$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/7072DE7601C911EC9286E827C4F9AE02.roa File: 7072DE7601C911EC9286E827C4F9AE02.roa (raw, json) Hash identifier: 7msEvTLtFsUPExajJssY7rK4WVcg4LZn9GJ36tHnfps= Subject key identifier: B8:9D:61:81:DF:D3:7B:F8:71:35:8D:E8:63:49:4C:7F:9E:DA:79:93 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DBF Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/7072DE7601C911EC9286E827C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:37:00 +0000 ROA not before: Fri 06 Sep 2024 18:37:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 210872 IP address blocks: 2405:84c0:fdfc::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3519 (0xdbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:37:00 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bcc-2301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c8:a6:1b:9e:c7:fd:4b:e8:f3:77:27:48:62: 25:8d:98:ed:0c:99:ca:68:16:a8:db:e0:48:18:48: dc:0b:64:8c:65:6f:02:3c:f8:ec:b5:75:0d:c2:52: dc:a2:28:70:cb:b1:09:6e:de:ab:07:54:86:13:73: 23:9a:ba:e3:4a:18:46:e6:42:f0:58:8f:5b:ce:ff: 4b:fd:4e:c0:50:66:55:82:c9:f4:48:01:1c:70:52: 83:65:16:cb:90:62:6f:24:6b:e1:21:4f:84:e7:b8: e6:61:17:24:43:e2:5a:8f:27:1f:d8:19:d6:30:66: 02:33:78:8e:49:e2:b2:26:bb:8c:c6:3f:4d:57:e2: db:24:20:8c:d3:d3:ba:a3:a7:b0:94:32:0c:a1:93: a7:7c:e2:a0:02:1b:cb:6e:0b:9b:24:16:51:d7:e2: 6d:a4:f6:c5:a1:77:6b:67:50:27:9e:1b:39:e3:04: 96:31:96:ac:30:4b:8f:74:82:22:db:97:f0:5a:78: b0:28:be:99:38:b9:75:ed:ad:88:5b:97:fb:1f:e9: 15:0e:1c:ee:17:2b:cc:7c:0c:2d:5a:ef:cf:1d:d2: fe:61:69:0d:e9:73:fd:0a:c3:d7:01:a1:f3:dc:60: 88:eb:0c:f1:a1:3d:84:8b:ca:cd:89:2e:ad:06:0b: 94:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9D:61:81:DF:D3:7B:F8:71:35:8D:E8:63:49:4C:7F:9E:DA:79:93 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/7072DE7601C911EC9286E827C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:fdfc::/46 Signature Algorithm: sha256WithRSAEncryption 93:3f:78:82:9f:cb:bc:71:17:cc:f8:96:3f:c6:9a:58:70:d6: 7a:15:ec:06:fa:5a:1f:2c:0f:a5:16:63:eb:b2:ea:67:5f:ef: b0:c0:65:30:73:f2:4d:b7:f5:9d:5b:b8:76:cc:07:5b:35:f8: bc:ce:e7:a2:cf:12:b7:d8:0c:7b:52:45:a1:58:f9:26:3b:18: 8b:c4:f4:a0:ed:00:9e:d0:00:68:14:b2:be:a7:b5:70:0c:63: 06:e5:e2:ff:53:6e:62:d9:f8:37:cf:a1:94:36:4b:f5:d3:ae: 41:d7:44:62:94:6e:62:88:14:16:69:96:ac:c8:14:5e:0a:90: 39:dd:43:49:35:77:54:55:91:01:e3:57:aa:41:1b:53:90:40: e8:be:22:ef:18:7d:b0:f3:93:eb:2c:72:bf:9f:09:d4:c7:0a: 72:d9:8f:30:22:f7:69:fc:3b:6e:2e:6d:1d:66:3c:97:73:03: c7:3e:2d:32:26:19:7b:d7:ad:af:44:a0:93:33:13:cf:cd:ed: 1a:44:6c:41:d4:86:47:d4:b0:98:b9:40:a6:18:f6:54:db:69: ef:ad:cd:7d:0c:9e:38:6a:e9:a1:d9:88:0e:22:1e:d2:38:a9: f4:b8:9f:34:28:11:cb:bd:2d:8c:6e:9a:07:e7:3a:59:5d:92: 2d:e5:a2:91 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNzAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJjYy0yMzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cimG57H/Uvo83cnSGIljZjtDJnKaBao2+BIGEjcC2SMZW8CPPjstXUNwlLc oihwy7EJbt6rB1SGE3MjmrrjShhG5kLwWI9bzv9L/U7AUGZVgsn0SAEccFKDZRbL kGJvJGvhIU+E57jmYRckQ+Jajycf2BnWMGYCM3iOSeKyJruMxj9NV+LbJCCM09O6 o6ewlDIMoZOnfOKgAhvLbgubJBZR1+JtpPbFoXdrZ1Annhs54wSWMZasMEuPdIIi 25fwWniwKL6ZOLl17a2IW5f7H+kVDhzuFyvMfAwtWu/PHdL+YWkN6XP9CsPXAaHz 3GCI6wzxoT2Ei8rNiS6tBguUTQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLidYYHf 03v4cTWN6GNJTH+e2nmTMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvNzA3MkRFNzYw MUM5MTFFQzkyODZFODI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwIkBYTA/fwwDQYJKoZIhvcNAQELBQADggEBAJM/eIKfy7xx F8z4lj/Gmlhw1noV7Ab6Wh8sD6UWY+uy6mdf77DAZTBz8k239Z1buHbMB1s1+LzO 56LPErfYDHtSRaFY+SY7GIvE9KDtAJ7QAGgUsr6ntXAMYwbl4v9TbmLZ+DfPoZQ2 S/XTrkHXRGKUbmKIFBZplqzIFF4KkDndQ0k1d1RVkQHjV6pBG1OQQOi+Iu8YfbDz k+sscr+fCdTHCnLZjzAi92n8O24ubR1mPJdzA8c+LTImGXvXra9EoJMzE8/N7RpE bEHUhkfUsJi5QKYY9lTbae+tzX0Mnjhq6aHZiA4iHtI4qfS4nzQoEcu9LYxumgfn Olldki3lopE= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:04 2024 by rpki-client on console-ams.rpki-client.org