$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/8DDD0D56A98C11EFAAC0F364C4F9AE02.roa File: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (raw, json) Hash identifier: yg1U4JyDYBAoLLqLQFnhNTd+uuZ0oKhea1PeFahobmY= Subject key identifier: AB:39:9F:EB:8A:AE:97:63:A2:BA:F0:DE:47:00:1D:D3:CC:CF:49:DC Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: 02 Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/8DDD0D56A98C11EFAAC0F364C4F9AE02.roa Signing time: Sat 23 Nov 2024 11:17:41 +0000 ROA not before: Sat 23 Nov 2024 11:17:41 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137037 IP address blocks: 2001:df4:96c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 11:16:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: Nov 23 11:17:41 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6741b9d5-0b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f7:b3:da:c4:1a:5d:74:a9:70:01:bd:ff:24: 5b:57:e4:04:0c:d0:54:84:82:ab:f4:95:d6:57:1e: b0:1b:88:58:10:92:98:af:5a:bb:1f:ba:ba:f5:c0: 2a:4f:f4:27:7d:7a:35:6a:51:fd:92:fc:6a:40:fe: d8:f1:cd:e5:4f:d8:9c:70:cd:7b:57:74:de:03:b3: 29:ae:c3:6c:fd:39:4f:07:2c:dc:6f:ce:8d:6f:0f: 20:e4:df:d6:a7:9e:60:ee:cc:86:58:45:aa:f1:9a: 1f:13:e9:77:3c:a0:70:d9:e1:9d:f1:2b:31:c5:94: 3f:15:50:7d:f3:86:75:4d:3a:3a:11:02:c8:44:7e: 99:b3:d1:80:e9:0a:b8:a8:7a:4c:bd:96:c7:6d:80: 39:7c:9f:66:81:ce:9d:fb:32:fe:04:38:34:4f:32: 0c:a6:e3:91:7e:99:5e:b7:d3:5e:7f:9f:4e:16:48: ab:8e:3e:13:42:00:c1:78:87:36:cb:ab:89:bb:8f: 02:17:e8:3c:fb:02:e0:3b:e3:a8:71:22:52:2b:5d: 6c:e1:ba:4b:b8:1d:5c:86:0b:d7:8b:96:7b:da:63: 36:67:e4:92:ce:5c:86:d1:6f:7c:31:78:aa:c7:f7: 6d:49:c7:14:80:42:b1:c8:aa:67:65:ea:3d:5b:44: a6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:39:9F:EB:8A:AE:97:63:A2:BA:F0:DE:47:00:1D:D3:CC:CF:49:DC X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/8DDD0D56A98C11EFAAC0F364C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:96c0::/48 Signature Algorithm: sha256WithRSAEncryption 7e:f2:73:5d:15:73:26:98:f1:dd:86:d7:8a:46:58:ab:91:56: 73:2d:7f:c4:3d:67:ab:15:87:27:90:c8:7e:38:70:96:16:b5: 73:89:7a:7b:19:26:63:80:3b:42:8c:e0:85:d3:4e:1e:fa:c2: a1:a0:02:a2:9a:e4:05:2f:7c:d8:b7:ba:d1:a4:66:44:40:0c: d9:76:42:06:24:86:39:fc:59:5b:1e:92:0e:4b:75:9b:0b:30: 07:ae:d8:31:d3:1d:fc:2b:9e:a8:ef:ff:7a:41:eb:ee:e6:bd: 2f:ed:2b:f1:f0:09:16:cf:7f:01:e1:6d:0f:24:24:05:68:e4: d3:1a:b8:e3:b8:ec:c3:20:25:ee:75:e8:af:af:a7:bb:0c:ef: a0:ab:a8:60:bc:f5:f4:68:34:a1:bf:7c:90:87:3e:78:7d:0b: a3:28:de:87:3a:62:ca:91:54:fb:ca:cf:a4:69:06:1f:e8:ba: 97:fb:29:8d:20:a4:24:b1:b0:0c:6e:18:65:5c:f2:a5:ef:7b: ed:ee:b7:01:2a:ed:b6:70:cc:cb:ab:a9:d6:56:55:eb:8f:df: 85:49:c2:9e:ae:4f:1d:25:0f:40:fb:51:23:c8:56:e7:74:da: 60:59:df:6b:1a:4a:ca:32:6b:c9:40:63:c6:41:fe:bd:e2:b5: 89:42:9c:7d -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkMzODExMC8GA1UEBRMoNzhBN0QzNUVGOUM0Nzc1RTc0Q0JBM0QxNjZCNjFCNzU5 MDI0MTUyMzAeFw0yNDExMjMxMTE3NDFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NDFiOWQ1LTBiODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC797PaxBpddKlwAb3/JFtX5AQM0FSEgqv0ldZXHrAbiFgQkpivWrsfurr1wCpP 9Cd9ejVqUf2S/GpA/tjxzeVP2JxwzXtXdN4Dsymuw2z9OU8HLNxvzo1vDyDk39an nmDuzIZYRarxmh8T6Xc8oHDZ4Z3xKzHFlD8VUH3zhnVNOjoRAshEfpmz0YDpCrio eky9lsdtgDl8n2aBzp37Mv4EODRPMgym45F+mV63015/n04WSKuOPhNCAMF4hzbL q4m7jwIX6Dz7AuA746hxIlIrXWzhuku4HVyGC9eLlnvaYzZn5JLOXIbRb3wxeKrH 921JxxSAQrHIqmdl6j1bRKbDAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUqzmf64qu l2OiuvDeRwAd08zPSdwwHwYDVR0jBBgwFoAUeKfTXvnEd150y6PRZrYbdZAkFSMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQzM4LzBERTg5MzQwQTk4 QzExRUY5MzUwRkI2M0M0RjlBRTAyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUtmVFh2bkVkMTUweTZQUlpyWWJkWkFrRlNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkMzOC8wREU4OTM0MEE5OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi84REREMEQ1NkE5 OEMxMUVGQUFDMEYzNjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfSWwDANBgkqhkiG9w0BAQsFAAOCAQEAfvJzXRVzJpjx 3YbXikZYq5FWcy1/xD1nqxWHJ5DIfjhwlha1c4l6exkmY4A7QozghdNOHvrCoaAC oprkBS982Le60aRmREAM2XZCBiSGOfxZWx6SDkt1mwswB67YMdMd/CueqO//ekHr 7ua9L+0r8fAJFs9/AeFtDyQkBWjk0xq447jswyAl7nXor6+nuwzvoKuoYLz19Gg0 ob98kIc+eH0LoyjehzpiypFU+8rPpGkGH+i6l/spjSCkJLGwDG4YZVzype977e63 ASrttnDMy6up1lZV64/fhUnCnq5PHSUPQPtRI8hW53TaYFnfaxpKyjJryUBjxkH+ veK1iUKcfQ== -----END CERTIFICATE-----Generated at Sat Nov 23 13:12:52 2024 by rpki-client on console-fra.rpki-client.org