$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4b95e3b4-3049-4ea0-a39c-7522cc0bea0d.roa File: 4b95e3b4-3049-4ea0-a39c-7522cc0bea0d.roa (raw, json) Hash identifier: bQ3AiPpqW3SSvzXxghVakOirC9QV8n7aoyF27A3OIlk= Subject key identifier: 9B:45:63:88:B9:C5:7A:E0:7D:76:2F:87:6E:B6:93:DE:B1:8F:54:B7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1A3F41974F5E67A207CA15D7044F25D6EB623F3D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4b95e3b4-3049-4ea0-a39c-7522cc0bea0d.roa Signing time: Fri 18 Apr 2025 00:20:50 +0000 ROA not before: Fri 18 Apr 2025 00:20:50 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:80a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:3f:41:97:4f:5e:67:a2:07:ca:15:d7:04:4f:25:d6:eb:62:3f:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 18 00:20:50 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=f62fa096df959123847709eee5174581c51174a4ddfd66c2a15f2ce2a6a127c1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b5:72:c6:41:08:fe:c3:e5:b2:43:69:72:de: 9b:53:01:27:a3:0e:08:ff:ec:62:40:1c:ec:0a:c6: 30:41:e8:be:aa:3c:ad:85:93:ba:7d:c0:c3:42:95: 3f:43:ff:e8:a4:4e:56:f3:7f:24:06:ce:76:54:b1: a8:07:0f:f9:65:e1:a6:07:93:e0:3e:6e:17:8f:6d: 7f:7d:b8:32:3f:09:aa:00:da:ee:e3:04:74:15:50: 8f:45:13:cf:8f:64:92:b8:25:2c:db:89:df:d2:48: fd:cd:ff:e6:34:38:b1:2e:c1:cb:f7:2d:fe:a1:81: e2:83:72:c9:3e:a8:49:40:59:35:11:8a:c4:7a:8c: d8:c7:3c:f6:2f:7c:89:3c:d3:ce:69:df:c4:8b:f5: 7e:28:09:f5:47:fa:c7:3d:e4:f7:ff:3e:c8:9b:c7: 4f:74:35:8c:81:cb:c2:13:a5:d6:84:8a:2b:66:f4: d8:b5:9d:0e:f0:91:b0:43:97:45:07:ca:e8:32:d4: 87:cb:5b:74:33:44:48:61:85:6e:12:50:13:e6:e5: 58:81:dd:d9:34:04:7b:0c:67:c6:4b:c3:6d:3e:e7: 67:98:9a:7d:7a:10:5d:46:3c:a8:44:d8:18:0a:81: 05:3e:ec:1c:28:42:44:5c:96:f5:99:62:3a:4f:ea: e3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:45:63:88:B9:C5:7A:E0:7D:76:2F:87:6E:B6:93:DE:B1:8F:54:B7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4b95e3b4-3049-4ea0-a39c-7522cc0bea0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:80a0::/48 Signature Algorithm: sha256WithRSAEncryption 97:90:f0:25:84:70:9c:60:06:59:70:e1:0f:8f:bf:b1:d1:a6: 3f:df:c1:98:a6:d9:77:fc:75:47:ea:e9:e8:95:2e:e8:b9:27: 8c:9b:7b:c2:ad:b8:c9:c1:13:72:3c:db:8a:2e:d8:d1:ea:6b: d2:9a:2a:da:47:6a:48:d8:8e:4e:6b:65:70:5e:35:6d:c8:0f: a9:98:5b:75:4b:bc:17:43:eb:ea:70:5f:ee:8b:3c:c9:43:10: 06:fe:e3:84:d5:90:26:a4:07:79:3e:79:34:9a:0c:9f:31:bb: 3b:45:9a:38:c2:ae:65:c6:22:b6:b6:c5:eb:5d:2f:8a:8a:d1: ea:6e:88:b5:e9:06:d9:7f:a5:53:a6:06:58:b9:30:42:ca:9b: cb:73:1b:6c:1b:70:62:99:03:66:22:e2:08:07:cf:15:61:bd: 60:26:84:b3:02:d7:1e:7d:4d:9b:c2:c2:14:7c:b3:50:c3:3c: 34:e8:39:3b:6f:88:c6:38:f2:74:e6:a9:34:63:2d:17:a1:52: 92:c4:cf:9a:18:3e:b8:31:2c:a1:77:59:8f:b1:c6:8b:3b:7e: a0:99:0d:98:a0:43:76:fb:ba:87:29:0c:48:c4:e8:ba:90:ef: 6d:57:1a:5f:25:d2:fd:05:85:b6:03:2b:f9:f3:6c:92:bf:19: 5c:82:48:4e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUGj9Bl09eZ6IHyhXXBE8l1utiPz0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxODAwMjA1MFoX DTI1MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAZjYyZmEwOTZkZjk1OTEyMzg0Nzcw OWVlZTUxNzQ1ODFjNTExNzRhNGRkZmQ2NmMyYTE1ZjJjZTJhNmExMjdjMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnbVyxkEI/sPlskNpct6bUwEnow4I /+xiQBzsCsYwQei+qjythZO6fcDDQpU/Q//opE5W838kBs52VLGoBw/5ZeGmB5Pg Pm4Xj21/fbgyPwmqANru4wR0FVCPRRPPj2SSuCUs24nf0kj9zf/mNDixLsHL9y3+ oYHig3LJPqhJQFk1EYrEeozYxzz2L3yJPNPOad/Ei/V+KAn1R/rHPeT3/z7Im8dP dDWMgcvCE6XWhIorZvTYtZ0O8JGwQ5dFB8roMtSHy1t0M0RIYYVuElAT5uVYgd3Z NAR7DGfGS8NtPudnmJp9ehBdRjyoRNgYCoEFPuwcKEJEXJb1mWI6T+rjGwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJtFY4i5xXrgfXYvh262k96xj1S3MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRiOTVlM2I0LTMwNDktNGVhMC1hMzljLTc1MjJjYzBiZWEwZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAICgMA0GCSqGSIb3DQEBCwUAA4IBAQCXkPAlhHCcYAZZcOEP j7+x0aY/38GYptl3/HVH6unolS7ouSeMm3vCrbjJwRNyPNuKLtjR6mvSmiraR2pI 2I5Oa2VwXjVtyA+pmFt1S7wXQ+vqcF/uizzJQxAG/uOE1ZAmpAd5Pnk0mgyfMbs7 RZo4wq5lxiK2tsXrXS+KitHqboi16QbZf6VTpgZYuTBCypvLcxtsG3BimQNmIuII B88VYb1gJoSzAtcefU2bwsIUfLNQwzw06Dk7b4jGOPJ05qk0Yy0XoVKSxM+aGD64 MSyhd1mPscaLO36gmQ2YoEN2+7qHKQxIxOi6kO9tVxpfJdL9BYW2Ayv582ySvxlc gkhO -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:44 2025 by rpki-client on console.sobornost.net