$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa File: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (raw, json) Hash identifier: 7KzGttKynZlvnYP/ZP5ueEcIMwuPs7sUrL3QVzhHmDM= Subject key identifier: 2B:47:54:54:C4:B1:49:BA:EF:D8:ED:C5:EB:6E:C3:84:40:9D:10:93 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 0B8579BC4FF4AFA5B74EEEBA82772DF467DBEE18 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa Signing time: Mon 21 Apr 2025 17:00:08 +0000 ROA not before: Mon 21 Apr 2025 17:00:08 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:85:79:bc:4f:f4:af:a5:b7:4e:ee:ba:82:77:2d:f4:67:db:ee:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Apr 21 17:00:08 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=650fdd748713b5152a8e761c446a38ccbbd7851246d9c37fb3c59b7ee0bfd2a1, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b2:b4:30:42:ea:a6:87:1f:ae:81:7b:4a:7e: e0:8e:70:12:25:86:bd:0a:a1:1e:67:75:46:85:2f: 84:ab:b4:20:26:eb:bd:1d:66:0f:fa:58:00:e9:8b: 45:87:50:c0:4f:ce:38:89:7b:e9:f0:7d:d3:d9:28: f5:4d:69:36:8f:62:1b:be:42:dc:2d:5d:d6:f8:91: 07:ad:e2:1d:54:a8:ee:ce:d1:22:51:f7:59:bc:46: c8:80:64:35:6a:32:d2:22:21:69:4b:73:63:be:f1: 9e:1c:50:5b:97:3d:e2:c8:79:26:1f:2f:4e:5b:ae: a8:c0:d8:1e:80:34:8c:3c:b6:ab:53:28:d5:f2:2d: cd:40:74:bc:28:81:46:cc:27:9b:b6:1e:f9:dd:e3: 99:69:c0:9d:9b:26:f6:8d:a4:9e:29:50:5d:2a:ed: 63:41:13:d4:e8:c4:f9:b0:72:32:03:91:c0:be:2d: ae:4e:32:bf:17:da:1a:6d:fd:cc:fd:7e:e6:12:82: 24:a5:da:e9:be:ef:98:b0:bd:cc:0d:44:c3:e7:d5: e9:2d:2e:0a:c7:67:05:00:31:82:ca:8d:b7:86:c8: e2:ac:e6:d3:0f:cc:6d:75:10:24:d2:0a:7e:22:18: f4:12:cc:9a:51:b9:81:a1:41:40:2f:05:74:cc:88: db:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:47:54:54:C4:B1:49:BA:EF:D8:ED:C5:EB:6E:C3:84:40:9D:10:93 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/32 Signature Algorithm: sha256WithRSAEncryption 4b:5e:32:fc:48:44:86:f8:bd:23:49:8f:1a:c9:b6:f5:32:73: 0c:2f:f7:65:57:1d:c8:0b:fc:3a:87:3c:3c:65:5c:c7:e6:dd: 6c:b1:20:bb:4c:af:c4:1b:d9:bc:7f:44:ed:fe:22:da:ac:7a: 20:ec:e9:21:c1:43:c1:d8:41:e3:6f:18:57:37:7d:70:cd:90: ff:cd:98:c3:58:70:0c:40:47:36:16:7d:14:e7:d1:fc:4a:fa: eb:77:64:d6:2d:3e:9f:af:9f:33:d6:3b:91:78:8c:94:04:ec: 63:8e:b8:4d:d6:73:34:74:c4:4d:59:65:61:12:62:7e:07:e3: 48:6b:1a:d9:49:37:0f:1c:1d:63:fa:40:74:f9:4c:63:07:42: b7:28:3f:46:66:4f:05:c4:cb:8f:16:d1:fc:ab:c6:33:f0:85: 65:2f:b8:86:22:0e:94:c4:b0:c1:ca:8b:e4:e0:8f:8e:bb:3a: 04:88:04:28:bd:98:ff:56:e0:da:a2:49:9d:c0:cf:c3:72:98: 2d:e3:4e:34:c9:11:43:5d:1e:2d:3a:af:f5:5e:fc:21:bb:65: cc:db:d6:8e:77:53:e1:b1:d0:6a:5c:4f:8f:22:ec:d6:09:2f: 62:7d:97:e0:69:38:67:a6:49:8e:a5:8b:eb:51:df:c7:ee:3f: 22:48:c7:ea -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUC4V5vE/0r6W3Tu66gnct9Gfb7hgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MDQyMTE3MDAwOFoX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNANjUwZmRkNzQ4NzEzYjUxNTJhOGU3 NjFjNDQ2YTM4Y2NiYmQ3ODUxMjQ2ZDljMzdmYjNjNTliN2VlMGJmZDJhMTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7K0MELqpocfroF7Sn7gjnASJYa9 CqEeZ3VGhS+Eq7QgJuu9HWYP+lgA6YtFh1DAT844iXvp8H3T2Sj1TWk2j2IbvkLc LV3W+JEHreIdVKjuztEiUfdZvEbIgGQ1ajLSIiFpS3NjvvGeHFBblz3iyHkmHy9O W66owNgegDSMPLarUyjV8i3NQHS8KIFGzCebth753eOZacCdmyb2jaSeKVBdKu1j QRPU6MT5sHIyA5HAvi2uTjK/F9oabf3M/X7mEoIkpdrpvu+YsL3MDUTD59XpLS4K x2cFADGCyo23hsjirObTD8xtdRAk0gp+Ihj0EsyaUbmBoUFALwV0zIjbJQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFCtHVFTEsUm679jtxetuw4RAnRCTMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2NjMmY3MDkzLTIxYTYtNDAwZi05ZGIxLTkzYzJmZTAyYmMxYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAOzADANBgkqhkiG9w0BAQsFAAOCAQEAS14y/EhEhvi9I0mPGsm2 9TJzDC/3ZVcdyAv8Ooc8PGVcx+bdbLEgu0yvxBvZvH9E7f4i2qx6IOzpIcFDwdhB 428YVzd9cM2Q/82Yw1hwDEBHNhZ9FOfR/Er663dk1i0+n6+fM9Y7kXiMlATsY464 TdZzNHTETVllYRJifgfjSGsa2Uk3DxwdY/pAdPlMYwdCtyg/RmZPBcTLjxbR/KvG M/CFZS+4hiIOlMSwwcqL5OCPjrs6BIgEKL2Y/1bg2qJJncDPw3KYLeNONMkRQ10e LTqv9V78IbtlzNvWjndT4bHQalxPjyLs1gkvYn2X4Gk4Z6ZJjqWL61Hfx+4/IkjH 6g== -----END CERTIFICATE-----Generated at Wed Apr 23 19:52:09 2025 by rpki-client on console.sobornost.net