$ rpki-client -vvf rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/534DAEB2935111EF98AA8C86C4F9AE02.roa File: 534DAEB2935111EF98AA8C86C4F9AE02.roa (raw, json) Hash identifier: uOl4+NzZB6fPlXrYszF0PeNPfsE4Pp9BL5TML7ATF7Q= Subject key identifier: 73:13:80:86:32:63:0C:A6:CC:57:8C:E7:7C:CB:FB:00:4B:B6:B8:6A Certificate issuer: /CN=A91427E2/serialNumber=478B490E939DDDDF21ACAC78CB93198A7B814485 Certificate serial: 03 Authority key identifier: 47:8B:49:0E:93:9D:DD:DF:21:AC:AC:78:CB:93:19:8A:7B:81:44:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/534DAEB2935111EF98AA8C86C4F9AE02.roa Signing time: Sat 26 Oct 2024 04:18:17 +0000 ROA not before: Sat 26 Oct 2024 04:18:17 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 140323 IP address blocks: 2001:df4:30c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.crl rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91427E2/serialNumber=478B490E939DDDDF21ACAC78CB93198A7B814485 Validity Not Before: Oct 26 04:18:17 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671c6d89-7fb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e3:a4:ed:7e:82:9b:98:90:61:97:8b:a9:68: 7c:c6:bb:ec:31:d6:3b:37:e4:30:2f:0d:2f:44:65: 01:5c:52:10:1e:f9:ec:31:7a:b5:97:0f:a1:e4:23: 2e:99:ea:98:36:fd:79:8b:20:95:ef:d4:1e:09:7c: d2:26:24:fb:19:5a:25:b1:a4:5e:21:23:06:1d:e6: 01:43:45:2d:a9:74:4a:4f:4f:ca:18:59:dd:4b:06: 1f:c8:de:4e:e9:30:77:c0:d2:f7:79:06:9a:ba:c5: f6:44:b8:cc:6d:1e:02:eb:92:0e:cc:8b:03:95:1f: 99:19:e6:90:3e:a2:e0:16:7f:68:cd:97:1f:40:a8: 49:e2:1b:f9:f0:d2:09:43:22:34:04:25:89:c5:4f: 25:fb:c9:f1:a9:d4:71:1f:a6:1f:ed:39:10:b1:1f: bd:c3:7f:0d:a9:c1:fa:ba:3b:2b:7b:4b:85:e6:4e: 2a:cc:8b:19:48:d6:e5:15:b5:22:d7:76:8e:e3:fe: 52:5c:33:a8:d5:a6:19:f4:42:7d:90:42:9d:13:d3: 80:87:17:31:3d:32:33:f1:db:ee:b3:32:95:e2:d6: e7:79:de:d1:22:e7:db:f5:36:3a:cf:49:0f:99:e0: c4:a1:01:51:61:50:62:b4:e0:c4:ee:9c:38:e3:22: 65:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:13:80:86:32:63:0C:A6:CC:57:8C:E7:7C:CB:FB:00:4B:B6:B8:6A X509v3 Authority Key Identifier: keyid:47:8B:49:0E:93:9D:DD:DF:21:AC:AC:78:CB:93:19:8A:7B:81:44:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/534DAEB2935111EF98AA8C86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:30c0::/48 Signature Algorithm: sha256WithRSAEncryption 51:b3:8c:4e:5e:4c:2a:01:62:f3:56:47:a2:5a:1d:e1:bd:02: c2:2e:d0:a7:a6:7b:11:b0:1c:50:e9:8f:0f:b3:8d:35:fb:3f: 46:bc:f7:6c:57:b3:0d:3b:9d:72:9c:a1:00:5f:6d:9e:9b:c9: 21:72:b6:92:af:de:92:df:32:f4:6b:03:c2:cf:26:c3:3a:7b: 22:b6:e6:d2:45:67:d5:57:71:e0:82:e9:20:dc:f9:d3:5d:74: 43:d0:60:2b:3e:67:c9:c7:bc:7f:85:41:de:37:bb:f3:fb:89: 08:94:f2:37:26:45:e5:71:4e:61:a7:c7:f6:26:a1:61:e4:a5: 56:5f:f9:77:92:c2:1c:16:b6:97:3d:1b:75:81:5f:3d:35:32: 88:36:f8:a8:ac:28:9e:13:23:42:17:2f:0f:d5:a8:b3:99:4d: 13:e0:0d:14:73:44:45:ea:d8:17:70:ef:65:eb:a9:2f:b1:71: 57:4b:1d:9c:26:63:9d:9e:50:ef:90:b8:aa:9f:a7:61:0c:9f: 2b:24:89:84:93:77:d0:f6:f2:68:ed:ce:44:6c:f8:4e:a0:d8: d2:cd:53:5a:77:bd:5e:0d:7a:62:4a:52:a1:26:49:1a:bf:b6: e8:75:02:1d:82:03:4a:7d:74:d0:14:ae:be:61:ad:84:1e:e9: f2:15:8e:27 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjdFMjExMC8GA1UEBRMoNDc4QjQ5MEU5MzlERERERjIxQUNBQzc4Q0I5MzE5OEE3 QjgxNDQ4NTAeFw0yNDEwMjYwNDE4MTdaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWM2ZDg5LTdmYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDX46TtfoKbmJBhl4upaHzGu+wx1js35DAvDS9EZQFcUhAe+ewxerWXD6HkIy6Z 6pg2/XmLIJXv1B4JfNImJPsZWiWxpF4hIwYd5gFDRS2pdEpPT8oYWd1LBh/I3k7p MHfA0vd5Bpq6xfZEuMxtHgLrkg7MiwOVH5kZ5pA+ouAWf2jNlx9AqEniG/nw0glD IjQEJYnFTyX7yfGp1HEfph/tORCxH73Dfw2pwfq6Oyt7S4XmTirMixlI1uUVtSLX do7j/lJcM6jVphn0Qn2QQp0T04CHFzE9MjPx2+6zMpXi1ud53tEi59v1NjrPSQ+Z 4MShAVFhUGK04MTunDjjImVXAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUcxOAhjJj DKbMV4znfMv7AEu2uGowHwYDVR0jBBgwFoAUR4tJDpOd3d8hrKx4y5MZinuBRIUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyN0UyLzc4M0RGQkM0OTM1 MDExRUZCQUNFMDA0Q0M0RjlBRTAyL1I0dEpEcE9kM2Q4aHJLeDR5NU1aaW51QlJJ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUjR0SkRwT2QzZDhockt4NHk1TVppbnVCUklVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjdFMi83ODNERkJDNDkzNTAxMUVGQkFDRTAwNENDNEY5QUUwMi81MzREQUVCMjkz NTExMUVGOThBQThDODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQwwDANBgkqhkiG9w0BAQsFAAOCAQEAUbOMTl5MKgFi 81ZHolod4b0Cwi7Qp6Z7EbAcUOmPD7ONNfs/Rrz3bFezDTudcpyhAF9tnpvJIXK2 kq/ekt8y9GsDws8mwzp7Irbm0kVn1Vdx4ILpINz50110Q9BgKz5nyce8f4VB3je7 8/uJCJTyNyZF5XFOYafH9iahYeSlVl/5d5LCHBa2lz0bdYFfPTUyiDb4qKwonhMj QhcvD9Wos5lNE+ANFHNERerYF3DvZeupL7FxV0sdnCZjnZ5Q75C4qp+nYQyfKySJ hJN30PbyaO3ORGz4TqDY0s1TWne9Xg16YkpSoSZJGr+26HUCHYIDSn100BSuvmGt hB7p8hWOJw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:30 2024 by rpki-client on console-fra.rpki-client.org