$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c9ce333f-f82f-4bb6-b248-800fa459c6e7.roa File: c9ce333f-f82f-4bb6-b248-800fa459c6e7.roa (raw, json) Hash identifier: rJTv61qEMd+zD/wCQTaS7RBIN4ovLMwzowgxnEGRnM4= Subject key identifier: 71:EC:2A:52:A6:91:42:17:5A:AE:45:93:56:46:65:F9:3B:3F:C2:C4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 08A1227CEA3710AE0FAD30562DF5D09F40F938A8 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c9ce333f-f82f-4bb6-b248-800fa459c6e7.roa Signing time: Mon 21 Apr 2025 15:20:58 +0000 ROA not before: Mon 21 Apr 2025 15:20:58 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:8080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:a1:22:7c:ea:37:10:ae:0f:ad:30:56:2d:f5:d0:9f:40:f9:38:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 21 15:20:58 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=fefc105f24be1c7973866e176643a350bdeecc55db3433494f0afc09f7f68e02, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0a:d1:a9:e4:ae:47:83:a7:b8:fe:e4:d4:6f: 1c:d8:6e:d9:2e:c7:07:0c:07:1e:9e:e6:62:6e:53: c1:27:f2:03:78:b3:03:82:ff:fb:37:31:48:a8:1d: f0:ed:5e:99:a1:8b:11:aa:e5:26:ef:fe:a8:fd:fd: 17:0f:85:fc:cd:8b:db:02:0b:ff:f7:85:e1:8d:57: 3b:2d:17:bb:cb:d3:8d:fe:35:3d:0e:1c:a7:dd:67: 60:7d:18:29:2c:7a:75:00:7a:d4:40:12:7c:25:83: e6:95:74:a8:99:5e:be:06:e7:8f:09:de:28:e6:27: 62:83:35:03:d6:5e:57:1e:73:95:05:25:d1:a9:8b: c9:2d:1b:43:03:2b:a0:2b:c2:11:31:5d:79:7b:04: 61:3a:08:09:f6:d8:86:79:0a:8c:54:75:b8:9c:08: 1b:97:45:81:33:dd:b6:71:a3:f3:77:0c:ce:ad:80: ec:ba:48:90:01:38:bf:48:34:15:29:df:df:48:4f: 5e:85:95:bd:04:8d:ff:6e:c4:93:69:69:9a:96:d5: 63:19:05:48:f5:17:11:88:39:9f:89:ee:be:82:ef: 44:8b:e2:a1:2e:d8:ef:54:79:bb:35:78:8e:e0:c0: ec:97:13:12:b3:69:11:e4:43:e1:aa:3e:42:65:4b: df:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:EC:2A:52:A6:91:42:17:5A:AE:45:93:56:46:65:F9:3B:3F:C2:C4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c9ce333f-f82f-4bb6-b248-800fa459c6e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:8080::/46 Signature Algorithm: sha256WithRSAEncryption a5:6e:27:1a:e0:ff:68:94:4e:31:a5:44:55:44:a2:fa:3d:ae: 9d:08:2a:b5:55:69:fb:65:db:dc:52:d0:a7:6b:4c:18:19:7f: 06:6d:2c:93:5d:62:76:84:eb:01:11:f5:fe:9f:7f:94:73:05: a0:4b:08:ca:06:28:27:d8:c5:2e:96:9b:b7:5c:9a:19:ea:48: af:0f:b7:1a:53:87:48:b4:0e:c5:07:a8:dc:22:53:19:c8:2f: 2a:f6:03:0f:ce:35:c1:4a:ad:4d:86:0a:59:8f:75:b8:eb:08: b5:70:3a:50:71:f1:d2:86:28:49:96:b7:04:40:d7:5a:91:11: 3a:36:f9:6d:61:a5:17:b3:86:f6:e3:a1:85:c4:d7:c1:7d:ee: 3b:92:7d:a9:87:d6:73:d5:03:6c:81:ff:7c:55:d9:d2:fb:4e: e7:af:c3:53:e1:23:cf:31:6c:d6:66:60:fb:fc:af:0b:54:e2: b9:d3:8a:08:52:b2:f1:2d:e5:67:67:83:af:4b:d8:ff:25:8f: ee:9b:f8:a8:49:1d:fc:f4:bf:9e:70:d1:b1:45:d7:ac:d3:e3: 58:43:ac:6b:36:71:d0:e9:52:82:aa:97:96:a8:de:b6:2f:ba: 59:4f:a2:46:67:78:34:80:2d:41:51:d8:13:c9:8b:a9:17:d4: 39:d5:b6:60 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUCKEifOo3EK4PrTBWLfXQn0D5OKgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQyMTE1MjA1OFoX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAZmVmYzEwNWYyNGJlMWM3OTczODY2 ZTE3NjY0M2EzNTBiZGVlY2M1NWRiMzQzMzQ5NGYwYWZjMDlmN2Y2OGUwMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwrRqeSuR4OnuP7k1G8c2G7ZLscH DAcenuZiblPBJ/IDeLMDgv/7NzFIqB3w7V6ZoYsRquUm7/6o/f0XD4X8zYvbAgv/ 94XhjVc7LRe7y9ON/jU9Dhyn3WdgfRgpLHp1AHrUQBJ8JYPmlXSomV6+BuePCd4o 5idigzUD1l5XHnOVBSXRqYvJLRtDAyugK8IRMV15ewRhOggJ9tiGeQqMVHW4nAgb l0WBM922caPzdwzOrYDsukiQATi/SDQVKd/fSE9ehZW9BI3/bsSTaWmaltVjGQVI 9RcRiDmfie6+gu9Ei+KhLtjvVHm7NXiO4MDslxMSs2kR5EPhqj5CZUvfWwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHHsKlKmkUIXWq5Fk1ZGZfk7P8LEMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M5Y2UzMzNmLWY4MmYtNGJiNi1iMjQ4LTgwMGZhNDU5YzZlNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAbaaYCAMA0GCSqGSIb3DQEBCwUAA4IBAQClbica4P9olE4xpURV RKL6Pa6dCCq1VWn7ZdvcUtCna0wYGX8GbSyTXWJ2hOsBEfX+n3+UcwWgSwjKBign 2MUulpu3XJoZ6kivD7caU4dItA7FB6jcIlMZyC8q9gMPzjXBSq1NhgpZj3W46wi1 cDpQcfHShihJlrcEQNdakRE6NvltYaUXs4b246GFxNfBfe47kn2ph9Zz1QNsgf98 VdnS+07nr8NT4SPPMWzWZmD7/K8LVOK504oIUrLxLeVnZ4OvS9j/JY/um/ioSR38 9L+ecNGxRdes0+NYQ6xrNnHQ6VKCqpeWqN62L7pZT6JGZ3g0gC1BUdgTyYupF9Q5 1bZg -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:50 2025 by rpki-client on console.sobornost.net