$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/379ac177-341a-40e4-b3e8-d66876068de1.roa File: 379ac177-341a-40e4-b3e8-d66876068de1.roa (raw, json) Hash identifier: XtpiotQQEJWWhZOITViK8ZtdCs3xjXoBkNIWn1OyDww= Subject key identifier: B4:CE:56:67:DC:89:A8:1A:51:BB:C0:7A:43:BA:6E:20:C7:A0:83:4F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 517BDEB93ACD1C2FE27849A417FBB2DD52E01232 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/379ac177-341a-40e4-b3e8-d66876068de1.roa Signing time: Mon 21 Apr 2025 15:20:13 +0000 ROA not before: Mon 21 Apr 2025 15:20:13 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:c880::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:7b:de:b9:3a:cd:1c:2f:e2:78:49:a4:17:fb:b2:dd:52:e0:12:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 21 15:20:13 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=ada5d07413fe644ed453eca0f4889707a9aa3ce4ccbbb83f806be60b8516458c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c5:64:6d:04:9e:81:bf:78:83:b3:c2:9e:7a: fa:af:e0:13:ce:78:6f:84:a2:e8:01:45:bf:fa:b2: 2a:55:a2:7d:ea:9b:6f:17:84:3b:61:4c:9f:94:9d: 1c:b1:15:54:40:17:6a:d1:f1:2a:74:e6:57:2d:eb: c6:d1:df:29:97:e4:b0:3c:cd:b8:a4:80:d3:16:85: 7f:d1:67:c8:ba:46:f4:00:ec:d7:09:9e:2c:44:20: 36:02:3f:90:37:97:d1:8c:c8:1a:8d:40:6a:49:5f: 44:9e:cf:5c:47:fa:ed:c3:d0:04:b7:f4:c8:78:77: 53:dc:41:c4:f9:b5:5f:ef:67:ad:28:7f:63:1c:6e: 4a:24:b7:45:71:92:c4:a4:73:57:43:fd:80:06:d1: 2f:c6:ac:6b:57:fd:63:79:71:c4:4a:15:82:ec:ce: e6:55:00:65:73:4d:30:f7:07:b0:c9:f6:ce:0d:a4: a6:9f:a3:a1:4e:79:03:87:92:a1:d5:a7:42:b3:16: 35:e1:c3:c9:4f:65:15:07:4b:b8:87:42:15:db:39: 42:4b:16:2e:6c:6e:27:3b:d2:02:09:39:82:c9:e2: 8c:c2:23:b0:b6:5b:23:35:bf:a0:36:ac:8d:69:46: 2d:e4:50:d3:a9:05:2a:9e:63:60:b5:54:7b:af:db: 44:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:CE:56:67:DC:89:A8:1A:51:BB:C0:7A:43:BA:6E:20:C7:A0:83:4F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/379ac177-341a-40e4-b3e8-d66876068de1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:c880::/46 Signature Algorithm: sha256WithRSAEncryption 61:03:55:15:d8:8a:e4:e3:19:c2:fc:d0:8b:e8:16:54:5b:2c: 0f:ce:b7:f5:82:0b:46:92:3e:bb:ea:aa:fb:0e:df:84:81:eb: e8:46:d5:ca:40:5a:58:03:c0:d9:e3:c0:2c:cb:06:fd:54:d4: a6:79:63:c4:40:b1:d4:72:d0:f3:ec:33:e4:2d:b8:b1:7a:4a: 14:4f:37:06:7b:1c:80:4b:66:62:16:22:11:3c:73:c5:62:d0: c5:0d:74:71:d0:1b:d9:3d:27:a5:b7:41:b7:de:9d:08:72:41: 87:f9:bb:0b:10:6a:60:ce:c4:b7:bd:cf:9a:cb:b3:df:f5:89: f0:74:13:b5:28:4e:d6:b2:d9:6c:89:a2:2b:7c:ba:d4:b9:2a: a3:9e:d7:50:76:31:60:77:c1:c0:7a:71:64:e8:bf:b1:90:84: ea:1d:97:0f:b9:e9:4c:9c:a0:19:56:4e:82:e7:f4:ee:13:58: f3:17:ee:d8:5b:a2:9d:3a:d9:3a:59:21:27:e2:e3:18:d1:74: c0:b0:4a:81:e4:d7:27:19:c3:c4:24:00:02:69:04:a2:79:0b: 26:ad:2d:4d:9e:98:62:2d:93:f1:4a:7a:19:63:43:69:ba:c9: 57:55:6e:cd:4e:8b:19:13:2b:62:7e:34:b6:17:59:c0:ea:47: 05:1f:51:1e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUUXveuTrNHC/ieEmkF/uy3VLgEjIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQyMTE1MjAxM1oX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAYWRhNWQwNzQxM2ZlNjQ0ZWQ0NTNl Y2EwZjQ4ODk3MDdhOWFhM2NlNGNjYmJiODNmODA2YmU2MGI4NTE2NDU4YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsVkbQSegb94g7PCnnr6r+ATznhv hKLoAUW/+rIqVaJ96ptvF4Q7YUyflJ0csRVUQBdq0fEqdOZXLevG0d8pl+SwPM24 pIDTFoV/0WfIukb0AOzXCZ4sRCA2Aj+QN5fRjMgajUBqSV9Ens9cR/rtw9AEt/TI eHdT3EHE+bVf72etKH9jHG5KJLdFcZLEpHNXQ/2ABtEvxqxrV/1jeXHEShWC7M7m VQBlc00w9wewyfbODaSmn6OhTnkDh5Kh1adCsxY14cPJT2UVB0u4h0IV2zlCSxYu bG4nO9ICCTmCyeKMwiOwtlsjNb+gNqyNaUYt5FDTqQUqnmNgtVR7r9tELQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLTOVmfciagaUbvAekO6biDHoINPMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM3OWFjMTc3LTM0MWEtNDBlNC1iM2U4LWQ2Njg3NjA2OGRlMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba+8iAMA0GCSqGSIb3DQEBCwUAA4IBAQBhA1UV2Irk4xnC/NCL 6BZUWywPzrf1ggtGkj676qr7Dt+EgevoRtXKQFpYA8DZ48Asywb9VNSmeWPEQLHU ctDz7DPkLbixekoUTzcGexyAS2ZiFiIRPHPFYtDFDXRx0BvZPSelt0G33p0IckGH +bsLEGpgzsS3vc+ay7Pf9YnwdBO1KE7WstlsiaIrfLrUuSqjntdQdjFgd8HAenFk 6L+xkITqHZcPuelMnKAZVk6C5/TuE1jzF+7YW6KdOtk6WSEn4uMY0XTAsEqB5Ncn GcPEJAACaQSieQsmrS1NnphiLZPxSnoZY0NpuslXVW7NTosZEytifjS2F1nA6kcF H1Ee -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:43 2025 by rpki-client on console.sobornost.net