$ rpki-client -vvf rpki.apnic.net/member_repository/A91388E0/55E392FCB85211EE8ACAA96AC4F9AE02/128CE16E991311EF80CC5D53C4F9AE02.roa File: 128CE16E991311EF80CC5D53C4F9AE02.roa (raw, json) Hash identifier: 6LySKLbDyC3EGr7TEOMIGFF8VOVVZ0g8dTsYdzeenFE= Subject key identifier: A6:E1:EA:62:2E:A6:94:2C:6D:35:47:D7:A3:B4:5F:49:70:A7:32:F0 Certificate issuer: /CN=A91388E0/serialNumber=61BBCB6DB8DC1337C1B8298F70C1FF2A5016ED6E Certificate serial: 95 Authority key identifier: 61:BB:CB:6D:B8:DC:13:37:C1:B8:29:8F:70:C1:FF:2A:50:16:ED:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbvLbbjcEzfBuCmPcMH_KlAW7W4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91388E0/55E392FCB85211EE8ACAA96AC4F9AE02/128CE16E991311EF80CC5D53C4F9AE02.roa Signing time: Sat 02 Nov 2024 12:07:47 +0000 ROA not before: Sat 02 Nov 2024 12:07:47 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152336 IP address blocks: 2001:df4:8940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91388E0/55E392FCB85211EE8ACAA96AC4F9AE02/YbvLbbjcEzfBuCmPcMH_KlAW7W4.crl rsync://rpki.apnic.net/member_repository/A91388E0/55E392FCB85211EE8ACAA96AC4F9AE02/YbvLbbjcEzfBuCmPcMH_KlAW7W4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbvLbbjcEzfBuCmPcMH_KlAW7W4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91388E0/serialNumber=61BBCB6DB8DC1337C1B8298F70C1FF2A5016ED6E Validity Not Before: Nov 2 12:07:47 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=67261612-35b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:61:34:11:cc:57:77:43:e4:44:12:ec:5a:bf: f9:b1:4c:6a:ec:b5:c1:af:e0:9a:e9:e0:db:fd:a4: 80:96:da:2f:a8:c7:9c:ea:c0:16:b5:eb:cf:e2:75: 95:3a:a2:52:80:bb:89:94:ce:cb:93:19:0c:b2:cd: 4c:60:77:a7:27:db:21:ef:14:37:7e:37:54:c1:e4: 56:19:e9:cc:38:b5:c6:fb:c3:d1:1d:a3:cc:d5:f4: cf:9a:af:43:c2:16:02:88:8c:f0:6a:cc:31:11:40: e9:16:3b:64:61:73:34:fc:e5:80:d9:96:eb:f6:52: 7e:9c:8f:97:27:84:30:9f:d2:de:f8:34:fa:e6:16: 29:d0:ef:48:41:b1:ee:08:f1:f1:0a:b1:65:05:32: 4b:6b:07:7d:34:ac:7a:2a:48:ca:37:39:ce:7d:0d: a1:cd:31:f2:5b:74:c7:92:e0:5f:b4:81:fe:2c:9d: 77:ca:cb:91:2c:79:23:24:4b:f2:99:b0:9d:eb:b3: 57:05:d8:2b:de:75:bd:05:38:a9:88:d0:02:8e:f4: 4d:bf:c0:98:52:f9:5d:c7:b5:be:20:31:0f:70:4a: c7:7b:7c:32:93:7d:89:71:9b:cc:92:b3:82:71:39: 41:6c:ee:b5:29:a9:9d:fc:d1:ea:2d:22:2f:5e:36: 53:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E1:EA:62:2E:A6:94:2C:6D:35:47:D7:A3:B4:5F:49:70:A7:32:F0 X509v3 Authority Key Identifier: keyid:61:BB:CB:6D:B8:DC:13:37:C1:B8:29:8F:70:C1:FF:2A:50:16:ED:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91388E0/55E392FCB85211EE8ACAA96AC4F9AE02/YbvLbbjcEzfBuCmPcMH_KlAW7W4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbvLbbjcEzfBuCmPcMH_KlAW7W4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91388E0/55E392FCB85211EE8ACAA96AC4F9AE02/128CE16E991311EF80CC5D53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:8940::/48 Signature Algorithm: sha256WithRSAEncryption 3f:37:df:e2:3d:8b:b3:f5:f4:5f:6d:69:a7:5e:fc:48:14:43: ba:9f:ce:66:1c:9a:ed:a3:07:6a:28:5b:3c:74:b3:a8:29:c4: a7:7f:9b:6e:38:ae:d2:2f:7b:1f:dc:b0:b3:a3:3e:d6:20:c4: f0:21:94:c2:49:27:e1:0a:eb:fe:1d:e9:6b:8a:a8:eb:57:bd: 90:9a:90:c8:6f:f7:57:72:28:80:05:0d:0f:f9:a2:67:d0:2f: 03:c5:d6:be:f0:8a:e6:cb:bf:8a:27:03:af:bd:7e:78:33:6c: 19:62:2f:c7:9a:b1:11:84:8a:82:18:50:4e:9d:80:dd:a7:89: a4:40:cb:a7:55:77:a2:06:fd:84:04:4a:ff:aa:29:d8:9a:b1: 58:08:ca:10:8b:ba:48:87:51:12:14:34:be:17:bd:c2:f9:0a: a9:a9:82:74:54:28:86:f8:e8:c5:52:fe:8b:37:35:41:07:65: 6f:5a:1c:72:2f:20:ce:58:06:83:6f:9d:06:d6:34:d2:d8:08: 82:f1:a3:e1:b7:e6:7c:1b:38:f1:a0:8f:2f:53:6b:0d:d1:bc: 01:a9:c8:47:cf:c6:85:b0:20:cf:be:c1:56:d5:d5:e5:ed:20: 16:5d:aa:03:de:fb:8b:0f:e1:55:c2:7a:c2:17:3e:12:ce:3e: c1:a7:6e:97 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg4RTAxMTAvBgNVBAUTKDYxQkJDQjZEQjhEQzEzMzdDMUI4Mjk4RjcwQzFGRjJB NTAxNkVENkUwHhcNMjQxMTAyMTIwNzQ3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2MTYxMi0zNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA62E0EcxXd0PkRBLsWr/5sUxq7LXBr+Ca6eDb/aSAltovqMec6sAWtevP4nWV OqJSgLuJlM7LkxkMss1MYHenJ9sh7xQ3fjdUweRWGenMOLXG+8PRHaPM1fTPmq9D whYCiIzwaswxEUDpFjtkYXM0/OWA2Zbr9lJ+nI+XJ4Qwn9Le+DT65hYp0O9IQbHu CPHxCrFlBTJLawd9NKx6KkjKNznOfQ2hzTHyW3THkuBftIH+LJ13ysuRLHkjJEvy mbCd67NXBdgr3nW9BTipiNACjvRNv8CYUvldx7W+IDEPcErHe3wyk32JcZvMkrOC cTlBbO61Kamd/NHqLSIvXjZTwwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKbh6mIu ppQsbTVH16O0X0lwpzLwMB8GA1UdIwQYMBaAFGG7y2243BM3wbgpj3DB/ypQFu1u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODhFMC81NUUzOTJGQ0I4 NTIxMUVFOEFDQUE5NkFDNEY5QUUwMi9ZYnZMYmJqY0V6ZkJ1Q21QY01IX0tsQVc3 VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lidkxiYmpjRXpmQnVDbVBjTUhfS2xBVzdXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzg4RTAvNTVFMzkyRkNCODUyMTFFRThBQ0FBOTZBQzRGOUFFMDIvMTI4Q0UxNkU5 OTEzMTFFRjgwQ0M1RDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30iUAwDQYJKoZIhvcNAQELBQADggEBAD833+I9i7P1 9F9taade/EgUQ7qfzmYcmu2jB2ooWzx0s6gpxKd/m244rtIvex/csLOjPtYgxPAh lMJJJ+EK6/4d6WuKqOtXvZCakMhv91dyKIAFDQ/5omfQLwPF1r7wiubLv4onA6+9 fngzbBliL8easRGEioIYUE6dgN2niaRAy6dVd6IG/YQESv+qKdiasVgIyhCLukiH URIUNL4XvcL5CqmpgnRUKIb46MVS/os3NUEHZW9aHHIvIM5YBoNvnQbWNNLYCILx o+G35nwbOPGgjy9Taw3RvAGpyEfPxoWwIM++wVbV1eXtIBZdqgPe+4sP4VXCesIX PhLOPsGnbpc= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org