$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa File: 78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa (raw, json) Hash identifier: mEd6qChY5YBPeTh/QWywSPexApYV7jGWjezu5MX11KI= Subject key identifier: BD:73:0A:69:B9:C3:DC:25:E3:3D:C1:BC:B3:57:D1:D5:F6:83:BB:57 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3837B661AF498B5844CDE2612BEA780583D82201 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa Signing time: Sat 12 Apr 2025 00:01:12 +0000 ROA not before: Sat 12 Apr 2025 00:01:12 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:37:b6:61:af:49:8b:58:44:cd:e2:61:2b:ea:78:05:83:d8:22:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 12 00:01:12 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=ee7b3a80968d5a313945581f6fb189274da703a87219e0fa38fd1ae1827f73df, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ee:f6:ca:5e:84:db:d0:8d:64:26:b6:06:54: 57:fd:98:01:34:02:86:38:21:46:b3:35:a1:86:68: 6e:25:65:38:64:34:6a:f5:62:df:9c:33:12:2b:55: 64:81:db:3c:11:8f:c9:c3:89:1e:f9:f6:c1:34:2b: f6:10:70:dc:72:d1:72:d3:31:34:74:bf:ce:c5:f9: af:76:aa:bb:7c:87:91:2c:44:a4:37:c8:a0:cc:1d: 2c:ce:9d:b8:8a:ad:14:e4:68:e4:30:6a:bf:a8:1f: ca:57:15:e0:15:15:3d:57:07:db:ee:dc:67:70:41: 40:50:ef:db:0a:c7:39:04:a3:f2:7f:f7:2e:cd:11: 9a:0b:6b:0e:52:77:0f:e7:f5:7d:86:ce:be:a3:e8: 47:51:c9:6d:70:11:e1:e6:f8:0b:09:f9:00:96:0c: 7e:ba:be:98:d7:d4:e7:bb:c4:4a:fc:96:7e:1c:ac: c9:bb:83:30:f6:d0:27:92:d0:2c:14:29:bf:d4:fc: 6f:ab:7c:f9:c4:2b:fd:db:2f:10:ae:0f:0e:99:46: 4f:dc:a7:d7:28:c1:3d:c1:42:0f:17:f0:7c:aa:3a: 36:92:bf:de:fe:66:72:31:d8:04:2a:c2:12:23:b0: 9a:3b:13:c0:ab:0f:24:8b:c9:46:4e:cd:d3:5a:7c: e5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:73:0A:69:B9:C3:DC:25:E3:3D:C1:BC:B3:57:D1:D5:F6:83:BB:57 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:9000::/40 Signature Algorithm: sha256WithRSAEncryption 67:d8:c1:e7:ae:96:a7:db:01:c0:dd:57:8e:b8:d0:f1:14:05: 84:be:aa:d5:58:be:f9:0d:c6:5d:97:2f:85:d8:86:d9:73:43: 29:9d:dd:e0:30:e3:f2:c5:92:e9:1a:ea:7f:18:f2:75:b0:ea: 71:6e:14:71:17:2a:9a:96:75:2e:3e:18:52:fc:55:45:d2:fd: 0c:6a:17:3d:4b:23:00:d6:3e:fc:19:dc:22:27:b7:f0:73:c2: 20:27:90:15:48:55:cd:b9:47:97:26:37:14:2d:3e:51:89:f4: fe:a3:99:c0:2b:cb:39:2a:10:38:4f:f4:f4:b9:fe:cf:9f:d3: 79:80:80:9f:18:44:42:b5:97:f6:99:19:bd:7c:d4:e5:d8:d2: 87:dd:30:01:46:1b:26:d7:67:80:96:e2:57:8c:a1:3e:2d:f4: 2c:f9:ec:ad:b9:04:18:a1:2d:3f:33:e1:9b:3e:60:a5:eb:5c: 4e:52:46:20:54:26:83:15:6e:58:9f:6e:e7:16:89:23:41:b4: e3:5b:1d:4a:76:d5:e7:26:98:3d:a0:00:dd:48:70:cc:0d:ad: 4f:9a:e6:bd:02:89:5a:fd:88:35:6e:fb:19:70:c6:c9:c8:b1: f9:51:2f:81:14:ab:72:f8:b0:59:eb:70:db:9e:4b:09:1d:19: 3c:46:0a:2f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUODe2Ya9Ji1hEzeJhK+p4BYPYIgEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxMjAwMDExMloX DTI1MDUxNzIzNTk1OVowejFJMEcGA1UEBRNAZWU3YjNhODA5NjhkNWEzMTM5NDU1 ODFmNmZiMTg5Mjc0ZGE3MDNhODcyMTllMGZhMzhmZDFhZTE4MjdmNzNkZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAye72yl6E29CNZCa2BlRX/ZgBNAKG OCFGszWhhmhuJWU4ZDRq9WLfnDMSK1Vkgds8EY/Jw4ke+fbBNCv2EHDcctFy0zE0 dL/Oxfmvdqq7fIeRLESkN8igzB0szp24iq0U5GjkMGq/qB/KVxXgFRU9Vwfb7txn cEFAUO/bCsc5BKPyf/cuzRGaC2sOUncP5/V9hs6+o+hHUcltcBHh5vgLCfkAlgx+ ur6Y19Tnu8RK/JZ+HKzJu4Mw9tAnktAsFCm/1Pxvq3z5xCv92y8Qrg8OmUZP3KfX KME9wUIPF/B8qjo2kr/e/mZyMdgEKsISI7CaOxPAqw8ki8lGTs3TWnzlrwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFL1zCmm5w9wl4z3BvLNX0dX2g7tXMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc4MzQzNzU0LTVkNmUtNGRlZC05YjRjLWQ5ZDcwYjZjY2FjOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9ZAwDQYJKoZIhvcNAQELBQADggEBAGfYweeulqfbAcDdV464 0PEUBYS+qtVYvvkNxl2XL4XYhtlzQymd3eAw4/LFkuka6n8Y8nWw6nFuFHEXKpqW dS4+GFL8VUXS/QxqFz1LIwDWPvwZ3CInt/BzwiAnkBVIVc25R5cmNxQtPlGJ9P6j mcAryzkqEDhP9PS5/s+f03mAgJ8YREK1l/aZGb181OXY0ofdMAFGGybXZ4CW4leM oT4t9Cz57K25BBihLT8z4Zs+YKXrXE5SRiBUJoMVblifbucWiSNBtONbHUp21ecm mD2gAN1IcMwNrU+a5r0CiVr9iDVu+xlwxsnIsflRL4EUq3L4sFnrcNueSwkdGTxG Ci8= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:46 2025 by rpki-client on console.sobornost.net