$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2720640e-9111-44dd-a0b8-a005f04956a0.roa File: 2720640e-9111-44dd-a0b8-a005f04956a0.roa (raw, json) Hash identifier: 2LJ9jjNpqqof0xvo4FPMtyfkaKh4lGYf7SJbyoMNmB4= Subject key identifier: 51:1A:51:19:BD:31:86:8D:F2:63:65:FB:EA:03:1C:2A:36:73:DC:98 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 542E43ABFD1A95C6AE9C406759584436886C6220 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2720640e-9111-44dd-a0b8-a005f04956a0.roa Signing time: Tue 22 Apr 2025 00:00:06 +0000 ROA not before: Tue 22 Apr 2025 00:00:06 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80a0:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:2e:43:ab:fd:1a:95:c6:ae:9c:40:67:59:58:44:36:88:6c:62:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 22 00:00:06 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=82441a0beeac2232b49e4dd3851d41542780b078fa028d3d26da0e70e06b9683, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:54:dd:c1:27:12:16:24:c9:aa:58:6f:c5:2e: c7:3e:ce:92:53:f9:fd:93:8e:fc:4b:2d:41:8f:61: 3e:f2:1c:ad:04:db:25:6c:8b:d3:b7:87:a4:ff:bc: cb:44:c0:60:c4:82:a0:38:d8:34:7e:a4:49:07:6b: 3b:64:49:01:d9:47:72:ae:36:05:90:5d:6d:84:8e: fa:bf:06:fd:0d:ad:26:1b:37:6b:50:fe:9e:bb:7a: 82:7e:a7:93:ad:83:e1:94:f7:06:b6:1c:dc:32:20: 49:e2:4f:ad:36:26:f7:46:eb:60:c1:9f:19:e8:36: 4a:86:a4:4a:23:e1:7c:a6:58:e9:fd:13:df:72:c3: 5a:38:b0:0f:6b:6b:ed:d3:3b:4b:66:6f:b5:27:8a: ee:3a:6b:3a:70:b7:0e:a9:a8:d4:6b:7b:3f:29:10: f0:87:8e:4e:24:5a:b3:fc:b9:b2:e3:0e:4a:1c:12: f2:3a:9a:05:91:95:b8:b0:f3:52:8f:67:e1:05:08: 2a:56:cf:8f:bc:bc:97:5f:9f:bb:aa:cf:8c:18:0f: fd:f4:14:b1:20:60:7a:8c:f9:3d:3a:5d:40:f0:16: 74:7e:6f:46:11:5f:7c:fc:f8:c5:84:96:fc:a1:4e: 72:4a:71:35:9f:ae:0c:48:ec:b4:55:0b:a7:b4:f3: 2a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:1A:51:19:BD:31:86:8D:F2:63:65:FB:EA:03:1C:2A:36:73:DC:98 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2720640e-9111-44dd-a0b8-a005f04956a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80a0:8000::/40 Signature Algorithm: sha256WithRSAEncryption 34:5a:7a:4e:4c:bb:a4:43:54:f1:73:e3:d4:17:61:0d:82:6e: 82:84:be:8f:25:1f:0c:20:60:1e:e7:50:19:25:6e:ae:4a:c1: c6:28:fa:c8:34:8a:7a:76:3e:5c:a0:69:fd:2b:b4:98:a8:c3: 47:55:1f:42:cf:21:41:1b:f2:01:e2:7c:a2:8c:af:a1:d3:3e: 9e:8e:f1:e0:46:9b:67:37:ab:9a:c4:e7:32:3f:6d:96:f2:dd: 97:92:42:c6:e5:76:43:e3:63:73:76:55:47:57:ea:3d:cb:b6: b0:3e:27:f7:73:ea:44:b7:5e:90:6c:2a:d6:0c:b2:4e:eb:c3: c0:3b:b3:67:7f:6c:4c:c2:8c:32:0e:d2:d8:6c:3d:b5:71:ee: fc:e0:e0:ae:88:9c:7b:9c:ea:f4:11:b5:9f:85:11:52:7d:85: 8a:eb:42:55:64:60:f6:c4:ca:68:c5:15:9e:9e:ce:f5:35:01: c0:c2:8f:0d:6e:82:4d:c0:da:b7:d1:7e:e7:8a:e0:9b:5b:55: 6e:21:ff:35:d5:53:43:64:c1:c7:49:28:f5:44:68:7f:90:66: 0a:5e:5a:0d:de:e6:b0:14:7b:80:fd:11:af:87:aa:c9:fb:fa: 77:ef:b5:3e:72:31:3c:11:36:9b:b3:9e:b0:23:2f:f0:65:18: 18:46:e7:49 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUVC5Dq/0alcaunEBnWVhENohsYiAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDQyMjAwMDAwNloX DTI1MDUyNzIzNTk1OVowejFJMEcGA1UEBRNAODI0NDFhMGJlZWFjMjIzMmI0OWU0 ZGQzODUxZDQxNTQyNzgwYjA3OGZhMDI4ZDNkMjZkYTBlNzBlMDZiOTY4MzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlTdwScSFiTJqlhvxS7HPs6SU/n9 k478Sy1Bj2E+8hytBNslbIvTt4ek/7zLRMBgxIKgONg0fqRJB2s7ZEkB2UdyrjYF kF1thI76vwb9Da0mGzdrUP6eu3qCfqeTrYPhlPcGthzcMiBJ4k+tNib3RutgwZ8Z 6DZKhqRKI+F8pljp/RPfcsNaOLAPa2vt0ztLZm+1J4ruOms6cLcOqajUa3s/KRDw h45OJFqz/Lmy4w5KHBLyOpoFkZW4sPNSj2fhBQgqVs+PvLyXX5+7qs+MGA/99BSx IGB6jPk9Ol1A8BZ0fm9GEV98/PjFhJb8oU5ySnE1n64MSOy0VQuntPMq0wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFEaURm9MYaN8mNl++oDHCo2c9yYMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzI3MjA2NDBlLTkxMTEtNDRkZC1hMGI4LWEwMDVmMDQ5NTZhMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+AoIAwDQYJKoZIhvcNAQELBQADggEBADRaek5Mu6RDVPFz49QX YQ2CboKEvo8lHwwgYB7nUBklbq5KwcYo+sg0inp2Plygaf0rtJiow0dVH0LPIUEb 8gHifKKMr6HTPp6O8eBGm2c3q5rE5zI/bZby3ZeSQsbldkPjY3N2VUdX6j3LtrA+ J/dz6kS3XpBsKtYMsk7rw8A7s2d/bEzCjDIO0thsPbVx7vzg4K6InHuc6vQRtZ+F EVJ9hYrrQlVkYPbEymjFFZ6ezvU1AcDCjw1ugk3A2rfRfueK4JtbVW4h/zXVU0Nk wcdJKPVEaH+QZgpeWg3e5rAUe4D9Ea+Hqsn7+nfvtT5yMTwRNpuznrAjL/BlGBhG 50k= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net