$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa File: E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa (raw, json) Hash identifier: WsyWU+GSKy4FFCUwRFHUtgnAnZ3p6nz3YhQIgRrWUrE= Subject key identifier: 15:6C:B2:A8:E2:B4:75:1A:F6:E5:FC:0C:15:2C:36:AB:30:04:EB:6F Certificate issuer: /CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Certificate serial: 083D Authority key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa Signing time: Thu 06 Jun 2024 22:09:36 +0000 ROA not before: Thu 06 Jun 2024 22:09:36 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9221 IP address blocks: 2406:dc0:232c::/47 maxlen: 48 2406:dc0:235e::/47 maxlen: 48 2406:dc0:23e4::/47 maxlen: 48 2406:dc0:883e::/47 maxlen: 48 2406:dc0:8850::/47 maxlen: 48 2406:dc0:88bc::/47 maxlen: 48 2406:dc0:88ca::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2109 (0x83d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Validity Not Before: Jun 6 22:09:36 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666233a0-4067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f1:e5:44:f4:cc:5a:70:50:4a:b3:c3:90:0e: 1e:0b:26:0b:ea:70:b1:c1:c1:3b:88:62:cb:ae:02: 6e:b0:80:57:bf:91:2f:5e:9d:bd:04:93:d8:36:93: 4e:30:3e:7c:3e:87:01:5f:63:20:ed:39:34:0b:0c: d4:d6:ad:d2:0d:d5:06:f4:15:1d:95:e8:fc:19:1b: 4b:0e:9b:16:d3:53:26:e5:32:a3:29:60:6f:df:25: d4:f8:a6:aa:7c:d4:e5:9d:24:68:e7:d3:a3:f6:d1: ac:7f:dc:66:a5:b1:1a:d4:2b:34:00:f7:c5:63:53: a1:f4:28:fe:8e:19:29:e0:00:c8:fc:7f:d8:ed:cf: 71:c4:f4:bb:c8:9e:f9:65:bf:95:6f:f9:22:d9:e0: 70:22:ae:4b:4f:d7:9b:d5:1b:5e:d6:75:23:16:1a: ef:87:5c:2d:28:86:b9:38:3b:8b:60:eb:a1:56:0d: c2:8d:23:93:ab:e6:eb:61:03:59:c3:48:25:09:1b: 49:20:a1:ca:d9:21:f7:6e:d9:7d:cd:20:a4:cb:44: f3:39:b0:a8:ba:5f:fb:c3:37:e4:7a:25:e9:d4:80: b9:83:6a:e6:32:97:b2:b9:59:dc:7e:86:bc:f0:16: 24:32:4a:4c:67:ea:16:f5:f6:25:73:54:91:fe:d9: f8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:6C:B2:A8:E2:B4:75:1A:F6:E5:FC:0C:15:2C:36:AB:30:04:EB:6F X509v3 Authority Key Identifier: keyid:86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:dc0:232c::/47 2406:dc0:235e::/47 2406:dc0:23e4::/47 2406:dc0:883e::/47 2406:dc0:8850::/47 2406:dc0:88bc::/47 2406:dc0:88ca::/47 Signature Algorithm: sha256WithRSAEncryption 89:c4:c2:a4:c9:57:dc:2e:54:b7:51:87:39:ee:92:9a:09:40: 60:c0:7c:7b:12:06:91:68:30:34:42:21:99:6d:db:53:d2:dc: 6e:57:f3:67:7a:19:29:b5:a4:6c:1b:82:37:e3:d7:44:c3:41: 14:63:4c:a3:8a:c6:17:78:1c:2b:da:d9:6a:f5:4a:45:d5:2a: 20:ed:cf:0c:60:aa:c2:5e:ac:de:ba:97:30:54:8d:b2:a3:99: fe:45:3a:8f:7c:a2:0e:e0:cb:14:0a:1f:48:8f:bc:1f:a2:c0: dd:a6:62:3c:e7:93:55:93:dd:b5:8b:b8:c8:66:ec:fa:ee:80: 07:6d:3a:4c:e6:67:0b:30:4c:56:ed:86:cb:ee:e8:57:cb:5f: 90:25:8d:d7:3f:94:9c:eb:02:f9:44:61:9b:90:c2:a9:88:30: b3:9c:44:20:4a:90:8d:72:a6:3d:48:7f:36:84:98:2f:76:b1: a2:4b:6b:67:29:49:0d:45:d1:88:a6:e1:9e:d7:5d:94:8b:03: 01:77:68:ba:0d:6e:bc:62:98:8f:11:98:fa:00:d2:23:26:cd: 1a:ff:2d:32:cf:22:5b:cd:b8:3e:45:1c:d6:ef:96:bd:06:08: d5:1b:bb:82:fa:23:47:2a:4b:3c:78:98:b3:6d:f6:1d:40:23: e3:4c:38:2a -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgICCD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJEMzVBMkNGNjU1 NEZFQzcxMTkwHhcNMjQwNjA2MjIwOTM2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyMzNhMC00MDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2PHlRPTMWnBQSrPDkA4eCyYL6nCxwcE7iGLLrgJusIBXv5EvXp29BJPYNpNO MD58PocBX2Mg7Tk0CwzU1q3SDdUG9BUdlej8GRtLDpsW01Mm5TKjKWBv3yXU+Kaq fNTlnSRo59Oj9tGsf9xmpbEa1Cs0APfFY1Oh9Cj+jhkp4ADI/H/Y7c9xxPS7yJ75 Zb+Vb/ki2eBwIq5LT9eb1Rte1nUjFhrvh1wtKIa5ODuLYOuhVg3CjSOTq+brYQNZ w0glCRtJIKHK2SH3btl9zSCky0TzObCoul/7wzfkeiXp1IC5g2rmMpeyuVncfoa8 8BYkMkpMZ+oW9fYlc1SR/tn4sQIDAQABo4ICzjCCAsowHQYDVR0OBBYEFBVssqji tHUa9uX8DBUsNqswBOtvMB8GA1UdIwQYMBaAFIbCPBe8TSDuFvCS01os9lVP7HEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ3Ny80QjY0MjdFMkFC RjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklPNFc4SkxUV2l6MlZVX3Nj UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzSThGN3hOSU80VzhKTFRXaXoyVlVfc2NSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFENzcvNEI2NDI3RTJBQkY5MTFFQTg4QUFFMzJDQzRGOUFFMDIvRTZGRDVFQkNC QTNBMTFFQkE5NDgyRjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWAYIKwYBBQUHAQcBAf8E STBHMEUEAgACMD8DBwEkBg3AIywDBwEkBg3AI14DBwEkBg3AI+QDBwEkBg3AiD4D BwEkBg3AiFADBwEkBg3AiLwDBwEkBg3AiMowDQYJKoZIhvcNAQELBQADggEBAInE wqTJV9wuVLdRhznukpoJQGDAfHsSBpFoMDRCIZlt21PS3G5X82d6GSm1pGwbgjfj 10TDQRRjTKOKxhd4HCva2Wr1SkXVKiDtzwxgqsJerN66lzBUjbKjmf5FOo98og7g yxQKH0iPvB+iwN2mYjznk1WT3bWLuMhm7PrugAdtOkzmZwswTFbthsvu6FfLX5Al jdc/lJzrAvlEYZuQwqmIMLOcRCBKkI1ypj1IfzaEmC92saJLa2cpSQ1F0Yim4Z7X XZSLAwF3aLoNbrximI8RmPoA0iMmzRr/LTLPIlvNuD5FHNbvlr0GCNUbu4L6I0cq Szx4mLNt9h1AI+NMOCo= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org