$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8dc2b12a-dab5-4513-a1bb-13799882ce38.roa File: 8dc2b12a-dab5-4513-a1bb-13799882ce38.roa (raw, json) Hash identifier: 5Ic1cWlRcs4xCGR53yH6IbRGyWuCfwZlVxBJXfJ6AO4= Subject key identifier: 0B:3C:BE:F2:C7:D4:C4:A9:91:18:47:DF:A8:F8:ED:BD:A3:5E:AA:F3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 39F0A0D307FCE481E9A51DD0BA3A7C1395AAB732 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8dc2b12a-dab5-4513-a1bb-13799882ce38.roa Signing time: Mon 21 Apr 2025 15:11:14 +0000 ROA not before: Mon 21 Apr 2025 15:11:14 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf7:8040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:f0:a0:d3:07:fc:e4:81:e9:a5:1d:d0:ba:3a:7c:13:95:aa:b7:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 21 15:11:14 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=131051de98a59353fa248efafbcd3f846361af143cd2799ab06462b1923cad86, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:39:d1:d4:d9:2a:73:21:f3:69:38:6b:99:74: ad:58:60:2b:fc:7f:2e:97:b9:27:9b:d0:17:93:14: 83:ba:c6:a5:a4:d2:e9:6a:53:22:4b:2b:b0:60:fc: 20:98:01:ac:51:d6:dc:0b:4b:a9:ed:48:4c:a3:09: 0f:4b:a0:2b:a1:c7:7a:ff:1a:02:28:29:08:27:30: dd:47:e1:de:97:a8:fd:8e:f0:54:42:f6:88:40:e9: ad:99:f0:74:f5:9b:32:3b:89:fb:35:ac:ee:e4:e6: 48:e3:bc:fa:23:1e:08:a4:da:5d:a2:f9:e4:ca:14: 19:bc:b0:43:1b:98:d9:b0:15:4e:96:7b:41:d7:51: 74:59:d4:98:46:c5:43:fa:53:78:c2:b7:bf:c7:14: da:e5:ab:c1:1c:87:65:e7:ec:9e:6c:92:c1:1d:b4: 0f:78:0a:15:87:30:74:32:31:0f:4b:c7:e5:14:bc: ff:10:1a:13:52:ee:2e:4b:73:b1:2e:d3:05:52:f9: 2e:bf:8c:c3:46:b2:ce:75:f9:d4:fe:51:69:bc:dc: e2:38:6b:5e:70:fa:5e:e3:d7:ae:74:00:26:f7:f7: 7d:19:29:66:f6:87:7e:1a:71:07:aa:82:14:5a:7d: e5:f0:20:94:4b:1d:23:52:24:7f:3e:26:6d:ec:f7: b1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:3C:BE:F2:C7:D4:C4:A9:91:18:47:DF:A8:F8:ED:BD:A3:5E:AA:F3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8dc2b12a-dab5-4513-a1bb-13799882ce38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf7:8040::/46 Signature Algorithm: sha256WithRSAEncryption 56:90:11:c4:60:73:6b:ee:3f:ca:41:fb:8f:a0:64:fc:d5:b5: b6:c5:13:fa:26:b1:c4:34:ce:4c:68:3f:38:1d:92:c1:20:96: 00:36:f4:83:4a:af:81:f8:83:e2:e9:97:51:b7:90:f8:fa:60: 22:c3:bf:e5:55:2a:0d:f9:cc:37:dc:9c:41:4b:a6:d5:4b:f2: 01:57:7a:67:1e:e2:0f:e1:89:18:31:2c:bc:bc:8f:4c:f2:42: 6d:77:17:23:e0:78:09:c0:3b:06:2d:0e:4c:14:8d:93:d8:07: aa:da:1b:7e:ba:08:96:2d:5d:46:3d:d8:35:5e:e4:4e:c8:cc: f2:d8:50:d8:bc:cd:a4:8a:6d:d9:3b:85:e1:d5:4e:77:0e:d9: 15:4d:12:56:06:7c:51:c5:5b:e3:29:57:83:d2:b7:5f:83:1c: 49:ac:7b:11:8a:3d:c7:18:07:04:38:07:60:7a:b2:d1:d7:5f: 19:f7:b0:fa:2b:f0:7f:93:47:01:1f:25:99:a8:0b:5e:5a:eb: 09:2a:47:bb:12:d0:b3:24:e7:53:77:7c:86:80:e2:0f:9a:0c: 32:18:3b:21:6e:33:d3:28:26:58:28:8e:43:d7:cd:25:32:de: bc:18:6d:06:fc:1b:c7:0b:2b:55:90:9c:2e:24:e8:2f:d2:76: a6:f2:e2:27 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUOfCg0wf85IHppR3Qujp8E5WqtzIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQyMTE1MTExNFoX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAMTMxMDUxZGU5OGE1OTM1M2ZhMjQ4 ZWZhZmJjZDNmODQ2MzYxYWYxNDNjZDI3OTlhYjA2NDYyYjE5MjNjYWQ4NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojnR1NkqcyHzaThrmXStWGAr/H8u l7knm9AXkxSDusalpNLpalMiSyuwYPwgmAGsUdbcC0up7UhMowkPS6Arocd6/xoC KCkIJzDdR+Hel6j9jvBUQvaIQOmtmfB09ZsyO4n7Nazu5OZI47z6Ix4IpNpdovnk yhQZvLBDG5jZsBVOlntB11F0WdSYRsVD+lN4wre/xxTa5avBHIdl5+yebJLBHbQP eAoVhzB0MjEPS8flFLz/EBoTUu4uS3OxLtMFUvkuv4zDRrLOdfnU/lFpvNziOGte cPpe49eudAAm9/d9GSlm9od+GnEHqoIUWn3l8CCUSx0jUiR/PiZt7PexiwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAs8vvLH1MSpkRhH36j47b2jXqrzMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhkYzJiMTJhLWRhYjUtNDUxMy1hMWJiLTEzNzk5ODgyY2UzOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba94BAMA0GCSqGSIb3DQEBCwUAA4IBAQBWkBHEYHNr7j/KQfuP oGT81bW2xRP6JrHENM5MaD84HZLBIJYANvSDSq+B+IPi6ZdRt5D4+mAiw7/lVSoN +cw33JxBS6bVS/IBV3pnHuIP4YkYMSy8vI9M8kJtdxcj4HgJwDsGLQ5MFI2T2Aeq 2ht+ugiWLV1GPdg1XuROyMzy2FDYvM2kim3ZO4Xh1U53DtkVTRJWBnxRxVvjKVeD 0rdfgxxJrHsRij3HGAcEOAdgerLR118Z97D6K/B/k0cBHyWZqAteWusJKke7EtCz JOdTd3yGgOIPmgwyGDshbjPTKCZYKI5D180lMt68GG0G/BvHCytVkJwuJOgv0nam 8uIn -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:47 2025 by rpki-client on console.sobornost.net