$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/AC8A59D689D311EE81F03018C4F9AE02.roa File: AC8A59D689D311EE81F03018C4F9AE02.roa (raw, json) Hash identifier: CgMPU2zKmFQv28rwsx7lyUdY/WjeUcfrzEMiRjZzUr8= Subject key identifier: C2:77:C4:5E:90:F0:75:78:89:C8:C6:41:DC:7B:21:05:0D:49:B7:89 Certificate issuer: /CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Certificate serial: 0191 Authority key identifier: F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/AC8A59D689D311EE81F03018C4F9AE02.roa Signing time: Mon 25 Nov 2024 02:25:41 +0000 ROA not before: Mon 25 Nov 2024 02:25:41 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 149012 IP address blocks: 2401:43e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC24 Validity Not Before: Nov 25 02:25:41 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6743e024-cbbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cd:32:28:a3:fc:f7:6d:5c:cc:de:dc:fc:d9: 6c:13:20:e5:f6:28:b0:cb:41:fc:41:09:08:f6:67: 62:78:c3:8e:e1:86:fb:52:4f:7c:0f:fd:83:ee:cc: f8:e9:50:d7:05:82:52:25:a5:1a:91:ca:f6:16:7a: 82:25:08:a0:45:1e:3b:53:b2:f2:06:e0:2c:46:75: c6:bd:1c:07:4e:24:ee:9a:b4:9d:d4:fd:e9:20:4e: 7d:a9:35:75:d6:3d:c4:a2:90:24:f1:42:89:ce:07: 80:a6:2b:6f:e5:3c:67:eb:e6:16:e2:51:20:3f:7f: d8:93:6f:d9:c4:23:1a:7e:81:eb:88:35:86:8c:96: fd:25:39:72:ba:b7:ea:ca:76:28:f7:ec:a1:e6:bb: 78:36:29:b1:19:6a:4f:82:3a:7b:c2:c6:d3:cb:43: 50:ca:f4:dd:8d:c0:6b:3b:06:39:3a:4c:3b:98:ef: 4e:d6:53:8b:b7:71:9b:bc:0c:cd:8a:a1:70:15:e5: 38:58:1a:4d:c3:4d:ff:2b:57:a8:62:0d:8d:71:2d: 0e:e1:8e:c4:96:a0:3f:f5:38:06:b5:74:3c:b1:c8: c2:77:f8:1b:3b:76:b8:a1:d5:bd:0b:b5:b0:ed:a1: 8d:25:09:13:06:2d:88:b7:42:18:40:1a:ad:2d:0e: 9f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:77:C4:5E:90:F0:75:78:89:C8:C6:41:DC:7B:21:05:0D:49:B7:89 X509v3 Authority Key Identifier: keyid:F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/AC8A59D689D311EE81F03018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:43e0::/32 Signature Algorithm: sha256WithRSAEncryption 12:b2:5e:8d:c2:f9:d2:76:60:72:82:7f:c6:93:fa:b0:f6:20: c9:51:c0:34:9b:2f:b0:ad:89:70:a1:1a:d4:28:72:1a:15:8e: 93:14:f3:41:8f:51:ab:b6:32:62:96:cb:96:1f:9e:ca:b8:11: d2:bc:8b:7e:02:77:b3:59:9f:7a:f7:33:f0:b3:2c:89:62:a2: f8:0d:9d:ba:37:0d:90:54:d5:f6:14:54:42:34:95:6e:6d:4c: f3:9a:f0:31:d0:fa:e0:c1:0c:83:e4:0e:cf:a6:bb:cb:06:6a: c9:0b:09:1b:24:f3:4b:3e:c5:1f:ab:82:63:4b:22:3f:47:1f: 96:ad:f9:77:7e:4a:60:68:82:63:14:db:ba:60:ef:a8:c0:b9: 37:71:ae:6d:af:be:3a:7d:22:32:4c:68:ed:f3:b3:fa:2f:c6: fd:6d:a4:42:64:72:6c:13:c9:e0:ea:a2:fb:d4:ed:48:72:f0: fa:e7:10:5c:ac:36:df:c3:f2:14:5d:b9:96:8f:6a:85:21:97: d4:1c:15:e5:a6:0b:f6:59:20:8b:c8:10:5b:76:87:03:7a:ab: 71:63:d5:cf:41:43:12:9f:f0:a3:fb:b6:89:c1:61:e7:b5:bf: 30:60:18:70:70:5d:19:0e:90:a0:e4:30:e0:ba:51:c1:ec:27: 53:16:7c:0b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDMjQxMTAvBgNVBAUTKEY0OTdEMTcxNjkyNzZENDNDNTg1MjE1QzE5ODMzMUMz M0MyMjVBNzUwHhcNMjQxMTI1MDIyNTQxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQzZTAyNC1jYmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyc0yKKP8921czN7c/NlsEyDl9iiwy0H8QQkI9mdieMOO4Yb7Uk98D/2D7sz4 6VDXBYJSJaUakcr2FnqCJQigRR47U7LyBuAsRnXGvRwHTiTumrSd1P3pIE59qTV1 1j3EopAk8UKJzgeApitv5Txn6+YW4lEgP3/Yk2/ZxCMafoHriDWGjJb9JTlyurfq ynYo9+yh5rt4NimxGWpPgjp7wsbTy0NQyvTdjcBrOwY5Okw7mO9O1lOLt3GbvAzN iqFwFeU4WBpNw03/K1eoYg2NcS0O4Y7ElqA/9TgGtXQ8scjCd/gbO3a4odW9C7Ww 7aGNJQkTBi2It0IYQBqtLQ6fEwIDAQABo4ICljCCApIwHQYDVR0OBBYEFMJ3xF6Q 8HV4icjGQdx7IQUNSbeJMB8GA1UdIwQYMBaAFPSX0XFpJ21DxYUhXBmDMcM8Ilp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0MyNC8xNkM2MTMxNjZB RkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJVUEZoU0ZjR1lNeHd6d2lX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlKZlJjV2tuYlVQRmhTRmNHWU14d3p3aVduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNDMjQvMTZDNjEzMTY2QUZBMTFFREI3MDZGRjNDQzRGOUFFMDIvQUM4QTU5RDY4 OUQzMTFFRTgxRjAzMDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAUPgMA0GCSqGSIb3DQEBCwUAA4IBAQASsl6NwvnSdmBy gn/Gk/qw9iDJUcA0my+wrYlwoRrUKHIaFY6TFPNBj1GrtjJilsuWH57KuBHSvIt+ AnezWZ969zPwsyyJYqL4DZ26Nw2QVNX2FFRCNJVubUzzmvAx0PrgwQyD5A7PprvL BmrJCwkbJPNLPsUfq4JjSyI/Rx+Wrfl3fkpgaIJjFNu6YO+owLk3ca5tr746fSIy TGjt87P6L8b9baRCZHJsE8ng6qL71O1IcvD65xBcrDbfw/IUXbmWj2qFIZfUHBXl pgv2WSCLyBBbdocDeqtxY9XPQUMSn/Cj+7aJwWHntb8wYBhwcF0ZDpCg5DDgulHB 7CdTFnwL -----END CERTIFICATE-----Generated at Sat Apr 5 03:54:09 2025 by rpki-client