$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/8FA9D71068D611EEAD2D927FC4F9AE02.roa File: 8FA9D71068D611EEAD2D927FC4F9AE02.roa (raw, json) Hash identifier: KckJvrN2O9+k1z94FA9x81wNFJzF7Y7yD41j1qhB6N4= Subject key identifier: 76:68:99:6A:08:57:3C:1A:E7:67:E8:74:97:48:87:B8:D8:F3:6F:99 Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 02AF Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/8FA9D71068D611EEAD2D927FC4F9AE02.roa Signing time: Sun 23 Jun 2024 02:43:20 +0000 ROA not before: Sun 23 Jun 2024 02:43:20 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149774 IP address blocks: 2400:6c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Jun 23 02:43:20 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66778bc8-5bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5d:9f:36:f0:d4:57:d5:c7:4a:72:e2:93:25: bb:42:a8:b9:3b:50:a6:d4:9c:1d:1d:58:c3:80:e0: 35:94:7a:01:69:0b:81:b3:73:60:cf:12:5e:7d:eb: 73:96:a8:32:e6:60:5c:ac:9d:aa:6b:82:57:af:b6: 87:22:5b:91:db:9f:59:e3:96:a5:ef:6e:07:99:ec: 8f:7e:ef:f1:79:59:36:d1:77:b6:9f:6a:8c:e7:6b: 89:a5:4c:20:22:75:9f:cf:66:7f:49:f4:f3:a7:08: 37:0a:31:f1:6a:d8:27:0e:93:4d:6d:84:2c:8f:d3: 09:2f:3c:16:1a:05:51:59:ad:75:12:6f:06:7d:c3: e0:86:8d:c2:8d:a1:13:ae:f7:a4:32:59:03:c2:8a: e6:8b:f6:a1:3f:f5:f1:0e:95:18:0d:31:f2:0b:e0: 32:77:a1:73:41:5e:fc:a1:2f:f3:fc:e6:c0:cd:b0: ad:b5:2b:1d:4e:f4:86:32:7a:f6:b4:0f:59:47:4c: ce:6e:e1:be:43:f3:05:0c:c5:7d:03:31:f7:5e:10: a8:f2:76:81:6b:61:ff:4d:45:49:a0:49:15:1b:83: cc:0f:35:ab:d0:15:a3:56:a9:05:5e:a7:76:7c:9f: 1a:b2:64:58:c7:83:9c:f4:5e:fa:52:cc:c9:eb:ee: 09:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:68:99:6A:08:57:3C:1A:E7:67:E8:74:97:48:87:B8:D8:F3:6F:99 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/8FA9D71068D611EEAD2D927FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6c60::/32 Signature Algorithm: sha256WithRSAEncryption 5d:25:bc:1a:05:40:5d:d6:61:f7:2b:fc:8b:09:0d:24:e0:74: 5c:00:68:45:50:1c:1a:1c:ca:b9:64:79:8d:0c:8a:a4:9b:18: 90:b3:90:6b:e1:6a:31:ce:67:ed:e1:7e:ac:4c:af:70:e9:81: c3:dd:6f:bd:18:ea:f6:8a:00:8b:e7:e4:8e:e3:88:e0:03:9b: 8f:61:79:f3:28:c3:92:73:b2:e9:0f:4a:38:50:8d:54:ba:a8: cb:25:27:0e:f7:9e:b1:13:fe:69:0a:90:e0:fb:a6:45:e7:66: a9:a2:a8:01:65:e7:bf:e0:b1:37:8b:11:71:4e:5b:7b:49:1c: 3a:d2:15:c9:d4:a0:a7:3e:15:15:50:fe:7a:cd:e3:b1:60:27: e5:d0:49:e5:88:3e:92:ad:31:c0:20:ba:4f:cf:48:d6:2b:cf: 74:ef:24:89:1c:d0:a7:7f:99:85:0a:97:01:8b:de:48:42:26: 5f:b9:07:05:af:36:7b:b2:da:e4:68:fd:f2:25:88:1a:96:b6: 74:ca:7e:6e:a7:80:4b:cc:ca:a9:6b:0e:1d:5f:42:60:63:a2: 18:b6:79:61:58:4a:8b:44:69:9a:8e:f0:aa:8e:de:df:bb:4b: b5:a6:7e:21:4a:af:64:e2:4b:83:01:a2:fb:82:20:de:5f:6b: 57:a3:bd:39 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjQwNjIzMDI0MzIwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc3OGJjOC01YmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5F2fNvDUV9XHSnLikyW7Qqi5O1Cm1JwdHVjDgOA1lHoBaQuBs3NgzxJefetz lqgy5mBcrJ2qa4JXr7aHIluR259Z45al724HmeyPfu/xeVk20Xe2n2qM52uJpUwg InWfz2Z/SfTzpwg3CjHxatgnDpNNbYQsj9MJLzwWGgVRWa11Em8GfcPgho3CjaET rvekMlkDwormi/ahP/XxDpUYDTHyC+Ayd6FzQV78oS/z/ObAzbCttSsdTvSGMnr2 tA9ZR0zObuG+Q/MFDMV9AzH3XhCo8naBa2H/TUVJoEkVG4PMDzWr0BWjVqkFXqd2 fJ8asmRYx4Oc9F76UszJ6+4J8QIDAQABo4ICljCCApIwHQYDVR0OBBYEFHZomWoI Vzwa52fodJdIh7jY82+ZMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCMkQvOTY1QkQ1N0VCODk1MTFFQzgyNDJEMjdFQzRGOUFFMDIvOEZBOUQ3MTA2 OEQ2MTFFRUFEMkQ5MjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAGxgMA0GCSqGSIb3DQEBCwUAA4IBAQBdJbwaBUBd1mH3 K/yLCQ0k4HRcAGhFUBwaHMq5ZHmNDIqkmxiQs5Br4Woxzmft4X6sTK9w6YHD3W+9 GOr2igCL5+SO44jgA5uPYXnzKMOSc7LpD0o4UI1UuqjLJScO956xE/5pCpDg+6ZF 52apoqgBZee/4LE3ixFxTlt7SRw60hXJ1KCnPhUVUP56zeOxYCfl0EnliD6SrTHA ILpPz0jWK8907ySJHNCnf5mFCpcBi95IQiZfuQcFrzZ7strkaP3yJYgalrZ0yn5u p4BLzMqpaw4dX0JgY6IYtnlhWEqLRGmajvCqjt7fu0u1pn4hSq9k4kuDAaL7giDe X2tXo705 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:57 2024 by rpki-client on console-ams.rpki-client.org