$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/6982f3ac-c7ae-423c-a028-517d7541d973.roa File: 6982f3ac-c7ae-423c-a028-517d7541d973.roa (raw, json) Hash identifier: +1qhA0qqK2NjVj1z4Ed9dkztWxHZdc+r8eaFbwy+2a8= Subject key identifier: 05:F9:DC:08:C1:7F:CD:9D:90:0B:BA:AE:64:19:98:BE:86:9A:73:11 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 68ED325B6D40B96DB1DA6D3B776444720A1E3DB1 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/6982f3ac-c7ae-423c-a028-517d7541d973.roa Signing time: Mon 21 Apr 2025 17:00:07 +0000 ROA not before: Mon 21 Apr 2025 17:00:07 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ed:32:5b:6d:40:b9:6d:b1:da:6d:3b:77:64:44:72:0a:1e:3d:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 21 17:00:07 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=e9331f38b69bcf8f3a8e48ddbb058ed8a8add06e29c09c4ac5c3b2305cccdb63, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:d5:05:1a:07:ed:6e:91:56:9d:3c:3b:5b: e9:57:c8:c3:ed:2e:9b:e8:cd:b8:8f:96:99:82:ea: 4e:48:b5:16:7a:9f:34:73:b8:95:71:4b:f5:22:c4: 32:c9:7a:be:02:a1:e3:d5:34:ef:7a:e4:e7:0a:8e: 8b:66:0f:d9:78:81:d6:07:e4:93:ad:7f:3d:15:28: 79:fe:82:95:cd:66:7c:42:a2:99:eb:98:2a:fb:7c: d8:81:38:c7:2c:6c:29:3d:e2:d2:fd:3b:69:7e:ed: e0:4d:69:81:ab:26:93:af:c0:1f:67:fa:c2:68:b8: a0:3b:27:5f:a8:cc:25:91:d3:48:16:7f:51:10:43: 35:81:7f:77:24:b4:7b:71:02:42:29:5b:4f:dc:a6: 46:e1:73:1c:0b:ca:d7:5b:1e:ab:e9:a6:31:b1:30: 5c:0e:91:dd:50:d2:a1:50:a2:62:88:db:6e:85:8c: 99:bd:25:ab:2a:84:63:dd:bf:2b:ac:0a:74:cd:3e: 96:1c:5b:f1:f3:7b:4c:fc:fe:96:c2:91:13:6c:73: 6a:10:ee:1c:92:e9:db:e0:de:4e:93:98:25:d0:90: f0:de:94:44:43:bc:4a:f7:69:7d:7f:9b:49:c9:d9: 2c:3f:11:eb:ee:7e:77:de:8f:09:6b:17:01:2c:7e: f1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F9:DC:08:C1:7F:CD:9D:90:0B:BA:AE:64:19:98:BE:86:9A:73:11 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/6982f3ac-c7ae-423c-a028-517d7541d973.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:1000::/40 Signature Algorithm: sha256WithRSAEncryption 05:d3:33:4d:6b:0f:b2:3c:b2:37:12:59:42:8f:2a:a4:3f:e1: 73:d7:84:6b:5d:bb:31:fb:95:10:14:07:74:bc:a0:cb:53:bd: 5d:23:db:92:3e:1f:ec:48:f2:56:b0:6a:1e:b5:20:1e:e9:f2: dd:1c:9a:97:54:c4:d9:ec:12:9b:11:fb:2e:2f:be:53:c4:75: db:4b:3c:82:e0:39:66:2a:61:2a:94:b2:24:d1:67:73:69:25: 0c:93:06:26:0f:8b:86:88:6f:0d:6f:3e:4a:ec:4a:b9:a3:f3: 87:1b:f9:6b:75:55:38:09:52:92:c7:b2:7c:79:79:6b:bc:a7: 3b:71:4d:44:ea:dd:9d:9b:2c:7d:01:b9:51:27:85:26:49:71: 75:7c:83:0f:bc:8d:56:ab:15:0c:49:6d:c6:ba:c4:20:74:fb: 5d:c6:f5:81:2c:18:a4:9a:22:5b:c9:29:b0:ae:ec:ee:d5:8c: 38:01:66:4b:81:f8:aa:4d:ae:ba:43:7c:e0:d6:3b:2d:66:c2: b7:93:49:04:56:a0:b0:49:07:77:b7:49:ef:42:d9:5a:6a:f6: 21:78:ab:ab:ce:2d:f5:3e:2a:5f:15:ef:59:57:4e:75:51:33: ec:38:21:1b:19:53:fd:e8:a7:4b:1d:2a:13:a3:14:92:d7:78: 40:a9:ea:ec -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUaO0yW21AuW2x2m07d2REcgoePbEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDQyMTE3MDAwN1oX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNAZTkzMzFmMzhiNjliY2Y4ZjNhOGU0 OGRkYmIwNThlZDhhOGFkZDA2ZTI5YzA5YzRhYzVjM2IyMzA1Y2NjZGI2MzEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2YrVBRoH7W6RVp08O1vpV8jD7S6b 6M24j5aZgupOSLUWep80c7iVcUv1IsQyyXq+AqHj1TTveuTnCo6LZg/ZeIHWB+ST rX89FSh5/oKVzWZ8QqKZ65gq+3zYgTjHLGwpPeLS/Ttpfu3gTWmBqyaTr8AfZ/rC aLigOydfqMwlkdNIFn9REEM1gX93JLR7cQJCKVtP3KZG4XMcC8rXWx6r6aYxsTBc DpHdUNKhUKJiiNtuhYyZvSWrKoRj3b8rrAp0zT6WHFvx83tM/P6WwpETbHNqEO4c kunb4N5Ok5gl0JDw3pREQ7xK92l9f5tJydksPxHr7n533o8JaxcBLH7xzwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAX53AjBf82dkAu6rmQZmL6GmnMRMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzY5ODJmM2FjLWM3YWUtNDIzYy1hMDI4LTUxN2Q3NTQxZDk3My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAOzABAwDQYJKoZIhvcNAQELBQADggEBAAXTM01rD7I8sjcSWUKP KqQ/4XPXhGtduzH7lRAUB3S8oMtTvV0j25I+H+xI8lawah61IB7p8t0cmpdUxNns EpsR+y4vvlPEddtLPILgOWYqYSqUsiTRZ3NpJQyTBiYPi4aIbw1vPkrsSrmj84cb +Wt1VTgJUpLHsnx5eWu8pztxTUTq3Z2bLH0BuVEnhSZJcXV8gw+8jVarFQxJbca6 xCB0+13G9YEsGKSaIlvJKbCu7O7VjDgBZkuB+KpNrrpDfODWOy1mwreTSQRWoLBJ B3e3Se9C2Vpq9iF4q6vOLfU+Kl8V71lXTnVRM+w4IRsZU/3op0sdKhOjFJLXeECp 6uw= -----END CERTIFICATE-----Generated at Wed Apr 23 19:52:09 2025 by rpki-client on console.sobornost.net