$ rpki-client -vvf rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/8692D090BF7111EE95DFE981C4F9AE02.roa File: 8692D090BF7111EE95DFE981C4F9AE02.roa (raw, json) Hash identifier: Wpe5PworCum/nFcap1/E1+zKePOZQIpIAtfCfOVXg7s= Subject key identifier: 62:54:69:47:43:79:F9:CF:A0:BD:B9:AE:65:8C:CE:2C:40:29:A6:0E Certificate issuer: /CN=A91187FD/serialNumber=68852AB7F2714FCF54D75F0AAE3068ADC38B35CC Certificate serial: 0138 Authority key identifier: 68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/8692D090BF7111EE95DFE981C4F9AE02.roa Signing time: Fri 23 Aug 2024 05:07:22 +0000 ROA not before: Fri 23 Aug 2024 05:07:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 151420 IP address blocks: 2001:df2:9b40::/48 maxlen: 48 2401:3fa0:1::/48 maxlen: 48 2401:3fa0:fc00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.crl rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187FD/serialNumber=68852AB7F2714FCF54D75F0AAE3068ADC38B35CC Validity Not Before: Aug 23 05:07:22 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c8190a-22c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e5:24:a3:a5:c2:fc:50:b6:83:96:b5:4b:2e: bd:84:95:32:38:43:bf:b8:07:5e:5d:d4:d4:5e:c9: 5e:dd:16:68:d6:f2:29:c5:d4:8b:8d:6b:48:29:43: d8:d5:53:8f:e5:64:ec:59:5d:77:47:45:72:2e:d1: 81:5c:a4:99:8d:42:e9:e2:61:42:fe:07:69:3f:1a: a7:12:aa:9d:b8:d5:9e:4d:78:a8:46:df:0b:e6:07: 7a:e7:48:07:2e:b6:bc:b4:48:8c:b9:93:07:cd:59: bd:9f:06:7e:19:03:de:1e:7c:f0:c3:9a:0c:aa:8a: 6f:c4:01:ac:ed:9a:c6:f7:a6:a1:b0:4a:e9:25:33: 6f:08:ee:04:26:88:f7:70:4e:d1:22:3d:04:7d:03: fb:e3:64:1d:ed:9e:09:20:f0:7c:55:26:0f:81:7f: 9f:42:c9:08:9e:13:56:f8:48:e8:dc:5b:e2:33:e3: 18:93:a0:0b:f8:c2:6c:64:be:61:d9:a6:d9:4d:f1: 08:db:c8:30:b1:f8:71:8e:a3:65:d9:d8:8f:52:85: 2b:c4:5b:18:5d:8c:c2:ab:9f:d6:10:79:00:cb:b0: c3:07:30:82:a7:a0:58:49:8a:36:dc:8b:4f:5b:ed: 97:e1:ec:87:b3:ef:d8:e4:bf:fd:19:31:e2:68:99: 78:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:54:69:47:43:79:F9:CF:A0:BD:B9:AE:65:8C:CE:2C:40:29:A6:0E X509v3 Authority Key Identifier: keyid:68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/8692D090BF7111EE95DFE981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:9b40::/48 2401:3fa0:1::/48 2401:3fa0:fc00::/40 Signature Algorithm: sha256WithRSAEncryption 93:d9:af:a4:b1:3e:dc:4f:df:4c:31:41:55:2b:80:9a:1c:b2: 60:b4:1a:6c:3f:99:bb:9b:70:de:11:4a:a9:4b:5d:f6:e8:b1: cf:ac:44:7d:07:e9:bf:33:8c:63:33:b8:bf:67:61:c8:bb:1f: 0d:02:31:a4:fb:5c:da:1a:99:d3:ee:14:42:d2:ac:41:e5:23: 36:c1:d3:00:2d:2b:f2:2b:1d:7b:30:8c:d3:6a:61:ce:ae:ac: 40:26:13:51:1d:6b:2a:80:4f:af:63:d0:fe:8e:5c:23:e9:1f: 8b:fc:83:70:37:44:e4:03:7f:5a:54:22:59:54:71:8f:e7:fe: 53:cf:dd:38:8a:cb:39:7d:60:4a:58:38:9f:e4:19:30:fb:ef: be:08:40:b9:01:0c:e9:3e:32:db:01:9f:06:d3:45:fc:28:9f: 15:06:b8:1e:62:67:a8:10:44:f9:c1:c1:43:60:4d:89:9a:96: 17:13:dc:c7:31:b8:82:cd:9a:33:58:62:05:1f:91:66:d9:96: 71:7d:1d:91:3b:35:ab:6f:6f:f2:df:11:70:8b:3b:96:af:66: a5:62:16:90:e4:a2:fd:f3:48:8f:6c:6d:84:66:83:62:65:26: 80:77:d0:a6:54:11:27:b2:38:e0:59:7d:11:44:e3:d2:9a:1c: 5a:7d:a1:ef -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3RkQxMTAvBgNVBAUTKDY4ODUyQUI3RjI3MTRGQ0Y1NEQ3NUYwQUFFMzA2OEFE QzM4QjM1Q0MwHhcNMjQwODIzMDUwNzIyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM4MTkwYS0yMmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuUko6XC/FC2g5a1Sy69hJUyOEO/uAdeXdTUXsle3RZo1vIpxdSLjWtIKUPY 1VOP5WTsWV13R0VyLtGBXKSZjULp4mFC/gdpPxqnEqqduNWeTXioRt8L5gd650gH Lra8tEiMuZMHzVm9nwZ+GQPeHnzww5oMqopvxAGs7ZrG96ahsErpJTNvCO4EJoj3 cE7RIj0EfQP742Qd7Z4JIPB8VSYPgX+fQskInhNW+Ejo3FviM+MYk6AL+MJsZL5h 2abZTfEI28gwsfhxjqNl2diPUoUrxFsYXYzCq5/WEHkAy7DDBzCCp6BYSYo23ItP W+2X4eyHs+/Y5L/9GTHiaJl4MQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFGJUaUdD efnPoL25rmWMzixAKaYOMB8GA1UdIwQYMBaAFGiFKrfycU/PVNdfCq4waK3DizXM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODdGRC81NUVENkExNjEw QTAxMUVFOTM0OTNDNTJDNEY5QUUwMi9hSVVxdF9KeFQ4OVUxMThLcmpCb3JjT0xO Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJVXF0X0p4VDg5VTExOEtyakJvcmNPTE5jdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg3RkQvNTVFRDZBMTYxMEEwMTFFRTkzNDkzQzUyQzRGOUFFMDIvODY5MkQwOTBC RjcxMTFFRTk1REZFOTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgACMBoDBwAgAQ3ym0ADBwAkAT+gAAEDBgAkAT+g/DANBgkqhkiG9w0B AQsFAAOCAQEAk9mvpLE+3E/fTDFBVSuAmhyyYLQabD+Zu5tw3hFKqUtd9uixz6xE fQfpvzOMYzO4v2dhyLsfDQIxpPtc2hqZ0+4UQtKsQeUjNsHTAC0r8isdezCM02ph zq6sQCYTUR1rKoBPr2PQ/o5cI+kfi/yDcDdE5AN/WlQiWVRxj+f+U8/dOIrLOX1g Slg4n+QZMPvvvghAuQEM6T4y2wGfBtNF/CifFQa4HmJnqBBE+cHBQ2BNiZqWFxPc xzG4gs2aM1hiBR+RZtmWcX0dkTs1q29v8t8RcIs7lq9mpWIWkOSi/fNIj2xthGaD YmUmgHfQplQRJ7I44Fl9EUTj0pocWn2h7w== -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:53 2024 by rpki-client on console-fra.rpki-client.org