$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/408045262AAA11EE86A2063BC4F9AE02.roa File: 408045262AAA11EE86A2063BC4F9AE02.roa (raw, json) Hash identifier: KULh3Cwj4pTsQ4NdFS2oaGBEZ1LXp6l0HQDgLQQ16OI= Subject key identifier: 35:5B:2F:8F:76:98:27:92:22:AE:94:0A:77:3B:00:C0:CB:1D:D6:33 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 0277 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/408045262AAA11EE86A2063BC4F9AE02.roa Signing time: Fri 03 May 2024 04:17:14 +0000 ROA not before: Fri 03 May 2024 04:17:14 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140043 IP address blocks: 2001:df0:ac40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: May 3 04:17:14 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6634654a-619a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8b:90:05:2a:c2:ae:95:0c:1c:96:70:5b:d3: 8b:3d:8d:bd:08:7a:cf:81:34:66:6b:79:13:83:c9: 75:9c:f6:18:7f:b8:d7:b5:e4:4e:56:95:69:de:d3: 4b:c8:20:86:6a:b3:24:99:f8:7d:6d:78:f0:74:e2: 05:bc:a6:1d:3d:21:a7:82:9b:36:33:44:b2:49:a0: 70:4b:1b:a8:b0:73:f8:43:71:38:ff:04:22:f0:cb: c3:1d:27:c7:34:eb:b3:b6:52:d2:e3:c9:35:e8:57: 59:80:7c:49:db:1f:ab:66:70:ce:7d:8f:2f:ca:60: 81:9d:6c:27:15:58:ae:ad:54:88:a1:1b:95:53:e6: 03:8c:2c:bf:cc:bf:f8:ac:85:89:ac:6f:3d:43:b6: 8a:e7:77:79:06:46:fc:fe:bc:fe:6e:d6:8a:da:24: 64:ff:f6:fb:74:9f:4f:0c:03:51:b1:8c:97:24:b1: 7f:d0:26:0d:ed:cd:1d:72:39:ef:c6:17:e8:80:55: c5:1f:7c:6f:66:1a:6c:b2:c4:03:d7:c9:71:41:61: 9c:db:70:a9:c8:95:f1:4f:12:76:87:d0:92:24:bc: c8:96:0d:58:a8:d1:b7:1c:2a:1d:2b:6b:83:43:1c: b7:f4:84:90:62:bd:c4:32:1b:80:11:ef:de:7d:a4: a6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:5B:2F:8F:76:98:27:92:22:AE:94:0A:77:3B:00:C0:CB:1D:D6:33 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/408045262AAA11EE86A2063BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:ac40::/48 Signature Algorithm: sha256WithRSAEncryption a4:9a:4e:fb:c3:15:ec:0f:d8:b8:43:c4:b6:cc:36:0d:85:72: 12:fe:32:01:8e:63:4a:15:ea:82:b9:7e:f5:51:85:6b:fc:ed: 63:9b:b9:c0:3c:10:e0:b4:d7:4c:91:f2:da:a5:3e:21:04:99: d8:6f:89:fd:4b:b8:2b:28:c1:15:a7:33:dc:9c:50:7f:ef:4d: cb:62:e2:0b:61:14:7c:1a:b6:05:33:30:89:1b:0a:d7:b4:32: 4d:de:e9:ec:cc:3c:c0:2d:15:0b:73:a7:30:d6:2c:09:ab:2e: 18:fe:00:fb:a0:d2:2f:23:c9:72:31:4d:f4:8c:ef:cf:ac:cb: 23:c4:56:3d:d9:a8:08:48:3b:35:24:c4:16:df:6a:c5:bb:e6: e0:09:6e:29:b1:fd:dc:c5:c1:1e:54:46:0d:42:ae:66:89:51: e2:fb:a4:6a:98:55:af:55:a1:1d:d1:45:7f:f5:31:89:01:da: 8d:21:68:6d:dc:cd:72:20:b3:ee:4a:4d:f0:c5:34:9b:5f:43: 81:03:46:f7:a8:35:52:b7:38:f3:52:c6:7c:a9:97:9d:f4:e6: 95:1e:77:d4:8e:7e:f5:e3:07:3d:69:59:dd:69:98:98:df:58: b9:20:e5:fe:fa:8f:2a:68:3c:70:27:e3:7d:91:0a:17:26:65: b2:47:1d:85 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjQwNTAzMDQxNzE0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0NjU0YS02MTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6IuQBSrCrpUMHJZwW9OLPY29CHrPgTRma3kTg8l1nPYYf7jXteROVpVp3tNL yCCGarMkmfh9bXjwdOIFvKYdPSGngps2M0SySaBwSxuosHP4Q3E4/wQi8MvDHSfH NOuztlLS48k16FdZgHxJ2x+rZnDOfY8vymCBnWwnFViurVSIoRuVU+YDjCy/zL/4 rIWJrG89Q7aK53d5Bkb8/rz+btaK2iRk//b7dJ9PDANRsYyXJLF/0CYN7c0dcjnv xhfogFXFH3xvZhpsssQD18lxQWGc23CpyJXxTxJ2h9CSJLzIlg1YqNG3HCodK2uD Qxy39ISQYr3EMhuAEe/efaSmCwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDVbL492 mCeSIq6UCnc7AMDLHdYzMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI1MjcvREQxQUUyRjZDMkFBMTFFQ0FGNUY5Rjc2QzRGOUFFMDIvNDA4MDQ1MjYy QUFBMTFFRTg2QTIwNjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wrEAwDQYJKoZIhvcNAQELBQADggEBAKSaTvvDFewP 2LhDxLbMNg2FchL+MgGOY0oV6oK5fvVRhWv87WObucA8EOC010yR8tqlPiEEmdhv if1LuCsowRWnM9ycUH/vTcti4gthFHwatgUzMIkbCte0Mk3e6ezMPMAtFQtzpzDW LAmrLhj+APug0i8jyXIxTfSM78+syyPEVj3ZqAhIOzUkxBbfasW75uAJbimx/dzF wR5URg1CrmaJUeL7pGqYVa9VoR3RRX/1MYkB2o0haG3czXIgs+5KTfDFNJtfQ4ED RveoNVK3OPNSxnypl5305pUed9SOfvXjBz1pWd1pmJjfWLkg5f76jypoPHAn432R ChcmZbJHHYU= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org