$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C4488734721511EF9D7B9F3DC4F9AE02.roa File: C4488734721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: bXsJoRXaRoyYGWhN8iMPOg4nwUPcwQEET7jr3RdpjbU= Subject key identifier: 7B:AE:C5:DE:5C:19:B0:6C:00:E2:06:B2:C5:FE:28:6E:9C:FF:DE:D1 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 32 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C4488734721511EF9D7B9F3DC4F9AE02.roa Signing time: Fri 13 Sep 2024 21:18:48 +0000 ROA not before: Fri 13 Sep 2024 21:18:48 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 3839 IP address blocks: 2001:3c8:1401::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:18:48 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4ac38-8395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:09:7f:ab:58:7b:49:3d:be:81:40:46:0f: 46:89:e1:10:04:bb:fe:36:44:6e:d5:1a:ee:45:1e: 4a:a3:c6:2a:2b:a9:9f:27:ce:72:8b:7c:f0:96:11: 4b:f8:4c:11:be:cc:dc:8b:cc:87:b4:24:65:a3:e1: cb:d8:b6:a8:89:ce:0a:5e:b9:02:4f:26:f4:e2:1b: 7e:10:be:65:33:25:8b:f0:bf:10:97:8c:f7:e2:71: 1a:1b:d4:03:17:e6:76:4a:fb:15:23:ff:12:18:ff: ae:22:45:c8:bc:ae:ee:53:42:b6:a5:20:d6:81:ba: 46:7a:a7:23:b2:ae:7a:c7:ac:35:d1:da:28:12:63: f8:07:4c:12:40:e5:d8:c3:b9:91:f1:4c:31:ea:5d: 26:7a:8d:0b:94:77:94:e1:48:fd:c4:b6:0a:a9:12: 66:a1:9e:31:a1:64:12:5b:ca:29:49:1d:36:3a:09: 22:7e:2d:c7:7b:fe:33:ea:a6:ba:ef:ce:e5:c3:c4: 14:87:6b:d2:9b:71:63:99:5e:22:66:a3:dd:76:1f: 5d:a9:00:e0:2d:48:7c:11:5a:e1:41:88:72:c3:60: 23:ed:55:01:0a:d7:8b:09:c7:7c:e2:2a:83:fe:df: 8c:9d:f7:86:fc:08:3a:a6:43:a1:40:c7:65:9d:45: 76:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:AE:C5:DE:5C:19:B0:6C:00:E2:06:B2:C5:FE:28:6E:9C:FF:DE:D1 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C4488734721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:3c8:1401::/48 Signature Algorithm: sha256WithRSAEncryption 68:e4:f5:70:38:62:8a:28:75:0c:f5:2c:78:45:64:d6:35:54: 16:f5:f5:77:b6:96:ca:83:a9:02:5f:c7:c6:d8:e8:88:a1:0e: 6a:a1:7b:ce:e2:bb:cf:04:4a:9d:46:2e:a2:bd:73:14:c2:12: 87:4b:a9:b5:12:15:06:55:78:b0:09:13:ac:f4:27:1e:26:b3: 3f:38:c0:84:3a:e0:8d:1f:e5:89:d5:2d:47:f6:d6:b8:87:15: 84:74:9e:c3:c2:99:7a:77:30:46:20:83:24:a4:6a:d9:bf:2e: 4a:0a:5d:6f:c3:b7:bd:ef:fb:29:f6:6f:6f:67:a9:37:aa:cc: 62:fb:ce:27:42:ba:6d:f3:e7:c9:70:55:4c:95:d2:7b:a4:54: 17:81:fb:80:84:9b:46:73:70:c0:ba:19:ee:1a:8e:a9:82:e8: 19:b3:e2:71:45:d8:40:9c:7a:7f:f8:47:e3:57:42:f1:40:6a: 86:a0:56:68:b2:28:6f:a5:d0:4f:c5:7c:90:3f:55:ab:fd:97: 8b:ed:a5:1d:1b:06:92:81:3b:d4:1f:ac:6e:ea:85:38:5b:ea: bf:6d:cc:6e:dc:9c:0d:d3:be:6e:b1:6f:08:6c:e3:de:cb:c4: 46:d5:f5:d6:ea:1f:dd:e8:1d:c5:ee:d0:a8:77:1a:90:d3:d8: 88:61:f7:37 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTE4NDhaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRhYzM4LTgzOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEaAl/q1h7ST2+gUBGD0aJ4RAEu/42RG7VGu5FHkqjxiorqZ8nznKLfPCWEUv4 TBG+zNyLzIe0JGWj4cvYtqiJzgpeuQJPJvTiG34QvmUzJYvwvxCXjPficRob1AMX 5nZK+xUj/xIY/64iRci8ru5TQralINaBukZ6pyOyrnrHrDXR2igSY/gHTBJA5djD uZHxTDHqXSZ6jQuUd5ThSP3EtgqpEmahnjGhZBJbyilJHTY6CSJ+Lcd7/jPqprrv zuXDxBSHa9KbcWOZXiJmo912H12pAOAtSHwRWuFBiHLDYCPtVQEK14sJx3ziKoP+ 34yd94b8CDqmQ6FAx2WdRXavAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUe67F3lwZ sGwA4gayxf4obpz/3tEwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9DNDQ4ODczNDcy MTUxMUVGOUQ3QjlGM0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABA8gUATANBgkqhkiG9w0BAQsFAAOCAQEAaOT1cDhiiih1 DPUseEVk1jVUFvX1d7aWyoOpAl/HxtjoiKEOaqF7zuK7zwRKnUYuor1zFMISh0up tRIVBlV4sAkTrPQnHiazPzjAhDrgjR/lidUtR/bWuIcVhHSew8KZencwRiCDJKRq 2b8uSgpdb8O3ve/7KfZvb2epN6rMYvvOJ0K6bfPnyXBVTJXSe6RUF4H7gISbRnNw wLoZ7hqOqYLoGbPicUXYQJx6f/hH41dC8UBqhqBWaLIob6XQT8V8kD9Vq/2Xi+2l HRsGkoE71B+sbuqFOFvqv23MbtycDdO+brFvCGzj3svERtX11uof3egdxe7QqHca kNPYiGH3Nw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org