$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/03774914696211EC8A05D115C4F9AE02.roa File: 03774914696211EC8A05D115C4F9AE02.roa (raw, json) Hash identifier: /71jeZ/z/bjdOuocI7pJpODjcutgjWmyBXnbScV8x34= Subject key identifier: FC:11:57:75:7A:92:40:A4:DE:4D:D0:5D:41:E9:F3:EC:EC:96:78:C5 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DBB Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/03774914696211EC8A05D115C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:36:56 +0000 ROA not before: Fri 06 Sep 2024 18:36:56 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 147028 IP address blocks: 2405:84c0:fdfa::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3515 (0xdbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:36:56 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bc8-5ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e3:95:fc:c9:ff:a8:54:05:3e:33:26:17:86: 9f:6f:78:76:3c:3f:d2:c9:b9:d7:a2:4b:e9:f4:a1: 52:f2:71:13:d7:fc:f8:b6:f9:0f:c4:eb:56:25:c3: b7:34:7f:c1:f6:3d:94:73:7c:a9:c9:25:3c:70:b0: a1:e0:21:87:25:53:10:ad:7a:4f:45:c2:05:7c:f3: 58:01:38:72:65:72:89:f4:2d:64:4b:0f:15:f0:66: 87:0e:52:08:c9:35:48:5f:4d:8c:dc:6e:e3:72:de: f6:da:e4:ef:a7:fe:7f:1c:e4:b8:87:ed:e7:62:1b: b0:39:90:e5:c7:22:9b:4d:45:3a:f3:0b:b0:c9:fd: 97:47:62:64:c2:f0:da:df:42:9b:47:51:71:1e:30: b3:45:79:04:e4:8d:f4:e1:d5:1d:2d:4f:ba:0d:9e: c6:ac:19:24:b8:ae:37:52:6f:f3:9d:be:5a:02:f3: 82:91:eb:2d:eb:62:4f:b4:2b:d9:6c:73:9c:bb:39: 67:5f:20:06:7a:81:99:08:1c:de:b8:b6:bf:94:fd: 23:c0:e8:a6:fc:bb:c7:d6:36:9a:df:5d:41:26:77: 39:57:f3:90:41:31:3e:e9:b4:b2:68:28:eb:07:8a: ac:50:56:54:1f:75:f9:62:f2:4d:f5:fd:8a:79:be: 90:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:11:57:75:7A:92:40:A4:DE:4D:D0:5D:41:E9:F3:EC:EC:96:78:C5 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/03774914696211EC8A05D115C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:fdfa::/47 Signature Algorithm: sha256WithRSAEncryption 7c:37:bb:8a:e6:8d:b6:eb:5b:e0:7c:bd:af:b9:dc:ae:da:58: 62:69:07:b7:0d:03:88:bc:d2:31:35:9f:6f:0d:4e:1e:10:3e: 14:28:07:e6:ba:8f:a9:79:80:5d:22:87:cc:10:5b:79:26:81: c0:90:82:75:18:2f:0e:30:db:e8:b9:f7:65:8d:9f:cb:0d:55: d0:f3:da:b6:a2:a8:dd:ed:a3:06:80:20:9a:a1:54:d0:38:21: 8f:1e:dc:a1:68:6f:6e:dc:31:ef:0d:7c:35:77:6b:36:09:e6: db:e3:0c:eb:c7:5d:94:1d:cc:a0:61:89:cb:37:40:5b:8a:29: 25:0c:ef:c0:47:ed:d8:67:b7:39:b2:5d:4e:65:c5:07:ca:2d: f5:30:41:07:a1:7c:54:fa:f6:29:d4:ef:45:9c:ad:26:61:ed: 01:aa:34:ea:4f:4d:64:a6:f1:0b:81:c5:be:a6:09:42:36:d8: ed:c5:0c:b6:41:a2:df:89:4a:cb:a2:c1:d3:0a:34:fa:a9:02: 37:05:e5:3f:7c:70:a7:b2:b0:28:43:a0:e3:7c:8d:5e:fc:22: dc:eb:85:1f:93:f8:14:f0:00:06:ac:a2:b4:5d:f1:4f:50:73: f8:5b:16:46:78:32:db:6f:c4:f2:23:77:79:31:2c:b3:49:99: da:d1:a5:b1 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNjU2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJjOC01YWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOOV/Mn/qFQFPjMmF4afb3h2PD/SybnXokvp9KFS8nET1/z4tvkPxOtWJcO3 NH/B9j2Uc3ypySU8cLCh4CGHJVMQrXpPRcIFfPNYAThyZXKJ9C1kSw8V8GaHDlII yTVIX02M3G7jct722uTvp/5/HOS4h+3nYhuwOZDlxyKbTUU68wuwyf2XR2JkwvDa 30KbR1FxHjCzRXkE5I304dUdLU+6DZ7GrBkkuK43Um/znb5aAvOCkest62JPtCvZ bHOcuzlnXyAGeoGZCBzeuLa/lP0jwOim/LvH1jaa311BJnc5V/OQQTE+6bSyaCjr B4qsUFZUH3X5YvJN9f2Keb6QtwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPwRV3V6 kkCk3k3QXUHp8+zslnjFMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMDM3NzQ5MTQ2 OTYyMTFFQzhBMDVEMTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkBYTA/fowDQYJKoZIhvcNAQELBQADggEBAHw3u4rmjbbr W+B8va+53K7aWGJpB7cNA4i80jE1n28NTh4QPhQoB+a6j6l5gF0ih8wQW3kmgcCQ gnUYLw4w2+i592WNn8sNVdDz2raiqN3towaAIJqhVNA4IY8e3KFob27cMe8NfDV3 azYJ5tvjDOvHXZQdzKBhics3QFuKKSUM78BH7dhntzmyXU5lxQfKLfUwQQehfFT6 9inU70WcrSZh7QGqNOpPTWSm8QuBxb6mCUI22O3FDLZBot+JSsuiwdMKNPqpAjcF 5T98cKeysChDoON8jV78ItzrhR+T+BTwAAasorRd8U9Qc/hbFkZ4MttvxPIjd3kx LLNJmdrRpbE= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:26 2024 by rpki-client on console-fra.rpki-client.org