$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa File: 45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa (raw, json) Hash identifier: IXKoMwA1CHlc+rwm36botjnh/fDCInGR5gYfUdLmCvQ= Subject key identifier: B7:B3:63:21:2D:75:BF:B4:4A:D2:7C:26:02:9B:9E:F2:D6:FA:AC:77 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DC8 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa Signing time: Fri 06 Sep 2024 18:37:10 +0000 ROA not before: Fri 06 Sep 2024 18:37:10 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9516 IP address blocks: 2405:84c0:ff20::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3528 (0xdc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:37:10 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bd6-8328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:10:ac:38:8b:6d:83:f4:42:5b:0e:1d:08: be:e4:6f:4f:2e:61:86:28:b4:b2:94:44:51:0d:60: 31:aa:88:3a:39:a1:7a:33:27:b3:3b:d9:0a:b6:cc: 9c:ed:a0:85:b4:df:b2:b7:f9:6d:42:29:7b:51:49: 40:df:8f:48:25:44:97:4f:dd:bc:0c:95:9b:41:a7: cc:ed:bc:2d:85:2f:ab:90:28:55:26:aa:e7:66:55: 9f:d6:00:69:19:ec:a6:d9:1f:73:7c:6f:67:e4:ed: ec:1b:70:c4:f9:31:f2:87:0e:62:97:d9:0c:2d:89: 2c:31:90:01:b3:9b:ba:e8:11:eb:2d:c4:6b:9a:aa: 96:ca:61:d2:b1:06:6a:58:4a:ee:69:7a:32:c7:4f: ed:e1:2f:1d:f3:2f:c5:b0:77:27:a0:2e:7e:1b:f2: bf:81:b0:d0:7a:0c:d3:aa:b6:60:aa:b9:ee:31:4f: 5b:95:2e:46:60:5a:72:c9:b8:5d:37:41:f6:1f:08: da:7b:48:80:d1:d2:0e:53:e1:e0:65:f4:67:45:9b: 65:f5:5d:fe:cb:84:71:24:25:ba:34:6e:d1:ff:19: 08:dd:c4:05:14:ce:39:c3:f3:b6:61:14:b5:2d:21: 34:d5:ac:4e:3d:fb:24:a3:44:d4:c6:44:47:00:7f: 7a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B3:63:21:2D:75:BF:B4:4A:D2:7C:26:02:9B:9E:F2:D6:FA:AC:77 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:ff20::/44 Signature Algorithm: sha256WithRSAEncryption 92:25:c4:d8:cd:86:53:cc:8e:f1:ac:97:78:b5:eb:83:b4:6c: 30:92:e6:f9:5b:e8:03:b5:c6:59:d6:e4:89:44:82:2e:f3:b6: c3:35:a0:e1:8a:c5:62:bf:49:3d:65:ce:0f:99:78:24:9b:18: 73:fc:09:94:ec:7d:79:d0:93:06:5f:9c:07:7b:05:1a:3c:20: 0f:fa:db:b9:fc:77:a4:6e:56:b3:19:77:09:cc:e4:3e:12:94: 8a:95:fd:f2:5d:29:91:0b:85:93:ed:ba:29:2e:a7:49:48:f6: 51:74:bb:69:3c:54:e5:5c:6b:bc:69:66:4e:e1:6a:18:8b:5e: b4:2e:14:61:e2:c9:2a:1a:90:1d:58:e9:b9:55:f8:b0:77:f7: 7a:cb:93:7e:9f:e7:9f:df:09:0b:05:a0:35:ef:d7:0b:7f:f6: 1f:c1:ef:1d:93:02:df:df:d6:9d:3e:6b:90:99:cf:6c:ea:2a: d2:dd:05:be:04:c5:74:f2:40:66:21:c5:d1:51:b6:9e:cd:5c: 56:3b:4e:82:94:c8:fe:6f:4e:5c:83:b2:7b:e3:69:0a:ae:96: c7:70:0e:b3:14:98:a4:0f:9c:ca:7e:53:a8:a4:2d:d1:9f:80: e9:63:48:06:24:d2:fc:f1:ed:9d:61:c5:fc:f3:de:84:8c:de: 66:50:3d:39 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNzEwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJkNi04MzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhcQrDiLbYP0QlsOHQi+5G9PLmGGKLSylERRDWAxqog6OaF6MyezO9kKtsyc 7aCFtN+yt/ltQil7UUlA349IJUSXT928DJWbQafM7bwthS+rkChVJqrnZlWf1gBp Geym2R9zfG9n5O3sG3DE+THyhw5il9kMLYksMZABs5u66BHrLcRrmqqWymHSsQZq WEruaXoyx0/t4S8d8y/FsHcnoC5+G/K/gbDQegzTqrZgqrnuMU9blS5GYFpyybhd N0H2Hwjae0iA0dIOU+HgZfRnRZtl9V3+y4RxJCW6NG7R/xkI3cQFFM45w/O2YRS1 LSE01axOPfsko0TUxkRHAH96NQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLezYyEt db+0StJ8JgKbnvLW+qx3MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvNDVGNEREQTI2 NUNGMTFFQjlFM0NGQTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBYTA/yAwDQYJKoZIhvcNAQELBQADggEBAJIlxNjNhlPM jvGsl3i164O0bDCS5vlb6AO1xlnW5IlEgi7ztsM1oOGKxWK/ST1lzg+ZeCSbGHP8 CZTsfXnQkwZfnAd7BRo8IA/627n8d6RuVrMZdwnM5D4SlIqV/fJdKZELhZPtuiku p0lI9lF0u2k8VOVca7xpZk7hahiLXrQuFGHiySoakB1Y6blV+LB393rLk36f55/f CQsFoDXv1wt/9h/B7x2TAt/f1p0+a5CZz2zqKtLdBb4ExXTyQGYhxdFRtp7NXFY7 ToKUyP5vTlyDsnvjaQqulsdwDrMUmKQPnMp+U6ikLdGfgOljSAYk0vzx7Z1hxfzz 3oSM3mZQPTk= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:26 2024 by rpki-client on console-fra.rpki-client.org