$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EDD8F8E0721A11EFBDE87567C4F9AE02.roa File: EDD8F8E0721A11EFBDE87567C4F9AE02.roa (raw, json) Hash identifier: yTPvTttz1gvebW7QcKB7MauVABBLfcARBdipYzx1V0A= Subject key identifier: B3:68:25:87:86:F4:9A:34:85:9A:1F:CF:78:3C:70:D4:D0:72:9D:35 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 45 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EDD8F8E0721A11EFBDE87567C4F9AE02.roa Signing time: Fri 13 Sep 2024 21:55:46 +0000 ROA not before: Fri 13 Sep 2024 21:55:46 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132482 IP address blocks: 2001:3c8:2705::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 21:55:46 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4b4e1-2ffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:81:36:6f:ef:0c:01:10:f6:a2:7a:9d:c9:6f: 3d:5a:e6:b6:ec:f0:2a:39:fc:71:5d:74:7f:4d:13: de:59:93:6f:6f:a5:42:7f:b3:61:bc:c5:95:63:4b: 9a:65:cb:90:4e:ed:f5:fa:e0:67:bf:78:da:0d:1e: e8:a7:36:54:a7:b5:df:46:d9:47:e0:de:61:37:b2: c7:a8:40:9a:36:07:48:c8:63:b1:92:37:28:82:e6: 96:9c:fb:26:07:51:71:1d:49:91:44:eb:27:a8:0e: 8c:55:ca:da:d1:5b:56:38:2f:01:59:90:07:6a:f8: 9c:6a:78:c2:3c:75:ec:5e:83:34:ad:28:1c:12:8b: 69:0e:43:4b:60:0b:fb:fc:ac:d2:80:fc:c6:d4:f4: 5a:b8:c5:20:1b:f2:60:43:d5:38:12:65:ac:d6:3a: c1:ee:fd:55:8a:d0:dc:19:3e:d6:7f:85:0e:9d:92: 0e:62:08:33:82:7f:8b:0c:38:66:6b:48:5b:af:0d: 75:04:dc:88:bf:d3:73:4f:a2:a8:c8:d5:49:6f:6c: 4f:a9:2c:0c:40:43:a9:f6:6a:05:13:ff:f1:2b:6b: 32:2a:25:9c:0f:f9:24:02:f3:d6:30:e0:36:f1:93: f6:38:1e:44:55:25:74:1e:be:73:b0:b2:d0:0a:c2: 88:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:68:25:87:86:F4:9A:34:85:9A:1F:CF:78:3C:70:D4:D0:72:9D:35 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EDD8F8E0721A11EFBDE87567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:3c8:2705::/48 Signature Algorithm: sha256WithRSAEncryption 25:72:a1:69:bd:0d:be:6b:b8:39:b1:3b:92:05:a8:4c:90:c8: 96:1d:cc:4a:7e:45:b9:2d:12:9e:fa:a6:32:0d:07:a4:12:a1: f7:5b:1b:da:9f:1d:d8:7a:78:bb:e0:23:e4:55:50:1d:3e:3e: 5f:61:5b:5b:64:2f:e4:e9:29:af:a3:4e:9b:9a:be:d5:3b:16: 4b:9b:dd:ac:18:a8:2b:98:59:18:7f:f4:1d:37:7d:7f:4f:e3: c6:3d:f3:72:38:f1:49:a3:7d:28:2c:45:be:36:8e:c1:2b:68: 06:76:3d:5f:9d:15:28:94:7a:62:a9:20:23:13:65:6d:62:2c: ad:7e:7c:54:c9:10:ea:ba:5c:e1:25:2e:a9:7b:5a:54:31:d0: a3:9b:79:19:bf:c2:2e:01:3b:c7:84:d6:35:68:2d:17:f5:de: e3:7d:c6:0d:dd:65:94:f1:48:ac:c6:d8:30:0e:2b:28:dd:05: 6c:67:04:a2:0b:d4:29:37:32:20:a3:70:2b:36:57:2d:62:1c: 17:42:29:f8:3d:bc:30:2d:2c:bc:ae:96:8f:89:3e:a1:91:c5: 40:a2:7d:a9:cc:ad:cb:80:95:d1:97:b2:8f:84:00:8e:52:0f: 2a:60:b9:6a:d3:1b:65:14:4a:0b:b1:4e:b8:9f:a6:10:1b:69: 22:ae:09:ca -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMyMTU1NDZaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRiNGUxLTJmZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9gTZv7wwBEPaiep3Jbz1a5rbs8Co5/HFddH9NE95Zk29vpUJ/s2G8xZVjS5pl y5BO7fX64Ge/eNoNHuinNlSntd9G2Ufg3mE3sseoQJo2B0jIY7GSNyiC5pac+yYH UXEdSZFE6yeoDoxVytrRW1Y4LwFZkAdq+JxqeMI8dexegzStKBwSi2kOQ0tgC/v8 rNKA/MbU9Fq4xSAb8mBD1TgSZazWOsHu/VWK0NwZPtZ/hQ6dkg5iCDOCf4sMOGZr SFuvDXUE3Ii/03NPoqjI1UlvbE+pLAxAQ6n2agUT//ErazIqJZwP+SQC89Yw4Dbx k/Y4HkRVJXQevnOwstAKwojFAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUs2glh4b0 mjSFmh/PeDxw1NBynTUwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9FREQ4RjhFMDcy MUExMUVGQkRFODc1NjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABA8gnBTANBgkqhkiG9w0BAQsFAAOCAQEAJXKhab0Nvmu4 ObE7kgWoTJDIlh3MSn5FuS0SnvqmMg0HpBKh91sb2p8d2Hp4u+Aj5FVQHT4+X2Fb W2Qv5Okpr6NOm5q+1TsWS5vdrBioK5hZGH/0HTd9f0/jxj3zcjjxSaN9KCxFvjaO wStoBnY9X50VKJR6YqkgIxNlbWIsrX58VMkQ6rpc4SUuqXtaVDHQo5t5Gb/CLgE7 x4TWNWgtF/Xe433GDd1llPFIrMbYMA4rKN0FbGcEogvUKTcyIKNwKzZXLWIcF0Ip +D28MC0svK6Wj4k+oZHFQKJ9qcyty4CV0Zeyj4QAjlIPKmC5atMbZRRKC7FOuJ+m EBtpIq4Jyg== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org