$ rpki-client -vvf rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa File: 89D7E6869E9211EF8726F76AC4F9AE02.roa (raw, json) Hash identifier: 4aEk8Fo4ZtjX2t7vRJE+qDahRN/pzY/Ldf8wIZXNlMo= Subject key identifier: 10:F1:AA:2F:D3:84:DC:EE:BC:3B:EC:9F:EF:C5:36:69:54:C4:EE:19 Certificate issuer: /CN=A913B4BE/serialNumber=DD36E45C71D3D92B3CD1A72D5F5AB325B346ADCA Certificate serial: 88 Authority key identifier: DD:36:E4:5C:71:D3:D9:2B:3C:D1:A7:2D:5F:5A:B3:25:B3:46:AD:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa Signing time: Sat 09 Nov 2024 12:02:49 +0000 ROA not before: Sat 09 Nov 2024 12:02:49 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152482 IP address blocks: 2001:df3:7940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.crl rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B4BE/serialNumber=DD36E45C71D3D92B3CD1A72D5F5AB325B346ADCA Validity Not Before: Nov 9 12:02:49 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=672f4f68-7aa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:61:bf:92:d1:31:ce:64:aa:7b:ea:d2:f0:f1: be:b7:70:5e:42:3d:65:6a:49:5a:a8:22:5e:df:d0: 03:bc:86:6b:29:11:34:80:cd:c1:ed:3c:25:fe:1a: 13:fa:54:8f:c6:ee:82:d1:4d:de:f5:53:16:9f:17: 93:b5:20:4d:1d:3a:92:a9:18:79:09:d7:fb:11:9a: f6:7a:73:38:a5:8e:ae:18:b2:6d:60:15:a3:a4:f0: b6:78:6b:4b:a3:68:80:f8:54:74:99:89:da:88:1f: 93:20:1e:b1:cb:18:9b:32:95:36:20:5a:cc:b0:ca: bb:bf:76:40:05:ea:ad:bf:d0:36:79:d8:f5:d4:13: a3:69:63:ee:ab:3d:37:57:0b:6a:61:31:79:67:42: bf:33:2a:b2:56:42:ec:5a:8f:01:ce:e4:ef:91:b8: 44:34:b2:07:bc:e0:4d:fa:bf:3d:88:7a:34:f6:b2: 4f:20:a3:a0:5d:cc:b5:ec:b2:38:e0:21:42:85:fd: 7a:cf:b5:9a:ee:00:3b:2b:61:d3:f6:1d:20:c0:92: ef:b3:8d:fa:d2:b9:ca:5d:a7:70:91:20:14:54:fa: 75:94:94:6d:0c:49:d8:b7:50:c8:75:08:bf:04:61: 26:02:35:dc:ce:41:28:84:75:f6:04:f7:78:e9:89: 11:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F1:AA:2F:D3:84:DC:EE:BC:3B:EC:9F:EF:C5:36:69:54:C4:EE:19 X509v3 Authority Key Identifier: keyid:DD:36:E4:5C:71:D3:D9:2B:3C:D1:A7:2D:5F:5A:B3:25:B3:46:AD:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7940::/48 Signature Algorithm: sha256WithRSAEncryption 86:63:44:1a:8a:2d:ab:dc:ad:ea:83:98:de:cd:c3:c0:ea:ce: 50:be:4c:f3:1a:19:4b:b2:df:88:7f:12:6e:74:9c:8a:d0:f8: 20:cb:c8:5c:70:64:1c:66:23:70:89:04:91:70:45:da:2f:55: 40:a7:d3:03:7b:69:ad:2d:96:d9:04:09:64:ac:78:9d:32:de: 2c:18:0d:a3:2f:57:66:6c:dc:33:58:6d:b8:59:46:69:37:2b: 64:cf:f4:d0:eb:fc:49:ed:7d:6e:c1:93:6d:be:6a:c2:38:3b: bc:4b:95:38:98:70:ef:ed:65:8c:78:32:91:e3:db:7d:1d:cb: ed:87:01:81:cb:5c:b8:f8:0f:41:0b:08:3d:36:6c:e2:64:8d: 5a:81:57:eb:cc:cd:aa:37:0d:06:c2:93:31:5e:4b:2f:fd:4a: ec:fe:00:41:69:c6:fc:98:7b:60:76:44:fb:60:40:57:11:c7: 35:00:3f:31:99:f4:ad:8a:0f:1f:7e:40:b4:a5:9e:94:98:8e: fb:38:0b:be:67:93:c5:9c:90:9d:5b:ef:2c:f8:db:18:5b:e6: 7a:3c:e5:f6:a6:30:fe:66:8e:a2:49:6f:88:07:28:57:6d:a8: a4:d8:d7:1c:1b:f3:bc:95:0c:eb:40:99:6f:87:41:25:eb:1b: 9f:1e:91:6d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0QkUxMTAvBgNVBAUTKEREMzZFNDVDNzFEM0Q5MkIzQ0QxQTcyRDVGNUFCMzI1 QjM0NkFEQ0EwHhcNMjQxMTA5MTIwMjQ5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJmNGY2OC03YWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2G/ktExzmSqe+rS8PG+t3BeQj1laklaqCJe39ADvIZrKRE0gM3B7Twl/hoT +lSPxu6C0U3e9VMWnxeTtSBNHTqSqRh5Cdf7EZr2enM4pY6uGLJtYBWjpPC2eGtL o2iA+FR0mYnaiB+TIB6xyxibMpU2IFrMsMq7v3ZABeqtv9A2edj11BOjaWPuqz03 VwtqYTF5Z0K/MyqyVkLsWo8BzuTvkbhENLIHvOBN+r89iHo09rJPIKOgXcy17LI4 4CFChf16z7Wa7gA7K2HT9h0gwJLvs4360rnKXadwkSAUVPp1lJRtDEnYt1DIdQi/ BGEmAjXczkEohHX2BPd46YkR0wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBDxqi/T hNzuvDvsn+/FNmlUxO4ZMB8GA1UdIwQYMBaAFN025Fxx09krPNGnLV9asyWzRq3K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjRCRS83OEJEMzIyNEND RjcxMUVFOUU4OUQ2N0FDNEY5QUUwMi8zVGJrWEhIVDJTczgwYWN0WDFxekpiTkdy Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNUYmtYSEhUMlNzODBhY3RYMXF6SmJOR3Jjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I0QkUvNzhCRDMyMjRDQ0Y3MTFFRTlFODlENjdBQzRGOUFFMDIvODlEN0U2ODY5 RTkyMTFFRjg3MjZGNzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zeUAwDQYJKoZIhvcNAQELBQADggEBAIZjRBqKLavc reqDmN7Nw8DqzlC+TPMaGUuy34h/Em50nIrQ+CDLyFxwZBxmI3CJBJFwRdovVUCn 0wN7aa0tltkECWSseJ0y3iwYDaMvV2Zs3DNYbbhZRmk3K2TP9NDr/EntfW7Bk22+ asI4O7xLlTiYcO/tZYx4MpHj230dy+2HAYHLXLj4D0ELCD02bOJkjVqBV+vMzao3 DQbCkzFeSy/9Suz+AEFpxvyYe2B2RPtgQFcRxzUAPzGZ9K2KDx9+QLSlnpSYjvs4 C75nk8WckJ1b7yz42xhb5no85famMP5mjqJJb4gHKFdtqKTY1xwb87yVDOtAmW+H QSXrG58ekW0= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:14 2024 by rpki-client on console-fra.rpki-client.org