$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa File: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (raw, json) Hash identifier: unJs7L9jBiYMzZ+XInHg3FoXSgS2BNdE+L1XxwQkdRU= Subject key identifier: 3D:B3:77:24:B7:C2:0D:A9:E4:B1:C5:CD:90:C1:7B:13:14:D9:36:C2 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 74FFC81F450EAF0E177EF26459E489789C721223 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa Signing time: Sat 05 Apr 2025 00:00:02 +0000 ROA not before: Sat 05 Apr 2025 00:00:02 +0000 ROA not after: Sat 10 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:ff:c8:1f:45:0e:af:0e:17:7e:f2:64:59:e4:89:78:9c:72:12:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Apr 5 00:00:02 2025 GMT Not After : May 10 23:59:59 2025 GMT Subject: serialNumber=6aabc764b922fa622fa15757ee609a70ca14d8de8b3f30f2dd4b6103b6dd5d9a, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7f:9f:5d:fb:45:c7:52:da:cd:df:e5:af:84: cf:dd:22:5b:6f:e4:37:c7:62:5b:48:28:8c:66:1f: bf:13:91:e4:2c:d7:91:c2:38:95:00:7c:57:5b:05: ac:85:09:86:65:cb:f6:85:9d:09:73:9c:9f:78:6e: b7:35:bb:ff:2c:73:15:19:17:4b:89:93:3e:b5:18: 19:c9:3f:9a:51:53:c7:8b:9c:2c:e7:d3:97:72:58: 17:2f:fc:89:95:f9:95:14:50:96:1a:75:06:a3:cd: 4b:3c:4f:7e:18:b1:8a:e8:c0:1c:ac:16:f6:1d:60: b3:30:6e:37:3c:98:4c:96:a7:80:e8:8a:f2:a4:f1: fb:b0:5a:b8:f7:62:85:c2:e0:06:a5:0a:68:50:b4: fb:47:3b:f5:2c:ee:5f:f6:2d:74:ea:bc:eb:e6:59: 90:58:96:e7:69:9f:ee:c3:8e:59:b0:5c:f5:ce:ec: b6:54:12:09:d9:11:16:24:8a:f2:ed:aa:99:94:d3: 69:4d:8f:5d:28:b4:ee:f0:8c:bc:da:67:2e:ae:08: 9b:0c:6e:2c:02:a2:6d:d3:2e:4a:73:c1:6a:cb:c9: 24:85:ee:24:05:09:25:7b:cd:0d:ad:bb:b0:6d:a2: 6e:52:99:18:07:2c:74:af:de:23:76:9c:dd:fb:ca: ac:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B3:77:24:B7:C2:0D:A9:E4:B1:C5:CD:90:C1:7B:13:14:D9:36:C2 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 21:56:0d:4f:6d:89:e8:0b:c3:79:2d:66:6c:85:02:94:9d:6d: b5:f4:49:34:e9:90:cb:54:79:a9:27:28:57:f6:60:d6:b6:11: b1:19:ee:9d:59:ff:ec:06:c3:4b:e1:57:b7:da:e7:7d:b5:d2: fd:da:3c:88:0f:c1:d6:14:c6:67:1f:33:e7:9c:9a:9c:44:19: c4:f8:a4:c6:e0:d3:16:28:0b:25:52:4f:5e:4d:cc:a2:32:05: 6d:c5:82:4f:9c:66:25:df:66:ec:5b:97:96:b5:62:f1:a4:ac: 74:5b:72:ad:16:7c:83:53:d8:e2:28:63:2d:cb:d1:c8:2c:c8: 92:40:79:28:89:f5:a0:ac:c6:71:bf:0c:0b:57:00:18:37:c6: bd:17:35:5b:86:31:f9:ac:7e:be:1a:df:a6:43:0a:8b:81:c1: c1:89:e8:75:2c:f1:b4:2f:d3:12:0b:09:d0:1a:7e:33:b0:8c: 39:35:e2:14:30:1c:ea:78:90:6f:99:69:84:d7:3a:2b:b3:ef: a7:54:94:00:52:43:72:9e:65:e6:40:a8:c2:7f:9e:b6:5e:52: a5:be:14:c1:f4:79:ce:23:55:e5:bf:a7:3e:a2:4d:50:84:34: c3:ec:1e:fd:65:f7:31:b0:fd:31:69:5e:eb:62:55:80:d6:45: b8:90:1c:06 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdP/IH0UOrw4XfvJkWeSJeJxyEiMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MDQwNTAwMDAwMloX DTI1MDUxMDIzNTk1OVowejFJMEcGA1UEBRNANmFhYmM3NjRiOTIyZmE2MjJmYTE1 NzU3ZWU2MDlhNzBjYTE0ZDhkZThiM2YzMGYyZGQ0YjYxMDNiNmRkNWQ5YTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApn+fXftFx1Lazd/lr4TP3SJbb+Q3 x2JbSCiMZh+/E5HkLNeRwjiVAHxXWwWshQmGZcv2hZ0Jc5yfeG63Nbv/LHMVGRdL iZM+tRgZyT+aUVPHi5ws59OXclgXL/yJlfmVFFCWGnUGo81LPE9+GLGK6MAcrBb2 HWCzMG43PJhMlqeA6IrypPH7sFq492KFwuAGpQpoULT7Rzv1LO5f9i106rzr5lmQ WJbnaZ/uw45ZsFz1zuy2VBIJ2REWJIry7aqZlNNpTY9dKLTu8Iy82mcurgibDG4s AqJt0y5Kc8Fqy8kkhe4kBQkle80NrbuwbaJuUpkYByx0r94jdpzd+8qsbwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFD2zdyS3wg2p5LHFzZDBexMU2TbCMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2ZjZDZhZGFiLTA2ZjAtNDY3Ni05NTY4LTZkNGQ0OGY3NjU4Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQAhVg1PbYnoC8N5LWZs hQKUnW219Ek06ZDLVHmpJyhX9mDWthGxGe6dWf/sBsNL4Ve32ud9tdL92jyID8HW FMZnHzPnnJqcRBnE+KTG4NMWKAslUk9eTcyiMgVtxYJPnGYl32bsW5eWtWLxpKx0 W3KtFnyDU9jiKGMty9HILMiSQHkoifWgrMZxvwwLVwAYN8a9FzVbhjH5rH6+Gt+m QwqLgcHBieh1LPG0L9MSCwnQGn4zsIw5NeIUMBzqeJBvmWmE1zors++nVJQAUkNy nmXmQKjCf562XlKlvhTB9HnOI1Xlv6c+ok1QhDTD7B79ZfcxsP0xaV7rYlWA1kW4 kBwG -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net