$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2f81107-168c-46e7-b297-ef3e9d0b49d6.roa File: a2f81107-168c-46e7-b297-ef3e9d0b49d6.roa (raw, json) Hash identifier: gaabB9mdUMgncbGr3mOPN7BA+D7P5ZQsbfSlUPJ4DbA= Subject key identifier: 9B:0A:19:13:7D:3C:BB:C9:3C:05:83:13:00:71:D7:34:92:CA:E1:13 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0EEE533DA595CD779DC47BBF7D6C73ED95097F0D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2f81107-168c-46e7-b297-ef3e9d0b49d6.roa Signing time: Thu 17 Apr 2025 20:09:05 +0000 ROA not before: Thu 17 Apr 2025 20:09:05 +0000 ROA not after: Thu 22 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dabb:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ee:53:3d:a5:95:cd:77:9d:c4:7b:bf:7d:6c:73:ed:95:09:7f:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 17 20:09:05 2025 GMT Not After : May 22 23:59:59 2025 GMT Subject: serialNumber=c46b0bd9b742389952f9be24fc99ee16684be9c1580ed720660dbec9d2be1593, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8d:bf:e4:b8:d7:e7:c3:b4:af:4f:41:22:8c: cf:75:f6:ab:e7:18:f3:14:c5:1b:7e:27:1b:d3:a0: eb:2f:5f:6b:8c:cb:e0:95:5a:3a:2c:0d:5a:e6:b0: 87:f8:5a:74:35:1b:68:eb:7c:12:b4:13:46:95:9d: 42:00:eb:66:2c:24:c1:4f:0a:a8:9f:b2:06:e4:4e: 56:c2:28:83:27:92:f5:2d:99:0c:2e:d2:bb:39:df: a7:f3:90:1a:10:61:97:cc:55:28:88:42:70:6c:e3: 2b:a4:ed:f6:4f:fa:61:96:05:fb:25:75:fa:2b:e9: b7:21:3b:36:e3:97:55:34:54:69:01:14:2d:8f:90: 3b:aa:32:92:f1:51:94:94:97:88:24:20:38:a5:70: 59:ce:28:d6:26:23:e7:a2:f4:7a:61:d6:f7:2c:c4: 4b:92:b9:71:1e:22:14:08:04:8c:c3:22:07:dd:d7: 57:c4:13:70:b4:11:2d:00:f2:ac:5f:24:b9:1b:de: 88:44:a8:ec:42:95:7e:2c:94:48:1c:4b:0a:11:04: ac:73:96:0d:f8:a8:62:19:b0:1d:07:58:66:dd:87: 46:85:7b:7f:9e:01:ba:38:b8:d5:08:54:7e:86:4e: 21:37:30:56:a9:cf:cc:30:1f:51:60:e4:2c:71:61: bc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:0A:19:13:7D:3C:BB:C9:3C:05:83:13:00:71:D7:34:92:CA:E1:13 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2f81107-168c-46e7-b297-ef3e9d0b49d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dabb:4000::/40 Signature Algorithm: sha256WithRSAEncryption af:c0:25:44:67:b1:ec:5c:d2:ad:96:b9:c7:f4:30:6a:ed:29: d7:d9:dd:6c:2d:b5:d8:34:93:46:73:e3:ac:94:e1:fe:f4:f2: 81:1b:de:88:22:8b:bb:df:f2:38:d4:02:9a:30:70:2a:8b:6d: 99:1a:e8:06:d4:63:86:50:56:fe:a6:bc:dc:9a:04:5e:bb:4a: ba:fe:f0:97:af:1f:2d:7b:d9:d1:5d:5c:eb:02:8d:79:85:37: ca:7a:e3:b4:0a:ad:af:3d:4a:08:ac:a3:43:d2:96:16:1a:7e: 88:57:59:2d:9b:92:89:85:9b:b7:b6:10:47:a9:39:7e:72:ef: 22:20:a5:21:2c:90:6f:d8:db:c3:be:bc:93:a4:a7:5c:e4:08: 10:29:49:38:f3:86:0f:85:a2:72:bb:59:79:38:be:65:49:2d: f9:9f:22:4a:2e:02:4e:6a:30:46:45:b0:31:74:c1:10:d2:7e: 53:12:65:bf:5b:cb:fc:2e:47:12:74:dc:1d:98:34:e1:b4:39: a5:fd:63:b7:8d:64:1b:41:de:3d:f4:46:1e:21:90:3b:e3:80: aa:41:98:79:07:b6:45:f5:6a:ff:b8:9e:11:92:82:b9:10:09: d3:1c:f6:32:ee:60:48:b8:20:15:19:4d:11:97:e6:79:b9:8b: a1:2e:1b:35 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUDu5TPaWVzXedxHu/fWxz7ZUJfw0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxNzIwMDkwNVoX DTI1MDUyMjIzNTk1OVowejFJMEcGA1UEBRNAYzQ2YjBiZDliNzQyMzg5OTUyZjli ZTI0ZmM5OWVlMTY2ODRiZTljMTU4MGVkNzIwNjYwZGJlYzlkMmJlMTU5MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvY2/5LjX58O0r09BIozPdfar5xjz FMUbficb06DrL19rjMvglVo6LA1a5rCH+Fp0NRto63wStBNGlZ1CAOtmLCTBTwqo n7IG5E5WwiiDJ5L1LZkMLtK7Od+n85AaEGGXzFUoiEJwbOMrpO32T/phlgX7JXX6 K+m3ITs245dVNFRpARQtj5A7qjKS8VGUlJeIJCA4pXBZzijWJiPnovR6Ydb3LMRL krlxHiIUCASMwyIH3ddXxBNwtBEtAPKsXyS5G96IRKjsQpV+LJRIHEsKEQSsc5YN +KhiGbAdB1hm3YdGhXt/ngG6OLjVCFR+hk4hNzBWqc/MMB9RYOQscWG8nwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJsKGRN9PLvJPAWDEwBx1zSSyuETMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EyZjgxMTA3LTE2OGMtNDZlNy1iMjk3LWVmM2U5ZDBiNDlkNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbau0AwDQYJKoZIhvcNAQELBQADggEBAK/AJURnsexc0q2Wucf0 MGrtKdfZ3Wwttdg0k0Zz46yU4f708oEb3ogii7vf8jjUApowcCqLbZka6AbUY4ZQ Vv6mvNyaBF67Srr+8JevHy172dFdXOsCjXmFN8p647QKra89Sgiso0PSlhYafohX WS2bkomFm7e2EEepOX5y7yIgpSEskG/Y28O+vJOkp1zkCBApSTjzhg+FonK7WXk4 vmVJLfmfIkouAk5qMEZFsDF0wRDSflMSZb9by/wuRxJ03B2YNOG0OaX9Y7eNZBtB 3j30Rh4hkDvjgKpBmHkHtkX1av+4nhGSgrkQCdMc9jLuYEi4IBUZTRGX5nm5i6Eu GzU= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:48 2025 by rpki-client on console.sobornost.net