$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0D90C6C899BC11EEBF0F7411C4F9AE02.roa File: 0D90C6C899BC11EEBF0F7411C4F9AE02.roa (raw, json) Hash identifier: SwVIU1/ODHqHDBYRb3zDXJM3iD52uVTOm3kwR0D00Ag= Subject key identifier: F5:B9:A7:E0:B1:6B:6F:05:5B:33:31:43:0A:20:CF:15:38:FF:64:EE Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DBD Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0D90C6C899BC11EEBF0F7411C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:36:58 +0000 ROA not before: Fri 06 Sep 2024 18:36:58 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 209554 IP address blocks: 2001:df1:4580::/48 maxlen: 48 2405:84c0::/48 maxlen: 48 2405:84c0:2000::/36 maxlen: 40 2405:84c0:4000::/36 maxlen: 40 2405:84c0:5000::/36 maxlen: 40 2405:84c0:6800::/40 maxlen: 44 2405:84c0:6f00::/40 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3517 (0xdbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:36:58 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bca-176f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5b:ed:b1:32:91:b5:59:1d:56:3f:45:c9:90: fc:3c:0f:01:f0:a5:e0:9c:f0:ad:c1:58:70:7a:9f: 62:4a:57:b1:df:41:42:b5:18:2c:d6:71:e3:31:4f: 1c:b3:7b:83:ce:9a:02:e6:83:ee:1d:34:11:c7:7d: 23:95:44:9b:56:c9:00:a4:37:fb:2b:69:59:e7:9a: e4:4c:e1:cb:88:d1:94:e5:74:5d:46:b1:df:ad:5a: 0e:12:74:b4:63:f2:bc:34:1b:ee:ce:8f:85:28:4b: b5:88:a6:f1:4c:14:be:11:8b:4c:2e:aa:f4:91:7b: e8:90:d3:80:1c:c3:a9:98:91:cd:74:14:21:94:3c: 78:66:04:d7:ee:56:2e:08:c0:71:96:b0:99:19:f6: 15:10:75:62:39:46:ae:b3:48:a9:d2:0e:bf:d8:81: 58:ca:5a:e1:a9:fe:f9:05:84:1d:98:a2:ef:bf:a5: 0f:72:97:98:bd:08:9a:10:23:3b:bd:f7:dd:28:64: 75:d1:83:1d:e9:36:4d:02:ef:02:45:38:d4:04:52: 70:24:6f:be:f2:b0:29:e4:ca:d0:df:cb:00:2e:ea: 51:c1:49:5c:38:fe:20:0c:52:1d:22:2b:82:3f:ac: 87:b3:61:80:62:0f:4b:fe:68:c2:ce:57:b0:56:f6: 18:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B9:A7:E0:B1:6B:6F:05:5B:33:31:43:0A:20:CF:15:38:FF:64:EE X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0D90C6C899BC11EEBF0F7411C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:4580::/48 2405:84c0::/48 2405:84c0:2000::/36 2405:84c0:4000::/35 2405:84c0:6800::/40 2405:84c0:6f00::/40 Signature Algorithm: sha256WithRSAEncryption 17:8a:e0:c4:66:96:9d:6b:a2:62:61:2d:76:75:f5:10:90:5c: ff:24:f1:6f:d1:e9:a2:93:be:f3:b0:19:e9:bb:67:63:47:ab: 65:5d:0a:0c:7a:cb:bd:eb:38:ba:9c:0a:81:42:28:aa:5f:61: 87:48:f4:8d:29:de:20:bc:40:d6:8c:83:f9:6d:28:c9:73:3e: 70:19:83:70:33:37:9b:6e:06:13:a3:49:81:38:64:e6:0f:14: f9:79:16:65:50:bf:93:2d:ba:4d:62:f9:cd:5f:eb:44:9d:2d: 1b:0b:e3:9e:91:19:84:ef:aa:75:5a:8f:ef:45:d6:38:65:a3: 47:42:10:bd:09:18:34:57:99:2c:13:b2:9d:84:9e:93:6b:34: 7f:51:b1:50:34:67:59:d2:07:27:a4:e1:6f:8c:b3:5d:b1:0d: 51:78:79:84:dc:aa:16:cf:fe:c1:fe:00:a1:e5:af:3d:e7:34: 75:49:95:9a:78:41:72:1d:9b:74:b2:44:a8:15:f4:58:f6:6c: 0b:c5:4d:81:1d:88:c2:bd:f4:0e:d2:69:3c:a5:9c:fc:85:6a: fe:0a:e3:e3:95:a5:50:5d:78:6f:e7:57:08:36:42:32:0f:3c: 3a:58:db:41:03:2f:1e:17:ba:34:72:f1:6f:75:c6:c3:91:34: 8a:58:d8:d6 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICDb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNjU4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJjYS0xNzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVvtsTKRtVkdVj9FyZD8PA8B8KXgnPCtwVhwep9iSlex30FCtRgs1nHjMU8c s3uDzpoC5oPuHTQRx30jlUSbVskApDf7K2lZ55rkTOHLiNGU5XRdRrHfrVoOEnS0 Y/K8NBvuzo+FKEu1iKbxTBS+EYtMLqr0kXvokNOAHMOpmJHNdBQhlDx4ZgTX7lYu CMBxlrCZGfYVEHViOUaus0ip0g6/2IFYylrhqf75BYQdmKLvv6UPcpeYvQiaECM7 vffdKGR10YMd6TZNAu8CRTjUBFJwJG++8rAp5MrQ38sALupRwUlcOP4gDFIdIiuC P6yHs2GAYg9L/mjCzlewVvYYowIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFPW5p+Cx a28FWzMxQwogzxU4/2TuMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMEQ5MEM2Qzg5 OUJDMTFFRUJGMEY3NDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgACMDIDBwAgAQ3xRYADBwAkBYTAAAADBgQkBYTAIAMGBSQFhMBAAwYA JAWEwGgDBgAkBYTAbzANBgkqhkiG9w0BAQsFAAOCAQEAF4rgxGaWnWuiYmEtdnX1 EJBc/yTxb9HpopO+87AZ6btnY0erZV0KDHrLves4upwKgUIoql9hh0j0jSneILxA 1oyD+W0oyXM+cBmDcDM3m24GE6NJgThk5g8U+XkWZVC/ky26TWL5zV/rRJ0tGwvj npEZhO+qdVqP70XWOGWjR0IQvQkYNFeZLBOynYSek2s0f1GxUDRnWdIHJ6Thb4yz XbENUXh5hNyqFs/+wf4AoeWvPec0dUmVmnhBch2bdLJEqBX0WPZsC8VNgR2Iwr30 DtJpPKWc/IVq/grj45WlUF14b+dXCDZCMg88OljbQQMvHhe6NHLxb3XGw5E0iljY 1g== -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:04 2024 by rpki-client on console-ams.rpki-client.org