$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5d757d26-e156-4b10-9ff8-2391de94a136.roa File: 5d757d26-e156-4b10-9ff8-2391de94a136.roa (raw, json) Hash identifier: eEhPx8rKzHCGT2QQObainAEE1D699RAjxLTgs+glMAw= Subject key identifier: C2:34:76:C0:48:04:C2:6B:43:7B:F0:9A:7C:93:65:E7:8D:8E:B4:11 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3E8BF12E325B84AA5D03AF326D4B44AFB93970C3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5d757d26-e156-4b10-9ff8-2391de94a136.roa Signing time: Mon 21 Apr 2025 16:51:25 +0000 ROA not before: Mon 21 Apr 2025 16:51:25 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da12::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:8b:f1:2e:32:5b:84:aa:5d:03:af:32:6d:4b:44:af:b9:39:70:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 21 16:51:25 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=04242a3b40a98ffaffbec0fbe117c2015d3854ba790c3dbfcd77446f2253e7ec, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1a:27:bf:85:db:eb:cd:50:b2:f6:08:74:03: c6:1a:74:e5:9a:62:92:28:1e:90:97:32:6d:00:6a: 27:8b:39:31:21:a6:e1:44:b3:02:f5:44:76:18:6f: 2c:12:7c:8e:fe:cd:d2:87:45:78:e3:a7:43:82:d1: 48:c8:61:c6:4c:29:6c:fe:29:11:b6:4d:53:d0:52: f5:61:41:e1:9e:72:25:45:74:0b:d0:71:ad:f7:9f: f8:50:ab:eb:aa:18:ec:e5:3f:33:46:3c:05:4a:32: c6:0e:c6:8b:59:4b:ff:96:95:b8:56:5e:5d:c9:78: d0:be:67:5b:45:f4:89:f8:21:4f:32:0b:ec:87:a8: bc:43:67:50:53:62:35:5c:8c:77:4b:e0:d1:62:98: 44:c0:1a:61:57:c5:4f:7b:c9:00:95:86:12:aa:37: ff:a6:cf:aa:aa:5f:5e:9c:6a:b7:a4:5f:d4:6e:39: ca:1b:2f:4b:48:1b:7d:77:f2:9b:96:a8:e4:6e:74: b2:aa:15:2f:40:66:34:84:39:e2:31:35:4d:a0:76: c6:c8:60:24:db:db:be:7f:e5:13:07:3d:af:0c:a7: b6:67:9e:bb:f3:6e:cd:6d:f7:17:18:79:4b:7e:21: 0e:7e:a2:b8:f4:f6:09:ff:d7:67:63:74:99:db:f1: 8a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:34:76:C0:48:04:C2:6B:43:7B:F0:9A:7C:93:65:E7:8D:8E:B4:11 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5d757d26-e156-4b10-9ff8-2391de94a136.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da12::/36 Signature Algorithm: sha256WithRSAEncryption 3b:68:d1:a8:38:3b:46:97:7c:f5:bf:77:9b:d2:ef:74:bf:ae: cd:2f:df:98:7d:54:af:2e:e4:68:7f:46:dc:7f:8f:81:3c:5f: db:5a:d2:8a:d1:4f:2d:8f:4d:3c:17:a8:80:02:59:7a:52:c6: 79:c4:81:87:1b:05:04:d3:38:a3:a7:c0:a7:c2:f7:0c:31:78: 65:ba:6f:95:d1:70:a6:5a:2c:0e:50:4a:df:ec:f3:37:7b:2b: 8f:04:0b:38:9e:82:51:63:53:ba:f2:6a:df:4b:c8:ee:73:5b: 79:1b:2b:32:74:fc:53:49:d4:b5:0c:84:19:f5:01:07:0e:22: 21:95:74:c7:79:cd:5d:f7:34:29:43:0c:8a:e3:2a:f5:3c:c5: 38:2c:49:2b:49:5f:56:a2:eb:35:8b:55:67:77:ab:8e:4b:82: ed:aa:54:c6:b0:2f:57:d9:c6:f3:c5:6e:9d:bc:57:7b:40:bc: 13:bf:b5:2c:5e:35:44:f8:6f:27:7c:47:03:ed:b9:cd:3c:cf: 71:e9:e7:f4:eb:9f:75:a4:02:0e:3e:e2:55:e5:69:40:58:64: fe:45:7e:c0:ec:f0:7e:cd:70:ba:9d:3f:69:95:a8:d2:81:fa: 9b:4d:b5:b0:72:57:e3:03:a5:2d:83:0b:e7:d9:37:5e:3c:4e: c2:37:9b:13 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPovxLjJbhKpdA68ybUtEr7k5cMMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQyMTE2NTEyNVoX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAMDQyNDJhM2I0MGE5OGZmYWZmYmVj MGZiZTExN2MyMDE1ZDM4NTRiYTc5MGMzZGJmY2Q3NzQ0NmYyMjUzZTdlYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBonv4Xb681QsvYIdAPGGnTlmmKS KB6QlzJtAGonizkxIabhRLMC9UR2GG8sEnyO/s3Sh0V446dDgtFIyGHGTCls/ikR tk1T0FL1YUHhnnIlRXQL0HGt95/4UKvrqhjs5T8zRjwFSjLGDsaLWUv/lpW4Vl5d yXjQvmdbRfSJ+CFPMgvsh6i8Q2dQU2I1XIx3S+DRYphEwBphV8VPe8kAlYYSqjf/ ps+qql9enGq3pF/UbjnKGy9LSBt9d/KblqjkbnSyqhUvQGY0hDniMTVNoHbGyGAk 29u+f+UTBz2vDKe2Z567827NbfcXGHlLfiEOfqK49PYJ/9dnY3SZ2/GK0QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMI0dsBIBMJrQ3vwmnyTZeeNjrQRMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVkNzU3ZDI2LWUxNTYtNGIxMC05ZmY4LTIzOTFkZTk0YTEzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaEgAwDQYJKoZIhvcNAQELBQADggEBADto0ag4O0aXfPW/d5vS 73S/rs0v35h9VK8u5Gh/Rtx/j4E8X9ta0orRTy2PTTwXqIACWXpSxnnEgYcbBQTT OKOnwKfC9wwxeGW6b5XRcKZaLA5QSt/s8zd7K48ECzieglFjU7ryat9LyO5zW3kb KzJ0/FNJ1LUMhBn1AQcOIiGVdMd5zV33NClDDIrjKvU8xTgsSStJX1ai6zWLVWd3 q45Lgu2qVMawL1fZxvPFbp28V3tAvBO/tSxeNUT4byd8RwPtuc08z3Hp5/Trn3Wk Ag4+4lXlaUBYZP5FfsDs8H7NcLqdP2mVqNKB+ptNtbByV+MDpS2DC+fZN148TsI3 mxM= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:45 2025 by rpki-client on console.sobornost.net