$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d07df133-27a9-413c-9804-adb048f407f3.roa File: d07df133-27a9-413c-9804-adb048f407f3.roa (raw, json) Hash identifier: OIh7JF/EnVEY+YHU5rlR8DtkJ2JPY4092/8MKicW30M= Subject key identifier: FC:78:83:90:07:2F:4D:86:E8:C5:2C:8F:73:35:B7:48:52:5A:94:F9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 110C5D54606DF2F7A8A7434D5F3616D2913E1B42 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d07df133-27a9-413c-9804-adb048f407f3.roa Signing time: Mon 21 Apr 2025 16:31:42 +0000 ROA not before: Mon 21 Apr 2025 16:31:42 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daa0:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:0c:5d:54:60:6d:f2:f7:a8:a7:43:4d:5f:36:16:d2:91:3e:1b:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 21 16:31:42 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=e460ddee536d4e58c77e07dbed851c9113281c9c92311b12b4a461884161b8b6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:bb:f1:7a:a6:ab:42:2c:da:49:35:a1:75:a7: 67:c4:54:00:26:8c:f6:0f:b4:19:67:98:5e:bf:4a: b9:c8:d4:ab:10:ff:f5:df:9f:be:14:4e:43:7d:ed: 95:34:bc:0b:58:37:75:93:cb:89:21:57:11:ae:64: f0:cd:8a:c4:13:bd:c7:14:ea:98:44:fd:ea:1e:0e: e3:ac:09:e1:26:9a:27:d9:87:f1:6e:88:fd:90:19: 54:6b:7d:ef:81:17:6d:1a:26:eb:2e:f6:09:ef:3e: 23:97:16:8b:39:e8:2a:e2:69:2b:66:b1:6e:9a:01: ef:62:f4:5e:6c:be:86:46:83:b1:7b:85:e0:4a:31: 27:93:44:8f:ea:17:ea:7c:bc:db:a7:ef:b7:e7:09: 89:3a:37:82:a2:01:7b:59:b8:ad:51:4a:61:d8:be: c7:f0:42:ad:3c:fa:b1:a9:3c:41:4b:60:c4:b2:dd: 22:7d:a1:05:5a:83:d3:57:72:71:0b:1e:7b:d9:a6: 6b:d4:fa:13:4a:2a:9e:49:46:c3:07:d9:78:e3:40: 36:a4:b3:cf:6d:72:8d:0b:ed:e9:58:fc:a2:86:47: 95:b0:a5:6a:0a:a4:72:73:51:51:c1:db:1e:8b:95: 67:ea:82:8d:b2:48:f7:8c:03:34:66:7d:e4:d7:09: c9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:78:83:90:07:2F:4D:86:E8:C5:2C:8F:73:35:B7:48:52:5A:94:F9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d07df133-27a9-413c-9804-adb048f407f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daa0:2800::/40 Signature Algorithm: sha256WithRSAEncryption 5d:94:8c:a3:15:e9:04:b3:01:a0:3a:51:de:db:59:16:9c:91: 3c:b7:7e:1e:78:96:ef:15:1d:b6:8a:57:1e:90:72:fe:21:76: 29:9a:06:88:c3:f3:de:7c:e9:2f:e0:5c:8d:fc:36:9c:25:14: 17:ec:47:e6:38:13:3f:5f:20:f9:81:7d:9c:3f:41:50:66:a3: 60:24:4a:a4:fe:43:ac:7b:79:51:c1:ec:15:8e:17:41:b8:3d: 9f:52:18:c9:67:f4:c9:d7:85:8f:53:bb:5e:b7:41:54:da:55: 5b:1d:d4:64:b2:2f:eb:00:87:08:87:e8:b0:12:fe:0d:e1:85: b9:63:3c:24:20:f2:6f:01:59:34:f2:00:f7:b7:5b:9c:dd:7c: d3:62:fd:6e:d5:df:7e:7c:a2:19:39:42:20:d9:ba:bc:c3:d6: 4d:4c:58:99:2b:b4:5d:5c:e2:03:7d:96:ee:5b:1e:56:c6:45: d4:41:83:71:07:46:83:be:c3:8b:b4:24:af:ed:f8:27:6f:7e: ab:74:d2:ff:2b:15:18:70:6b:d0:17:d4:8e:2a:7e:ae:02:4a: ab:d1:ea:10:70:59:5d:b1:eb:3f:9e:94:d1:7c:85:ba:e6:92: fe:c0:a6:07:d6:48:49:76:1c:d4:dd:90:7a:32:11:02:e5:ed: 91:87:b7:da -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUEQxdVGBt8veop0NNXzYW0pE+G0IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQyMTE2MzE0MloX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAZTQ2MGRkZWU1MzZkNGU1OGM3N2Uw N2RiZWQ4NTFjOTExMzI4MWM5YzkyMzExYjEyYjRhNDYxODg0MTYxYjhiNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8bvxeqarQizaSTWhdadnxFQAJoz2 D7QZZ5hev0q5yNSrEP/135++FE5Dfe2VNLwLWDd1k8uJIVcRrmTwzYrEE73HFOqY RP3qHg7jrAnhJpon2Yfxboj9kBlUa33vgRdtGibrLvYJ7z4jlxaLOegq4mkrZrFu mgHvYvRebL6GRoOxe4XgSjEnk0SP6hfqfLzbp++35wmJOjeCogF7WbitUUph2L7H 8EKtPPqxqTxBS2DEst0ifaEFWoPTV3JxCx572aZr1PoTSiqeSUbDB9l440A2pLPP bXKNC+3pWPyihkeVsKVqCqRyc1FRwdsei5Vn6oKNskj3jAM0Zn3k1wnJjwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPx4g5AHL02G6MUsj3M1t0hSWpT5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2QwN2RmMTMzLTI3YTktNDEzYy05ODA0LWFkYjA0OGY0MDdmMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaoCgwDQYJKoZIhvcNAQELBQADggEBAF2UjKMV6QSzAaA6Ud7b WRackTy3fh54lu8VHbaKVx6Qcv4hdimaBojD89586S/gXI38NpwlFBfsR+Y4Ez9f IPmBfZw/QVBmo2AkSqT+Q6x7eVHB7BWOF0G4PZ9SGMln9MnXhY9Tu163QVTaVVsd 1GSyL+sAhwiH6LAS/g3hhbljPCQg8m8BWTTyAPe3W5zdfNNi/W7V3358ohk5QiDZ urzD1k1MWJkrtF1c4gN9lu5bHlbGRdRBg3EHRoO+w4u0JK/t+Cdvfqt00v8rFRhw a9AX1I4qfq4CSqvR6hBwWV2x6z+elNF8hbrmkv7ApgfWSEl2HNTdkHoyEQLl7ZGH t9o= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:51 2025 by rpki-client on console.sobornost.net