$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa File: dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa (raw, json) Hash identifier: +tVSnDJOhhPKTgRvdawRnQZpG7R7lc/ASFJleyufjAE= Subject key identifier: F3:70:23:52:96:7D:76:18:E1:C7:E2:F5:02:3F:E3:5F:0A:C4:A5:3C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 39F6923B3B4CDC0FF89BE3590A15C5861F3A1E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa Signing time: Fri 11 Apr 2025 00:00:13 +0000 ROA not before: Fri 11 Apr 2025 00:00:13 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:f6:92:3b:3b:4c:dc:0f:f8:9b:e3:59:0a:15:c5:86:1f:3a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 11 00:00:13 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=d84a32fe86abea777411f793c9071d06a00c89b25d0fc52e11871a9de95ccc95, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:36:e4:56:1a:7f:a4:d6:11:59:ae:a1:f6:ae: be:14:2e:04:5b:3c:7e:f1:ba:3b:87:ae:2c:24:09: d7:d1:7a:ce:71:cd:f2:1f:fa:4a:15:97:4e:ba:26: 9a:ef:53:b3:bd:a8:75:b2:49:f6:24:2b:c1:e8:f9: c1:c5:ef:2c:84:6d:8e:b7:52:71:1f:40:1d:78:4c: ba:e1:a4:d3:04:04:c2:16:0d:bb:05:b0:db:87:be: 38:7e:e5:c6:12:c0:cb:02:4d:28:32:f6:71:77:a8: 46:2b:36:b7:e0:53:09:f2:75:e5:41:4f:17:9c:35: 9a:26:28:3d:0d:da:23:2a:23:54:e1:a1:89:11:9f: 82:fa:cf:7d:5a:0e:9e:5d:80:13:34:dd:e2:4f:07: b7:14:f1:9d:d6:49:36:86:1c:0c:15:ab:26:77:83: 1b:ea:22:5f:1d:e9:9f:cf:1c:51:f7:61:01:bb:ec: 43:44:e5:0e:e9:a4:54:57:73:6a:1b:2b:a4:2a:d9: 3c:4e:11:6d:3a:bd:53:09:1b:5a:3b:e7:6f:df:98: 86:bc:71:12:b8:df:be:07:a0:33:30:31:4e:8c:7a: bd:19:d3:62:3e:e8:45:13:c6:bc:14:e5:49:cc:ec: b0:e7:60:e8:d3:0d:63:6f:d6:19:9f:d1:c6:c9:37: b8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:70:23:52:96:7D:76:18:E1:C7:E2:F5:02:3F:E3:5F:0A:C4:A5:3C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dd3d6020-be78-46ca-9b8a-63fdbfc9da9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:2000::/40 Signature Algorithm: sha256WithRSAEncryption 7b:8a:5b:64:99:cd:12:ce:3b:47:76:ca:69:56:a3:f3:7c:c2: bc:9a:82:c7:ab:fd:12:d6:7c:51:a0:14:ed:ac:07:53:f1:6f: 96:fc:55:5a:ea:ea:33:05:93:9e:2e:82:21:d6:16:06:a1:2f: d2:31:9e:5f:2a:6b:d4:b7:30:6e:5b:25:cc:f5:68:d2:1d:a9: 33:87:ec:c4:92:bd:a8:52:7c:ab:0f:51:15:b1:00:a4:49:b7: f4:ae:11:11:39:79:e1:d7:54:cc:71:8c:3b:3a:eb:9c:ed:31: 83:22:32:9e:0d:d9:d0:9b:18:f3:72:be:dc:32:99:6d:1b:4a: 60:69:64:e3:0f:0a:89:bf:36:4c:0b:45:21:ab:2c:da:44:30: 7f:27:0e:3b:f7:16:67:c6:ad:d0:5e:d6:e3:77:98:86:00:5c: 3a:1e:38:83:0c:53:cd:14:2b:39:a2:ba:eb:cf:f7:5e:3c:0c: c5:fd:3c:81:44:e5:3a:4c:82:7b:25:51:db:96:fd:88:d7:46: e3:27:8b:2e:a6:94:88:b6:fa:c5:f8:b2:06:ae:7b:92:a0:19: 07:c4:01:92:a4:54:f4:db:f8:2d:44:b8:a7:87:1d:fd:06:1b: f5:f8:51:89:9a:03:33:90:45:1c:f5:85:af:c3:93:e7:a0:24: 17:21:cb:ee -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgITOfaSOztM3A/4m+NZChXFhh86HjANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTFGNjM1RjAwMDAxMTAvBgNVBAUTKDQwNzY4MjU1MjRE MkM2NkQyRTEwNDM2RkU2NUU5M0U4QzFCRDRBMzcwHhcNMjUwNDExMDAwMDEzWhcN MjUwNTE2MjM1OTU5WjB6MUkwRwYDVQQFE0BkODRhMzJmZTg2YWJlYTc3NzQxMWY3 OTNjOTA3MWQwNmEwMGM4OWIyNWQwZmM1MmUxMTg3MWE5ZGU5NWNjYzk1MS0wKwYD VQQDEyRjMGJmMGZlOC03MTdjLTRmNzItOWI0NS1jOWM1MTkxMzJhODEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbNuRWGn+k1hFZrqH2rr4ULgRbPH7x ujuHriwkCdfRes5xzfIf+koVl066JprvU7O9qHWySfYkK8Ho+cHF7yyEbY63UnEf QB14TLrhpNMEBMIWDbsFsNuHvjh+5cYSwMsCTSgy9nF3qEYrNrfgUwnydeVBTxec NZomKD0N2iMqI1ThoYkRn4L6z31aDp5dgBM03eJPB7cU8Z3WSTaGHAwVqyZ3gxvq Il8d6Z/PHFH3YQG77ENE5Q7ppFRXc2obK6Qq2TxOEW06vVMJG1o752/fmIa8cRK4 374HoDMwMU6Mer0Z02I+6EUTxrwU5UnM7LDnYOjTDWNv1hmf0cbJN7ghAgMBAAGj ggJKMIICRjAdBgNVHQ4EFgQU83AjUpZ9dhjhx+L1Aj/jXwrEpTwwHwYDVR0jBBgw FoAUQHaCVSTSxm0uEENv5l6T6MG9SjcwDgYDVR0PAQH/BAQDAgeAMH4GCCsGAQUF BwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBv c2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL1FIYUNWU1RT eG0wdUVFTnY1bDZUNk1HOVNqYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEv ZGQzZDYwMjAtYmU3OC00NmNhLTliOGEtNjNmZGJmYzlkYTliLnJvYTCBlQYDVR0f BIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFt YXpvbmF3cy5jb20vdm9sdW1lLzA4YzJmMjY0LTIzZjktNDlmYi05ZDQzLWY4YjUw YmVjOTI2MS83YmExNzg2My1hNjEzLTQxOTctOWVkNS1iZWRhNmE4OTg2OWYuY3Js MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAkBtr1IDANBgkqhkiG9w0BAQsFAAOCAQEAe4pbZJnNEs47R3bKaVaj 83zCvJqCx6v9EtZ8UaAU7awHU/FvlvxVWurqMwWTni6CIdYWBqEv0jGeXypr1Lcw blslzPVo0h2pM4fsxJK9qFJ8qw9RFbEApEm39K4RETl54ddUzHGMOzrrnO0xgyIy ng3Z0JsY83K+3DKZbRtKYGlk4w8Kib82TAtFIass2kQwfycOO/cWZ8at0F7W43eY hgBcOh44gwxTzRQrOaK668/3XjwMxf08gUTlOkyCeyVR25b9iNdG4yeLLqaUiLb6 xfiyBq57kqAZB8QBkqRU9Nv4LUS4p4cd/QYb9fhRiZoDM5BFHPWFr8OT56AkFyHL 7g== -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:51 2025 by rpki-client on console.sobornost.net