$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/84ce14d5-7bf8-4610-8dae-0f2ea4ce82be.roa File: 84ce14d5-7bf8-4610-8dae-0f2ea4ce82be.roa (raw, json) Hash identifier: EynD0t3yYLu9PfSOZrtULKCXx4s/leDd8va7dDSZ1/k= Subject key identifier: 79:EE:F0:21:A4:4F:66:E0:9D:5A:33:B8:0F:39:38:72:AB:E6:FC:06 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 280F76F9853DE5A078001CBAF3B641DFC7B3248E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/84ce14d5-7bf8-4610-8dae-0f2ea4ce82be.roa Signing time: Sat 19 Apr 2025 00:40:07 +0000 ROA not before: Sat 19 Apr 2025 00:40:07 +0000 ROA not after: Sat 24 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:0f:76:f9:85:3d:e5:a0:78:00:1c:ba:f3:b6:41:df:c7:b3:24:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 19 00:40:07 2025 GMT Not After : May 24 23:59:59 2025 GMT Subject: serialNumber=cd9475faaeba042fd0a4134c2b6723995e333d1f97d745fe7b0c83cc912242de, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0d:09:cf:d7:11:85:5e:4b:7b:3d:ef:39:72: c8:68:b5:93:18:f4:aa:82:87:89:6b:e9:cb:3e:98: 91:b3:71:0f:c9:c0:e7:99:3f:ec:4f:a2:0b:c1:de: af:e5:b3:9a:b1:de:44:e7:16:e2:43:e7:a6:d7:12: ac:73:8f:ba:0d:47:e9:fc:cc:48:82:54:bd:25:60: 11:9b:df:d3:dc:e7:39:41:f8:65:a0:9c:1c:79:7c: e7:ca:f7:70:bc:72:8a:70:ce:95:ce:82:25:2b:0d: 14:9e:9b:88:11:72:be:b8:81:89:71:16:23:9a:b5: d0:b6:78:de:6a:59:75:cd:da:57:e6:30:98:19:1e: a7:4a:14:19:26:bb:17:1d:2d:1a:bc:cc:0e:5d:24: ca:39:bd:6a:6a:f4:a6:f3:98:f0:8b:52:e1:03:6b: af:2f:65:02:f8:13:5e:ba:f4:f8:0a:53:33:77:ed: 10:76:37:2c:23:44:15:ef:94:30:05:7d:7f:b3:48: ec:b9:0a:c6:1d:ee:f6:69:d8:ec:3e:9f:32:fa:8f: d8:b0:fa:c6:99:15:6f:86:88:41:35:26:ee:3e:b8: 91:88:82:b8:48:86:18:03:6c:29:67:30:21:01:aa: 2f:be:cb:78:93:00:cb:fe:29:8d:94:ef:fd:bf:bb: 76:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:EE:F0:21:A4:4F:66:E0:9D:5A:33:B8:0F:39:38:72:AB:E6:FC:06 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/84ce14d5-7bf8-4610-8dae-0f2ea4ce82be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 95:47:a5:6a:10:a3:25:8c:31:e3:35:e6:45:83:79:36:45:d2: 2a:77:02:82:f5:ec:5a:dd:b0:af:f1:3d:e2:b4:a7:5c:08:b8: 5d:8d:8c:a5:b4:0c:c2:12:3e:8b:12:7f:61:d2:43:2f:de:b9: ac:f7:1c:56:b9:ae:b8:72:91:92:8e:6d:8c:78:a2:40:17:89: 3e:06:81:6b:41:52:b1:d9:30:54:2c:cf:31:83:df:63:7c:23: 6a:65:58:c8:48:3e:52:b6:3a:7a:a5:ea:f4:03:41:5c:54:73: 6f:31:6b:c7:93:16:93:fc:db:a1:20:71:57:f8:10:a6:95:6b: d2:9f:93:89:84:17:83:b5:37:f8:9d:ae:38:b4:9a:bf:de:6a: 89:16:b0:f8:32:b2:1d:06:95:7b:c2:86:65:99:53:49:b0:6a: 51:6a:d4:0c:3b:4e:fa:a2:9b:04:7e:01:38:7c:c3:f4:cb:71: 5d:82:68:3b:a9:93:07:62:5f:a4:c2:47:e0:d2:c5:6c:3e:97: f0:39:0a:8e:15:26:f3:cf:a2:af:75:a8:70:bf:c3:46:76:5d: 51:7b:95:9e:f6:a8:e0:c3:f0:5e:93:0e:cc:cd:31:5c:c1:ff: 85:10:79:85:92:3c:c4:fc:3b:80:82:44:9b:3b:b5:85:e9:55: e6:6e:15:65 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUKA92+YU95aB4ABy687ZB38ezJI4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxOTAwNDAwN1oX DTI1MDUyNDIzNTk1OVowejFJMEcGA1UEBRNAY2Q5NDc1ZmFhZWJhMDQyZmQwYTQx MzRjMmI2NzIzOTk1ZTMzM2QxZjk3ZDc0NWZlN2IwYzgzY2M5MTIyNDJkZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsw0Jz9cRhV5Lez3vOXLIaLWTGPSq goeJa+nLPpiRs3EPycDnmT/sT6ILwd6v5bOasd5E5xbiQ+em1xKsc4+6DUfp/MxI glS9JWARm9/T3Oc5QfhloJwceXznyvdwvHKKcM6VzoIlKw0UnpuIEXK+uIGJcRYj mrXQtnjeall1zdpX5jCYGR6nShQZJrsXHS0avMwOXSTKOb1qavSm85jwi1LhA2uv L2UC+BNeuvT4ClMzd+0QdjcsI0QV75QwBX1/s0jsuQrGHe72adjsPp8y+o/YsPrG mRVvhohBNSbuPriRiIK4SIYYA2wpZzAhAaovvst4kwDL/imNlO/9v7t2yQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHnu8CGkT2bgnVozuA85OHKr5vwGMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzg0Y2UxNGQ1LTdiZjgtNDYxMC04ZGFlLTBmMmVhNGNlODJiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8oDAMA0GCSqGSIb3DQEBCwUAA4IBAQCVR6VqEKMljDHjNeZF g3k2RdIqdwKC9exa3bCv8T3itKdcCLhdjYyltAzCEj6LEn9h0kMv3rms9xxWua64 cpGSjm2MeKJAF4k+BoFrQVKx2TBULM8xg99jfCNqZVjISD5Stjp6per0A0FcVHNv MWvHkxaT/NuhIHFX+BCmlWvSn5OJhBeDtTf4na44tJq/3mqJFrD4MrIdBpV7woZl mVNJsGpRatQMO076opsEfgE4fMP0y3Fdgmg7qZMHYl+kwkfg0sVsPpfwOQqOFSbz z6Kvdahwv8NGdl1Re5We9qjgw/Bekw7MzTFcwf+FEHmFkjzE/DuAgkSbO7WF6VXm bhVl -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:47 2025 by rpki-client on console.sobornost.net