$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7521d624-9f73-434b-b487-b3db6d556c03.roa File: 7521d624-9f73-434b-b487-b3db6d556c03.roa (raw, json) Hash identifier: FUTOEjwetk6g0N0zDJjLCS/qddFJwjXaeKoFitCsqUw= Subject key identifier: 19:98:BC:FD:5F:2C:DC:E8:6C:F2:F6:69:DA:AA:6F:D0:C0:05:A1:CB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1C2105FEEBA46743B80D20D5C576DAAA7D285232 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7521d624-9f73-434b-b487-b3db6d556c03.roa Signing time: Tue 15 Apr 2025 00:01:16 +0000 ROA not before: Tue 15 Apr 2025 00:01:16 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:da60:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:21:05:fe:eb:a4:67:43:b8:0d:20:d5:c5:76:da:aa:7d:28:52:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 15 00:01:16 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=bfc97ab7047797972309198e6238b08ba7727941cb4da55990dcd42406f9eca1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fd:dc:8e:c2:1f:fc:56:35:e4:ed:f8:6d:20: 31:eb:fb:fa:e4:db:9d:bc:fc:c9:bc:8a:51:da:40: 39:4c:f0:2b:85:7d:d6:b0:11:1a:55:3b:58:cb:07: a9:10:82:81:70:9b:5c:89:69:5c:90:2e:60:ec:f1: f1:de:65:db:60:a6:61:a2:11:45:48:08:b9:8c:e8: d3:39:ca:13:05:a6:6a:a0:5e:da:cd:2d:9b:98:91: d4:25:f9:92:57:b9:58:c0:bb:c5:f7:41:42:1e:0e: 9b:d9:e6:84:6e:2d:63:ca:46:80:b1:76:54:03:cb: f4:2b:99:1f:f0:4c:cc:45:e2:79:dd:2f:e1:38:ed: 08:65:27:75:2b:71:e7:39:0a:64:43:b3:d5:4a:00: 7c:69:6f:55:56:de:f2:00:c4:b4:33:2a:05:26:e9: 2c:c2:ca:16:af:e7:4f:4e:e6:66:ac:ee:f0:4f:9c: 1e:e6:b6:17:e1:30:b1:b5:13:82:1d:e8:cc:dd:f1: ec:c6:c0:ab:59:ba:b8:75:e0:3e:b5:be:85:07:e8: db:d3:c7:19:67:95:60:ab:53:de:2a:89:f0:4f:ec: e9:c6:63:06:d3:a2:3c:06:ac:4c:88:69:0d:e0:16: 0c:02:da:20:04:2b:b8:81:2b:0d:f6:6a:f0:fe:c9: 2e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:98:BC:FD:5F:2C:DC:E8:6C:F2:F6:69:DA:AA:6F:D0:C0:05:A1:CB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7521d624-9f73-434b-b487-b3db6d556c03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da60:8000::/40 Signature Algorithm: sha256WithRSAEncryption 86:a0:85:95:ec:4c:b0:cc:e4:b7:d0:0e:cc:e3:7d:73:77:e6: 41:c6:0f:b5:11:c1:73:a0:94:33:b3:2c:10:95:d0:0a:5f:ee: 92:60:71:80:39:d6:db:19:e5:2d:1c:a5:b6:30:71:dd:8b:37: 3a:e9:0b:b4:27:b9:b9:07:dc:e1:7f:98:80:98:e9:b5:6e:33: 63:73:ed:2e:a7:75:9a:36:97:13:35:9b:af:66:fc:fc:d6:62: ed:34:f4:f4:50:46:8e:19:19:ea:29:c7:b7:14:09:b8:0c:6c: 72:8d:55:3f:e9:29:3b:d6:ed:23:51:2c:75:50:9a:f2:73:11: 1d:13:72:97:6d:fa:8a:96:0f:7c:8a:68:e8:9e:dc:7d:e1:1f: be:d4:9e:e6:c6:be:8a:34:fc:31:63:b0:98:4a:be:21:74:18: a3:3b:a6:51:2f:f0:3a:63:18:c3:4b:be:dd:89:5b:71:8d:b1: 6c:c3:be:e8:f3:6f:bd:0d:fd:68:25:45:91:7a:81:f8:3f:ba: 7f:36:75:72:d8:28:4c:c5:88:1c:d9:ea:bf:03:1c:b7:46:d6: f1:98:78:d3:e5:bd:b4:5c:ce:34:cb:7c:16:cb:f2:bc:56:a1: 66:69:08:d3:bb:3b:19:1f:d0:21:fe:15:02:55:05:85:2d:c6: b8:30:1f:6e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUHCEF/uukZ0O4DSDVxXbaqn0oUjIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxNTAwMDExNloX DTI1MDUyMDIzNTk1OVowejFJMEcGA1UEBRNAYmZjOTdhYjcwNDc3OTc5NzIzMDkx OThlNjIzOGIwOGJhNzcyNzk0MWNiNGRhNTU5OTBkY2Q0MjQwNmY5ZWNhMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1P3cjsIf/FY15O34bSAx6/v65Nud vPzJvIpR2kA5TPArhX3WsBEaVTtYywepEIKBcJtciWlckC5g7PHx3mXbYKZhohFF SAi5jOjTOcoTBaZqoF7azS2bmJHUJfmSV7lYwLvF90FCHg6b2eaEbi1jykaAsXZU A8v0K5kf8EzMReJ53S/hOO0IZSd1K3HnOQpkQ7PVSgB8aW9VVt7yAMS0MyoFJuks wsoWr+dPTuZmrO7wT5we5rYX4TCxtROCHejM3fHsxsCrWbq4deA+tb6FB+jb08cZ Z5Vgq1PeKonwT+zpxmMG06I8BqxMiGkN4BYMAtogBCu4gSsN9mrw/sku/wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBmYvP1fLNzobPL2adqqb9DABaHLMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc1MjFkNjI0LTlmNzMtNDM0Yi1iNDg3LWIzZGI2ZDU1NmMwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYIAwDQYJKoZIhvcNAQELBQADggEBAIaghZXsTLDM5LfQDszj fXN35kHGD7URwXOglDOzLBCV0Apf7pJgcYA51tsZ5S0cpbYwcd2LNzrpC7QnubkH 3OF/mICY6bVuM2Nz7S6ndZo2lxM1m69m/PzWYu009PRQRo4ZGeopx7cUCbgMbHKN VT/pKTvW7SNRLHVQmvJzER0Tcpdt+oqWD3yKaOie3H3hH77UnubGvoo0/DFjsJhK viF0GKM7plEv8DpjGMNLvt2JW3GNsWzDvujzb70N/WglRZF6gfg/un82dXLYKEzF iBzZ6r8DHLdG1vGYeNPlvbRczjTLfBbL8rxWoWZpCNO7Oxkf0CH+FQJVBYUtxrgw H24= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:46 2025 by rpki-client on console.sobornost.net