$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa File: FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa (raw, json) Hash identifier: RrpKkAonBi5S4jjvPqzovkzRn1ESL0mfXIpXYoXkTQY= Subject key identifier: DC:6C:04:07:C1:1B:CD:24:D8:C1:46:84:38:1F:79:BC:83:58:76:B1 Certificate issuer: /CN=A91F8E3D/serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Certificate serial: 0367 Authority key identifier: 3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa Signing time: Wed 03 Jan 2024 02:44:08 +0000 ROA not before: Wed 03 Jan 2024 02:44:08 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149056 IP address blocks: 2400:3f60:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 871 (0x367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E3D/serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Validity Not Before: Jan 3 02:44:08 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6594c9f8-d0ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:56:ee:96:73:89:6b:69:13:5e:a9:33:8c:d3: 96:1d:bd:2c:f5:59:db:d8:b5:74:51:5f:bb:6b:2e: 82:f8:73:f6:c8:ec:2e:71:aa:2c:d5:6f:cb:99:39: 8e:55:da:cb:c3:80:df:50:b6:02:07:10:db:5b:da: a2:fd:76:6f:d0:8d:9d:14:9d:ed:69:c2:15:ea:5b: d6:3f:37:d8:33:7d:bc:fc:94:88:15:73:96:e8:e1: b5:06:19:2d:ff:40:69:60:bc:d9:f3:3e:1b:79:fb: dd:dd:c0:98:70:3b:9c:23:ae:2c:05:20:6f:fe:6d: 27:41:6a:f9:4c:4e:fe:ef:e6:52:cd:4f:08:25:42: e6:70:4f:14:0c:a0:1e:2e:1f:ea:94:b0:e3:c4:cc: 7a:c6:58:54:9f:91:00:bf:17:53:81:e1:2a:42:f5: 4f:11:83:ba:df:7f:b3:4e:f1:d1:8d:cf:44:1a:de: 41:ad:80:50:4e:28:41:96:db:94:7d:46:49:21:4e: 5f:3e:2a:27:19:53:8f:a6:9e:53:f9:d8:7f:54:80: a8:f6:11:8a:65:ce:73:2d:3f:80:2e:bb:d9:88:34: 09:c9:db:ad:76:5d:11:b5:f6:10:33:e8:86:c7:4e: c8:c1:7a:31:85:2e:57:41:bb:71:75:fa:94:5c:48: fe:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:6C:04:07:C1:1B:CD:24:D8:C1:46:84:38:1F:79:BC:83:58:76:B1 X509v3 Authority Key Identifier: keyid:3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:3f60:3::/48 Signature Algorithm: sha256WithRSAEncryption 12:33:05:ba:5c:33:42:64:18:66:89:e9:f3:db:ea:f6:b3:77: e5:cf:bb:df:ff:88:e7:0d:c3:29:3b:ab:e9:e0:f4:87:46:9e: 80:b3:ef:0b:3b:b3:ad:b8:0f:bb:9e:3b:70:c3:3e:58:0f:78: 2e:79:92:33:8c:69:46:96:db:54:68:27:d2:87:ca:b7:ac:4d: e2:c1:57:18:de:45:d2:91:40:d4:5d:0c:c1:f2:67:8b:57:4f: db:81:64:eb:97:b5:ee:7d:4f:df:52:a2:0b:89:d9:e2:bf:5e: e6:09:a6:c8:62:f9:52:35:90:3a:c1:89:a6:49:31:91:47:53: 08:21:68:61:93:f6:07:56:13:d6:9f:d2:e8:7d:b3:08:43:6e: 51:eb:fa:09:db:24:8f:10:50:51:8f:27:e4:04:09:da:37:f0: 7b:4a:3e:65:e8:2a:b0:ab:1b:29:7d:30:4c:06:06:59:f3:a8: fa:ea:62:d9:c6:13:04:5b:ab:e1:09:db:e0:90:fb:8b:04:44: 22:53:d1:46:ee:40:e1:3f:1c:1f:c4:21:cb:b4:91:4a:40:47: 2e:d0:23:7f:9f:89:19:5b:81:5f:9e:b9:2e:1b:16:da:68:b7: ee:37:9e:ac:73:af:28:de:36:ea:14:e4:7c:9d:ac:2f:33:2d: b5:96:db:be -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFM0QxMTAvBgNVBAUTKDNBQUZGQkI3RUE0QTYwRDc3QkI0NDI4NEFDQkYyNUMz OThCQTlBNkQwHhcNMjQwMTAzMDI0NDA4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0YzlmOC1kMGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFbulnOJa2kTXqkzjNOWHb0s9Vnb2LV0UV+7ay6C+HP2yOwucaos1W/LmTmO VdrLw4DfULYCBxDbW9qi/XZv0I2dFJ3tacIV6lvWPzfYM328/JSIFXOW6OG1Bhkt /0BpYLzZ8z4befvd3cCYcDucI64sBSBv/m0nQWr5TE7+7+ZSzU8IJULmcE8UDKAe Lh/qlLDjxMx6xlhUn5EAvxdTgeEqQvVPEYO633+zTvHRjc9EGt5BrYBQTihBltuU fUZJIU5fPionGVOPpp5T+dh/VICo9hGKZc5zLT+ALrvZiDQJydutdl0RtfYQM+iG x07IwXoxhS5XQbtxdfqUXEj+cwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNxsBAfB G80k2MFGhDgfebyDWHaxMB8GA1UdIwQYMBaAFDqv+7fqSmDXe7RChKy/JcOYuppt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUzRC8wQUI0Mzg2QTU4 NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lOZDd0RUtFckw4bHc1aTZt bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xXzd0LXBLWU5kN3RFS0VyTDhsdzVpNm1tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFM0QvMEFCNDM4NkE1ODRFMTFFQzlGQ0YxNzc5QzRGOUFFMDIvRkY5RDg5QjZB QjRDMTFFQ0IwQzk0RjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAD9gAAMwDQYJKoZIhvcNAQELBQADggEBABIzBbpcM0Jk GGaJ6fPb6vazd+XPu9//iOcNwyk7q+ng9IdGnoCz7ws7s624D7ueO3DDPlgPeC55 kjOMaUaW21RoJ9KHyresTeLBVxjeRdKRQNRdDMHyZ4tXT9uBZOuXte59T99SoguJ 2eK/XuYJpshi+VI1kDrBiaZJMZFHUwghaGGT9gdWE9af0uh9swhDblHr+gnbJI8Q UFGPJ+QECdo38HtKPmXoKrCrGyl9MEwGBlnzqPrqYtnGEwRbq+EJ2+CQ+4sERCJT 0UbuQOE/HB/EIcu0kUpARy7QI3+fiRlbgV+euS4bFtpot+43nqxzryjeNuoU5Hyd rC8zLbWW274= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:30 2024 by rpki-client on console-ams.rpki-client.org