$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3f80673-8b1b-4af1-ae60-e74663f3df69.roa File: a3f80673-8b1b-4af1-ae60-e74663f3df69.roa (raw, json) Hash identifier: 4NzkKXo4wKRAqEaP7PWFyUGcevVXqpzlxFj7v8pty+s= Subject key identifier: 61:3E:1F:5F:6A:4B:4C:68:2E:61:73:A9:3E:E0:3C:E6:F5:79:0C:F1 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 2DBA1F524C9F9E1D150B1E7E8690B3E4286AB6F8 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3f80673-8b1b-4af1-ae60-e74663f3df69.roa Signing time: Mon 31 Mar 2025 15:01:21 +0000 ROA not before: Mon 31 Mar 2025 15:01:21 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:ba:1f:52:4c:9f:9e:1d:15:0b:1e:7e:86:90:b3:e4:28:6a:b6:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Mar 31 15:01:21 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=f249df313dfef1300d0a7bbf40def74f0a79618138929f30ebd094f4e506359f, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f2:f8:73:11:4d:fe:2a:6f:b8:4d:28:f6:fd: f5:20:a2:92:31:45:5f:26:1f:71:93:94:7a:23:9a: 15:76:70:c5:87:18:6c:68:ab:0b:79:38:c1:4a:5c: 22:01:08:07:d0:3e:4f:b5:5f:c0:da:5f:50:3b:41: 97:74:9e:ac:99:42:b8:7d:b8:f4:64:98:7e:1f:3d: 06:fd:19:b9:03:03:46:42:5f:2f:5c:9d:3e:06:57: 99:7a:e4:40:46:18:af:92:fa:29:83:75:e8:ec:9d: c8:ce:01:ce:ed:43:db:af:99:f5:5d:4f:84:62:9d: fe:56:00:66:e3:39:2c:99:58:ae:9a:4c:f1:2b:97: d4:cb:2e:77:22:ea:4c:cd:91:df:fe:52:ce:bb:fa: 4d:9d:e7:89:52:e6:86:97:fb:fa:a7:8b:68:f6:51: 9f:9a:41:03:d8:6c:c5:cd:96:de:54:29:85:85:53: 75:cd:45:ce:e8:d2:7e:37:07:81:8f:b0:e1:db:df: 52:93:98:81:76:09:3f:cf:68:00:ee:e3:ae:f2:ab: 31:32:61:97:19:14:91:13:8b:5c:5b:fd:28:47:5d: e0:ac:69:65:0f:3d:d0:0b:6c:c9:99:19:70:c2:2c: 69:a0:f1:e3:42:a5:7a:20:7d:78:25:2e:8b:dd:69: c5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:3E:1F:5F:6A:4B:4C:68:2E:61:73:A9:3E:E0:3C:E6:F5:79:0C:F1 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3f80673-8b1b-4af1-ae60-e74663f3df69.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000:4000::/40 Signature Algorithm: sha256WithRSAEncryption 28:c5:dd:09:73:7d:f3:6a:32:81:cd:8f:ed:e6:29:7c:32:2b: d8:90:ea:d8:28:36:dd:37:72:81:72:9b:cf:e8:3f:20:2f:c0: 9b:28:a5:84:a9:45:bc:6b:ef:ab:c8:cb:88:39:b9:bd:e7:40: 66:2a:e9:40:2d:a5:e2:29:a2:f1:c9:52:00:b3:6c:70:8f:b1: a1:c0:27:79:7d:6f:85:43:2c:24:6c:87:0b:bd:29:d6:17:f7: 81:57:c1:2e:e5:23:93:04:a3:23:19:a5:2b:21:39:54:bd:b5: fa:59:5a:c4:dc:e7:bb:64:d2:be:33:53:0d:71:d1:30:0c:dc: c2:b6:12:7c:82:10:b2:fb:92:3f:c1:9a:cc:40:e4:76:d3:3a: 63:08:41:f2:cc:0d:ed:d4:a8:01:67:15:ba:c8:c5:7d:ab:eb: 19:33:98:9a:07:b0:a1:da:b0:1c:0c:38:e5:8a:a0:a9:42:38: a8:d1:e1:32:33:72:e9:63:a0:da:8c:a1:4e:60:d6:e9:82:76: b5:12:4d:97:b8:39:25:88:b0:e7:85:44:39:35:23:0c:c1:02: be:6c:59:e6:23:a4:60:fa:79:81:ed:71:e4:72:7c:a9:18:e9: 05:09:3e:0c:20:6c:09:26:34:08:15:55:ac:5b:c8:ee:95:48: 58:fe:4d:65 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIULbofUkyfnh0VCx5+hpCz5ChqtvgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MDMzMTE1MDEyMVoX DTI1MDUwNTIzNTk1OVowejFJMEcGA1UEBRNAZjI0OWRmMzEzZGZlZjEzMDBkMGE3 YmJmNDBkZWY3NGYwYTc5NjE4MTM4OTI5ZjMwZWJkMDk0ZjRlNTA2MzU5ZjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPL4cxFN/ipvuE0o9v31IKKSMUVf Jh9xk5R6I5oVdnDFhxhsaKsLeTjBSlwiAQgH0D5PtV/A2l9QO0GXdJ6smUK4fbj0 ZJh+Hz0G/Rm5AwNGQl8vXJ0+BleZeuRARhivkvopg3Xo7J3IzgHO7UPbr5n1XU+E Yp3+VgBm4zksmViumkzxK5fUyy53IupMzZHf/lLOu/pNneeJUuaGl/v6p4to9lGf mkED2GzFzZbeVCmFhVN1zUXO6NJ+NweBj7Dh299Sk5iBdgk/z2gA7uOu8qsxMmGX GRSRE4tcW/0oR13grGllDz3QC2zJmRlwwixpoPHjQqV6IH14JS6L3WnFdwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGE+H19qS0xoLmFzqT7gPOb1eQzxMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2EzZjgwNjczLThiMWItNGFmMS1hZTYwLWU3NDY2M2YzZGY2OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+AAEAwDQYJKoZIhvcNAQELBQADggEBACjF3QlzffNqMoHNj+3m KXwyK9iQ6tgoNt03coFym8/oPyAvwJsopYSpRbxr76vIy4g5ub3nQGYq6UAtpeIp ovHJUgCzbHCPsaHAJ3l9b4VDLCRshwu9KdYX94FXwS7lI5MEoyMZpSshOVS9tfpZ WsTc57tk0r4zUw1x0TAM3MK2EnyCELL7kj/BmsxA5HbTOmMIQfLMDe3UqAFnFbrI xX2r6xkzmJoHsKHasBwMOOWKoKlCOKjR4TIzculjoNqMoU5g1umCdrUSTZe4OSWI sOeFRDk1IwzBAr5sWeYjpGD6eYHtceRyfKkY6QUJPgwgbAkmNAgVVaxbyO6VSFj+ TWU= -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:54 2025 by rpki-client on console.sobornost.net