$ rpki-client -vvf rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/1FD07ED231FB11EAA335E10FC4F9AE02.roa File: 1FD07ED231FB11EAA335E10FC4F9AE02.roa (raw, json) Hash identifier: xEJSSODLa2MxHoWVNA4uEk+1w0R7pBSRyEzoy1l8lR0= Subject key identifier: C7:3A:70:8B:01:C6:0A:AE:72:54:71:46:F9:49:01:A0:17:3C:6C:40 Certificate issuer: /CN=A91771E3/serialNumber=1596C4BBE732DA85CB83E8A770873EA3413701A5 Certificate serial: 1237 Authority key identifier: 15:96:C4:BB:E7:32:DA:85:CB:83:E8:A7:70:87:3E:A3:41:37:01:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/1FD07ED231FB11EAA335E10FC4F9AE02.roa Signing time: Mon 18 Dec 2023 17:44:50 +0000 ROA not before: Mon 18 Dec 2023 17:44:50 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 45494 IP address blocks: 2001:dd8:25::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.crl rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:04:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4663 (0x1237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91771E3/serialNumber=1596C4BBE732DA85CB83E8A770873EA3413701A5 Validity Not Before: Dec 18 17:44:50 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65808512-b8bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e3:0f:04:6d:e8:6e:86:f2:0b:79:66:b9:7e: e7:ef:ae:59:22:e7:a6:09:87:22:e2:6c:77:5c:58: f8:f2:d1:f2:58:46:db:c2:5f:1b:15:b3:b4:e6:69: 1b:01:58:83:f1:4c:d1:1c:40:8b:d4:6a:70:ed:58: 31:b2:6b:d4:5f:92:87:4e:94:4a:cf:4b:be:71:8b: 96:67:6d:17:48:8d:b0:c1:76:3f:1d:f1:c9:7a:10: c7:b2:79:3d:5b:48:8d:91:3c:cf:99:ac:e2:82:d6: 82:ad:0e:62:e7:27:18:65:79:ee:ff:91:9b:44:49: 22:d4:c1:1b:63:67:6c:89:ae:70:68:49:a9:01:21: f0:9a:2a:1a:be:8a:3f:e8:99:98:95:29:69:50:4f: af:e3:cc:77:af:85:7f:ce:ef:27:ae:64:9a:b6:c4: 7d:03:68:ea:7f:85:62:81:64:54:7a:b7:d4:e4:bb: 06:15:48:8e:d5:db:09:de:3c:96:60:66:68:33:de: cd:f0:ac:b4:06:11:b9:2e:a9:cb:ea:fc:41:21:a6: 01:97:01:b7:b4:2f:23:c0:0e:78:40:0b:f7:f3:a3: 2a:84:4d:d5:de:7c:22:ec:c5:72:03:b9:07:71:1c: 7a:72:39:89:bb:bc:4f:1f:30:64:28:a2:01:e6:24: f9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:3A:70:8B:01:C6:0A:AE:72:54:71:46:F9:49:01:A0:17:3C:6C:40 X509v3 Authority Key Identifier: keyid:15:96:C4:BB:E7:32:DA:85:CB:83:E8:A7:70:87:3E:A3:41:37:01:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/1FD07ED231FB11EAA335E10FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dd8:25::/48 Signature Algorithm: sha256WithRSAEncryption 83:56:02:67:e2:a1:02:f4:25:fa:ab:41:4f:d2:bb:b5:55:63: 20:78:ca:a5:1b:eb:d0:6c:6d:f6:c2:5f:37:af:e6:d3:40:6a: e9:f6:80:c6:e2:ee:5c:b3:f5:10:c4:73:dd:bf:b5:42:ed:35: 11:fb:67:1b:fb:33:94:53:b1:99:c0:7b:70:31:01:3d:1c:77: 35:ae:22:a8:85:e8:72:0a:bc:f2:2a:28:cd:27:df:d4:42:a6: 66:36:6b:f5:e1:ec:6b:23:29:99:64:6f:c7:67:7f:66:c0:db: ca:35:80:bf:82:91:f0:56:b2:a5:f1:6a:52:78:d8:7d:64:67: b1:5f:c6:ee:c9:65:de:7c:72:ae:cf:4d:fd:c1:e5:f3:d9:2e: 72:73:cf:32:04:5c:9d:fc:4f:28:5c:5d:1c:6e:dd:fb:84:40: 2c:4e:e8:76:1b:97:06:9b:10:01:44:71:41:be:13:ce:18:f5: 4f:b8:43:b5:c9:2d:48:6b:be:c5:e4:8f:bf:7e:e0:cf:ca:f9: c1:ae:bc:68:05:7a:21:13:05:3a:38:96:e6:49:ac:23:ed:75: ab:25:28:2c:8b:49:b6:f7:31:1f:35:12:36:d1:00:2b:46:d5: cf:69:b0:51:8c:48:b7:ca:ae:ad:a9:b5:70:99:e6:c8:cb:af: 03:47:bc:63 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcxRTMxMTAvBgNVBAUTKDE1OTZDNEJCRTczMkRBODVDQjgzRThBNzcwODczRUEz NDEzNzAxQTUwHhcNMjMxMjE4MTc0NDUwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgwODUxMi1iOGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6OMPBG3obobyC3lmuX7n765ZIuemCYci4mx3XFj48tHyWEbbwl8bFbO05mkb AViD8UzRHECL1Gpw7VgxsmvUX5KHTpRKz0u+cYuWZ20XSI2wwXY/HfHJehDHsnk9 W0iNkTzPmazigtaCrQ5i5ycYZXnu/5GbREki1MEbY2dsia5waEmpASHwmioavoo/ 6JmYlSlpUE+v48x3r4V/zu8nrmSatsR9A2jqf4VigWRUerfU5LsGFUiO1dsJ3jyW YGZoM97N8Ky0BhG5LqnL6vxBIaYBlwG3tC8jwA54QAv386MqhE3V3nwi7MVyA7kH cRx6cjmJu7xPHzBkKKIB5iT5bwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMc6cIsB xgquclRxRvlJAaAXPGxAMB8GA1UdIwQYMBaAFBWWxLvnMtqFy4Pop3CHPqNBNwGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzFFMy85MzgzRTY0NkFE NjUxMUU4QUNCRDBENkFDNEY5QUUwMi9GWmJFdS1jeTJvWExnLWluY0ljLW8wRTNB YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZaYkV1LWN5Mm9YTGctaW5jSWMtbzBFM0FhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzcxRTMvOTM4M0U2NDZBRDY1MTFFOEFDQkQwRDZBQzRGOUFFMDIvMUZEMDdFRDIz MUZCMTFFQUEzMzVFMTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3YACUwDQYJKoZIhvcNAQELBQADggEBAINWAmfioQL0 JfqrQU/Su7VVYyB4yqUb69BsbfbCXzev5tNAaun2gMbi7lyz9RDEc92/tULtNRH7 Zxv7M5RTsZnAe3AxAT0cdzWuIqiF6HIKvPIqKM0n39RCpmY2a/Xh7GsjKZlkb8dn f2bA28o1gL+CkfBWsqXxalJ42H1kZ7Ffxu7JZd58cq7PTf3B5fPZLnJzzzIEXJ38 TyhcXRxu3fuEQCxO6HYblwabEAFEcUG+E84Y9U+4Q7XJLUhrvsXkj79+4M/K+cGu vGgFeiETBTo4luZJrCPtdaslKCyLSbb3MR81EjbRACtG1c9psFGMSLfKrq2ptXCZ 5sjLrwNHvGM= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org