$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb97279c-5cd5-487d-8327-aaaca3ddaddb.roa File: eb97279c-5cd5-487d-8327-aaaca3ddaddb.roa (raw, json) Hash identifier: RF5Z0PiKpBHwWypRh1VCMF2i8Nco9ilXDPVFzpM1MKk= Subject key identifier: E4:F6:0A:16:C4:0F:AF:23:96:33:82:0D:F9:E6:50:BF:FD:35:42:CF Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 331CD598E1F7C416738EA1A85641BA113A7DBA88 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb97279c-5cd5-487d-8327-aaaca3ddaddb.roa Signing time: Tue 15 Apr 2025 00:00:03 +0000 ROA not before: Tue 15 Apr 2025 00:00:03 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:da60:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:1c:d5:98:e1:f7:c4:16:73:8e:a1:a8:56:41:ba:11:3a:7d:ba:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 15 00:00:03 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=fbe7980db6b8f062186a8e0cfd6626cf84659c67c349a78e0b0861c15cd6135b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:67:c3:ce:bf:be:39:f2:f3:c2:02:df:1a:7e: 4e:1f:f0:01:a1:df:3a:31:34:28:94:a2:97:6d:1d: c3:c7:7c:03:67:b0:78:1d:bf:e4:6a:10:9b:0c:fe: 90:84:9f:bf:6c:42:54:38:64:1c:06:32:cf:4e:f0: c7:44:e7:b7:5d:d6:72:c2:d0:6a:3b:06:cc:f6:4b: 3c:46:19:57:63:99:a4:6b:f0:6a:dd:aa:9c:b6:4d: 9e:b0:1d:65:29:2f:44:c3:18:80:4d:f3:ab:5d:77: a3:2d:09:8f:15:86:94:0d:f7:c9:00:8f:db:06:c3: c8:55:3f:e8:fe:8c:e6:0e:90:27:0e:51:24:b6:a9: 9b:9e:02:89:2f:42:6b:ff:65:c0:52:8c:87:4d:4f: f0:83:8e:d2:6f:ee:27:9a:91:77:eb:09:44:e3:2b: fb:81:68:92:a3:21:8b:7f:3b:54:84:ee:44:f7:27: 15:ca:6b:5d:df:ce:27:aa:b5:d6:e1:a4:53:51:f1: c8:85:c6:5e:06:01:0b:0e:e4:11:79:37:66:3b:6e: 2b:7d:36:22:17:cd:df:c1:64:9c:97:6e:34:c9:68: 5c:93:5c:4b:7b:5c:81:7a:41:55:62:3c:33:41:5a: 42:92:d6:c4:dc:e2:8e:8d:c5:ed:99:b5:6b:7a:b3: ab:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:F6:0A:16:C4:0F:AF:23:96:33:82:0D:F9:E6:50:BF:FD:35:42:CF X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/eb97279c-5cd5-487d-8327-aaaca3ddaddb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da60:2000::/40 Signature Algorithm: sha256WithRSAEncryption cb:22:75:98:e1:c0:db:7e:80:f6:7c:34:3f:19:66:6a:85:3b: 01:9f:fe:e1:e6:41:fb:62:89:92:93:4e:d6:1e:0a:e0:2e:40: 1d:13:eb:70:2b:83:c2:f5:ec:4f:56:12:bd:ac:93:9a:b8:cc: 40:fb:92:aa:a9:9a:76:eb:eb:68:56:04:e7:38:ea:27:cf:00: 90:45:33:1e:db:aa:64:45:95:24:9f:57:66:35:e0:8a:19:71: 1f:f4:80:4e:e0:67:54:3a:ec:dd:7a:3e:77:7d:b7:d5:69:e3: 9f:d9:f7:04:74:f6:7c:38:2a:c8:a5:87:5d:e8:61:20:a9:ee: db:7d:bf:5c:e0:83:74:57:18:54:3d:4d:99:58:ba:fd:eb:aa: 27:0e:ee:b1:0b:ae:12:2a:5f:82:e0:de:2e:25:76:f5:13:75: 48:62:74:7b:f8:56:0d:62:63:4c:57:38:12:ef:4e:59:cd:ab: 97:d0:ad:6e:e4:7a:8d:a5:83:ea:51:3f:b4:9b:83:17:eb:24: e8:61:62:38:b2:52:aa:9d:1d:8e:1c:7b:d3:97:a0:f7:92:5a: 5d:a1:1a:8f:12:09:6c:42:4f:ab:f6:3d:00:31:cd:a6:01:bd: d5:44:29:4a:7b:9a:f8:f0:89:b8:79:45:0d:8e:c8:8d:ee:97: ee:34:53:ea -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMxzVmOH3xBZzjqGoVkG6ETp9uogwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQxNTAwMDAwM1oX DTI1MDUyMDIzNTk1OVowejFJMEcGA1UEBRNAZmJlNzk4MGRiNmI4ZjA2MjE4NmE4 ZTBjZmQ2NjI2Y2Y4NDY1OWM2N2MzNDlhNzhlMGIwODYxYzE1Y2Q2MTM1YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmfDzr++OfLzwgLfGn5OH/ABod86 MTQolKKXbR3Dx3wDZ7B4Hb/kahCbDP6QhJ+/bEJUOGQcBjLPTvDHROe3XdZywtBq OwbM9ks8RhlXY5mka/Bq3aqctk2esB1lKS9EwxiATfOrXXejLQmPFYaUDffJAI/b BsPIVT/o/ozmDpAnDlEktqmbngKJL0Jr/2XAUoyHTU/wg47Sb+4nmpF36wlE4yv7 gWiSoyGLfztUhO5E9ycVymtd384nqrXW4aRTUfHIhcZeBgELDuQReTdmO24rfTYi F83fwWScl240yWhck1xLe1yBekFVYjwzQVpCktbE3OKOjcXtmbVrerOrbwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOT2ChbED68jljOCDfnmUL/9NULPMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2ViOTcyNzljLTVjZDUtNDg3ZC04MzI3LWFhYWNhM2RkYWRkYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYCAwDQYJKoZIhvcNAQELBQADggEBAMsidZjhwNt+gPZ8ND8Z ZmqFOwGf/uHmQftiiZKTTtYeCuAuQB0T63Arg8L17E9WEr2sk5q4zED7kqqpmnbr 62hWBOc46ifPAJBFMx7bqmRFlSSfV2Y14IoZcR/0gE7gZ1Q67N16Pnd9t9Vp45/Z 9wR09nw4Ksilh13oYSCp7tt9v1zgg3RXGFQ9TZlYuv3rqicO7rELrhIqX4Lg3i4l dvUTdUhidHv4Vg1iY0xXOBLvTlnNq5fQrW7keo2lg+pRP7SbgxfrJOhhYjiyUqqd HY4ce9OXoPeSWl2hGo8SCWxCT6v2PQAxzaYBvdVEKUp7mvjwibh5RQ2OyI3ul+40 U+o= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:52 2025 by rpki-client on console.sobornost.net