$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0741B84C2FFA11EB9544F785C4F9AE02.roa File: 0741B84C2FFA11EB9544F785C4F9AE02.roa (raw, json) Hash identifier: mTcIHah4w3Vjv+PUpTnmqnHZ/WWcS1sHh5BVs3GE+UQ= Subject key identifier: E6:96:98:9D:02:0E:FF:D0:95:42:46:1C:3A:D1:05:EB:79:20:C7:EA Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DC3 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0741B84C2FFA11EB9544F785C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:37:05 +0000 ROA not before: Fri 06 Sep 2024 18:37:05 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 40676 IP address blocks: 2405:84c0:9710::/44 maxlen: 44 2405:84c0:fd16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3523 (0xdc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:37:05 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bd1-5bcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4f:f4:30:c8:c3:26:7d:5d:c3:7b:31:22:e3: dd:35:a5:05:c8:af:85:2a:ca:7e:2d:df:3f:14:c1: e2:6e:60:9f:d5:e9:04:0b:92:9e:02:8c:f7:32:01: 48:c9:9e:4c:b8:dc:b3:c5:1f:a4:98:aa:ef:16:3f: dc:66:bd:6a:82:2f:b8:f2:24:04:4d:7a:c9:4f:64: 81:23:ec:e0:20:4c:b7:7e:df:e1:74:d8:18:6d:47: c8:d2:83:51:e3:f8:12:41:d8:67:16:af:fd:8e:70: e5:70:39:dc:3d:48:62:ba:de:c1:92:01:87:65:ef: 40:8d:c4:5c:a0:ff:ec:06:e1:2f:c3:26:4e:4e:73: f1:e1:c8:b6:9f:20:c3:ac:a2:b1:08:4b:47:ca:f5: 13:e2:1b:24:c9:5f:9d:76:48:ab:95:75:9c:df:7c: 14:d2:86:93:ce:f9:ae:b7:2f:55:52:60:c2:e8:82: 66:37:21:e6:43:d6:16:e8:a0:e9:b3:42:a1:11:91: 92:7b:4b:62:34:de:28:38:72:d9:d1:35:f3:9f:8a: 04:de:81:4f:ea:5c:4d:14:02:a7:6f:a9:1c:de:ee: 75:fa:24:a8:cf:3f:7d:0a:c8:11:93:af:b9:bd:8d: 90:b4:22:a2:63:fa:5f:c9:ff:bb:19:cc:d8:ca:a0: c7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:96:98:9D:02:0E:FF:D0:95:42:46:1C:3A:D1:05:EB:79:20:C7:EA X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0741B84C2FFA11EB9544F785C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:9710::/44 2405:84c0:fd16::/48 Signature Algorithm: sha256WithRSAEncryption 3e:0b:b7:38:fa:8d:33:09:85:e6:b5:c9:b2:dd:14:e1:9c:9d: ff:5c:e8:9c:5c:51:43:ab:50:21:8e:d2:39:e5:5b:c5:32:25: 53:14:b2:a1:f9:2f:35:bb:b0:7e:07:e0:87:6a:0d:bb:fa:e2: d1:72:f5:b2:8d:42:e6:4a:48:e7:4c:d6:1e:68:c5:f7:fb:fe: 5e:32:3c:ed:8b:c4:a0:e2:6f:be:ab:48:4f:3e:59:57:8d:b0: cc:43:28:08:3a:06:8f:7b:76:3b:f2:f3:ab:e9:3c:0d:be:56: 9d:74:7a:a2:3b:05:8a:73:45:11:1f:25:c8:8d:80:05:2a:00: c0:df:9b:ec:de:ae:5c:14:57:6f:3c:e5:90:de:0d:6d:71:a0: f1:f6:7d:5b:3d:63:cb:f7:11:bc:88:da:cc:0e:e5:4a:15:1b: 0b:ff:cd:d1:8a:7a:c6:55:d6:28:d7:f9:1d:99:a7:8b:b4:71: fa:f4:50:33:13:77:31:40:0d:de:d0:91:a4:4f:3c:7b:5c:25: 03:a3:ae:1d:c5:8c:be:0f:08:77:87:de:27:d5:37:2b:21:32: d0:1b:ff:a3:ec:8b:c4:88:b8:84:25:0f:80:d7:ca:d8:10:42: 38:a8:44:1e:b5:e5:27:e8:03:86:4c:2f:33:01:e4:00:aa:55: 36:e6:6e:1f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNzA1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJkMS01YmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0/0MMjDJn1dw3sxIuPdNaUFyK+FKsp+Ld8/FMHibmCf1ekEC5KeAoz3MgFI yZ5MuNyzxR+kmKrvFj/cZr1qgi+48iQETXrJT2SBI+zgIEy3ft/hdNgYbUfI0oNR 4/gSQdhnFq/9jnDlcDncPUhiut7BkgGHZe9AjcRcoP/sBuEvwyZOTnPx4ci2nyDD rKKxCEtHyvUT4hskyV+ddkirlXWc33wU0oaTzvmuty9VUmDC6IJmNyHmQ9YW6KDp s0KhEZGSe0tiNN4oOHLZ0TXzn4oE3oFP6lxNFAKnb6kc3u51+iSozz99CsgRk6+5 vY2QtCKiY/pfyf+7GczYyqDHVQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOaWmJ0C Dv/QlUJGHDrRBet5IMfqMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMDc0MUI4NEMy RkZBMTFFQjk1NDRGNzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBYTAlxADBwAkBYTA/RYwDQYJKoZIhvcNAQELBQADggEB AD4Ltzj6jTMJhea1ybLdFOGcnf9c6JxcUUOrUCGO0jnlW8UyJVMUsqH5LzW7sH4H 4IdqDbv64tFy9bKNQuZKSOdM1h5oxff7/l4yPO2LxKDib76rSE8+WVeNsMxDKAg6 Bo97djvy86vpPA2+Vp10eqI7BYpzRREfJciNgAUqAMDfm+zerlwUV2885ZDeDW1x oPH2fVs9Y8v3EbyI2swO5UoVGwv/zdGKesZV1ijX+R2Zp4u0cfr0UDMTdzFADd7Q kaRPPHtcJQOjrh3FjL4PCHeH3ifVNyshMtAb/6Psi8SIuIQlD4DXytgQQjioRB61 5SfoA4ZMLzMB5ACqVTbmbh8= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:04 2024 by rpki-client on console-ams.rpki-client.org