$ rpki-client -vvf rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/5F652B164A0311EC84EFD42FC4F9AE02.roa File: 5F652B164A0311EC84EFD42FC4F9AE02.roa (raw, json) Hash identifier: DJiem+mJ9guPOqkkTAIozTCpaBw0W78lezIlNh26BC0= Subject key identifier: 52:35:F7:8E:04:DE:3E:05:EF:4A:47:A1:89:DB:F4:6E:B8:AF:7E:D9 Certificate issuer: /CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Certificate serial: 04B5 Authority key identifier: 71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/5F652B164A0311EC84EFD42FC4F9AE02.roa Signing time: Tue 13 Aug 2024 00:42:55 +0000 ROA not before: Tue 13 Aug 2024 00:42:55 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38323 IP address blocks: 2001:df7:1480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 22:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1205 (0x4b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Validity Not Before: Aug 13 00:42:55 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66baac0e-7c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bc:0d:f8:66:3b:b1:a9:2f:28:4e:56:10:ae: 05:67:db:2b:b0:b2:6f:dd:65:c1:9a:09:8c:f0:52: ce:8a:be:72:7a:72:df:95:af:2e:df:58:ba:b9:fd: 4d:94:39:6e:81:11:b6:07:ba:e8:95:b1:9f:98:2a: 2a:d6:06:7b:7a:29:88:df:7d:b4:52:28:c2:d3:12: 92:30:af:df:0c:54:0d:e6:c7:f8:84:dc:41:7a:a6: fd:67:fd:12:78:57:1f:39:4f:2e:bf:3f:d8:e9:24: b7:8a:3c:42:5b:2a:1d:4e:8a:34:dd:a4:ef:90:02: b1:11:0d:a9:c1:74:1d:cd:ad:44:75:28:fb:07:fc: 9c:57:f4:17:aa:75:a8:30:2f:06:a3:b6:25:3b:2d: dd:4e:92:97:2d:83:6b:4e:23:ad:1f:59:18:02:f8: 7b:ad:f7:af:01:f1:39:5f:c5:2d:e0:a6:7d:b8:d3: 5e:70:ba:2c:85:a2:ee:0f:d9:05:dd:3e:8e:55:68: 50:48:a9:43:8a:dc:f4:f9:63:83:13:28:42:11:8a: 6c:0f:a4:20:d6:e4:ca:f7:86:6b:72:9d:4c:f5:9f: 57:b2:d2:43:0f:23:af:47:84:77:fb:da:5c:cf:b2: d7:a2:a1:32:97:ec:f8:52:f2:56:0d:6c:7b:37:e8: 79:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:35:F7:8E:04:DE:3E:05:EF:4A:47:A1:89:DB:F4:6E:B8:AF:7E:D9 X509v3 Authority Key Identifier: keyid:71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/5F652B164A0311EC84EFD42FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df7:1480::/48 Signature Algorithm: sha256WithRSAEncryption 1c:44:2d:8e:91:d2:14:88:72:ad:bc:7a:1e:83:d3:5b:26:33: d3:fc:95:a5:2c:d1:72:68:15:09:d3:79:57:04:63:68:03:88: 6b:e1:10:23:e7:28:82:20:94:39:b6:0b:ef:cb:e2:3b:8f:bb: 46:99:78:8f:7a:b1:f7:24:d3:f4:6d:5c:87:5a:2f:28:cd:69: 2c:9c:d2:0b:7c:93:a7:72:21:f7:51:48:1d:18:63:6b:84:a1: d4:d9:08:a4:1c:e4:28:14:0a:2a:47:b0:3e:e1:bd:e7:1d:3f: d5:38:4a:13:4c:8a:0e:83:4b:20:d6:a6:50:95:83:61:06:ce: e0:46:10:25:2b:9b:d9:34:f2:ea:77:48:a9:c7:b8:f1:0c:31: e4:20:30:70:d6:2b:1d:c0:84:6f:7b:35:66:b7:11:0e:c1:a5: 45:64:1c:31:a2:ca:d4:11:59:99:70:1c:1d:a3:08:a5:7e:fb: 23:b0:ec:2a:55:ba:2a:2c:bd:45:92:af:09:fd:d2:dd:3c:1d: fc:14:92:f6:ae:98:3d:d7:7e:53:62:ba:5a:ce:01:03:2a:5e: e8:a0:a5:bb:f5:45:71:97:9e:5f:bf:5b:ce:f6:44:6c:41:b1: 50:97:de:21:d0:2e:56:a4:36:78:92:7d:b8:00:0d:1f:94:cb: 15:2f:ce:6e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4RTMxMTAvBgNVBAUTKDcxQzFFOEUwNTQwNDlBQ0ZEOUFBMjE5M0FGMUQ0OEM2 RDFEMDI1RTEwHhcNMjQwODEzMDA0MjU1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhYWMwZS03YzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7wN+GY7sakvKE5WEK4FZ9srsLJv3WXBmgmM8FLOir5yenLfla8u31i6uf1N lDlugRG2B7rolbGfmCoq1gZ7eimI3320UijC0xKSMK/fDFQN5sf4hNxBeqb9Z/0S eFcfOU8uvz/Y6SS3ijxCWyodToo03aTvkAKxEQ2pwXQdza1EdSj7B/ycV/QXqnWo MC8Go7YlOy3dTpKXLYNrTiOtH1kYAvh7rfevAfE5X8Ut4KZ9uNNecLoshaLuD9kF 3T6OVWhQSKlDitz0+WODEyhCEYpsD6Qg1uTK94Zrcp1M9Z9XstJDDyOvR4R3+9pc z7LXoqEyl+z4UvJWDWx7N+h59wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFI1944E 3j4F70pHoYnb9G64r37ZMB8GA1UdIwQYMBaAFHHB6OBUBJrP2aohk68dSMbR0CXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhFMy81MzkzQzBFRTAw MjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZRRW1zX1pxaUdUcngxSXh0SFFK ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjSG80RlFFbXNfWnFpR1RyeDFJeHRIUUplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4RTMvNTM5M0MwRUUwMDI2MTFFQ0E0MDYxNjE0QzRGOUFFMDIvNUY2NTJCMTY0 QTAzMTFFQzg0RUZENDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ33FIAwDQYJKoZIhvcNAQELBQADggEBABxELY6R0hSI cq28eh6D01smM9P8laUs0XJoFQnTeVcEY2gDiGvhECPnKIIglDm2C+/L4juPu0aZ eI96sfck0/RtXIdaLyjNaSyc0gt8k6dyIfdRSB0YY2uEodTZCKQc5CgUCipHsD7h vecdP9U4ShNMig6DSyDWplCVg2EGzuBGECUrm9k08up3SKnHuPEMMeQgMHDWKx3A hG97NWa3EQ7BpUVkHDGiytQRWZlwHB2jCKV++yOw7CpVuiosvUWSrwn90t08HfwU kvaumD3XflNiulrOAQMqXuigpbv1RXGXnl+/W872RGxBsVCX3iHQLlakNniSfbgA DR+UyxUvzm4= -----END CERTIFICATE-----Generated at Wed Nov 27 00:09:56 2024 by rpki-client on console-ams.rpki-client.org