$ rpki-client -vvf rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/60A2CF98817811EE9E9A211DC4F9AE02.roa File: 60A2CF98817811EE9E9A211DC4F9AE02.roa (raw, json) Hash identifier: OBulHvX2B6jsIGrCSAsyqZYvuyIkHgMKG5wNVNk2ul8= Subject key identifier: 73:A2:4F:E8:FB:9C:7B:5F:B3:5D:F6:E8:E4:15:2A:C5:EC:A9:E4:62 Certificate issuer: /CN=A91447E7/serialNumber=E77B87146805E2604B49EEF2B4A438CBD2A51424 Certificate serial: 01E3 Authority key identifier: E7:7B:87:14:68:05:E2:60:4B:49:EE:F2:B4:A4:38:CB:D2:A5:14:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/60A2CF98817811EE9E9A211DC4F9AE02.roa Signing time: Wed 03 Jul 2024 03:45:08 +0000 ROA not before: Wed 03 Jul 2024 03:45:08 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 150296 IP address blocks: 2001:df0:c940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.crl rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91447E7/serialNumber=E77B87146805E2604B49EEF2B4A438CBD2A51424 Validity Not Before: Jul 3 03:45:08 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6684c944-f742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6e:9b:6f:26:c5:54:f0:2f:48:e0:6e:0e:69: 4f:a2:5e:dc:e1:41:a7:ff:95:11:1e:ad:78:6a:15: b0:57:3f:8a:0c:09:65:f6:c1:7d:a4:0a:03:ae:06: 40:cc:a3:91:b9:03:2d:59:c3:4f:ba:d3:14:1a:85: 89:a0:cc:e5:2d:a9:6d:d6:18:9d:8f:7d:a4:cf:e3: d4:25:fe:b3:e0:af:58:9e:e7:80:ee:c9:db:2b:72: 28:0e:a6:ba:f4:b7:4c:e9:e2:aa:71:4c:91:68:e7: 88:87:d4:86:02:2b:ff:8b:37:41:11:3d:32:c5:0a: 8b:1e:bc:63:d7:37:e6:37:30:24:d0:9d:e0:d3:6f: d1:8f:97:1e:80:ae:5d:48:e8:d9:6a:6e:0a:8b:d7: 38:23:2f:45:00:e2:36:00:91:84:1d:51:73:39:ac: d3:5a:f7:6c:ab:65:fe:a1:10:51:10:84:8f:e2:5f: 10:34:8a:93:c3:7e:ba:13:41:54:64:c6:75:52:9b: 02:be:7e:cf:20:02:89:8e:3b:54:5a:d9:40:b8:41: 55:49:e3:49:ff:47:fb:f2:46:84:33:f9:ff:c9:83: d2:6d:3a:bc:1a:d9:84:ee:bd:49:72:c3:d8:97:f1: c0:29:d0:48:b7:75:78:b5:08:0d:a6:82:29:96:e1: a9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A2:4F:E8:FB:9C:7B:5F:B3:5D:F6:E8:E4:15:2A:C5:EC:A9:E4:62 X509v3 Authority Key Identifier: keyid:E7:7B:87:14:68:05:E2:60:4B:49:EE:F2:B4:A4:38:CB:D2:A5:14:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53uHFGgF4mBLSe7ytKQ4y9KlFCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91447E7/FE4469D2130111EDADCE5C7DC4F9AE02/60A2CF98817811EE9E9A211DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:c940::/48 Signature Algorithm: sha256WithRSAEncryption b0:eb:c2:15:67:93:2f:9c:db:f5:2e:74:c8:c1:e3:b6:36:b8: 30:4d:e4:7f:2c:80:7a:fe:25:2c:e3:07:06:a9:cc:1e:b6:38: aa:f3:30:69:96:96:8e:e6:a6:c0:84:d9:c6:60:7a:73:ad:ee: 1e:02:c1:bb:f6:32:79:ca:a3:66:06:d1:ac:51:cf:98:37:fc: a2:18:3b:df:ab:b5:a6:9f:2f:1b:5b:94:50:46:d7:8e:ac:44: 40:03:9d:ea:79:c3:be:09:69:79:df:99:d0:44:67:73:34:bc: 2c:92:91:59:c7:6e:f7:05:b6:9b:cb:20:67:c3:b7:f0:dd:9b: 2f:dc:94:06:a6:57:c0:bf:8a:f5:61:55:81:63:54:a3:46:f3: 4e:ab:c6:8f:4c:ef:cf:76:af:59:83:8b:3e:80:f3:62:8e:94: f5:6a:9d:7c:b8:c7:18:8f:a6:90:57:de:88:3f:25:28:0a:b9: 0f:bc:57:58:f6:ff:00:e6:a7:ad:95:14:05:6c:a9:98:4c:3c: 64:0a:7b:ec:58:e4:72:0e:53:c0:fb:bc:51:a9:ba:22:82:4e: cb:2f:14:ef:0c:0f:34:cb:d7:21:70:69:8e:ac:38:30:d6:4f: 8a:3c:6d:5d:b4:72:12:da:96:9d:68:9e:1a:e6:28:82:d5:ad: 96:ba:2a:80 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3RTcxMTAvBgNVBAUTKEU3N0I4NzE0NjgwNUUyNjA0QjQ5RUVGMkI0QTQzOENC RDJBNTE0MjQwHhcNMjQwNzAzMDM0NTA4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0Yzk0NC1mNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnW6bbybFVPAvSOBuDmlPol7c4UGn/5URHq14ahWwVz+KDAll9sF9pAoDrgZA zKORuQMtWcNPutMUGoWJoMzlLalt1hidj32kz+PUJf6z4K9YnueA7snbK3IoDqa6 9LdM6eKqcUyRaOeIh9SGAiv/izdBET0yxQqLHrxj1zfmNzAk0J3g02/Rj5cegK5d SOjZam4Ki9c4Iy9FAOI2AJGEHVFzOazTWvdsq2X+oRBREISP4l8QNIqTw366E0FU ZMZ1UpsCvn7PIAKJjjtUWtlAuEFVSeNJ/0f78kaEM/n/yYPSbTq8GtmE7r1JcsPY l/HAKdBIt3V4tQgNpoIpluGpxQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHOiT+j7 nHtfs1326OQVKsXsqeRiMB8GA1UdIwQYMBaAFOd7hxRoBeJgS0nu8rSkOMvSpRQk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDdFNy9GRTQ0NjlEMjEz MDExMUVEQURDRTVDN0RDNEY5QUUwMi81M3VIRkdnRjRtQkxTZTd5dEtRNHk5S2xG Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUzdUhGR2dGNG1CTFNlN3l0S1E0eTlLbEZDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ3RTcvRkU0NDY5RDIxMzAxMTFFREFEQ0U1QzdEQzRGOUFFMDIvNjBBMkNGOTg4 MTc4MTFFRTlFOUEyMTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wyUAwDQYJKoZIhvcNAQELBQADggEBALDrwhVnky+c 2/UudMjB47Y2uDBN5H8sgHr+JSzjBwapzB62OKrzMGmWlo7mpsCE2cZgenOt7h4C wbv2MnnKo2YG0axRz5g3/KIYO9+rtaafLxtblFBG146sREADnep5w74JaXnfmdBE Z3M0vCySkVnHbvcFtpvLIGfDt/Ddmy/clAamV8C/ivVhVYFjVKNG806rxo9M7892 r1mDiz6A82KOlPVqnXy4xxiPppBX3og/JSgKuQ+8V1j2/wDmp62VFAVsqZhMPGQK e+xY5HIOU8D7vFGpuiKCTssvFO8MDzTL1yFwaY6sODDWT4o8bV20chLalp1onhrm KILVrZa6KoA= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:35 2024 by rpki-client on console-ams.rpki-client.org