$ rpki-client -vvf rpki.apnic.net/member_repository/A91454E4/7714C67A438411EC9A8A3309C4F9AE02/1FB929041CA111EF9B7AE315C4F9AE02.roa File: 1FB929041CA111EF9B7AE315C4F9AE02.roa (raw, json) Hash identifier: r/MoApslSb/1l+vgcXkpxaRCoUoDOe7dlWiXHMOk6Wc= Subject key identifier: A1:02:D9:D0:D3:5A:75:6D:4C:DB:77:59:E9:71:4C:9C:3B:03:AF:AE Certificate issuer: /CN=A91454E4/serialNumber=2ED4DA7305B594DC95B7A0410D9ACB28DE2920BF Certificate serial: 041C Authority key identifier: 2E:D4:DA:73:05:B5:94:DC:95:B7:A0:41:0D:9A:CB:28:DE:29:20:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LtTacwW1lNyVt6BBDZrLKN4pIL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454E4/7714C67A438411EC9A8A3309C4F9AE02/1FB929041CA111EF9B7AE315C4F9AE02.roa Signing time: Sun 03 Nov 2024 00:03:24 +0000 ROA not before: Sun 03 Nov 2024 00:03:24 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147064 IP address blocks: 2407:f6c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454E4/7714C67A438411EC9A8A3309C4F9AE02/LtTacwW1lNyVt6BBDZrLKN4pIL8.crl rsync://rpki.apnic.net/member_repository/A91454E4/7714C67A438411EC9A8A3309C4F9AE02/LtTacwW1lNyVt6BBDZrLKN4pIL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LtTacwW1lNyVt6BBDZrLKN4pIL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1052 (0x41c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454E4/serialNumber=2ED4DA7305B594DC95B7A0410D9ACB28DE2920BF Validity Not Before: Nov 3 00:03:24 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726bdcb-2f84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8d:6c:86:75:2c:ac:29:e8:a1:fa:3c:13:7b: 97:d2:c5:10:0c:d1:04:ef:2b:f0:ef:e5:6d:38:75: a1:a9:ad:8b:a4:73:48:05:e6:1f:aa:0f:4e:b2:5d: 52:8a:e7:8d:bd:6d:d6:3b:b5:bd:06:86:b5:ca:1a: b0:af:cf:4b:d3:1c:80:81:a3:be:cb:1c:85:05:9b: 4a:8a:f9:df:b7:dc:0a:83:6d:c7:8e:27:c8:66:6a: 29:48:da:b6:0a:0f:66:55:8e:a7:37:bc:b2:16:69: 16:0a:a5:b3:4a:b5:78:12:e0:26:57:c3:de:13:e5: eb:ad:e6:af:30:6b:14:c7:c8:33:99:65:c1:fe:98: ed:6b:6f:88:0b:b9:d1:b8:06:68:97:29:f8:73:6e: 4c:c2:18:22:40:57:28:9d:1f:b5:70:b6:83:05:0c: 17:84:8d:36:f9:d3:a1:0f:d5:70:5b:86:9c:73:22: 0b:f1:f4:26:93:07:ab:05:7b:9e:b4:db:9f:b2:97: 1c:53:9d:76:63:e9:70:53:f3:3b:1d:a4:e9:00:ee: 95:78:22:ab:03:16:e1:9b:fe:8a:53:7c:f2:88:60: 77:cc:90:93:d5:8e:cb:13:f3:19:f6:0d:88:c2:f8: c5:67:00:ff:88:00:63:f3:ab:e9:e8:10:dd:06:e1: fe:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:02:D9:D0:D3:5A:75:6D:4C:DB:77:59:E9:71:4C:9C:3B:03:AF:AE X509v3 Authority Key Identifier: keyid:2E:D4:DA:73:05:B5:94:DC:95:B7:A0:41:0D:9A:CB:28:DE:29:20:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454E4/7714C67A438411EC9A8A3309C4F9AE02/LtTacwW1lNyVt6BBDZrLKN4pIL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LtTacwW1lNyVt6BBDZrLKN4pIL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454E4/7714C67A438411EC9A8A3309C4F9AE02/1FB929041CA111EF9B7AE315C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:f6c0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:13:08:d8:af:89:5e:6c:39:7b:d4:aa:9f:98:35:e3:95:dc: b8:bc:a5:d2:3d:7e:77:58:0a:50:16:36:62:1a:43:04:35:c8: 60:8e:6d:ef:1f:92:0e:d8:23:f7:93:1e:94:d2:21:3b:7f:3c: cf:17:6f:ee:3d:ba:6d:88:fa:e4:04:bc:a6:82:8d:57:d2:2c: d9:de:55:ce:b7:9b:be:24:8e:be:07:f5:f2:2c:77:c8:15:f1: 6a:7a:2f:ea:eb:75:80:08:5d:a6:fd:71:9c:f3:c9:43:a4:99: ed:b4:5e:16:cd:4f:ed:83:d6:42:eb:5c:1f:42:9d:67:65:13: bc:8f:4a:f5:e9:e1:48:66:9e:db:60:3d:cb:c9:6b:1e:4d:1c: f5:42:d8:8c:92:5b:a3:73:37:99:4a:96:3b:a2:37:6b:be:9c: 4e:cb:43:f0:76:75:a2:57:8d:50:62:dd:ca:8f:fc:9d:ca:8c: d8:cd:ba:ed:9a:47:ff:65:97:3c:d3:b0:ed:c3:eb:d7:6b:96: 6c:39:15:5b:7f:7b:f9:bb:71:0c:d4:a3:58:da:4f:74:e9:92: d6:57:75:6f:c6:25:dd:c1:b6:29:4a:3a:77:47:cc:79:cd:54: d8:85:cd:24:cb:b0:26:31:c8:65:e9:b4:76:46:d7:13:9f:d0: b8:18:7d:9e -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0RTQxMTAvBgNVBAUTKDJFRDREQTczMDVCNTk0REM5NUI3QTA0MTBEOUFDQjI4 REUyOTIwQkYwHhcNMjQxMTAzMDAwMzI0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YmRjYi0yZjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyY1shnUsrCnoofo8E3uX0sUQDNEE7yvw7+VtOHWhqa2LpHNIBeYfqg9Osl1S iueNvW3WO7W9Boa1yhqwr89L0xyAgaO+yxyFBZtKivnft9wKg23HjifIZmopSNq2 Cg9mVY6nN7yyFmkWCqWzSrV4EuAmV8PeE+XrreavMGsUx8gzmWXB/pjta2+IC7nR uAZolyn4c25MwhgiQFconR+1cLaDBQwXhI02+dOhD9VwW4accyIL8fQmkwerBXue tNufspccU512Y+lwU/M7HaTpAO6VeCKrAxbhm/6KU3zyiGB3zJCT1Y7LE/MZ9g2I wvjFZwD/iABj86vp6BDdBuH+swIDAQABo4ICljCCApIwHQYDVR0OBBYEFKEC2dDT WnVtTNt3WelxTJw7A6+uMB8GA1UdIwQYMBaAFC7U2nMFtZTclbegQQ2ayyjeKSC/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRFNC83NzE0QzY3QTQz ODQxMUVDOUE4QTMzMDlDNEY5QUUwMi9MdFRhY3dXMWxOeVZ0NkJCRFpyTEtONHBJ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x0VGFjd1cxbE55VnQ2QkJEWnJMS040cElMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0RTQvNzcxNEM2N0E0Mzg0MTFFQzlBOEEzMzA5QzRGOUFFMDIvMUZCOTI5MDQx Q0ExMTFFRjlCN0FFMzE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkB/bAMA0GCSqGSIb3DQEBCwUAA4IBAQBuEwjYr4lebDl7 1KqfmDXjldy4vKXSPX53WApQFjZiGkMENchgjm3vH5IO2CP3kx6U0iE7fzzPF2/u PbptiPrkBLymgo1X0izZ3lXOt5u+JI6+B/XyLHfIFfFqei/q63WACF2m/XGc88lD pJnttF4WzU/tg9ZC61wfQp1nZRO8j0r16eFIZp7bYD3LyWseTRz1QtiMklujczeZ SpY7ojdrvpxOy0PwdnWiV41QYt3Kj/ydyozYzbrtmkf/ZZc807Dtw+vXa5ZsORVb f3v5u3EM1KNY2k906ZLWV3VvxiXdwbYpSjp3R8x5zVTYhc0ky7AmMchl6bR2RtcT n9C4GH2e -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org