$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/9F71391C684F11EAB45B6F4FC4F9AE02.roa File: 9F71391C684F11EAB45B6F4FC4F9AE02.roa (raw, json) Hash identifier: jVu5ZnLYMd3KFvMDPxIr2Kr82SJ5+hpIDGoI5dhGF7o= Subject key identifier: 56:44:F5:03:72:FC:79:DC:41:82:F3:83:50:8C:12:C1:EB:5C:AA:62 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DBE Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/9F71391C684F11EAB45B6F4FC4F9AE02.roa Signing time: Fri 06 Sep 2024 18:36:59 +0000 ROA not before: Fri 06 Sep 2024 18:36:59 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 209650 IP address blocks: 2405:84c0:fcf0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3518 (0xdbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:36:59 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bcb-fdd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ca:f7:6a:e5:fc:ba:54:68:4d:76:66:96:02: 8c:23:21:bd:63:99:b8:1e:00:c0:69:b4:f5:46:13: 30:cd:56:1f:b2:55:3d:37:7d:87:a2:0a:c5:41:30: 89:9b:2e:ae:f9:68:89:84:5c:a4:36:f5:5b:27:67: bd:d2:f9:71:36:ab:4a:38:b8:a3:6b:87:07:95:b1: 72:6b:f2:43:e4:d2:4c:f3:76:45:3d:fe:7c:cb:5d: 57:0e:2a:c9:63:d5:31:5d:f8:bd:71:0a:f4:8f:26: e6:0c:a0:38:b6:a2:f7:90:89:34:af:c5:36:55:11: 20:8b:3f:50:f3:79:64:bd:9e:0a:80:91:0d:ec:09: b9:74:c1:0f:86:e7:9d:c7:6f:6f:91:9a:4d:d4:fc: ec:9a:13:64:0c:06:ba:92:e9:3f:a1:91:47:37:3e: af:85:79:7b:3b:ea:38:5e:ac:bc:43:e6:e0:58:7c: a2:9e:f9:07:35:4e:3c:50:ee:80:f9:5a:4c:e0:25: 08:36:94:16:0f:0e:c0:5a:e3:70:e5:3f:4b:eb:da: 21:e6:e3:9e:cc:f2:cd:18:19:8b:0d:13:9a:dd:9b: 43:84:d7:65:70:da:bd:9f:ca:54:8f:d1:bd:d8:41: e2:31:fe:b9:34:4e:f3:38:0b:e7:8d:99:44:ac:e0: 4f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:44:F5:03:72:FC:79:DC:41:82:F3:83:50:8C:12:C1:EB:5C:AA:62 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/9F71391C684F11EAB45B6F4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:fcf0::/48 Signature Algorithm: sha256WithRSAEncryption 5c:16:69:70:bf:39:39:0b:5e:7d:a3:33:20:25:ad:8a:ce:05: b0:03:14:bb:15:62:81:dd:70:0c:86:0d:22:00:5d:91:6b:dd: 87:b0:be:96:0d:d8:76:68:33:eb:cd:d4:30:96:cf:6f:ff:9b: 37:ba:e8:d0:15:03:64:13:6a:54:ea:00:01:04:0e:b2:bf:8b: 51:62:bd:16:76:2e:05:5e:93:dd:65:80:1c:0e:96:ab:fe:ae: a2:df:cd:e8:71:9c:38:61:57:43:f4:f9:6b:e0:54:96:2c:64: 36:29:bf:64:fd:d3:a1:7f:f1:46:51:89:f5:65:c8:a3:0e:c8: e9:c8:02:ea:8f:ae:fd:c9:50:c6:55:e1:bd:0b:d5:c9:1c:13: a2:72:f8:34:ba:db:04:eb:8b:e5:ee:88:25:de:b1:20:af:d4: 59:c8:4e:0c:13:01:1d:51:2f:07:4a:6b:94:4d:9a:78:8b:f5: be:40:e0:a1:42:60:da:26:47:2d:6f:6b:96:66:82:f4:a1:60: b6:eb:8e:b0:0d:13:3b:36:94:d8:8b:23:9c:cf:9b:b6:2e:c7: 64:73:69:d7:11:b8:8e:61:c0:f3:66:61:c6:f9:e9:87:ce:ff: e0:d0:57:26:21:86:2c:b1:8f:ec:ac:4b:32:0e:ed:6e:9a:d9: a0:d4:00:e1 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNjU5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJjYi1mZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7cr3auX8ulRoTXZmlgKMIyG9Y5m4HgDAabT1RhMwzVYfslU9N32HogrFQTCJ my6u+WiJhFykNvVbJ2e90vlxNqtKOLija4cHlbFya/JD5NJM83ZFPf58y11XDirJ Y9UxXfi9cQr0jybmDKA4tqL3kIk0r8U2VREgiz9Q83lkvZ4KgJEN7Am5dMEPhued x29vkZpN1PzsmhNkDAa6kuk/oZFHNz6vhXl7O+o4Xqy8Q+bgWHyinvkHNU48UO6A +VpM4CUINpQWDw7AWuNw5T9L69oh5uOezPLNGBmLDROa3ZtDhNdlcNq9n8pUj9G9 2EHiMf65NE7zOAvnjZlErOBPEQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFZE9QNy /HncQYLzg1CMEsHrXKpiMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvOUY3MTM5MUM2 ODRGMTFFQUI0NUI2RjRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBYTA/PAwDQYJKoZIhvcNAQELBQADggEBAFwWaXC/OTkL Xn2jMyAlrYrOBbADFLsVYoHdcAyGDSIAXZFr3YewvpYN2HZoM+vN1DCWz2//mze6 6NAVA2QTalTqAAEEDrK/i1FivRZ2LgVek91lgBwOlqv+rqLfzehxnDhhV0P0+Wvg VJYsZDYpv2T906F/8UZRifVlyKMOyOnIAuqPrv3JUMZV4b0L1ckcE6Jy+DS62wTr i+XuiCXesSCv1FnITgwTAR1RLwdKa5RNmniL9b5A4KFCYNomRy1va5ZmgvShYLbr jrANEzs2lNiLI5zPm7Yux2RzadcRuI5hwPNmYcb56YfO/+DQVyYhhiyxj+ysSzIO 7W6a2aDUAOE= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:04 2024 by rpki-client on console-ams.rpki-client.org