$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/9a94ee8c-7029-4ffb-af7f-435e161333de.roa File: 9a94ee8c-7029-4ffb-af7f-435e161333de.roa (raw, json) Hash identifier: 8AmRemdM9I0tPHhc2KhUvLPi2Ut2j4zOQsRb8oA4gUQ= Subject key identifier: 00:F4:B4:5A:BF:EF:EE:D4:85:37:35:16:D5:DB:4A:41:3C:14:12:B5 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 49A7E74CCBB3EBA2FF72399E864BBA24C327EB44 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/9a94ee8c-7029-4ffb-af7f-435e161333de.roa Signing time: Mon 31 Mar 2025 15:01:22 +0000 ROA not before: Mon 31 Mar 2025 15:01:22 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:a7:e7:4c:cb:b3:eb:a2:ff:72:39:9e:86:4b:ba:24:c3:27:eb:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Mar 31 15:01:22 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=fa47b1f3ab0105dff5ac4ba5360fa3e7534e615510d68729288e03cf9a7245bd, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:92:52:72:9e:3b:49:93:05:2a:9d:32:55:09: 86:d6:21:4a:90:0a:67:e8:c8:32:b6:b8:81:7e:47: 87:44:72:4e:a7:f4:b0:4d:cf:ab:7a:c9:0a:f0:c1: 54:93:ad:e9:e9:47:cd:ae:5e:aa:30:1a:ad:bb:6c: ee:98:0d:22:b2:ac:d0:a3:a2:84:d4:36:d1:e4:01: d4:50:0d:f7:b3:1e:41:17:51:ba:47:e6:4c:6a:36: d6:ae:f1:dc:b8:b5:12:9a:f6:fa:a2:4e:b1:8b:c3: 4b:c9:e8:ea:bf:99:28:b5:e9:ac:76:82:1f:96:ad: c6:fc:8a:ac:81:fc:82:c1:a4:fb:23:56:e9:b4:6a: 2a:5d:ba:31:3b:74:ec:f9:94:ec:3f:b1:82:79:c2: 75:4d:da:65:f3:83:f4:c4:1e:b2:27:7f:b9:d4:4c: a0:b6:bd:8e:cc:2e:7f:fc:6d:96:38:66:30:ad:4d: 1c:d8:40:e9:29:6c:a7:7e:4f:ab:e9:cb:d7:a7:d7: c5:06:5e:72:7a:03:43:26:ab:a6:08:91:e5:78:b1: 90:f1:5e:13:97:ee:77:d0:74:60:2d:50:07:de:f1: fa:49:67:45:82:42:03:31:cf:5b:31:5a:77:f2:c1: 6b:10:2b:38:8e:b4:23:b7:b5:6d:fa:53:4d:f8:12: c0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F4:B4:5A:BF:EF:EE:D4:85:37:35:16:D5:DB:4A:41:3C:14:12:B5 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/9a94ee8c-7029-4ffb-af7f-435e161333de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000:8000::/40 Signature Algorithm: sha256WithRSAEncryption 7f:9e:63:ad:9c:61:14:fd:5b:c7:1c:a0:be:b7:85:1b:d7:7d: 5a:7d:aa:6d:a0:c7:82:58:4b:e7:ec:7a:26:04:5b:82:eb:bf: b1:05:ef:a3:2a:5e:7e:28:db:6e:a6:81:60:c0:84:b8:bc:08: 2c:23:3e:9d:fa:8d:be:6a:b4:84:23:fc:39:fb:17:81:53:43: b4:d6:a4:c4:7a:8f:b6:0d:bc:91:26:77:f2:82:3f:15:c0:8a: 63:73:a2:ef:42:3b:87:6a:31:f4:32:5b:78:02:75:46:61:00: 53:87:0c:ce:0d:5c:8e:cc:41:01:e9:fc:7e:3b:0d:65:4e:ee: 28:c3:5c:e2:b0:80:2a:98:2c:86:cb:07:b9:47:2b:52:8d:34: 04:66:61:72:df:5e:da:78:73:6f:ca:12:eb:89:8c:29:a5:f1: 5e:45:9d:78:14:c4:17:7d:c1:f3:08:c0:42:0a:5f:4b:1e:d0: 0d:73:4b:b1:72:80:7a:aa:89:eb:b8:97:30:b9:1b:c0:3d:53: 5f:51:b8:f7:4e:9b:fe:68:f0:b2:5c:d1:8e:9e:b0:5e:9a:c7: ec:6e:2f:3e:77:8a:55:d0:c6:fc:e3:11:04:59:6e:51:82:18: eb:8b:c8:71:9a:1b:1f:87:8a:41:08:f6:4b:20:03:56:d1:43: b4:6f:b4:20 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUSafnTMuz66L/cjmehku6JMMn60QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDMzMTE1MDEyMloX DTI1MDUwNTIzNTk1OVowejFJMEcGA1UEBRNAZmE0N2IxZjNhYjAxMDVkZmY1YWM0 YmE1MzYwZmEzZTc1MzRlNjE1NTEwZDY4NzI5Mjg4ZTAzY2Y5YTcyNDViZDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpJScp47SZMFKp0yVQmG1iFKkApn 6MgytriBfkeHRHJOp/SwTc+reskK8MFUk63p6UfNrl6qMBqtu2zumA0isqzQo6KE 1DbR5AHUUA33sx5BF1G6R+ZMajbWrvHcuLUSmvb6ok6xi8NLyejqv5kotemsdoIf lq3G/IqsgfyCwaT7I1bptGoqXboxO3Ts+ZTsP7GCecJ1Tdpl84P0xB6yJ3+51Eyg tr2OzC5//G2WOGYwrU0c2EDpKWynfk+r6cvXp9fFBl5yegNDJqumCJHleLGQ8V4T l+530HRgLVAH3vH6SWdFgkIDMc9bMVp38sFrECs4jrQjt7Vt+lNN+BLAKwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAD0tFq/7+7UhTc1FtXbSkE8FBK1MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzlhOTRlZThjLTcwMjktNGZmYi1hZjdmLTQzNWUxNjEzMzNkZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+AAIAwDQYJKoZIhvcNAQELBQADggEBAH+eY62cYRT9W8ccoL63 hRvXfVp9qm2gx4JYS+fseiYEW4Lrv7EF76MqXn4o226mgWDAhLi8CCwjPp36jb5q tIQj/Dn7F4FTQ7TWpMR6j7YNvJEmd/KCPxXAimNzou9CO4dqMfQyW3gCdUZhAFOH DM4NXI7MQQHp/H47DWVO7ijDXOKwgCqYLIbLB7lHK1KNNARmYXLfXtp4c2/KEuuJ jCml8V5FnXgUxBd9wfMIwEIKX0se0A1zS7FygHqqieu4lzC5G8A9U19RuPdOm/5o 8LJc0Y6esF6ax+xuLz53ilXQxvzjEQRZblGCGOuLyHGaGx+HikEI9ksgA1bRQ7Rv tCA= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net