$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/858ae285-51c9-48c9-be09-17df643aafc4.roa File: 858ae285-51c9-48c9-be09-17df643aafc4.roa (raw, json) Hash identifier: 06h+tVdH4lzo8OU5bBYdCJ5TbIT0ghBFYDAJRczbbw0= Subject key identifier: 4E:CF:6C:6E:9E:ED:58:98:38:F5:C7:72:0A:D1:AF:11:0D:1E:95:2F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1EE114590237313FCD0CF7A2DD49B69C14A699AD Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/858ae285-51c9-48c9-be09-17df643aafc4.roa Signing time: Sat 19 Apr 2025 00:41:31 +0000 ROA not before: Sat 19 Apr 2025 00:41:31 +0000 ROA not after: Sat 24 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e1:14:59:02:37:31:3f:cd:0c:f7:a2:dd:49:b6:9c:14:a6:99:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 19 00:41:31 2025 GMT Not After : May 24 23:59:59 2025 GMT Subject: serialNumber=ee87ae4816677a81c47ae6307693bfb87c7552e4c1bdac59e49f62cdade0b5de, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7c:bb:d7:62:a9:6f:a2:3b:c6:49:94:e0:0f: 7b:93:7c:a3:c0:3b:3d:64:65:68:00:a6:f2:4e:ce: c3:99:56:6a:f8:ff:a2:37:97:b0:ef:68:5d:91:f2: b0:5e:d0:25:54:9b:9f:00:44:23:37:8c:74:12:0a: 4e:50:53:6c:2f:5e:89:cc:b4:53:2e:4b:64:79:8c: 8a:c5:7a:cd:a4:57:01:9e:2e:f3:c3:38:8c:72:60: 69:8b:83:94:c9:9c:2c:c6:bb:e4:28:a3:f2:aa:b0: 00:96:c4:c8:8b:78:3c:59:79:12:3b:66:3d:f1:6e: b2:ae:69:bc:0c:c9:f6:07:6d:0e:a7:ec:77:ea:44: 1f:26:af:6c:00:62:91:fc:85:3c:b8:22:86:00:35: a4:61:97:04:c3:42:3d:ae:06:69:b1:3f:46:7a:f8: fc:99:5c:00:2f:fa:9e:c7:b3:6f:de:69:c8:d3:e0: 57:d3:f8:87:36:06:bd:51:46:b3:bf:4d:67:bc:fb: 69:94:12:ec:58:a8:04:0f:86:c5:47:62:6d:27:33: 53:5b:a0:68:e5:1f:71:fe:be:2d:e2:a4:80:fc:25: 85:4b:6c:82:b8:8c:3d:1b:9f:fb:13:ad:a1:7f:f9: e5:b4:88:60:3b:5d:65:de:4a:84:2a:e7:0a:8c:36: d8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:CF:6C:6E:9E:ED:58:98:38:F5:C7:72:0A:D1:AF:11:0D:1E:95:2F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/858ae285-51c9-48c9-be09-17df643aafc4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:6000::/40 Signature Algorithm: sha256WithRSAEncryption 6d:d2:7b:30:3e:b7:22:0d:6f:03:1c:d0:f4:6f:f3:e9:52:2d: d9:06:b3:8a:79:9c:69:e2:ac:eb:1b:50:70:fa:29:06:90:53: ac:ab:3a:c9:b7:cd:10:82:20:c1:3a:0d:a5:c6:9e:24:d4:65: 17:f9:08:4f:03:91:d9:22:a4:ed:cf:00:d8:9a:48:03:7c:21: f5:01:43:89:a1:fa:59:3c:5e:32:2d:15:6c:18:75:f2:13:59: 1d:92:86:8e:ac:23:56:b9:19:ad:c4:ba:dd:72:4a:6e:a7:36: a6:5f:64:f0:ae:da:01:5b:93:72:44:6f:ac:8f:bd:33:52:bb: 60:5c:b7:bb:f3:61:61:a7:ed:dc:cc:76:81:61:f9:2d:cd:86: 4c:a8:f4:6a:3e:d0:9f:05:b0:3a:cb:e3:90:b5:12:90:cd:f9: 96:f8:15:82:c6:23:0d:26:b4:51:e8:9c:ff:db:8f:1a:28:c1: 80:8f:43:3a:2a:5b:df:89:96:c1:5b:4d:3d:9d:ac:f0:0f:6a: 0d:45:b0:57:cc:69:eb:46:d7:78:e3:94:28:43:b8:24:00:b2: 9e:8a:5b:6e:51:d3:ea:d5:e0:22:0b:e5:21:66:9c:d6:58:fe: 76:94:8e:f7:ea:e0:41:81:f4:5d:ac:66:d8:30:ed:fe:2f:28: 92:cd:d1:00 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUHuEUWQI3MT/NDPei3Um2nBSmma0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxOTAwNDEzMVoX DTI1MDUyNDIzNTk1OVowejFJMEcGA1UEBRNAZWU4N2FlNDgxNjY3N2E4MWM0N2Fl NjMwNzY5M2JmYjg3Yzc1NTJlNGMxYmRhYzU5ZTQ5ZjYyY2RhZGUwYjVkZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Xy712Kpb6I7xkmU4A97k3yjwDs9 ZGVoAKbyTs7DmVZq+P+iN5ew72hdkfKwXtAlVJufAEQjN4x0EgpOUFNsL16JzLRT LktkeYyKxXrNpFcBni7zwziMcmBpi4OUyZwsxrvkKKPyqrAAlsTIi3g8WXkSO2Y9 8W6yrmm8DMn2B20Op+x36kQfJq9sAGKR/IU8uCKGADWkYZcEw0I9rgZpsT9Gevj8 mVwAL/qex7Nv3mnI0+BX0/iHNga9UUazv01nvPtplBLsWKgED4bFR2JtJzNTW6Bo 5R9x/r4t4qSA/CWFS2yCuIw9G5/7E62hf/nltIhgO11l3kqEKucKjDbYBwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFE7PbG6e7ViYOPXHcgrRrxENHpUvMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzg1OGFlMjg1LTUxYzktNDhjOS1iZTA5LTE3ZGY2NDNhYWZjNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaAGAwDQYJKoZIhvcNAQELBQADggEBAG3SezA+tyINbwMc0PRv 8+lSLdkGs4p5nGnirOsbUHD6KQaQU6yrOsm3zRCCIME6DaXGniTUZRf5CE8Dkdki pO3PANiaSAN8IfUBQ4mh+lk8XjItFWwYdfITWR2Sho6sI1a5Ga3Eut1ySm6nNqZf ZPCu2gFbk3JEb6yPvTNSu2Bct7vzYWGn7dzMdoFh+S3Nhkyo9Go+0J8FsDrL45C1 EpDN+Zb4FYLGIw0mtFHonP/bjxoowYCPQzoqW9+JlsFbTT2drPAPag1FsFfMaetG 13jjlChDuCQAsp6KW25R0+rV4CIL5SFmnNZY/naUjvfq4EGB9F2sZtgw7f4vKJLN 0QA= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:47 2025 by rpki-client on console.sobornost.net