$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa File: 7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa (raw, json) Hash identifier: eyIkl9d9sjCx2NVgG0oU3oz9OgCk8tENe1+rOXgurHI= Subject key identifier: 29:5C:BF:48:AA:79:39:C2:D9:BE:47:D4:FF:44:F9:7D:FF:9F:D8:65 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5AD96F078C26E82B425F5E64ACA1589B2FAD1A7B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa Signing time: Mon 21 Apr 2025 16:50:51 +0000 ROA not before: Mon 21 Apr 2025 16:50:51 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da17:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:d9:6f:07:8c:26:e8:2b:42:5f:5e:64:ac:a1:58:9b:2f:ad:1a:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 21 16:50:51 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=d74cd3e0dbc30de00366e9ee65d41629f1e1a82d56250e7788663d529cacb30c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:be:02:f4:8c:58:5c:3c:2a:f2:1c:2c:29:91: 17:dd:61:4e:fe:c3:ad:f5:7a:58:9f:fd:dd:65:30: c0:36:46:f9:0f:6f:5a:16:8b:0b:2b:09:2a:d1:93: 63:4a:ef:53:09:ab:cd:02:73:0f:86:ec:ca:ef:45: b1:76:96:ff:51:9f:6e:33:c3:07:17:49:75:a0:bd: c5:a5:f0:eb:de:ba:c1:20:6c:ac:03:38:b2:c3:5b: 63:30:84:c3:22:f1:fa:46:11:69:03:1c:12:3f:63: 3d:7b:48:31:23:66:a1:35:c3:e2:ae:1d:ca:48:9f: 56:75:87:dc:0a:35:c6:48:9b:15:e4:2a:33:c5:2c: 28:af:fa:5d:45:c4:5c:a1:f8:93:37:12:47:07:ae: 4e:6a:ff:73:fe:67:c3:b2:3a:b1:20:65:be:a0:8a: 88:2a:a6:c4:a7:d2:9a:93:1a:c8:82:c3:22:a9:46: dd:79:3c:99:80:23:3a:8e:48:c5:39:50:d2:71:a0: 57:47:67:79:e8:d0:a9:bd:49:39:85:4a:24:cf:df: 09:80:cb:70:a9:7c:85:29:7f:94:f7:73:78:ec:71: 21:05:1f:a4:ac:c7:0a:a7:c1:7e:9b:3d:1e:a4:27: 4f:84:38:23:f0:14:9a:b0:17:31:84:6b:2c:de:10: 4c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:5C:BF:48:AA:79:39:C2:D9:BE:47:D4:FF:44:F9:7D:FF:9F:D8:65 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7aea9a9f-13ed-40f9-9c2d-72c00a3b17c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da17:400::/38 Signature Algorithm: sha256WithRSAEncryption 84:55:49:13:24:7a:4a:87:96:65:83:4d:42:31:af:a7:60:b0: 34:72:0c:8d:0a:51:4b:76:ed:66:9a:4e:5e:60:ba:46:b8:92: eb:1b:96:30:cc:1b:fd:d5:b3:89:f2:a6:2c:ce:d2:a3:dc:81: 15:4e:c8:33:ed:9c:04:57:47:63:0c:16:d4:21:44:43:a2:18: 68:3f:b7:14:b4:37:25:23:7e:47:cf:91:8c:bd:20:c2:ef:c2: 24:19:92:36:49:01:35:a9:53:55:4a:96:59:80:34:97:8a:ec: 57:fc:45:85:54:85:7c:ec:44:24:14:a2:7f:bd:07:9d:d7:99: 1f:bc:dc:74:be:4b:32:05:b7:37:c1:07:c9:7e:49:3f:32:5f: a3:3c:f8:a2:b3:1c:b8:af:4b:d4:d6:ed:e2:8c:9e:3c:9d:96: c3:9a:d1:eb:53:fc:ba:62:f5:ea:36:04:3d:19:e7:4b:bd:e1: b7:93:6d:14:66:b8:c8:25:03:9b:7e:de:62:d9:96:f1:6b:d0: 1a:e9:af:65:60:e3:54:e3:db:72:93:7f:23:3e:95:73:1b:83: 6d:58:0a:db:ee:34:64:76:d3:4b:de:b9:65:92:a2:ec:53:7b: 29:b8:85:52:ed:30:36:ab:e3:b5:83:89:85:1f:35:a9:de:eb: 1f:b1:b2:b4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWtlvB4wm6CtCX15krKFYmy+tGnswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQyMTE2NTA1MVoX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAZDc0Y2QzZTBkYmMzMGRlMDAzNjZl OWVlNjVkNDE2MjlmMWUxYTgyZDU2MjUwZTc3ODg2NjNkNTI5Y2FjYjMwYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxr4C9IxYXDwq8hwsKZEX3WFO/sOt 9XpYn/3dZTDANkb5D29aFosLKwkq0ZNjSu9TCavNAnMPhuzK70Wxdpb/UZ9uM8MH F0l1oL3FpfDr3rrBIGysAziyw1tjMITDIvH6RhFpAxwSP2M9e0gxI2ahNcPirh3K SJ9WdYfcCjXGSJsV5CozxSwor/pdRcRcofiTNxJHB65Oav9z/mfDsjqxIGW+oIqI KqbEp9KakxrIgsMiqUbdeTyZgCM6jkjFOVDScaBXR2d56NCpvUk5hUokz98JgMtw qXyFKX+U93N47HEhBR+krMcKp8F+mz0epCdPhDgj8BSasBcxhGss3hBMjwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFClcv0iqeTnC2b5H1P9E+X3/n9hlMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdhZWE5YTlmLTEzZWQtNDBmOS05YzJkLTcyYzAwYTNiMTdjOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaFwQwDQYJKoZIhvcNAQELBQADggEBAIRVSRMkekqHlmWDTUIx r6dgsDRyDI0KUUt27WaaTl5guka4kusbljDMG/3Vs4nypizO0qPcgRVOyDPtnARX R2MMFtQhREOiGGg/txS0NyUjfkfPkYy9IMLvwiQZkjZJATWpU1VKllmANJeK7Ff8 RYVUhXzsRCQUon+9B53XmR+83HS+SzIFtzfBB8l+ST8yX6M8+KKzHLivS9TW7eKM njydlsOa0etT/Lpi9eo2BD0Z50u94beTbRRmuMglA5t+3mLZlvFr0Brpr2Vg41Tj 23KTfyM+lXMbg21YCtvuNGR200veuWWSouxTeym4hVLtMDar47WDiYUfNane6x+x srQ= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:46 2025 by rpki-client on console.sobornost.net