$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F6979612721511EFA7D82D3EC4F9AE02.roa File: F6979612721511EFA7D82D3EC4F9AE02.roa (raw, json) Hash identifier: dcCo9zPHjS1XGzYN+2ErocmNEpmILZ4a3HooapP7wHc= Subject key identifier: 22:21:60:24:26:87:5C:1D:71:DD:E3:86:86:E1:96:BE:C4:C4:22:B9 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 60 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F6979612721511EFA7D82D3EC4F9AE02.roa Signing time: Sat 14 Sep 2024 00:03:35 +0000 ROA not before: Sat 14 Sep 2024 00:03:35 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 37932 IP address blocks: 2001:3c8:c109::/48 maxlen: 48 2001:3c8:c10a::/48 maxlen: 48 2001:3c8:c10b::/48 maxlen: 48 2001:3c8:c305::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 14 00:03:35 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e4d2d7-8956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:00:b1:b5:60:6f:6a:2f:d3:a4:2d:5e:fc:1e: 26:ee:2f:48:57:2b:4c:76:03:02:53:2b:aa:93:ad: f2:88:0b:7f:36:56:60:d8:e2:32:6b:0a:8a:c9:dc: 00:bf:e7:03:89:c2:82:d9:27:80:de:33:9a:90:6c: c9:de:54:2c:c4:99:1d:3d:4b:f7:e7:97:6d:f3:8c: 06:d7:78:ea:15:9f:f1:53:66:fa:89:29:31:50:fc: 30:1d:92:9c:70:44:c1:fe:e8:d3:36:d9:e4:2d:4d: 68:f0:b9:ff:29:89:01:a5:b9:9f:64:b2:3b:f7:a9: d4:df:5f:87:e0:09:62:39:d3:9f:0b:77:e3:c6:e9: 5c:f7:7e:dd:5b:30:f9:52:fa:c5:a4:65:1f:a7:63: 53:be:46:39:a1:76:e8:1b:e0:03:e2:23:1b:a4:b8: 79:8b:d1:cc:df:e6:f3:e4:c9:2b:71:65:3b:28:de: b0:b0:a9:f8:42:76:41:6b:d8:33:e7:bd:86:f0:04: 76:f7:df:bb:44:94:3d:91:c2:ae:03:9c:38:dd:7f: 97:5e:77:dd:d6:63:e2:4e:a1:59:48:dc:91:91:c7: ce:13:6a:22:4b:8f:38:e3:68:1e:91:c7:8b:23:f1: 96:bb:62:9f:a2:c1:b0:21:12:78:07:eb:fc:ab:e7: e8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:21:60:24:26:87:5C:1D:71:DD:E3:86:86:E1:96:BE:C4:C4:22:B9 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F6979612721511EFA7D82D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:3c8:c109::-2001:3c8:c10b:ffff:ffff:ffff:ffff:ffff 2001:3c8:c305::/48 Signature Algorithm: sha256WithRSAEncryption 59:bb:98:5e:6f:1a:96:8d:68:a1:3b:2d:bc:9e:3b:c9:85:58: f7:69:30:0c:b3:c3:3f:45:11:91:d4:62:c2:f1:eb:46:4e:e5: a3:4b:52:30:a4:56:93:f6:f3:36:a6:0c:27:97:b5:4c:b2:a7: dc:5b:2d:ea:16:00:05:6a:21:60:34:80:49:bb:cc:51:0e:11: 3c:3e:76:5f:9e:42:2c:1a:9f:97:4f:8d:92:b4:fa:0e:2b:24: 3f:87:5b:75:db:09:8c:b5:c9:67:f5:f5:dd:a6:f4:f8:1e:8c: 8d:9d:75:11:f6:32:a7:bf:ea:6d:31:28:61:91:b8:69:89:19: 9e:7e:39:5b:3e:aa:32:fd:f0:d2:d3:2f:b5:3e:bc:d9:35:8d: 28:70:c1:d8:d9:37:17:e4:a0:4b:45:a2:cd:82:5a:c9:36:11: 41:db:0c:19:ca:50:bb:9e:04:1b:b3:3d:15:92:ae:c3:84:48: 3b:22:cc:ea:c4:d5:f2:b6:c6:47:49:47:fb:93:b2:96:96:7e: ca:1e:12:b7:05:b2:71:e8:ed:f2:f0:08:6a:f9:eb:7f:cd:9f: ad:d4:f7:97:f1:de:b5:8b:09:40:75:c1:a3:33:6a:f6:f4:92: 5f:4b:87:82:8e:cb:95:14:fb:db:73:85:85:91:6e:39:dd:ff: e7:ff:c4:15 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTQwMDAzMzVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTRkMmQ3LTg5NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJALG1YG9qL9OkLV78HibuL0hXK0x2AwJTK6qTrfKIC382VmDY4jJrCorJ3AC/ 5wOJwoLZJ4DeM5qQbMneVCzEmR09S/fnl23zjAbXeOoVn/FTZvqJKTFQ/DAdkpxw RMH+6NM22eQtTWjwuf8piQGluZ9ksjv3qdTfX4fgCWI5058Ld+PG6Vz3ft1bMPlS +sWkZR+nY1O+Rjmhdugb4APiIxukuHmL0czf5vPkyStxZTso3rCwqfhCdkFr2DPn vYbwBHb337tElD2Rwq4DnDjdf5ded93WY+JOoVlI3JGRx84TaiJLjzjjaB6Rx4sj 8Za7Yp+iwbAhEngH6/yr5+g7AgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUIiFgJCaH XB1x3eOGhuGWvsTEIrkwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi9GNjk3OTYxMjcy MTUxMUVGQTdEODJEM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwIwQCAAIwHTASAwcAIAEDyMEJAwcCIAEDyMEIAwcAIAEDyMMFMA0GCSqGSIb3 DQEBCwUAA4IBAQBZu5hebxqWjWihOy28njvJhVj3aTAMs8M/RRGR1GLC8etGTuWj S1IwpFaT9vM2pgwnl7VMsqfcWy3qFgAFaiFgNIBJu8xRDhE8PnZfnkIsGp+XT42S tPoOKyQ/h1t12wmMtcln9fXdpvT4HoyNnXUR9jKnv+ptMShhkbhpiRmefjlbPqoy /fDS0y+1PrzZNY0ocMHY2TcX5KBLRaLNglrJNhFB2wwZylC7ngQbsz0Vkq7DhEg7 IszqxNXytsZHSUf7k7KWln7KHhK3BbJx6O3y8Ahq+et/zZ+t1PeX8d61iwlAdcGj M2r29JJfS4eCjsuVFPvbc4WFkW453f/n/8QV -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org