$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/81CDB96A53F111EB85FBFA19C4F9AE02.roa File: 81CDB96A53F111EB85FBFA19C4F9AE02.roa (raw, json) Hash identifier: NWo/6+CZ9HQYfqESvTvUnv7ahdvIp39DlAFteKyJz6Y= Subject key identifier: 0A:5F:07:BC:FD:68:58:A8:8A:81:47:6E:DF:95:EB:99:1E:48:F4:99 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DC6 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/81CDB96A53F111EB85FBFA19C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:37:08 +0000 ROA not before: Fri 06 Sep 2024 18:37:08 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 59598 IP address blocks: 2405:84c0:ff20::/44 maxlen: 44 2405:84c0:ff20::/48 maxlen: 48 2405:84c0:ff21::/48 maxlen: 48 2405:84c0:ff22::/48 maxlen: 48 2405:84c0:ff23::/48 maxlen: 48 2405:84c0:ff24::/48 maxlen: 48 2405:84c0:ff25::/48 maxlen: 48 2405:84c0:ff26::/48 maxlen: 48 2405:84c0:ff27::/48 maxlen: 48 2405:84c0:ff28::/48 maxlen: 48 2405:84c0:ff29::/48 maxlen: 48 2405:84c0:ff2a::/48 maxlen: 48 2405:84c0:ff2b::/48 maxlen: 48 2405:84c0:ff2c::/48 maxlen: 48 2405:84c0:ff2d::/48 maxlen: 48 2405:84c0:ff2e::/48 maxlen: 48 2405:84c0:ff2f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:37:08 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bd4-346c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:5c:90:44:41:fd:c8:dc:05:f1:40:58:01: 0f:e8:1f:47:35:89:17:98:bb:2b:58:63:c8:86:cf: 51:ca:61:ca:a8:70:dc:21:44:7b:5d:18:fc:1d:6a: 27:a7:33:50:b7:47:56:9b:5e:f7:bd:b8:ed:7b:c7: f2:ff:64:44:95:a5:ea:46:49:bd:eb:f5:ab:a3:4d: 99:97:10:7e:8f:75:d2:03:10:60:f2:b6:2b:77:40: 36:d1:17:7c:12:85:bc:f1:03:cf:a7:e8:b8:17:14: 21:f1:70:9b:6e:9a:1c:92:90:13:f9:d1:9b:13:9e: 77:9f:13:1b:38:86:64:a7:31:9a:1e:e0:d5:72:ea: 66:0b:ee:9b:5c:fe:71:9f:07:7f:1c:b0:58:c4:f1: 1a:c3:40:7b:44:27:18:07:65:9a:e6:85:f8:71:93: ad:49:be:0b:9e:ec:74:35:b0:a4:01:b4:92:81:7f: 35:e7:11:2a:3a:7d:95:fa:85:01:33:a4:ad:8e:8a: cc:02:a6:48:a5:c3:6b:bf:d1:a2:b4:6f:ed:67:5d: b4:dc:c4:20:e4:b4:3c:bb:ae:a5:36:c3:4e:5d:68: bd:7d:b7:52:88:20:f6:c2:c9:53:d5:1b:fb:c2:66: 81:52:bf:86:43:26:67:f3:24:75:80:5e:c1:7b:34: 11:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:5F:07:BC:FD:68:58:A8:8A:81:47:6E:DF:95:EB:99:1E:48:F4:99 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/81CDB96A53F111EB85FBFA19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:ff20::/44 Signature Algorithm: sha256WithRSAEncryption 04:a1:46:35:37:bf:e2:e1:c3:1f:4b:13:30:e6:5c:62:76:06: d3:42:d6:67:ba:c9:52:a4:f9:a1:7c:4c:68:a6:d9:c4:7a:74: 24:c6:19:f3:23:16:bc:a3:97:6c:71:70:e8:6d:16:54:c5:a8: 6f:ec:9f:f1:0f:76:65:bc:90:e8:cd:95:37:6d:57:fe:ae:e4: 3f:02:af:ad:ca:82:36:3e:48:c8:93:50:72:ba:eb:f8:24:cd: a4:ce:e7:da:9b:3d:45:0b:03:19:db:d3:d4:b0:f1:61:b6:80: aa:18:87:17:3d:b4:a1:9c:e2:b9:cf:ba:84:83:30:c0:be:9e: 35:54:aa:9c:d0:71:3b:b9:1c:5a:b7:35:9e:47:12:4a:dd:f6: 98:cf:9f:60:eb:a9:80:f2:43:2f:61:08:46:f6:b5:fa:48:c5: ee:7e:23:a2:f3:b3:75:3e:aa:86:c3:2e:55:cb:54:e0:0a:72: 21:4d:d2:1b:2b:c1:79:7c:60:70:3a:72:17:1a:02:aa:a4:b5: 6c:b2:82:52:f6:75:37:23:5a:c1:14:08:25:e4:8c:91:4a:e5: 5e:c1:74:81:f8:32:db:38:57:f0:c0:5c:f7:cb:de:5b:36:1c: a1:34:5e:46:83:00:36:59:c4:6b:b3:0b:f6:d5:92:9b:83:8f: 8d:0e:18:b9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNzA4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJkNC0zNDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUBckERB/cjcBfFAWAEP6B9HNYkXmLsrWGPIhs9RymHKqHDcIUR7XRj8HWon pzNQt0dWm173vbjte8fy/2RElaXqRkm96/Wro02ZlxB+j3XSAxBg8rYrd0A20Rd8 EoW88QPPp+i4FxQh8XCbbpockpAT+dGbE553nxMbOIZkpzGaHuDVcupmC+6bXP5x nwd/HLBYxPEaw0B7RCcYB2Wa5oX4cZOtSb4Lnux0NbCkAbSSgX815xEqOn2V+oUB M6StjorMAqZIpcNrv9GitG/tZ1203MQg5LQ8u66lNsNOXWi9fbdSiCD2wslT1Rv7 wmaBUr+GQyZn8yR1gF7BezQRFwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFApfB7z9 aFioioFHbt+V65keSPSZMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvODFDREI5NkE1 M0YxMTFFQjg1RkJGQTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBYTA/yAwDQYJKoZIhvcNAQELBQADggEBAAShRjU3v+Lh wx9LEzDmXGJ2BtNC1me6yVKk+aF8TGim2cR6dCTGGfMjFryjl2xxcOhtFlTFqG/s n/EPdmW8kOjNlTdtV/6u5D8Cr63KgjY+SMiTUHK66/gkzaTO59qbPUULAxnb09Sw 8WG2gKoYhxc9tKGc4rnPuoSDMMC+njVUqpzQcTu5HFq3NZ5HEkrd9pjPn2DrqYDy Qy9hCEb2tfpIxe5+I6Lzs3U+qobDLlXLVOAKciFN0hsrwXl8YHA6chcaAqqktWyy glL2dTcjWsEUCCXkjJFK5V7BdIH4Mts4V/DAXPfL3ls2HKE0XkaDADZZxGuzC/bV kpuDj40OGLk= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:26 2024 by rpki-client on console-fra.rpki-client.org