$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9e7391c5-2e41-4005-97dd-32e5f11569cb.roa File: 9e7391c5-2e41-4005-97dd-32e5f11569cb.roa (raw, json) Hash identifier: wQv3wCGClWQ7Q4KqV4R8aHLbHGjFc5IdpIIBGALvjtc= Subject key identifier: 53:12:7E:43:54:07:B8:5C:AB:4B:F8:03:7D:B1:CF:0B:6F:1A:C1:86 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 347C8334AF61143498C5D331244E0F1443890E1E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9e7391c5-2e41-4005-97dd-32e5f11569cb.roa Signing time: Mon 21 Apr 2025 15:21:47 +0000 ROA not before: Mon 21 Apr 2025 15:21:47 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:f0c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:7c:83:34:af:61:14:34:98:c5:d3:31:24:4e:0f:14:43:89:0e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 21 15:21:47 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=8872bb2bf243079c51d0686afc5fc5723490121ccf5b0a7ef7be5bed10c93e7f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:25:c7:32:70:fa:dd:8c:15:b6:b9:03:0f:70: 69:48:16:aa:b4:1c:c1:a7:ce:2e:d2:96:d7:20:69: 70:de:20:71:61:50:d1:a0:a3:27:bc:68:27:45:a2: 5d:fb:53:1d:09:77:6c:67:ea:48:93:d0:85:f3:02: f8:ae:87:f1:83:de:88:e5:f5:1a:41:38:e8:cf:a5: d0:a1:97:54:5b:b9:d2:22:b5:9a:67:c6:9c:95:f1: 84:39:10:d4:d7:62:bf:c2:35:9a:4a:17:ef:ee:43: 56:9a:6a:9d:8a:e8:cf:35:f7:bd:bb:d1:02:3f:c7: 2f:79:c0:a5:2a:c0:1e:f0:2b:c4:3b:0e:83:2d:7d: 04:be:e0:57:e1:1a:ee:93:51:f7:7d:07:ca:44:7e: 04:37:54:b3:e5:e6:77:71:0b:f7:f8:02:1c:a7:18: 51:ac:02:d8:61:0a:9a:9d:af:cd:cd:3c:19:35:da: e1:74:ac:a3:71:1d:63:9a:9e:98:3d:11:4d:ae:cf: e0:7a:aa:5c:0a:ff:b7:42:e1:3e:32:16:4a:74:a4: 17:7f:85:5a:2c:2e:43:de:7e:44:8c:60:4f:f7:86: c9:da:69:72:b7:8b:88:a5:85:a0:ee:9f:fa:4c:18: a7:0a:77:b1:5e:96:b6:d3:51:7c:07:d5:21:a4:55: af:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:12:7E:43:54:07:B8:5C:AB:4B:F8:03:7D:B1:CF:0B:6F:1A:C1:86 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9e7391c5-2e41-4005-97dd-32e5f11569cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:f0c0::/46 Signature Algorithm: sha256WithRSAEncryption 59:21:53:af:25:f4:73:22:a2:d9:b1:98:86:b9:f5:b3:a1:58: 80:de:4d:d7:fd:ed:44:76:6f:79:e4:8e:6c:ce:00:74:99:f4: 8c:bd:a2:e1:61:58:4f:5d:ab:1b:98:d5:34:a2:d9:48:b7:51: e3:1f:4c:47:86:e1:34:6a:66:f4:7b:2e:b4:60:93:c2:13:46: e4:10:a3:87:54:f6:93:de:af:b5:bd:b7:46:ed:97:70:48:89: ca:dd:d7:8b:fe:55:19:13:9f:79:f7:c7:5c:83:2e:e9:4d:69: 8c:c2:59:1a:f0:b7:85:fd:96:56:69:6e:bc:39:a6:85:67:e6: 2d:92:b8:e6:f2:6d:10:17:9b:86:1b:85:b1:2b:ea:01:c9:fb: a6:b0:c1:a8:72:b7:7a:1c:e6:2d:44:2c:1e:2f:13:13:af:15: d7:cc:0b:2c:e5:ca:51:e6:d8:b0:2b:5d:64:bd:1c:d8:01:17: 39:c7:ec:ff:86:ef:ad:0f:4f:37:ae:ff:10:ec:5c:e2:16:81: b4:3f:3b:13:e2:3d:b4:1e:bd:77:da:b4:87:7a:bb:2e:05:0d: 9c:17:04:83:50:b0:ae:e6:27:47:c8:c5:c1:1d:d0:cb:12:93: b6:a0:0d:e7:ec:43:18:ef:51:11:65:93:05:20:c8:6d:57:d9: c1:8f:5d:c2 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUNHyDNK9hFDSYxdMxJE4PFEOJDh4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQyMTE1MjE0N1oX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAODg3MmJiMmJmMjQzMDc5YzUxZDA2 ODZhZmM1ZmM1NzIzNDkwMTIxY2NmNWIwYTdlZjdiZTViZWQxMGM5M2U3ZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCXHMnD63YwVtrkDD3BpSBaqtBzB p84u0pbXIGlw3iBxYVDRoKMnvGgnRaJd+1MdCXdsZ+pIk9CF8wL4rofxg96I5fUa QTjoz6XQoZdUW7nSIrWaZ8aclfGEORDU12K/wjWaShfv7kNWmmqdiujPNfe9u9EC P8cvecClKsAe8CvEOw6DLX0EvuBX4Rruk1H3fQfKRH4EN1Sz5eZ3cQv3+AIcpxhR rALYYQqana/NzTwZNdrhdKyjcR1jmp6YPRFNrs/geqpcCv+3QuE+MhZKdKQXf4Va LC5D3n5EjGBP94bJ2mlyt4uIpYWg7p/6TBinCnexXpa201F8B9UhpFWvswIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFMSfkNUB7hcq0v4A32xzwtvGsGGMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzllNzM5MWM1LTJlNDEtNDAwNS05N2RkLTMyZTVmMTE1NjljYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba+/DAMA0GCSqGSIb3DQEBCwUAA4IBAQBZIVOvJfRzIqLZsZiG ufWzoViA3k3X/e1Edm955I5szgB0mfSMvaLhYVhPXasbmNU0otlIt1HjH0xHhuE0 amb0ey60YJPCE0bkEKOHVPaT3q+1vbdG7ZdwSInK3deL/lUZE59598dcgy7pTWmM wlka8LeF/ZZWaW68OaaFZ+Ytkrjm8m0QF5uGG4WxK+oByfumsMGocrd6HOYtRCwe LxMTrxXXzAss5cpR5tiwK11kvRzYARc5x+z/hu+tD083rv8Q7FziFoG0PzsT4j20 Hr132rSHersuBQ2cFwSDULCu5idHyMXBHdDLEpO2oA3n7EMY71ERZZMFIMhtV9nB j13C -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:48 2025 by rpki-client on console.sobornost.net