$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB72/8611E62E31F411EFAE91A00CC4F9AE02/81C87DDE6C8311EFB20D5276C4F9AE02.roa File: 81C87DDE6C8311EFB20D5276C4F9AE02.roa (raw, json) Hash identifier: tsoBMusAYtzjMEQt6uZAdSSMkNs5iOHuJdHdIDa6SSY= Subject key identifier: DD:43:9F:E1:26:15:86:4B:97:83:39:EF:37:BB:86:AA:08:79:9A:E8 Certificate issuer: /CN=A916DB72/serialNumber=3393F9D070B2E70949ACA2AACC8E65E890E74099 Certificate serial: 29 Authority key identifier: 33:93:F9:D0:70:B2:E7:09:49:AC:A2:AA:CC:8E:65:E8:90:E7:40:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5P50HCy5wlJrKKqzI5l6JDnQJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB72/8611E62E31F411EFAE91A00CC4F9AE02/81C87DDE6C8311EFB20D5276C4F9AE02.roa Signing time: Fri 06 Sep 2024 19:09:15 +0000 ROA not before: Fri 06 Sep 2024 19:09:15 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 45691 IP address blocks: 2001:df3:f6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB72/8611E62E31F411EFAE91A00CC4F9AE02/M5P50HCy5wlJrKKqzI5l6JDnQJk.crl rsync://rpki.apnic.net/member_repository/A916DB72/8611E62E31F411EFAE91A00CC4F9AE02/M5P50HCy5wlJrKKqzI5l6JDnQJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5P50HCy5wlJrKKqzI5l6JDnQJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB72/serialNumber=3393F9D070B2E70949ACA2AACC8E65E890E74099 Validity Not Before: Sep 6 19:09:15 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66db535a-e2bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:be:a4:64:97:18:57:17:51:21:69:10:24:6b: ba:59:2a:8f:46:ce:72:24:4e:c6:50:a2:51:8a:38: 81:c3:55:f9:23:4b:50:32:81:32:97:45:f0:23:97: bf:b3:b2:c9:12:33:b3:bd:62:b4:b7:92:c9:38:df: 7d:f5:d0:97:54:07:d9:23:f9:76:34:ab:68:e3:6d: a7:45:3e:59:c2:cf:a2:cb:2c:92:dd:f2:97:c8:50: 0e:67:18:78:89:31:f1:0b:00:e9:e3:d7:75:54:67: 73:64:79:60:75:a0:d2:63:45:cd:42:f7:5f:62:47: 1b:d7:fd:75:63:fd:a1:cf:1a:12:18:38:63:04:33: 4d:21:d8:09:27:42:2a:39:19:87:db:d3:87:f4:b8: 6b:e6:b6:ab:58:24:9d:e6:04:81:2c:e9:e0:52:89: 2e:ba:5a:95:d5:df:51:a6:d3:6c:07:f1:3a:3d:a2: 41:7f:25:88:6e:ff:46:26:3c:19:48:38:0e:88:ed: 58:d9:8c:79:38:00:23:15:59:73:6f:1c:4f:cf:0a: 42:e1:80:7f:09:a5:e5:56:9f:bd:4b:0d:30:ef:21: 98:e4:e5:3d:48:1e:8d:a4:39:a1:5c:7f:d4:80:9d: 13:76:c6:2c:bc:51:3c:b5:ba:38:a0:76:2f:19:7d: ee:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:43:9F:E1:26:15:86:4B:97:83:39:EF:37:BB:86:AA:08:79:9A:E8 X509v3 Authority Key Identifier: keyid:33:93:F9:D0:70:B2:E7:09:49:AC:A2:AA:CC:8E:65:E8:90:E7:40:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB72/8611E62E31F411EFAE91A00CC4F9AE02/M5P50HCy5wlJrKKqzI5l6JDnQJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5P50HCy5wlJrKKqzI5l6JDnQJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB72/8611E62E31F411EFAE91A00CC4F9AE02/81C87DDE6C8311EFB20D5276C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:f6c0::/48 Signature Algorithm: sha256WithRSAEncryption 6a:0a:9c:99:92:3f:6c:43:b9:59:38:45:16:66:33:38:88:ae: b0:8a:5e:2e:3e:49:4f:00:80:8e:bc:01:f3:35:b8:56:80:ea: a3:cf:b8:f3:41:a1:b9:e5:89:97:04:2d:a0:8e:0e:fa:d6:f4: a5:ab:5d:5e:89:54:a2:72:7c:35:8c:c9:7e:c3:d7:a9:44:26: 87:9d:80:c2:38:cb:2f:e4:c9:0e:aa:3a:77:07:3d:26:e5:0e: 21:bc:4b:09:93:38:84:0d:cb:94:19:c2:f8:a7:99:d8:56:ff: 60:82:e9:1d:1f:8c:7b:d7:a5:c0:7b:64:c3:e6:2a:ae:10:b4: 50:14:0e:44:36:00:28:67:a0:2c:67:f9:f9:cb:c1:b1:f7:67: e2:f2:3b:d3:df:8b:27:4d:55:0f:b2:ff:57:0d:06:a4:f2:c1: 72:3e:58:d6:91:cb:9d:49:46:e3:4e:80:9a:27:2a:8c:7c:50: e9:73:db:5c:28:29:df:a4:b8:1a:65:c8:a0:9a:6c:fe:bd:61: 08:6b:d6:8b:ab:d8:13:36:52:b6:56:25:41:dd:e9:47:dc:96: 24:10:42:31:11:ac:73:7f:30:49:d0:5b:be:f7:3f:15:e7:2c: 1f:80:a6:68:57:73:54:22:34:10:f2:9e:40:94:e9:b5:2d:c2: 4b:d0:4b:98 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 REI3MjExMC8GA1UEBRMoMzM5M0Y5RDA3MEIyRTcwOTQ5QUNBMkFBQ0M4RTY1RTg5 MEU3NDA5OTAeFw0yNDA5MDYxOTA5MTVaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGI1MzVhLWUyYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCvqRklxhXF1EhaRAka7pZKo9GznIkTsZQolGKOIHDVfkjS1AygTKXRfAjl7+z sskSM7O9YrS3ksk433310JdUB9kj+XY0q2jjbadFPlnCz6LLLJLd8pfIUA5nGHiJ MfELAOnj13VUZ3NkeWB1oNJjRc1C919iRxvX/XVj/aHPGhIYOGMEM00h2AknQio5 GYfb04f0uGvmtqtYJJ3mBIEs6eBSiS66WpXV31Gm02wH8To9okF/JYhu/0YmPBlI OA6I7VjZjHk4ACMVWXNvHE/PCkLhgH8JpeVWn71LDTDvIZjk5T1IHo2kOaFcf9SA nRN2xiy8UTy1ujigdi8Zfe5dAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU3UOf4SYV hkuXgznvN7uGqgh5mugwHwYDVR0jBBgwFoAUM5P50HCy5wlJrKKqzI5l6JDnQJkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZEQjcyLzg2MTFFNjJFMzFG NDExRUZBRTkxQTAwQ0M0RjlBRTAyL001UDUwSEN5NXdsSnJLS3F6STVsNkpEblFK ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTTVQNTBIQ3k1d2xKcktLcXpJNWw2SkRuUUprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REI3Mi84NjExRTYyRTMxRjQxMUVGQUU5MUEwMENDNEY5QUUwMi84MUM4N0RERTZD ODMxMUVGQjIwRDUyNzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfP2wDANBgkqhkiG9w0BAQsFAAOCAQEAagqcmZI/bEO5 WThFFmYzOIiusIpeLj5JTwCAjrwB8zW4VoDqo8+480GhueWJlwQtoI4O+tb0patd XolUonJ8NYzJfsPXqUQmh52AwjjLL+TJDqo6dwc9JuUOIbxLCZM4hA3LlBnC+KeZ 2Fb/YILpHR+Me9elwHtkw+YqrhC0UBQORDYAKGegLGf5+cvBsfdn4vI709+LJ01V D7L/Vw0GpPLBcj5Y1pHLnUlG406AmicqjHxQ6XPbXCgp36S4GmXIoJps/r1hCGvW i6vYEzZStlYlQd3pR9yWJBBCMRGsc38wSdBbvvc/FecsH4CmaFdzVCI0EPKeQJTp tS3CS9BLmA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:26 2024 by rpki-client on console-fra.rpki-client.org