$ rpki-client -vvf rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/C00D9A3C71EE11EFA7DD021EC4F9AE02.roa File: C00D9A3C71EE11EFA7DD021EC4F9AE02.roa (raw, json) Hash identifier: LoteQE9hwDWU4JcumH6+97El0QEil7v7bq1+3FC/iBQ= Subject key identifier: C6:2D:EA:2A:03:8D:48:7A:24:E7:4C:C7:8C:84:EB:FF:84:CA:A1:84 Certificate issuer: /CN=A91625DB/serialNumber=7BE230153CFF9001642DBC9B24F85D0CC282364E Certificate serial: AA Authority key identifier: 7B:E2:30:15:3C:FF:90:01:64:2D:BC:9B:24:F8:5D:0C:C2:82:36:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/C00D9A3C71EE11EFA7DD021EC4F9AE02.roa Signing time: Fri 13 Sep 2024 16:39:31 +0000 ROA not before: Fri 13 Sep 2024 16:39:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152176 IP address blocks: 2001:df3:3d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.crl rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91625DB/serialNumber=7BE230153CFF9001642DBC9B24F85D0CC282364E Validity Not Before: Sep 13 16:39:31 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e46ac3-7c6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6a:61:53:95:64:72:40:86:fe:58:54:83:e6: 12:d1:91:fb:fa:9a:37:63:e5:1e:71:0b:6d:cc:c0: 0a:56:84:6a:e4:d1:b1:1e:c4:d9:53:0f:28:b8:4d: 8f:66:ab:81:7b:d0:01:55:9a:e4:7c:46:ea:1d:1d: cd:26:55:67:57:20:c4:2c:e8:e1:56:89:f3:2b:a7: df:57:07:46:51:a0:3c:9d:10:e1:4f:17:64:f7:3c: b7:f0:9a:44:f3:ed:3c:5b:f2:fd:06:d4:02:fb:43: 80:dc:d5:7a:70:7a:0c:9f:64:14:ae:09:96:5d:ea: 22:22:fc:71:5f:9d:b7:27:20:c2:cb:b3:4b:fc:85: 58:19:64:8d:51:7c:b3:95:77:68:af:1c:a3:8a:1d: 9c:e5:b7:c9:07:d6:71:9b:2c:23:fd:57:e4:eb:75: c2:d1:8d:40:ac:d6:82:8e:fb:0e:03:cf:66:8e:21: d9:d5:92:01:f3:6d:5a:28:83:30:3b:cf:ab:cc:ea: b4:25:e8:40:93:0c:24:02:3d:fc:60:d5:a0:c1:8f: 05:a0:b7:3c:ac:34:7c:5e:32:1c:c0:38:ef:06:6b: 11:8e:35:66:0c:67:ae:62:c1:e6:38:cb:6d:d6:df: c6:8c:60:21:36:09:3e:e8:a0:7c:74:da:1a:72:28: 7c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2D:EA:2A:03:8D:48:7A:24:E7:4C:C7:8C:84:EB:FF:84:CA:A1:84 X509v3 Authority Key Identifier: keyid:7B:E2:30:15:3C:FF:90:01:64:2D:BC:9B:24:F8:5D:0C:C2:82:36:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/C00D9A3C71EE11EFA7DD021EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:3d40::/48 Signature Algorithm: sha256WithRSAEncryption 58:f1:79:db:a2:30:a7:e1:b8:fd:5b:58:b4:73:a6:f9:84:86: 51:ad:63:87:7c:c0:98:03:30:ed:fe:49:61:16:e6:60:6d:26: b8:fb:04:4f:9c:be:b1:d9:59:88:a0:71:00:5d:d3:83:07:6b: 9f:4b:36:39:72:75:c1:46:51:32:94:39:46:9c:12:6f:d6:c9: 5b:e7:04:bb:7b:41:de:d6:12:28:ba:ff:2a:57:1f:b7:5e:42: 92:57:76:fe:fa:87:f0:c0:e5:d9:a7:5e:b7:d3:2b:b0:13:06: 50:95:df:12:af:e7:b7:1c:64:1f:4d:7c:2c:04:44:9f:43:81: 77:13:37:63:0f:64:41:52:67:c2:7d:9a:c5:38:29:f1:dd:41: c6:1f:fa:b6:a8:92:4f:d2:58:8b:c8:d8:6d:f6:da:4c:8d:2e: 05:75:37:ef:b9:40:dd:61:f8:1b:6d:d3:91:14:e2:cb:3d:6a: 15:c6:32:7b:dc:bb:5e:ed:f4:8a:32:75:20:24:d8:f6:60:2d: 73:a4:2d:ba:43:5e:f4:c3:cd:a6:c0:8f:9c:e5:29:79:40:a4: e5:e8:95:6d:d2:29:2c:ec:bc:9a:85:a0:48:68:d6:d6:0f:37: 12:d7:24:56:27:c3:ca:00:e0:85:ca:ef:da:e2:7f:20:d2:6e: c6:ef:1a:c8 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI1REIxMTAvBgNVBAUTKDdCRTIzMDE1M0NGRjkwMDE2NDJEQkM5QjI0Rjg1RDBD QzI4MjM2NEUwHhcNMjQwOTEzMTYzOTMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU0NmFjMy03YzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWphU5VkckCG/lhUg+YS0ZH7+po3Y+UecQttzMAKVoRq5NGxHsTZUw8ouE2P ZquBe9ABVZrkfEbqHR3NJlVnVyDELOjhVonzK6ffVwdGUaA8nRDhTxdk9zy38JpE 8+08W/L9BtQC+0OA3NV6cHoMn2QUrgmWXeoiIvxxX523JyDCy7NL/IVYGWSNUXyz lXdorxyjih2c5bfJB9Zxmywj/Vfk63XC0Y1ArNaCjvsOA89mjiHZ1ZIB821aKIMw O8+rzOq0JehAkwwkAj38YNWgwY8FoLc8rDR8XjIcwDjvBmsRjjVmDGeuYsHmOMtt 1t/GjGAhNgk+6KB8dNoacih8MwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMYt6ioD jUh6JOdMx4yE6/+EyqGEMB8GA1UdIwQYMBaAFHviMBU8/5ABZC28myT4XQzCgjZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjVEQi8xMTkzOUQxMDkw NjkxMUVFQjIzRDc0MjVDNEY5QUUwMi9lLUl3RlR6X2tBRmtMYnliSlBoZERNS0NO azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UtSXdGVHpfa0FGa0xieWJKUGhkRE1LQ05rNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjI1REIvMTE5MzlEMTA5MDY5MTFFRUIyM0Q3NDI1QzRGOUFFMDIvQzAwRDlBM0M3 MUVFMTFFRkE3REQwMjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zPUAwDQYJKoZIhvcNAQELBQADggEBAFjxeduiMKfh uP1bWLRzpvmEhlGtY4d8wJgDMO3+SWEW5mBtJrj7BE+cvrHZWYigcQBd04MHa59L NjlydcFGUTKUOUacEm/WyVvnBLt7Qd7WEii6/ypXH7deQpJXdv76h/DA5dmnXrfT K7ATBlCV3xKv57ccZB9NfCwERJ9DgXcTN2MPZEFSZ8J9msU4KfHdQcYf+raokk/S WIvI2G322kyNLgV1N++5QN1h+Btt05EU4ss9ahXGMnvcu17t9IoydSAk2PZgLXOk LbpDXvTDzabAj5zlKXlApOXolW3SKSzsvJqFoEho1tYPNxLXJFYnw8oA4IXK79ri fyDSbsbvGsg= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org