$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa File: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (raw, json) Hash identifier: 4RinFhoGn0YBebYZoEoE8oZVBv9KyGOLiIqWwCuwqN8= Subject key identifier: E1:ED:28:68:9F:82:B1:07:1B:2D:7C:50:57:94:B8:90:46:53:21:A5 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3B4FF0FEBA5AA89A8134B88DFD81324303705715 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa Signing time: Tue 22 Apr 2025 00:00:06 +0000 ROA not before: Tue 22 Apr 2025 00:00:06 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4f:f0:fe:ba:5a:a8:9a:81:34:b8:8d:fd:81:32:43:03:70:57:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Apr 22 00:00:06 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=2816ee4f16417eea195de99e59436c0b0754d6a94f85f3539f2fca0c61240ab0, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ed:00:9e:6c:e3:80:60:8c:80:2f:fc:34:d3: 19:b7:a7:5a:08:74:fe:a3:76:2f:7b:6d:0b:30:b2: f0:ee:c6:6d:f6:75:03:03:88:84:cf:7c:08:d1:76: d8:44:8c:7b:f2:d6:46:5b:ce:65:4d:9b:85:da:14: 4b:26:ec:30:10:83:76:01:1e:d0:15:3d:8b:97:5f: c9:7e:c4:46:35:d5:47:61:0d:8a:ec:da:89:c9:50: 91:ba:6c:bc:ab:b0:c4:11:4c:58:ec:8c:36:2e:6f: 99:c1:6b:0a:39:db:8b:e1:f5:95:d6:1b:2a:df:38: 76:b7:7f:0d:42:c3:34:c2:42:b7:34:bb:2b:8f:6f: 43:81:ca:19:4a:01:b3:9f:d2:fd:12:1e:08:b1:c1: b3:53:ba:1c:f5:18:26:5b:66:0a:16:98:2d:d8:f8: 40:e1:dd:a4:e4:55:be:bd:78:85:74:79:ac:8c:95: 8d:c9:c4:4b:7a:37:bf:17:69:49:25:61:56:31:b5: cf:29:6b:31:9d:60:ae:62:71:20:e7:c3:4e:e3:2e: de:c6:7a:67:ce:73:80:d6:f7:ba:37:be:3c:1d:45: 39:eb:3e:41:e7:e2:43:7f:1e:70:51:81:3f:21:c2: c6:67:aa:37:9a:b1:52:98:d3:c5:f8:d6:a7:a1:36: 2d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:ED:28:68:9F:82:B1:07:1B:2D:7C:50:57:94:B8:90:46:53:21:A5 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000::/24 Signature Algorithm: sha256WithRSAEncryption 18:42:3a:71:fd:fd:03:9a:02:85:53:91:4d:df:a9:3c:bb:a8: 68:38:56:93:e2:8f:f0:33:1c:23:d9:42:89:57:cc:27:c4:73: 23:a2:fd:fb:2d:09:f8:a0:f3:24:43:47:49:7b:98:94:77:d2: 32:21:0b:09:10:e3:f5:f8:6a:df:4f:09:a9:6d:5a:08:88:d7: 47:1a:28:26:6e:26:71:91:ec:11:76:f5:01:7f:28:f2:25:1c: 1b:4b:30:03:86:f0:94:66:2d:42:62:85:60:d0:72:ba:f4:90: d3:09:35:fd:74:31:42:08:dd:9c:19:52:8b:03:66:b6:bb:1b: f6:db:ed:d8:ec:43:d1:08:de:f1:01:2b:f3:6e:05:78:91:ef: 2e:0c:62:6b:61:f3:54:42:e1:0f:6e:bb:8d:d3:0a:ab:e2:bf: 56:4e:ce:5b:3e:6a:c0:02:49:4c:18:06:e8:99:6d:da:c1:ac: a9:75:f6:3c:45:97:0c:e4:12:43:25:ef:80:8d:58:1d:ab:b8: c5:4d:f5:b8:d2:5a:a1:2e:f6:38:52:9e:60:82:0e:5d:2f:6a: f0:21:e4:f9:8d:b9:9b:94:f8:f2:1b:83:ea:8c:f0:c4:10:09: f3:56:f7:a1:17:f9:ba:f9:c8:2e:95:ab:26:22:db:94:27:41: 11:74:54:4f -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUO0/w/rpaqJqBNLiN/YEyQwNwVxUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDQyMjAwMDAwNloX DTI1MDUyNzIzNTk1OVowejFJMEcGA1UEBRNAMjgxNmVlNGYxNjQxN2VlYTE5NWRl OTllNTk0MzZjMGIwNzU0ZDZhOTRmODVmMzUzOWYyZmNhMGM2MTI0MGFiMDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1u0AnmzjgGCMgC/8NNMZt6daCHT+ o3Yve20LMLLw7sZt9nUDA4iEz3wI0XbYRIx78tZGW85lTZuF2hRLJuwwEIN2AR7Q FT2Ll1/JfsRGNdVHYQ2K7NqJyVCRumy8q7DEEUxY7Iw2Lm+ZwWsKOduL4fWV1hsq 3zh2t38NQsM0wkK3NLsrj29DgcoZSgGzn9L9Eh4IscGzU7oc9RgmW2YKFpgt2PhA 4d2k5FW+vXiFdHmsjJWNycRLeje/F2lJJWFWMbXPKWsxnWCuYnEg58NO4y7exnpn znOA1ve6N748HUU56z5B5+JDfx5wUYE/IcLGZ6o3mrFSmNPF+NanoTYtnQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOHtKGifgrEHGy18UFeUuJBGUyGlMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzk3N2Y5MGUyLWQyNTctNGRkZS05NzQwLWIwMzkxNDU4ZDhlZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJA+AMA0GCSqGSIb3DQEBCwUAA4IBAQAYQjpx/f0DmgKFU5FN36k8 u6hoOFaT4o/wMxwj2UKJV8wnxHMjov37LQn4oPMkQ0dJe5iUd9IyIQsJEOP1+Grf TwmpbVoIiNdHGigmbiZxkewRdvUBfyjyJRwbSzADhvCUZi1CYoVg0HK69JDTCTX9 dDFCCN2cGVKLA2a2uxv22+3Y7EPRCN7xASvzbgV4ke8uDGJrYfNUQuEPbruN0wqr 4r9WTs5bPmrAAklMGAbomW3awaypdfY8RZcM5BJDJe+AjVgdq7jFTfW40lqhLvY4 Up5ggg5dL2rwIeT5jbmblPjyG4PqjPDEEAnzVvehF/m6+cgulasmItuUJ0ERdFRP -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:53 2025 by rpki-client on console.sobornost.net