$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/378C18A43D3D11EAA59A8012C4F9AE02.roa File: 378C18A43D3D11EAA59A8012C4F9AE02.roa (raw, json) Hash identifier: HNDIzi1kzv+rbEdjXVJF19/xDZWlePAah9JkFcYlECE= Subject key identifier: 7A:0D:9E:76:EA:F0:0B:4B:5C:39:9B:B0:41:37:3A:4D:CA:37:E4:E2 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DB8 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/378C18A43D3D11EAA59A8012C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:36:54 +0000 ROA not before: Fri 06 Sep 2024 18:36:54 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138990 IP address blocks: 2405:84c0:faaa::/48 maxlen: 48 2405:84c0:faab::/48 maxlen: 48 2405:84c0:fade::/48 maxlen: 48 2405:84c0:fbbb::/48 maxlen: 48 2405:84c0:ff90::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3512 (0xdb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:36:54 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bc6-50c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d2:94:1e:82:71:a4:8c:30:eb:e0:44:fb:a0: a2:9a:c7:e2:00:10:a1:69:d1:d8:d0:17:de:51:88: bb:f4:e4:13:99:d4:29:16:12:d6:55:8f:75:71:47: b4:8f:7b:06:5c:f1:e2:4a:8b:f7:2c:7b:08:19:6f: 21:09:d0:fe:e1:80:61:1f:da:17:f8:68:50:f0:a5: f4:54:1b:28:b6:46:47:ee:52:bf:58:ae:40:8c:01: 25:42:0e:7f:00:fd:93:61:36:93:a6:39:29:e8:7b: 7b:e1:0f:1c:ce:a7:5b:7c:7a:de:d7:94:62:2a:d8: 34:dc:9d:24:fe:84:bc:bc:f6:fc:40:e0:ea:97:dc: 48:b1:f6:71:19:1b:b3:fe:f1:25:52:ff:e4:57:54: cc:4f:df:7d:06:01:4a:ba:f8:9e:6e:2f:6d:57:75: b5:7c:b5:b1:1f:91:48:a9:70:ea:8c:dd:10:91:56: 1f:78:73:59:15:7f:a2:c6:65:2a:c8:2d:f5:a8:b5: 79:45:d6:1f:35:9d:cc:04:73:31:70:02:06:e7:ec: 60:ea:16:1e:39:f8:43:46:68:14:18:cc:58:c9:9a: 64:df:88:cb:ac:e1:47:46:43:32:ed:f1:01:81:61: e5:af:d3:a6:d3:2f:87:49:95:5a:77:d1:55:56:28: 9e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:0D:9E:76:EA:F0:0B:4B:5C:39:9B:B0:41:37:3A:4D:CA:37:E4:E2 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/378C18A43D3D11EAA59A8012C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:faaa::/47 2405:84c0:fade::/48 2405:84c0:fbbb::/48 2405:84c0:ff90::/44 Signature Algorithm: sha256WithRSAEncryption c6:e4:66:ad:c4:49:52:1b:12:65:e2:c9:2d:90:b8:e1:1f:c9: a4:cc:77:20:9a:e1:14:c4:e0:30:11:40:f3:43:c3:1f:e8:9c: a5:39:9d:d1:77:f6:1d:a0:67:d9:5f:85:fc:25:77:1c:75:0e: 55:11:80:3c:4a:1d:f7:92:c8:96:5d:94:5a:44:94:ae:96:25: ae:0d:1c:03:94:e8:4e:11:5f:15:43:92:c8:7c:be:fa:54:e0: 97:74:55:4d:12:42:a8:98:28:43:53:94:bb:a9:27:74:19:ce: 60:9b:29:72:f6:7f:27:ad:ae:4a:da:53:0d:db:ee:12:ae:a5: a6:ad:fd:55:6c:3e:a7:cc:02:b4:69:f7:6e:a4:7a:a7:34:70: 76:79:64:ca:cc:0a:b1:93:c6:dd:67:66:b3:f6:15:2d:ec:2c: 0d:85:cd:e1:9c:38:8c:85:3a:a4:51:47:3c:07:da:69:04:bb: f2:23:64:9a:f5:78:56:8e:88:99:72:24:fc:60:c7:e7:16:ea: f2:c9:e5:f2:92:56:5f:76:a7:e8:c3:68:7a:c3:ad:f2:7d:5f: b4:5c:d1:14:ed:2d:bc:5c:00:52:76:f2:79:7d:87:b9:86:6e: 1c:da:d5:30:25:e0:e7:bb:88:b3:bd:b0:4a:2d:66:97:e3:90: 1c:de:ca:c8 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICDbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNjU0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJjNi01MGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dKUHoJxpIww6+BE+6CimsfiABChadHY0BfeUYi79OQTmdQpFhLWVY91cUe0 j3sGXPHiSov3LHsIGW8hCdD+4YBhH9oX+GhQ8KX0VBsotkZH7lK/WK5AjAElQg5/ AP2TYTaTpjkp6Ht74Q8czqdbfHre15RiKtg03J0k/oS8vPb8QODql9xIsfZxGRuz /vElUv/kV1TMT999BgFKuviebi9tV3W1fLWxH5FIqXDqjN0QkVYfeHNZFX+ixmUq yC31qLV5RdYfNZ3MBHMxcAIG5+xg6hYeOfhDRmgUGMxYyZpk34jLrOFHRkMy7fEB gWHlr9Om0y+HSZVad9FVViieyQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFHoNnnbq 8AtLXDmbsEE3Ok3KN+TiMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMzc4QzE4QTQz RDNEMTFFQUE1OUE4MDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgACMCQDBwEkBYTA+qoDBwAkBYTA+t4DBwAkBYTA+7sDBwQkBYTA/5Aw DQYJKoZIhvcNAQELBQADggEBAMbkZq3ESVIbEmXiyS2QuOEfyaTMdyCa4RTE4DAR QPNDwx/onKU5ndF39h2gZ9lfhfwldxx1DlURgDxKHfeSyJZdlFpElK6WJa4NHAOU 6E4RXxVDksh8vvpU4Jd0VU0SQqiYKENTlLupJ3QZzmCbKXL2fyetrkraUw3b7hKu paat/VVsPqfMArRp926keqc0cHZ5ZMrMCrGTxt1nZrP2FS3sLA2FzeGcOIyFOqRR RzwH2mkEu/IjZJr1eFaOiJlyJPxgx+cW6vLJ5fKSVl92p+jDaHrDrfJ9X7Rc0RTt LbxcAFJ28nl9h7mGbhza1TAl4Oe7iLO9sEotZpfjkBzeysg= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:04 2024 by rpki-client on console-ams.rpki-client.org