$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa File: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (raw, json) Hash identifier: 1iH3uZQnNnd61RpxCzno6ZWy/8vdzmadYxVeuAMZhZA= Subject key identifier: 77:67:B7:E1:8D:19:89:59:BC:05:BB:9E:53:4E:7E:A7:BB:8B:13:AD Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 2B0CA52239D88A1AF5949E9CC34E8D7A4AB94BE9 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa Signing time: Mon 31 Mar 2025 15:00:35 +0000 ROA not before: Mon 31 Mar 2025 15:00:35 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:0c:a5:22:39:d8:8a:1a:f5:94:9e:9c:c3:4e:8d:7a:4a:b9:4b:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Mar 31 15:00:35 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=b709f36c8ed794c33558b4cbe05327626723124023271dd650e07880b0be3784, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:87:56:48:13:10:8c:9a:45:f6:01:e3:bf:c7: 7a:0e:07:36:18:62:79:75:85:74:3c:04:09:40:5f: a3:96:e2:4b:48:78:1a:6d:c1:ea:a0:b2:37:32:5c: ae:2d:e4:ed:21:fd:e1:64:f2:46:6b:12:9e:de:c1: 09:9b:c1:9f:b3:c3:b6:c6:09:23:7e:99:07:87:92: dd:5b:24:a3:70:5b:76:62:ad:82:61:af:8e:d6:46: df:3f:6a:cf:48:d0:a6:6c:c1:f7:32:47:78:79:8d: c9:82:98:b7:4c:2a:2e:bc:8b:62:cc:8d:4c:01:ee: 6b:15:79:56:e4:51:cc:40:83:c7:7d:3f:10:e8:46: 45:e3:11:17:40:52:db:44:c4:a8:4f:ab:d3:32:3d: 9d:f5:d0:60:f0:b1:d3:ba:20:4f:67:99:69:c4:f6: b0:9d:47:26:45:5a:77:67:88:72:40:f6:23:fe:11: 7c:ed:80:38:ce:db:e4:86:bc:32:20:d4:5e:bb:d2: df:f9:ae:17:7f:02:dc:4d:2e:9b:3d:86:29:a4:dd: f0:c7:d5:77:72:e0:a4:db:fa:16:0e:22:e8:41:dd: bf:95:73:d2:59:7e:7e:69:b1:52:cc:83:26:cd:33: dd:46:14:8a:32:bc:5a:98:a2:86:62:87:73:a7:05: a0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:67:B7:E1:8D:19:89:59:BC:05:BB:9E:53:4E:7E:A7:BB:8B:13:AD X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/48 Signature Algorithm: sha256WithRSAEncryption 74:56:15:8a:4c:c0:00:1a:63:b4:d4:17:56:29:f3:27:49:85: bc:98:83:20:a7:33:20:de:29:56:b0:c4:04:fc:fe:4c:9c:34: cc:56:cc:2b:00:7f:db:42:eb:e8:0b:1f:3d:50:cc:20:f3:e4: 80:ce:5e:93:88:f0:24:2c:1c:ea:79:5c:42:8d:6e:e5:22:e4: bd:f9:85:6d:f6:cb:2c:7c:01:62:1d:e9:01:05:de:3d:25:1d: 77:b8:a8:ca:d0:48:c4:55:b2:de:bb:82:74:52:eb:3f:e9:ad: e5:ff:c8:70:06:00:1b:80:34:72:59:ad:e6:e3:dd:ce:b0:7a: 20:16:f8:f2:26:95:ce:29:14:65:8a:20:9b:83:5d:dd:82:2e: d6:10:10:5d:33:89:4b:cc:03:c1:bc:5a:24:f5:b8:54:63:f2: 96:fe:a4:67:f0:d8:f9:68:85:c7:e1:68:f2:a0:dd:05:b3:30: 35:9a:db:ce:22:0f:f6:a1:78:29:a1:21:c1:0a:8b:b1:ad:f3: af:e9:83:b6:c9:b0:f6:61:46:f0:82:8b:07:63:5d:94:ad:93: 1a:ac:4d:19:19:51:0a:36:59:86:23:20:17:e0:5a:83:7f:05: 66:af:23:b5:db:b6:71:c6:89:1e:c2:6d:ec:27:73:bd:d7:66: 4d:6b:07:3f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUKwylIjnYihr1lJ6cw06Nekq5S+kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDMzMTE1MDAzNVoX DTI1MDUwNTIzNTk1OVowejFJMEcGA1UEBRNAYjcwOWYzNmM4ZWQ3OTRjMzM1NThi NGNiZTA1MzI3NjI2NzIzMTI0MDIzMjcxZGQ2NTBlMDc4ODBiMGJlMzc4NDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqodWSBMQjJpF9gHjv8d6Dgc2GGJ5 dYV0PAQJQF+jluJLSHgabcHqoLI3MlyuLeTtIf3hZPJGaxKe3sEJm8Gfs8O2xgkj fpkHh5LdWySjcFt2Yq2CYa+O1kbfP2rPSNCmbMH3Mkd4eY3Jgpi3TCouvItizI1M Ae5rFXlW5FHMQIPHfT8Q6EZF4xEXQFLbRMSoT6vTMj2d9dBg8LHTuiBPZ5lpxPaw nUcmRVp3Z4hyQPYj/hF87YA4ztvkhrwyINReu9Lf+a4XfwLcTS6bPYYppN3wx9V3 cuCk2/oWDiLoQd2/lXPSWX5+abFSzIMmzTPdRhSKMrxamKKGYodzpwWguwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHdnt+GNGYlZvAW7nlNOfqe7ixOtMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzM4MWZjNmU2LTVkNDktNDFiYy1iNTg0LWQ5NDM3YzY4ZTNjZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQB0VhWKTMAAGmO01BdW KfMnSYW8mIMgpzMg3ilWsMQE/P5MnDTMVswrAH/bQuvoCx89UMwg8+SAzl6TiPAk LBzqeVxCjW7lIuS9+YVt9sssfAFiHekBBd49JR13uKjK0EjEVbLeu4J0Uus/6a3l /8hwBgAbgDRyWa3m493OsHogFvjyJpXOKRRliiCbg13dgi7WEBBdM4lLzAPBvFok 9bhUY/KW/qRn8Nj5aIXH4WjyoN0FszA1mtvOIg/2oXgpoSHBCouxrfOv6YO2ybD2 YUbwgosHY12UrZMarE0ZGVEKNlmGIyAX4FqDfwVmryO127Zxxokewm3sJ3O912ZN awc/ -----END CERTIFICATE-----Generated at Wed Apr 23 19:52:09 2025 by rpki-client on console.sobornost.net