$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa File: b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa (raw, json) Hash identifier: O8mVVBfc+irnpG+61WUAokZ6sOixOqstOpMuc1XfIHI= Subject key identifier: 55:D4:4B:12:5C:BC:A3:C3:20:ED:E7:FC:83:38:B7:3A:47:B5:CD:77 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4A25C55E348F3A29CCF3093B59088FD51EF747B4 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa Signing time: Fri 18 Apr 2025 00:11:30 +0000 ROA not before: Fri 18 Apr 2025 00:11:30 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:4840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:25:c5:5e:34:8f:3a:29:cc:f3:09:3b:59:08:8f:d5:1e:f7:47:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 18 00:11:30 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=66c03e725c00dae5d7dcc81da88145220856a15bc8faedf452ec384c6ff15c9d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:85:05:9f:8c:0b:68:34:1b:eb:19:ac:f3:5e: c4:65:e3:cc:d3:57:62:6d:59:6b:3f:f9:83:09:3d: c7:0e:a5:a0:80:70:28:46:2d:40:d2:78:f6:ac:3e: 1a:96:55:30:ee:26:fc:c2:06:25:26:92:04:62:80: d9:51:5d:da:cf:43:4a:eb:c3:05:6f:c2:92:a6:70: e5:5e:81:89:ff:ec:c1:20:86:56:11:e6:20:98:52: f2:71:21:34:b7:2e:e5:ab:31:9d:23:a6:3c:b3:fc: a9:28:58:a0:65:50:31:7d:71:13:9f:00:c5:77:42: 1b:1a:5e:10:68:47:9e:71:71:37:1e:65:ed:ac:d5: 90:99:80:bd:c6:52:37:ce:bd:d4:6b:84:8f:ec:28: 5c:2f:77:c6:e0:4c:d1:15:29:2c:91:4c:45:51:5d: 53:90:fd:3f:4a:82:5f:ac:fd:11:b6:c8:e9:25:98: d5:e6:95:ed:b3:9d:92:3d:79:40:78:9d:44:65:90: 99:44:48:7d:ea:cd:61:42:8e:48:e0:30:f0:e2:46: f7:71:e8:92:08:19:d2:49:fb:4e:55:55:7a:05:23: f1:dd:2f:7b:1b:3f:77:6a:29:c7:ba:18:d6:ee:ff: f6:04:d2:15:67:c6:42:68:50:6d:6f:60:bd:ba:ea: 92:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:D4:4B:12:5C:BC:A3:C3:20:ED:E7:FC:83:38:B7:3A:47:B5:CD:77 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:4840::/48 Signature Algorithm: sha256WithRSAEncryption c4:9f:04:33:8b:8a:f4:15:b3:17:c0:97:5a:05:49:63:ee:ef: 26:60:b2:3c:5d:8a:a0:6e:b3:ca:99:41:85:7a:d7:f2:0e:c3: 8b:93:a9:bd:aa:62:de:0e:75:00:ef:42:48:00:b6:31:2d:00: ef:85:e5:e2:a0:b5:44:05:40:b0:94:c7:d0:ff:7a:4f:2f:db: 55:b6:0d:b0:dc:69:12:d5:62:30:5f:d3:e1:6d:c9:67:41:43: 9c:23:e3:ed:6a:57:5a:24:21:10:b5:58:c5:77:8b:da:3f:68: c0:74:7f:63:e4:90:4b:9b:71:90:7d:ae:4d:f0:a2:b7:cf:e0: 0e:04:7a:d9:b6:54:94:46:e4:a4:e4:3e:a7:48:1e:70:91:6c: 20:11:41:a9:01:2d:a3:48:e0:e3:a0:3b:b3:e7:7a:f6:fb:66: d0:ad:05:72:b3:9e:ea:ab:31:44:22:3d:0a:de:55:df:44:8d: cc:2e:69:9a:82:43:85:80:15:ca:58:61:47:be:07:3c:53:e0: ec:aa:60:ec:f5:70:cf:15:98:7e:1c:c0:2e:f9:93:c0:eb:1a: d7:e4:12:8f:af:87:6a:e6:39:3d:a4:3d:01:7c:9a:d3:fa:00: d9:d0:34:35:e8:13:13:a0:5e:ff:31:e5:02:a9:0d:11:6e:ed: d9:95:df:ef -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUSiXFXjSPOinM8wk7WQiP1R73R7QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxODAwMTEzMFoX DTI1MDUyMzIzNTk1OVowejFJMEcGA1UEBRNANjZjMDNlNzI1YzAwZGFlNWQ3ZGNj ODFkYTg4MTQ1MjIwODU2YTE1YmM4ZmFlZGY0NTJlYzM4NGM2ZmYxNWM5ZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4UFn4wLaDQb6xms817EZePM01di bVlrP/mDCT3HDqWggHAoRi1A0nj2rD4allUw7ib8wgYlJpIEYoDZUV3az0NK68MF b8KSpnDlXoGJ/+zBIIZWEeYgmFLycSE0ty7lqzGdI6Y8s/ypKFigZVAxfXETnwDF d0IbGl4QaEeecXE3HmXtrNWQmYC9xlI3zr3Ua4SP7ChcL3fG4EzRFSkskUxFUV1T kP0/SoJfrP0RtsjpJZjV5pXts52SPXlAeJ1EZZCZREh96s1hQo5I4DDw4kb3ceiS CBnSSftOVVV6BSPx3S97Gz93ainHuhjW7v/2BNIVZ8ZCaFBtb2C9uuqSLQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFXUSxJcvKPDIO3n/IM4tzpHtc13MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2IzMzRmY2EyLWIyYmMtNGRiNS05NTZjLWUzZmY4ZDk3NWI1MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8khAMA0GCSqGSIb3DQEBCwUAA4IBAQDEnwQzi4r0FbMXwJda BUlj7u8mYLI8XYqgbrPKmUGFetfyDsOLk6m9qmLeDnUA70JIALYxLQDvheXioLVE BUCwlMfQ/3pPL9tVtg2w3GkS1WIwX9PhbclnQUOcI+PtaldaJCEQtVjFd4vaP2jA dH9j5JBLm3GQfa5N8KK3z+AOBHrZtlSURuSk5D6nSB5wkWwgEUGpAS2jSODjoDuz 53r2+2bQrQVys57qqzFEIj0K3lXfRI3MLmmagkOFgBXKWGFHvgc8U+DsqmDs9XDP FZh+HMAu+ZPA6xrX5BKPr4dq5jk9pD0BfJrT+gDZ0DQ16BMToF7/MeUCqQ0Rbu3Z ld/v -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:49 2025 by rpki-client on console.sobornost.net