$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dcaf212a-4300-4cf6-8cda-ee2d474aa5ab.roa File: dcaf212a-4300-4cf6-8cda-ee2d474aa5ab.roa (raw, json) Hash identifier: +By3bQtArhyyLFVMerP+hM+Orn0JC/sLU1Q0G9W9qQ0= Subject key identifier: F7:CD:B8:91:6D:35:5C:58:93:5E:B4:93:C9:87:3F:41:15:51:2A:08 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 621286B3CE12667F77CF81577ABC4617845D2CB7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dcaf212a-4300-4cf6-8cda-ee2d474aa5ab.roa Signing time: Sat 19 Apr 2025 00:21:17 +0000 ROA not before: Sat 19 Apr 2025 00:21:17 +0000 ROA not after: Sat 24 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:2080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:12:86:b3:ce:12:66:7f:77:cf:81:57:7a:bc:46:17:84:5d:2c:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 19 00:21:17 2025 GMT Not After : May 24 23:59:59 2025 GMT Subject: serialNumber=8ee040563403487cdcefd2e90edece44752838739d31e4f049f4e01f942d0ff1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:59:ac:66:d6:41:9a:f9:54:28:25:b6:06:0d: 12:45:58:c7:b6:14:b1:c9:95:cb:18:04:d9:ac:08: 1e:ca:b6:49:69:d3:70:4e:10:e8:a4:24:c1:4e:43: 92:c4:bb:a0:b1:2c:92:d1:10:e2:26:ee:14:f4:4e: 60:b0:68:bb:b6:bc:52:ea:1e:e6:d5:ef:87:7d:a3: 02:2f:6f:80:5d:81:26:60:4a:16:29:81:f1:aa:ac: e6:3d:0b:ce:f9:51:4d:7b:ab:55:69:23:27:91:6f: 9d:29:61:a0:35:eb:dc:2a:70:9a:76:58:52:87:c9: 14:ad:79:e7:2e:41:c3:81:64:59:bf:cf:03:22:6a: 10:ce:ea:cc:a1:5b:eb:29:a8:e5:0b:db:15:c8:33: fc:90:4a:5a:6a:f0:00:a1:8d:11:34:46:df:c9:dc: 3f:8a:2e:cf:0c:dd:19:54:88:47:05:2b:ae:3c:c7: a0:dd:33:3a:be:2c:3d:a8:e7:a6:95:3c:58:bf:d2: c4:18:4f:ed:1d:81:2c:af:68:df:90:fd:c6:3d:c0: 0d:c1:d5:c3:93:22:12:cc:33:65:dc:ca:b3:7b:ce: 0f:ff:f7:fd:36:c5:84:8a:93:1f:07:cd:8a:89:61: 6a:4a:23:51:b0:27:2e:a2:ba:bf:a0:fe:42:5e:e5: fd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:CD:B8:91:6D:35:5C:58:93:5E:B4:93:C9:87:3F:41:15:51:2A:08 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dcaf212a-4300-4cf6-8cda-ee2d474aa5ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:2080::/48 Signature Algorithm: sha256WithRSAEncryption 05:11:0f:98:e4:8d:34:7d:50:06:84:df:c9:6d:29:89:98:c7: 4b:c0:42:e0:bb:9e:fe:3c:79:8c:80:6c:ef:b4:c8:5a:52:a3: 1d:a2:f0:37:61:7f:5b:60:b2:07:58:19:ea:3a:5d:7d:67:f8: 34:b3:bc:d5:ff:79:a0:4d:9a:9c:e5:37:06:05:90:f9:29:93: 7d:08:48:f6:57:3a:ae:91:99:0e:4c:07:b0:fb:47:14:a2:bc: c8:82:d2:4c:0d:e7:20:e4:d8:a8:ab:15:34:af:05:25:49:b6: 20:65:9d:62:9b:3b:e1:74:f4:21:45:90:f0:dd:21:91:dd:e5: 65:80:ce:05:76:31:f9:0a:ec:96:bd:15:86:36:7d:f8:56:60: e4:0e:93:31:b2:33:43:13:87:2b:dd:fd:c8:bd:94:56:2c:1e: f8:c6:b4:66:f4:5f:03:05:73:bb:bb:ee:29:ce:44:33:02:1f: 55:54:93:39:48:38:b4:80:d8:a9:92:e6:2f:ff:39:3a:e9:17: 74:d9:7b:e4:ec:e8:6b:0f:57:c7:5c:73:23:71:52:58:70:02: 75:e3:e1:7b:50:54:5a:49:11:88:e6:cb:9b:33:ae:81:ef:74: d5:ee:8b:89:fa:5a:e5:61:69:c6:51:7e:32:45:77:ff:f8:17: 48:33:23:dc -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYhKGs84SZn93z4FXerxGF4RdLLcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxOTAwMjExN1oX DTI1MDUyNDIzNTk1OVowejFJMEcGA1UEBRNAOGVlMDQwNTYzNDAzNDg3Y2RjZWZk MmU5MGVkZWNlNDQ3NTI4Mzg3MzlkMzFlNGYwNDlmNGUwMWY5NDJkMGZmMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlmsZtZBmvlUKCW2Bg0SRVjHthSx yZXLGATZrAgeyrZJadNwThDopCTBTkOSxLugsSyS0RDiJu4U9E5gsGi7trxS6h7m 1e+HfaMCL2+AXYEmYEoWKYHxqqzmPQvO+VFNe6tVaSMnkW+dKWGgNevcKnCadlhS h8kUrXnnLkHDgWRZv88DImoQzurMoVvrKajlC9sVyDP8kEpaavAAoY0RNEbfydw/ ii7PDN0ZVIhHBSuuPMeg3TM6viw9qOemlTxYv9LEGE/tHYEsr2jfkP3GPcANwdXD kyISzDNl3Mqze84P//f9NsWEipMfB82KiWFqSiNRsCcuorq/oP5CXuX9/QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPfNuJFtNVxYk160k8mHP0EVUSoIMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2RjYWYyMTJhLTQzMDAtNGNmNi04Y2RhLWVlMmQ0NzRhYTVhYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8iCAMA0GCSqGSIb3DQEBCwUAA4IBAQAFEQ+Y5I00fVAGhN/J bSmJmMdLwELgu57+PHmMgGzvtMhaUqMdovA3YX9bYLIHWBnqOl19Z/g0s7zV/3mg TZqc5TcGBZD5KZN9CEj2VzqukZkOTAew+0cUorzIgtJMDecg5NioqxU0rwUlSbYg ZZ1imzvhdPQhRZDw3SGR3eVlgM4FdjH5CuyWvRWGNn34VmDkDpMxsjNDE4cr3f3I vZRWLB74xrRm9F8DBXO7u+4pzkQzAh9VVJM5SDi0gNipkuYv/zk66Rd02Xvk7Ohr D1fHXHMjcVJYcAJ14+F7UFRaSRGI5subM66B73TV7ouJ+lrlYWnGUX4yRXf/+BdI MyPc -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:51 2025 by rpki-client on console.sobornost.net