$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/915FFF14A5AF11EAB039ED67C4F9AE02.roa File: 915FFF14A5AF11EAB039ED67C4F9AE02.roa (raw, json) Hash identifier: 2jainDeXw/J702lQhxkzNdpAlcOPjELdE2rK7IEazhc= Subject key identifier: E6:1E:39:12:37:8E:7E:3B:0A:4A:6D:57:64:3E:B6:0D:EC:54:96:EE Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DC0 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/915FFF14A5AF11EAB039ED67C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:37:01 +0000 ROA not before: Fri 06 Sep 2024 18:37:01 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 213136 IP address blocks: 2405:84c0:fcf2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3520 (0xdc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:37:01 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bcc-c5c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:0e:aa:ce:2a:74:50:44:21:34:96:3e:2e:0c: 59:d9:3a:cc:40:99:ce:28:fd:fa:78:b6:24:16:35: 51:8c:ec:c6:ad:cb:51:4d:28:b9:a6:b8:94:40:fe: 5c:bb:96:a5:1f:d2:f1:a7:e1:6d:5a:36:e4:05:33: 71:dd:ed:9b:05:99:32:fb:a4:54:f6:70:9a:22:4f: 2f:e9:cd:72:b9:d7:fc:55:7d:e3:16:24:42:1a:f0: 34:94:dd:81:66:68:b8:0f:61:12:bf:f4:c2:96:b7: 8f:80:cd:10:7a:b2:bc:50:1c:7b:a6:12:b4:72:06: 0a:72:5f:b8:4b:92:21:b0:e4:57:00:70:9b:38:ff: 1a:4f:9d:bd:03:16:46:a1:1e:72:db:a4:99:50:cf: 46:71:3d:bc:28:20:93:f4:b2:2b:cd:1d:98:15:67: 33:c5:8c:3c:e7:ff:92:b7:0a:36:37:da:ab:9f:00: d0:64:11:9b:26:7e:88:52:88:52:ac:4e:83:f4:aa: 8e:6b:29:1c:4f:15:1d:e0:86:fb:ca:b3:f2:a0:48: 10:7e:2e:12:0d:e1:04:7d:c4:b4:25:aa:7a:8b:0a: 1e:e8:2f:81:21:08:be:6c:6c:2f:2c:d1:4b:33:ab: e0:73:be:a7:a6:23:1c:8e:fc:51:97:3b:b3:6e:4f: 1b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:1E:39:12:37:8E:7E:3B:0A:4A:6D:57:64:3E:B6:0D:EC:54:96:EE X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/915FFF14A5AF11EAB039ED67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:fcf2::/48 Signature Algorithm: sha256WithRSAEncryption af:ea:5c:6f:41:5a:86:d0:aa:c2:54:dc:38:c1:d1:ec:27:1f: 99:c5:0e:34:9e:ae:2b:16:a3:2a:cd:05:fa:24:3b:26:cd:bd: 41:4b:34:cd:52:6a:57:9a:45:ee:d4:20:5a:c8:78:0d:1c:04: 53:9c:59:1b:89:4f:68:df:6b:90:55:93:5c:b5:48:5d:42:81: 6d:4b:67:d9:82:29:9f:f5:b5:6e:aa:4f:b5:3d:75:ec:7d:38: 16:4f:f3:09:f1:50:90:35:d5:66:ec:ac:9d:6f:a8:1e:7c:f7: 55:a8:1d:82:4e:1c:af:5f:8d:0c:2c:1d:5d:6c:fa:d0:95:f1: ac:78:bd:5c:db:1a:e7:73:e6:71:eb:fb:78:56:ad:16:f4:c7: 80:80:07:3c:5e:f3:d7:22:3b:c1:33:c1:f6:ec:dd:d7:61:bf: a6:0b:4e:2c:0d:8e:93:94:8c:d8:7c:81:42:a0:74:a3:d1:d0: d6:7b:59:d6:9d:e1:fc:32:89:c1:74:0a:79:21:1c:5b:41:db: 4e:fe:32:ef:b6:70:37:17:91:37:24:d3:2a:53:d7:fc:1e:eb: 1e:af:90:d9:e9:2d:a2:06:0c:00:4d:3f:05:13:b8:cc:20:2d: d1:93:02:38:45:9a:2c:d0:3e:97:90:82:0d:b8:06:b9:09:5a: dd:55:ef:47 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNzAxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJjYy1jNWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7g6qzip0UEQhNJY+LgxZ2TrMQJnOKP36eLYkFjVRjOzGrctRTSi5priUQP5c u5alH9Lxp+FtWjbkBTNx3e2bBZky+6RU9nCaIk8v6c1yudf8VX3jFiRCGvA0lN2B Zmi4D2ESv/TClrePgM0QerK8UBx7phK0cgYKcl+4S5IhsORXAHCbOP8aT529AxZG oR5y26SZUM9GcT28KCCT9LIrzR2YFWczxYw85/+Stwo2N9qrnwDQZBGbJn6IUohS rE6D9KqOaykcTxUd4Ib7yrPyoEgQfi4SDeEEfcS0Jap6iwoe6C+BIQi+bGwvLNFL M6vgc76npiMcjvxRlzuzbk8bowIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOYeORI3 jn47CkptV2Q+tg3sVJbuMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvOTE1RkZGMTRB NUFGMTFFQUIwMzlFRDY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBYTA/PIwDQYJKoZIhvcNAQELBQADggEBAK/qXG9BWobQ qsJU3DjB0ewnH5nFDjSerisWoyrNBfokOybNvUFLNM1SaleaRe7UIFrIeA0cBFOc WRuJT2jfa5BVk1y1SF1CgW1LZ9mCKZ/1tW6qT7U9dex9OBZP8wnxUJA11WbsrJ1v qB5891WoHYJOHK9fjQwsHV1s+tCV8ax4vVzbGudz5nHr+3hWrRb0x4CABzxe89ci O8Ezwfbs3ddhv6YLTiwNjpOUjNh8gUKgdKPR0NZ7Wdad4fwyicF0CnkhHFtB207+ Mu+2cDcXkTck0ypT1/we6x6vkNnpLaIGDABNPwUTuMwgLdGTAjhFmizQPpeQgg24 BrkJWt1V70c= -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:53 2024 by rpki-client on console-ams.rpki-client.org