$ rpki-client -vvf rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/F098580828C511EFB2C79E5FC4F9AE02.roa File: F098580828C511EFB2C79E5FC4F9AE02.roa (raw, json) Hash identifier: hGyVKJOy3s+uSXiEJLjSDUVmn7ewhXLjDLBZl593H3w= Subject key identifier: 86:F7:CD:62:50:0A:53:78:A9:7D:70:DE:45:E8:A6:09:93:EB:E6:ED Certificate issuer: /CN=A91383F0/serialNumber=1036C1E0FFE1CFC37D655D89FA65D65FE22E1F7A Certificate serial: 0106 Authority key identifier: 10:36:C1:E0:FF:E1:CF:C3:7D:65:5D:89:FA:65:D6:5F:E2:2E:1F:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/F098580828C511EFB2C79E5FC4F9AE02.roa Signing time: Wed 31 Jul 2024 05:36:44 +0000 ROA not before: Wed 31 Jul 2024 05:36:44 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 151403 IP address blocks: 2401:aa0::/32 maxlen: 32 2401:aa0::/34 maxlen: 34 2401:aa0::/48 maxlen: 48 2401:aa0:1::/48 maxlen: 48 2401:aa0:2::/48 maxlen: 48 2401:aa0:3::/48 maxlen: 48 2401:aa0:4::/48 maxlen: 48 2401:aa0:5::/48 maxlen: 48 2401:aa0:6::/48 maxlen: 48 2401:aa0:7::/48 maxlen: 48 2401:aa0:8::/48 maxlen: 48 2401:aa0:4000::/34 maxlen: 34 2401:aa0:8000::/34 maxlen: 34 2401:aa0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.crl rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91383F0/serialNumber=1036C1E0FFE1CFC37D655D89FA65D65FE22E1F7A Validity Not Before: Jul 31 05:36:44 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9cd6b-00e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7e:36:29:0d:56:4a:8e:fc:fa:0d:d9:94:a8: 00:9b:5d:95:5f:f6:05:73:fa:5e:aa:f6:52:6b:ea: 7a:67:9f:4e:db:99:39:97:7b:b4:99:ab:fa:a8:13: 71:03:6f:c2:3d:d2:60:27:d8:ba:7b:c5:97:6d:99: c1:5c:00:0a:15:0b:2d:25:e8:bc:0b:91:b9:c7:5f: ad:3a:76:2b:72:85:c4:70:9f:68:5e:ae:3b:0f:9d: 3a:be:5d:cb:3b:72:6d:27:61:2b:27:35:a3:ed:db: 70:71:10:45:b1:f9:a1:dc:a4:6f:2c:c6:79:af:cb: 99:81:04:5e:34:b9:59:01:eb:56:f3:f5:80:06:1f: f2:24:c9:cb:3b:2e:1c:2c:5c:3a:a8:be:24:4a:ed: 2f:14:da:31:23:c9:57:8c:88:f2:2b:5d:4a:e4:8a: b5:9f:9f:c5:6d:ee:df:f1:99:f8:9c:49:99:6f:eb: f6:95:ff:11:ad:68:d3:2a:05:cb:7e:f0:9f:88:1b: 76:8d:eb:6d:94:c2:cd:df:b1:e5:ca:74:32:00:c5: 7e:af:5a:39:4a:d6:76:c7:89:6f:ce:d9:4a:c9:2e: 5c:48:c6:bb:b3:eb:d1:b0:4d:8c:5a:d8:08:a7:08: 9c:08:80:a8:51:8c:2f:a6:d8:43:26:9e:17:69:df: 8b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F7:CD:62:50:0A:53:78:A9:7D:70:DE:45:E8:A6:09:93:EB:E6:ED X509v3 Authority Key Identifier: keyid:10:36:C1:E0:FF:E1:CF:C3:7D:65:5D:89:FA:65:D6:5F:E2:2E:1F:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/F098580828C511EFB2C79E5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:aa0::/32 Signature Algorithm: sha256WithRSAEncryption 73:7e:71:50:fb:de:a8:06:c7:b6:0c:83:05:c5:6c:6b:21:ae: 5c:a6:23:8d:bf:69:d9:f4:90:c3:34:7f:2c:68:46:87:ca:b4: d5:55:c5:10:6c:b9:ef:a4:2e:ab:6d:f9:7b:ed:bb:0f:3f:7d: 39:ec:d0:f7:55:df:62:fd:95:ad:00:ad:bc:75:8e:de:4d:19: 65:28:04:5d:27:f0:ed:46:a1:65:41:67:a3:ee:e6:67:d9:be: fc:2f:d7:0d:7a:70:1f:54:3c:0c:d8:27:88:3a:86:20:8c:ad: e2:69:ce:a2:29:b4:c2:b7:80:c2:31:e3:4f:8a:fa:a4:df:15: e5:51:70:71:4e:21:e0:b6:f2:c0:bb:c2:bd:fa:2a:61:c0:4e: d0:7b:42:7c:be:da:e7:9e:84:b3:c7:e8:f7:c5:48:ba:6b:51: 7c:32:95:e7:46:02:6a:cb:1d:51:f2:4f:1e:88:77:e1:f0:ea: 9b:94:16:69:83:56:93:8c:24:6d:ac:d7:a4:25:5e:c4:12:0e: 49:8d:7e:cb:0d:d7:6a:06:2b:32:1d:0f:26:52:d5:f6:d6:99: 67:de:22:43:ce:39:25:da:ae:27:ce:cb:02:a8:c7:ec:11:03: 82:71:72:fd:d2:dd:ac:ba:51:9c:c1:e3:d8:26:dc:d2:89:9a: ea:fc:0d:7a -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzRjAxMTAvBgNVBAUTKDEwMzZDMUUwRkZFMUNGQzM3RDY1NUQ4OUZBNjVENjVG RTIyRTFGN0EwHhcNMjQwNzMxMDUzNjQ0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5Y2Q2Yi0wMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0n42KQ1WSo78+g3ZlKgAm12VX/YFc/peqvZSa+p6Z59O25k5l3u0mav6qBNx A2/CPdJgJ9i6e8WXbZnBXAAKFQstJei8C5G5x1+tOnYrcoXEcJ9oXq47D506vl3L O3JtJ2ErJzWj7dtwcRBFsfmh3KRvLMZ5r8uZgQReNLlZAetW8/WABh/yJMnLOy4c LFw6qL4kSu0vFNoxI8lXjIjyK11K5Iq1n5/Fbe7f8Zn4nEmZb+v2lf8RrWjTKgXL fvCfiBt2jettlMLN37HlynQyAMV+r1o5StZ2x4lvztlKyS5cSMa7s+vRsE2MWtgI pwicCICoUYwvpthDJp4Xad+LVwIDAQABo4ICljCCApIwHQYDVR0OBBYEFIb3zWJQ ClN4qX1w3kXopgmT6+btMB8GA1UdIwQYMBaAFBA2weD/4c/DfWVdifpl1l/iLh96 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODNGMC9EQ0ZDQTZBMjBB ODMxMUVFOUU2QTkyNTBDNEY5QUUwMi9FRGJCNFBfaHo4TjlaVjJKLW1YV1gtSXVI M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VEYkI0UF9oejhOOVpWMkotbVhXWC1JdUgzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgzRjAvRENGQ0E2QTIwQTgzMTFFRTlFNkE5MjUwQzRGOUFFMDIvRjA5ODU4MDgy OEM1MTFFRkIyQzc5RTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAQqgMA0GCSqGSIb3DQEBCwUAA4IBAQBzfnFQ+96oBse2 DIMFxWxrIa5cpiONv2nZ9JDDNH8saEaHyrTVVcUQbLnvpC6rbfl77bsPP3057ND3 Vd9i/ZWtAK28dY7eTRllKARdJ/DtRqFlQWej7uZn2b78L9cNenAfVDwM2CeIOoYg jK3iac6iKbTCt4DCMeNPivqk3xXlUXBxTiHgtvLAu8K9+iphwE7Qe0J8vtrnnoSz x+j3xUi6a1F8MpXnRgJqyx1R8k8eiHfh8OqblBZpg1aTjCRtrNekJV7EEg5JjX7L DddqBisyHQ8mUtX21pln3iJDzjkl2q4nzssCqMfsEQOCcXL90t2sulGcwePYJtzS iZrq/A16 -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org