$ rpki-client -vvf rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/FFF8A36A34E311EE877E760DC4F9AE02.roa File: FFF8A36A34E311EE877E760DC4F9AE02.roa (raw, json) Hash identifier: 0iilf+ewcCHfBiolJYNIAXD//CPGH9dwNN6NaTR2wTo= Subject key identifier: CB:41:09:29:CC:88:13:86:85:43:30:A2:EC:EA:DB:4C:2B:D9:1E:95 Certificate issuer: /CN=A91354AE/serialNumber=87F958DAF498659A9EEE0FF144226B1710489DE0 Certificate serial: 02BD Authority key identifier: 87:F9:58:DA:F4:98:65:9A:9E:EE:0F:F1:44:22:6B:17:10:48:9D:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_lY2vSYZZqe7g_xRCJrFxBIneA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/FFF8A36A34E311EE877E760DC4F9AE02.roa Signing time: Thu 11 Apr 2024 03:36:14 +0000 ROA not before: Thu 11 Apr 2024 03:36:14 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 60021 IP address blocks: 2400:6520::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/h_lY2vSYZZqe7g_xRCJrFxBIneA.crl rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/h_lY2vSYZZqe7g_xRCJrFxBIneA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_lY2vSYZZqe7g_xRCJrFxBIneA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 701 (0x2bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91354AE/serialNumber=87F958DAF498659A9EEE0FF144226B1710489DE0 Validity Not Before: Apr 11 03:36:14 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66175aae-f833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:99:ff:50:15:e0:4e:cd:35:a0:a5:7f:61:f1: a8:a6:4c:56:13:00:39:1e:7d:9b:de:d8:5a:80:6d: 96:d8:d7:91:35:dc:6d:56:9a:74:3e:b9:fb:2d:65: a7:f8:b3:20:b5:36:1b:70:c9:b8:2f:93:50:59:32: c3:a1:fe:5b:dc:d7:9b:a8:33:3d:f9:ba:8c:d5:ae: 47:e4:3c:53:53:26:00:83:53:68:ca:74:e0:85:f8: cc:0b:1f:4d:15:e1:8b:20:26:d0:5b:f0:d3:8f:5f: cb:9f:78:41:bd:96:7f:51:1d:f2:16:66:ba:92:b4: de:eb:a2:40:3d:61:08:a2:cb:67:7d:c6:6b:33:40: 8c:13:65:a2:73:98:29:dd:9a:e3:b0:da:81:c3:12: f7:4b:23:29:10:95:82:e2:b1:23:62:fa:bf:f8:94: 8f:31:77:da:9c:7f:98:69:84:81:8e:44:61:a9:45: df:38:88:aa:83:05:5f:ad:42:5f:cb:a1:29:71:c4: 64:d9:e6:26:0b:31:70:19:4a:2d:e9:90:40:69:f1: d7:b2:db:a1:e8:6c:97:f1:86:58:3a:fa:45:41:0a: 35:c8:9f:b3:d0:fc:72:4e:e0:59:cf:67:2c:a5:6c: 44:84:41:ee:36:70:d0:fd:b6:85:f0:d2:d4:fa:54: 2a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:41:09:29:CC:88:13:86:85:43:30:A2:EC:EA:DB:4C:2B:D9:1E:95 X509v3 Authority Key Identifier: keyid:87:F9:58:DA:F4:98:65:9A:9E:EE:0F:F1:44:22:6B:17:10:48:9D:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/h_lY2vSYZZqe7g_xRCJrFxBIneA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_lY2vSYZZqe7g_xRCJrFxBIneA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/FFF8A36A34E311EE877E760DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6520::/32 Signature Algorithm: sha256WithRSAEncryption b2:80:c3:9f:e2:aa:41:27:63:eb:d4:13:fa:d2:88:6c:9d:1d: 75:92:3c:73:23:20:46:57:91:65:ba:d9:29:49:95:48:34:30: 7e:b5:cf:5a:a7:4e:b1:29:39:69:d6:4a:73:e0:85:51:d4:1f: b2:ed:0c:eb:11:fc:07:4a:d3:78:8e:2c:c1:45:43:50:75:c4: 14:24:4f:8c:53:32:2a:67:c7:45:a1:da:68:08:f7:9f:92:8b: 07:b3:62:36:e2:e3:61:06:0e:b5:85:ad:45:01:e7:5a:b0:7f: 2a:0b:64:a1:e0:43:28:a5:02:2b:b6:e7:7e:f8:f2:0d:6f:3d: ac:3c:c6:06:ba:cb:d2:34:e4:10:bf:99:2f:f4:df:ed:07:bb: ea:76:c8:5f:e0:31:4a:69:55:8b:fe:00:1b:fb:52:8a:23:bb: db:31:4f:af:2a:c6:a4:57:32:3b:5b:c2:e1:e6:8a:7f:10:f7: ed:d8:ba:8d:9b:39:fc:7c:84:3a:a2:bf:db:12:5e:84:c0:d8: 9f:b3:27:13:77:99:75:18:c4:c2:3f:f9:bd:fb:69:69:55:52: 6e:fc:12:ae:26:c5:1f:59:83:f6:1e:7a:77:d9:52:97:58:5c: 9c:0a:4f:81:49:c5:e9:83:f2:c2:37:d6:24:75:24:2c:bc:56: 20:6a:cd:f9 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0QUUxMTAvBgNVBAUTKDg3Rjk1OERBRjQ5ODY1OUE5RUVFMEZGMTQ0MjI2QjE3 MTA0ODlERTAwHhcNMjQwNDExMDMzNjE0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE3NWFhZS1mODMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZn/UBXgTs01oKV/YfGopkxWEwA5Hn2b3thagG2W2NeRNdxtVpp0Prn7LWWn +LMgtTYbcMm4L5NQWTLDof5b3NebqDM9+bqM1a5H5DxTUyYAg1NoynTghfjMCx9N FeGLICbQW/DTj1/Ln3hBvZZ/UR3yFma6krTe66JAPWEIostnfcZrM0CME2Wic5gp 3ZrjsNqBwxL3SyMpEJWC4rEjYvq/+JSPMXfanH+YaYSBjkRhqUXfOIiqgwVfrUJf y6EpccRk2eYmCzFwGUot6ZBAafHXstuh6GyX8YZYOvpFQQo1yJ+z0PxyTuBZz2cs pWxEhEHuNnDQ/baF8NLU+lQqCwIDAQABo4ICljCCApIwHQYDVR0OBBYEFMtBCSnM iBOGhUMwouzq20wr2R6VMB8GA1UdIwQYMBaAFIf5WNr0mGWanu4P8UQiaxcQSJ3g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTRBRS82QzlGMkRGQUE1 MDExMUVDODk2NDI3NTdDNEY5QUUwMi9oX2xZMnZTWVpacWU3Z194UkNKckZ4Qklu ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfbFkydlNZWlpxZTdnX3hSQ0pyRnhCSW5lQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU0QUUvNkM5RjJERkFBNTAxMTFFQzg5NjQyNzU3QzRGOUFFMDIvRkZGOEEzNkEz NEUzMTFFRTg3N0U3NjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAGUgMA0GCSqGSIb3DQEBCwUAA4IBAQCygMOf4qpBJ2Pr 1BP60ohsnR11kjxzIyBGV5FlutkpSZVINDB+tc9ap06xKTlp1kpz4IVR1B+y7Qzr EfwHStN4jizBRUNQdcQUJE+MUzIqZ8dFodpoCPefkosHs2I24uNhBg61ha1FAeda sH8qC2Sh4EMopQIrtud++PINbz2sPMYGusvSNOQQv5kv9N/tB7vqdshf4DFKaVWL /gAb+1KKI7vbMU+vKsakVzI7W8Lh5op/EPft2LqNmzn8fIQ6or/bEl6EwNifsycT d5l1GMTCP/m9+2lpVVJu/BKuJsUfWYP2Hnp32VKXWFycCk+BScXpg/LCN9YkdSQs vFYgas35 -----END CERTIFICATE-----Generated at Mon Nov 25 02:48:54 2024 by rpki-client on console-ams.rpki-client.org