$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa File: 33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa (raw, json) Hash identifier: 0FKOrLGlhXI2DorwKiDwrqkgpYATgig9Q0f3hNgd1ZI= Subject key identifier: 7E:25:76:07:BC:69:54:A8:C5:08:5E:79:D6:E2:73:56:5B:EA:23:92 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 2D2F8DE3647A2D8F77FBB92AC7BF0491B5D1EAA8 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa Signing time: Mon 31 Mar 2025 15:01:20 +0000 ROA not before: Mon 31 Mar 2025 15:01:20 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:2f:8d:e3:64:7a:2d:8f:77:fb:b9:2a:c7:bf:04:91:b5:d1:ea:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Mar 31 15:01:20 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=d56aed668d5bc4c61e7905872fb30836661a2a7f8b92c5d13a393e1e6c12ccf6, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:08:23:b5:a6:d6:33:ea:c6:41:f7:e9:96:7e: af:fa:a8:01:9d:6a:4b:3d:d3:35:38:35:3b:cb:96: 7f:22:c4:e3:58:23:48:49:8f:7b:89:ea:b6:74:4b: 1b:bf:d4:c5:bb:d4:79:b8:25:4a:fe:85:55:49:85: 29:de:60:57:ff:c9:5f:4f:28:d3:80:f3:97:8c:77: df:93:56:90:f8:a5:25:2a:71:46:4b:e4:51:c1:4c: ea:ef:23:c0:1f:8d:04:2f:1b:d0:1e:20:fa:0f:95: 44:d9:b8:6a:79:74:3f:ef:cb:92:72:56:67:a7:2a: 08:b5:c3:03:46:0f:b2:b2:1e:f5:cd:24:2d:14:0b: d7:b7:c4:42:94:92:13:5e:cf:c4:60:ab:6b:ea:14: 52:cb:44:e9:17:dd:c9:13:81:22:f3:8f:b1:d1:1d: a7:cf:11:40:5b:86:e1:2e:39:eb:8d:dd:7e:fb:6d: dc:83:ea:5b:86:16:ee:24:5b:a3:63:15:8e:68:8c: 16:70:2e:40:52:1e:38:68:32:85:68:fd:55:de:2d: 1d:8c:bd:6a:db:c5:04:d2:8b:e7:12:f8:67:23:4b: 8e:c5:fc:f8:c4:e9:f7:f7:b0:bf:82:14:11:6b:c3: 5f:ee:ec:59:4c:9b:1c:50:2c:c7:ac:2e:dc:cc:e9: 0b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:25:76:07:BC:69:54:A8:C5:08:5E:79:D6:E2:73:56:5B:EA:23:92 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4080::/48 Signature Algorithm: sha256WithRSAEncryption 63:71:28:2b:23:4d:6d:45:ce:42:07:75:8d:3d:00:76:72:af: 41:00:d6:29:fb:55:13:a9:fb:a4:77:e4:e2:56:dc:01:46:af: fe:63:5a:cc:79:5d:a8:23:37:22:70:b4:9b:61:bf:2a:e9:90: ca:cd:f8:cf:59:df:0b:83:ad:11:b2:93:f0:f2:02:2f:5a:4e: 21:be:b6:5b:c6:64:2c:fa:4e:59:31:0f:0c:14:71:24:b1:55: a1:16:aa:c4:f0:04:7c:7a:ea:7b:2c:33:98:0a:3a:b3:d7:2f: 05:5d:39:ac:82:27:72:07:07:55:bb:87:9a:0b:2c:a3:06:05: c5:8c:24:a5:67:ce:f7:1f:22:f2:6a:84:03:86:af:7f:1f:80: 0f:db:a7:ef:3e:71:65:05:6b:1e:e2:b7:6d:00:ae:32:c2:03: c1:66:39:f0:0f:5d:4a:68:bc:d9:bb:3a:b0:ce:9d:30:d7:b8: ba:60:32:cd:fc:e8:4a:9e:a0:ba:2b:a0:a3:44:88:62:f2:b6: 29:61:33:fe:0c:27:34:09:f5:a0:33:65:cb:ef:5c:d4:b9:fc: e4:e4:52:ba:6c:93:25:53:7d:8d:c0:e0:ff:6c:32:a7:ef:f4: 47:14:af:b5:1d:28:61:c8:4c:e3:17:3b:37:13:66:43:19:ec: db:82:08:40 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIULS+N42R6LY93+7kqx78EkbXR6qgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDMzMTE1MDEyMFoX DTI1MDUwNTIzNTk1OVowejFJMEcGA1UEBRNAZDU2YWVkNjY4ZDViYzRjNjFlNzkw NTg3MmZiMzA4MzY2NjFhMmE3ZjhiOTJjNWQxM2EzOTNlMWU2YzEyY2NmNjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiwgjtabWM+rGQffpln6v+qgBnWpL PdM1ODU7y5Z/IsTjWCNISY97ieq2dEsbv9TFu9R5uCVK/oVVSYUp3mBX/8lfTyjT gPOXjHffk1aQ+KUlKnFGS+RRwUzq7yPAH40ELxvQHiD6D5VE2bhqeXQ/78uSclZn pyoItcMDRg+ysh71zSQtFAvXt8RClJITXs/EYKtr6hRSy0TpF93JE4Ei84+x0R2n zxFAW4bhLjnrjd1++23cg+pbhhbuJFujYxWOaIwWcC5AUh44aDKFaP1V3i0djL1q 28UE0ovnEvhnI0uOxfz4xOn397C/ghQRa8Nf7uxZTJscUCzHrC7czOkL8wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFH4ldge8aVSoxQheedbic1Zb6iOSMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzMzZGQzMWUwLTcwMzktNGZmOC1hYWZlLTk3ZjdiOTViMDdkMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/0CAMA0GCSqGSIb3DQEBCwUAA4IBAQBjcSgrI01tRc5CB3WN PQB2cq9BANYp+1UTqfukd+TiVtwBRq/+Y1rMeV2oIzcicLSbYb8q6ZDKzfjPWd8L g60RspPw8gIvWk4hvrZbxmQs+k5ZMQ8MFHEksVWhFqrE8AR8eup7LDOYCjqz1y8F XTmsgidyBwdVu4eaCyyjBgXFjCSlZ873HyLyaoQDhq9/H4AP26fvPnFlBWse4rdt AK4ywgPBZjnwD11KaLzZuzqwzp0w17i6YDLN/OhKnqC6K6CjRIhi8rYpYTP+DCc0 CfWgM2XL71zUufzk5FK6bJMlU32NwOD/bDKn7/RHFK+1HShhyEzjFzs3E2ZDGezb gghA -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net