$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9f7f81d5-9939-43d6-b333-dd2d090500da.roa File: 9f7f81d5-9939-43d6-b333-dd2d090500da.roa (raw, json) Hash identifier: 0aVXSNlT1UQmJVPzk7lReaILotqeqxnV77kWzUP0Rm4= Subject key identifier: 17:51:A6:10:F7:17:83:E3:34:04:DA:62:0E:2E:D4:5E:C3:4B:C6:05 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4D41C1BAEC9063EB662BDFB0D74179FF0A663BD4 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9f7f81d5-9939-43d6-b333-dd2d090500da.roa Signing time: Mon 21 Apr 2025 16:10:13 +0000 ROA not before: Mon 21 Apr 2025 16:10:13 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da70:8800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:41:c1:ba:ec:90:63:eb:66:2b:df:b0:d7:41:79:ff:0a:66:3b:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 21 16:10:13 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=cf4d338f11986146f3751c9bb28c25bb7b8b09349864b12d1d1fa81b31d80020, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:86:99:6b:7d:88:58:73:9c:cd:dc:b4:67:b6: 9b:f5:55:74:7f:38:87:9b:9f:c8:99:cc:63:68:cf: 10:de:e4:a8:c9:88:85:0d:fe:1c:59:1f:e1:17:92: 5a:da:d6:d3:e5:e2:6c:4b:24:10:94:7c:1e:52:44: 71:37:7a:a9:d7:9b:61:3b:21:04:6e:c9:cf:7c:a1: 62:ac:e7:95:ef:4e:72:49:93:1c:92:6a:36:6d:19: de:91:30:ef:2f:18:2c:6b:7e:7c:9d:15:13:82:f2: 7d:ac:4d:11:8c:44:f3:b8:4e:01:db:5b:8b:51:b9: 5c:86:16:b9:ec:17:2d:b5:6b:33:bd:75:a4:fd:54: ca:35:48:dc:ad:b7:75:60:5e:47:bb:6a:35:0b:c3: eb:85:8f:cb:c5:86:bf:d6:32:4e:1d:15:ad:a8:cb: 8f:41:d8:23:81:37:a2:8b:cf:12:bb:71:f3:19:64: a2:b5:fb:46:87:10:6a:50:f0:f4:47:2f:c3:22:c6: 11:04:9e:3f:3d:6f:9d:0d:ad:6c:79:c6:91:de:8a: a3:18:13:bb:ec:03:95:a7:a3:d9:e3:19:bb:4c:66: 89:ee:46:d8:94:a6:de:9d:38:89:c3:ec:8b:60:0a: c7:c7:7a:84:ce:41:62:36:23:3b:c7:a0:42:b2:50: 70:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:51:A6:10:F7:17:83:E3:34:04:DA:62:0E:2E:D4:5E:C3:4B:C6:05 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9f7f81d5-9939-43d6-b333-dd2d090500da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da70:8800::/40 Signature Algorithm: sha256WithRSAEncryption bd:ab:af:c5:ae:93:23:2f:4d:a8:2e:ea:79:15:65:e7:14:c3: 39:13:b1:71:9e:65:ec:3a:f2:b1:5a:a9:4f:18:14:e6:61:78: 6c:ae:aa:be:b5:04:5f:ae:d3:1a:eb:9f:10:1d:8f:16:19:7b: 78:d1:e6:eb:e0:ad:21:b1:8b:15:97:84:aa:6b:6e:5d:10:54: b3:b8:66:88:43:fc:ca:74:e2:c0:5c:b9:8c:8a:8c:f6:5a:c4: 05:47:bf:ac:42:7f:a1:c2:8f:8d:a2:51:e1:61:39:22:89:46: df:66:39:61:06:7e:5d:7f:71:ec:e7:ec:40:0e:a9:06:f1:71: 17:d5:87:80:50:09:46:cb:f5:04:85:e4:91:34:48:b9:dd:0f: 27:8e:a7:37:b8:ff:42:78:e6:2c:a8:de:4c:2e:66:fe:b5:6b: 1f:a6:c0:a8:1f:83:8b:b3:d6:92:77:04:16:77:36:5a:47:5f: 4a:b9:ac:f0:00:a3:ba:48:6c:c1:2a:29:9e:94:1d:61:2c:4f: 0c:a6:2e:0d:87:c1:c8:c7:1d:93:3b:7e:b9:1c:ce:03:28:74: 4e:62:a4:9a:f4:68:05:b8:7e:f3:ad:c5:69:dc:1c:52:92:66: 85:a1:9a:31:f0:83:f9:7e:28:a3:d4:f2:10:1b:e5:76:33:d2: c4:5c:82:76 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUTUHBuuyQY+tmK9+w10F5/wpmO9QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQyMTE2MTAxM1oX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAY2Y0ZDMzOGYxMTk4NjE0NmYzNzUx YzliYjI4YzI1YmI3YjhiMDkzNDk4NjRiMTJkMWQxZmE4MWIzMWQ4MDAyMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhYaZa32IWHOczdy0Z7ab9VV0fziH m5/ImcxjaM8Q3uSoyYiFDf4cWR/hF5Ja2tbT5eJsSyQQlHweUkRxN3qp15thOyEE bsnPfKFirOeV705ySZMckmo2bRnekTDvLxgsa358nRUTgvJ9rE0RjETzuE4B21uL Ublchha57BcttWszvXWk/VTKNUjcrbd1YF5Hu2o1C8PrhY/LxYa/1jJOHRWtqMuP QdgjgTeii88Su3HzGWSitftGhxBqUPD0Ry/DIsYRBJ4/PW+dDa1secaR3oqjGBO7 7AOVp6PZ4xm7TGaJ7kbYlKbenTiJw+yLYArHx3qEzkFiNiM7x6BCslBwbQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBdRphD3F4PjNATaYg4u1F7DS8YFMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlmN2Y4MWQ1LTk5MzktNDNkNi1iMzMzLWRkMmQwOTA1MDBkYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbacIgwDQYJKoZIhvcNAQELBQADggEBAL2rr8WukyMvTagu6nkV ZecUwzkTsXGeZew68rFaqU8YFOZheGyuqr61BF+u0xrrnxAdjxYZe3jR5uvgrSGx ixWXhKprbl0QVLO4ZohD/Mp04sBcuYyKjPZaxAVHv6xCf6HCj42iUeFhOSKJRt9m OWEGfl1/cezn7EAOqQbxcRfVh4BQCUbL9QSF5JE0SLndDyeOpze4/0J45iyo3kwu Zv61ax+mwKgfg4uz1pJ3BBZ3NlpHX0q5rPAAo7pIbMEqKZ6UHWEsTwymLg2HwcjH HZM7frkczgModE5ipJr0aAW4fvOtxWncHFKSZoWhmjHwg/l+KKPU8hAb5XYz0sRc gnY= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:48 2025 by rpki-client on console.sobornost.net