$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/2152FB1650C511EAB566FE61C4F9AE02.roa File: 2152FB1650C511EAB566FE61C4F9AE02.roa (raw, json) Hash identifier: qiruACIeUuWCHVE9fSq/awWWHhKH4G60m/pcIC2u5z8= Subject key identifier: 63:EC:57:1A:99:BD:F2:87:ED:C1:27:09:7D:56:B0:87:CE:D2:DB:34 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DB9 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/2152FB1650C511EAB566FE61C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:36:55 +0000 ROA not before: Fri 06 Sep 2024 18:36:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139618 IP address blocks: 2001:df1:4580::/48 maxlen: 48 2405:84c0:9000::/44 maxlen: 44 2405:84c0:9010::/44 maxlen: 44 2405:84c0:9020::/44 maxlen: 44 2405:84c0:9100::/44 maxlen: 44 2405:84c0:9110::/44 maxlen: 44 2405:84c0:9120::/44 maxlen: 44 2405:84c0:ff80::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3513 (0xdb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:36:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bc6-1045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c5:2c:95:28:8e:8f:da:47:26:f2:0e:1f:0e: 19:c5:8c:f6:79:ee:66:b0:37:76:86:9f:9f:bf:27: bd:0d:f3:e1:73:23:02:e0:83:8e:a5:41:1d:49:d5: d1:63:13:fe:de:20:b6:09:d8:7a:b5:9d:78:f4:76: b1:7c:3b:fc:e1:7d:a7:ec:d4:69:04:a9:f6:48:ba: 35:24:af:59:d4:61:d6:0a:47:91:5a:17:3e:53:5a: a5:66:e5:dc:df:bf:55:3d:fd:d7:ba:d1:50:25:93: 53:6b:11:35:b1:f2:98:42:65:10:71:df:23:5e:84: 1e:53:63:58:76:e4:99:e5:4a:1f:2c:2c:32:6b:aa: c7:ca:31:72:f3:cf:64:40:94:8f:4f:10:9a:7e:b6: 8b:46:48:2b:64:27:90:09:bd:d3:e2:4a:71:8c:03: 60:d6:2f:77:4a:65:9b:d9:9c:fa:14:b5:05:c5:ca: 42:b3:a4:fb:38:63:f3:77:11:15:d2:37:2f:67:5f: 0a:e5:d9:92:0b:44:74:52:f8:ea:93:82:8e:41:b5: 27:3f:fa:da:dc:6b:49:70:33:b0:71:2e:9c:16:19: 8e:bb:1c:02:a0:3d:8c:f6:10:7c:93:9c:21:66:a0: 70:1f:9e:fd:0f:58:19:7f:9d:05:cf:ad:00:dc:28: 4b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EC:57:1A:99:BD:F2:87:ED:C1:27:09:7D:56:B0:87:CE:D2:DB:34 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/2152FB1650C511EAB566FE61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:4580::/48 2405:84c0:9000::-2405:84c0:902f:ffff:ffff:ffff:ffff:ffff 2405:84c0:9100::-2405:84c0:912f:ffff:ffff:ffff:ffff:ffff 2405:84c0:ff80::/44 Signature Algorithm: sha256WithRSAEncryption 3b:1a:c2:e8:5d:ab:a8:f5:d2:43:20:2a:84:f9:46:10:bf:83: 66:f0:10:84:e6:c6:b5:4f:bb:10:a4:8d:e8:c8:9a:a4:d5:41: 84:f9:65:e5:20:00:09:b3:31:1f:13:4d:64:30:96:57:1e:ca: 4e:8e:8f:30:d9:3b:aa:92:76:90:79:fd:c6:1b:a5:e0:4e:64: 0f:3a:b2:b1:d0:c1:94:ed:d3:97:9f:ba:2c:30:e9:1b:73:ce: 55:b4:dd:a6:e2:42:6c:d5:43:23:b7:71:ce:84:e4:6a:c4:f6: 87:b6:8b:dc:37:e8:9d:39:0f:f7:7e:df:a6:cd:f9:32:62:00: bb:c5:d8:e6:81:40:0b:b2:75:8e:90:18:10:46:13:fc:01:8c: 26:2d:96:5c:e3:de:c4:cc:11:71:af:79:c9:29:3e:6e:21:8c: 26:92:d8:d1:9c:aa:76:53:e3:d9:ee:8c:6e:55:dc:78:1a:8f: 37:ef:9d:8d:ca:aa:45:a6:7b:be:0e:c1:18:03:02:50:95:c4: 95:1e:27:ea:c5:1d:e3:15:98:6d:21:2b:34:f9:fd:10:5d:f8: 16:8d:66:65:92:08:fe:b6:5d:04:c1:76:02:84:47:55:7c:45: 17:f8:6c:77:1e:00:eb:ef:43:ac:1a:98:e3:41:15:c3:b1:91: 77:ee:71:d5 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICDbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNjU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJjNi0xMDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMUslSiOj9pHJvIOHw4ZxYz2ee5msDd2hp+fvye9DfPhcyMC4IOOpUEdSdXR YxP+3iC2Cdh6tZ149HaxfDv84X2n7NRpBKn2SLo1JK9Z1GHWCkeRWhc+U1qlZuXc 379VPf3XutFQJZNTaxE1sfKYQmUQcd8jXoQeU2NYduSZ5UofLCwya6rHyjFy889k QJSPTxCafraLRkgrZCeQCb3T4kpxjANg1i93SmWb2Zz6FLUFxcpCs6T7OGPzdxEV 0jcvZ18K5dmSC0R0Uvjqk4KOQbUnP/ra3GtJcDOwcS6cFhmOuxwCoD2M9hB8k5wh ZqBwH579D1gZf50Fz60A3ChL9wIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFGPsVxqZ vfKH7cEnCX1WsIfO0ts0MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMjE1MkZCMTY1 MEM1MTFFQUI1NjZGRTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMD4EAgACMDgDBwAgAQ3xRYAwEQMGBCQFhMCQAwcEJAWEwJAgMBEDBgAkBYTA kQMHBCQFhMCRIAMHBCQFhMD/gDANBgkqhkiG9w0BAQsFAAOCAQEAOxrC6F2rqPXS QyAqhPlGEL+DZvAQhObGtU+7EKSN6MiapNVBhPll5SAACbMxHxNNZDCWVx7KTo6P MNk7qpJ2kHn9xhul4E5kDzqysdDBlO3Tl5+6LDDpG3POVbTdpuJCbNVDI7dxzoTk asT2h7aL3DfonTkP937fps35MmIAu8XY5oFAC7J1jpAYEEYT/AGMJi2WXOPexMwR ca95ySk+biGMJpLY0ZyqdlPj2e6MblXceBqPN++djcqqRaZ7vg7BGAMCUJXElR4n 6sUd4xWYbSErNPn9EF34Fo1mZZII/rZdBMF2AoRHVXxFF/hsdx4A6+9DrBqY40EV w7GRd+5x1Q== -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:04 2024 by rpki-client on console-ams.rpki-client.org