$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/4996DBD6FC6111EA9BE8AB1AC4F9AE02.roa File: 4996DBD6FC6111EA9BE8AB1AC4F9AE02.roa (raw, json) Hash identifier: HbzRdIs3KuV/WLcwtWC1hb/c2HWLxUc2yZDreu1apGM= Subject key identifier: 97:EB:34:6C:F5:AA:1A:36:70:82:E9:5A:AC:25:35:5D:EB:96:0D:C8 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 178E Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/4996DBD6FC6111EA9BE8AB1AC4F9AE02.roa Signing time: Tue 20 Feb 2024 17:55:22 +0000 ROA not before: Tue 20 Feb 2024 17:55:22 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 131298 IP address blocks: 2401:1c00:3080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 17:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6030 (0x178e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:55:22 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d4e78a-2042 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:7f:bd:96:5a:6d:43:a9:3d:f5:b8:16:e4:1d: ea:40:de:6e:66:e8:f8:ec:22:26:12:f3:ae:9f:b7: d6:86:f7:51:0d:ba:34:7e:74:ab:e9:b1:74:97:44: 48:b3:35:e7:83:9e:22:ed:fb:7e:c5:28:4b:97:f7: a3:61:0f:13:10:dc:39:de:64:76:dc:56:a3:73:18: a1:22:09:ab:74:a7:6b:93:95:89:a6:b5:fe:8e:5c: 3d:49:74:a4:87:e9:d0:7a:17:0e:96:e0:1d:02:d8: 6e:39:ea:48:42:3c:21:a8:97:2f:e3:9a:34:09:90: 6b:5f:83:d4:1f:ed:b7:a8:2a:0f:6e:ef:41:b2:82: 39:c1:e8:9b:ee:6a:cf:05:89:7c:ac:4e:cb:b9:7c: e0:47:22:72:28:15:8f:6c:f9:25:34:b5:68:0d:61: 4a:93:12:d3:16:37:fa:6b:59:9f:af:31:78:b5:65: 1b:41:cc:91:1c:76:de:59:2c:91:c5:23:dc:78:30: 5d:9e:19:f8:f3:da:29:e8:45:0f:4c:57:75:56:9f: de:10:86:64:a8:56:c7:aa:dc:74:56:f5:7e:b9:ba: 2d:3a:e0:20:2a:36:b2:c7:56:a0:32:8c:d0:92:ae: 01:e0:c4:43:72:57:be:16:02:fb:c3:78:10:83:fb: d4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:EB:34:6C:F5:AA:1A:36:70:82:E9:5A:AC:25:35:5D:EB:96:0D:C8 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/4996DBD6FC6111EA9BE8AB1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:1c00:3080::/48 Signature Algorithm: sha256WithRSAEncryption 3a:fb:d8:8c:73:01:ff:55:69:31:53:75:ce:4c:5f:6b:9b:6d: 0c:a9:2c:8f:a6:7a:f3:f2:8b:c0:d7:73:f8:5b:fd:65:1c:78: 21:40:02:c3:09:d7:72:f2:ca:26:92:f7:80:3d:f7:7a:d1:1c: ae:bd:2c:6a:2a:fc:5a:b1:84:18:8c:9a:91:87:ab:e0:1d:18: dc:df:27:c9:b5:ee:3d:1c:3b:3e:9c:78:a3:78:d8:6d:e0:50: a3:9e:1f:40:14:3c:71:79:c7:ba:e3:13:a5:29:10:c6:c5:a8: e5:21:19:b8:c4:d3:ce:0d:2b:2e:f4:0a:74:c5:0c:6a:4b:71: fb:f5:b9:6a:ab:85:f0:fa:85:bd:e0:98:96:6a:6d:e9:42:c5: 37:4b:45:3c:dd:58:a5:98:33:07:1d:cc:2d:8a:a2:d8:0e:a1: 82:69:8b:db:fb:06:16:d4:26:06:71:4f:40:65:e9:31:7e:4b: eb:dd:fd:8a:6c:63:ab:a8:29:1a:d8:9e:13:f1:2e:1b:ca:d8: 30:7a:3f:13:5c:2f:df:6e:bf:f5:69:1f:49:88:f3:53:09:71: b5:a8:9b:8f:45:af:d4:cb:b9:d8:39:08:67:93:52:0e:77:f1: 2a:3f:a6:30:bd:13:7f:3e:cc:83:ec:ff:a2:5d:32:7b:62:62: a1:c1:ba:4e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICF44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQwMjIwMTc1NTIyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZTc4YS0yMDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5H+9llptQ6k99bgW5B3qQN5uZuj47CImEvOun7fWhvdRDbo0fnSr6bF0l0RI szXng54i7ft+xShLl/ejYQ8TENw53mR23FajcxihIgmrdKdrk5WJprX+jlw9SXSk h+nQehcOluAdAthuOepIQjwhqJcv45o0CZBrX4PUH+23qCoPbu9BsoI5weib7mrP BYl8rE7LuXzgRyJyKBWPbPklNLVoDWFKkxLTFjf6a1mfrzF4tWUbQcyRHHbeWSyR xSPceDBdnhn489op6EUPTFd1Vp/eEIZkqFbHqtx0VvV+ubotOuAgKjayx1agMozQ kq4B4MRDcle+FgL7w3gQg/vURwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJfrNGz1 qho2cILpWqwlNV3rlg3IMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvNDk5NkRCRDZG QzYxMTFFQTlCRThBQjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkARwAMIAwDQYJKoZIhvcNAQELBQADggEBADr72IxzAf9V aTFTdc5MX2ubbQypLI+mevPyi8DXc/hb/WUceCFAAsMJ13LyyiaS94A993rRHK69 LGoq/FqxhBiMmpGHq+AdGNzfJ8m17j0cOz6ceKN42G3gUKOeH0AUPHF5x7rjE6Up EMbFqOUhGbjE084NKy70CnTFDGpLcfv1uWqrhfD6hb3gmJZqbelCxTdLRTzdWKWY MwcdzC2KotgOoYJpi9v7BhbUJgZxT0Bl6TF+S+vd/YpsY6uoKRrYnhPxLhvK2DB6 PxNcL99uv/VpH0mI81MJcbWom49Fr9TLudg5CGeTUg538So/pjC9E38+zIPs/6Jd MntiYqHBuk4= -----END CERTIFICATE-----Generated at Fri Jun 14 18:52:14 2024 by rpki-client on console-fra.rpki-client.org