32:12:cd:4e:d7:19:e4:3f:c6:16:56: ba:49:e9:b0:b6:89:68:c8:2e:3a:d3:74:b7:cd:d8: 1a:5d:d3:3c:db:0e:6b:6e:02:1d:2f:18:01:f2:cc: 02:95:12:7a:07:00:5f:8b:bc:ac:29:c1:73:3a:2d: 23:63:d8:30:d4:8f:02:ed:9b:5d:53:13:a2:d6:88: ea:59:5c:71:39:ce:73:98:11:99:71:ff:61:1e:46: 5e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A0:0E:E5:B3:5E:EB:E7:79:3A:BB:64:29:D4:2C:10:E7:B8:84:32 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2f2d32b4-5213-4ecc-9172-ea72fd47e165.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:e080::/48 Signature Algorithm: sha256WithRSAEncryption 3d:08:84:c5:ca:73:55:f5:d0:2d:77:40:c4:75:f4:6d:90:cb: 6d:ac:fa:02:d8:91:e0:be:fc:3a:f8:5f:d6:6f:4e:4f:89:32: 33:5e:71:8b:df:ac:59:7b:82:0e:b5:96:37:a8:06:36:1c:8d: 3e:a9:74:9b:9d:d5:54:05:f8:23:b8:62:3a:20:f2:34:20:64: cf:64:1e:b3:fa:93:6e:03:9a:53:55:79:6a:bb:34:02:2f:dd: 60:2c:4f:b1:09:c2:88:fd:d0:06:4b:1d:9e:38:9f:8f:55:6f: 49:3e:a3:6a:d0:87:ca:c0:ba:cb:9a:b1:c4:da:8f:ba:5e:f7: 0b:18:18:dc:f7:1c:bd:bd:a3:f8:ba:e3:59:d9:7f:42:59:85: 84:81:40:7a:e1:42:4c:19:f1:8b:be:c3:ab:5f:bb:13:b0:3d: 95:04:cf:75:d7:bf:0b:20:c8:ce:56:77:62:18:d5:f2:24:1a: 9e:fa:10:51:43:77:af:dc:0a:27:53:e2:4b:6e:ae:cb:bf:8e: 97:14:36:b0:eb:28:68:67:44:98:e2:05:9b:e5:9a:e7:db:d3: a3:6b:6a:94:a9:04:74:db:85:23:d3:dc:46:2c:4f:a4:2f:21: 0c:8d:71:0f:ff:b6:8d:12:55:68:c0:ca:90:2f:57:de:b2:0f: d6:0d:85:dc -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUboyQyepSGWyciJ9mf5Bek8zIqN4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxODAwMDAxM1oX DTI1MDUyMzIzNTk1OVowejFJMEcGA1UEBRNANzJkNDkzZmI1ODMzZjMwODBhNjc2 ODdkYmJkMmNlYmEzNDc5NGI2NWUyNDZhNDBiNjNlZmRmMTk4ZGI0MzNkZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3HfV3tAXGTYOqvbxlbWWwGsxk26i hWshyfoxjnyQKAf9U6I6FZQisWY5MC8NANYLHhXBXxvIjiM830a2WkVCQIvBvvCR 3Hsjjl/QMqe8I2BUfc82SeUksPIcG2UhJ+rXxTlY4V+EY0Aff2gyNhD7s6TvP/U2 fCu3CiRoSIPo8JNJMqdECSh7mNT6y76HiBBq3paGYxnOwdsnNjfPdczKZkSZ/zkm b8KoMhLNTtcZ5D/GFla6SemwtoloyC4603S3zdgaXdM82w5rbgIdLxgB8swClRJ6 BwBfi7ysKcFzOi0jY9gw1I8C7ZtdUxOi1ojqWVxxOc5zmBGZcf9hHkZedQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFN2gDuWzXuvneTq7ZCnULBDnuIQyMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJmMmQzMmI0LTUyMTMtNGVjYy05MTcyLWVhNzJmZDQ3ZTE2NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/+CAMA0GCSqGSIb3DQEBCwUAA4IBAQA9CITFynNV9dAtd0DE dfRtkMttrPoC2JHgvvw6+F/Wb05PiTIzXnGL36xZe4IOtZY3qAY2HI0+qXSbndVU BfgjuGI6IPI0IGTPZB6z+pNuA5pTVXlquzQCL91gLE+xCcKI/dAGSx2eOJ+PVW9J PqNq0IfKwLrLmrHE2o+6XvcLGBjc9xy9vaP4uuNZ2X9CWYWEgUB64UJMGfGLvsOr X7sTsD2VBM91178LIMjOVndiGNXyJBqe+hBRQ3ev3AonU+JLbq7Lv46XFDaw6yho Z0SY4gWb5Zrn29Oja2qUqQR024Uj09xGLE+kLyEMjXEP/7aNElVowMqQL1fesg/W DYXc -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:42 2025 by rpki-client on console.sobornost.net