$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/27A1A5A2174911EC896AD61BC4F9AE02.roa File: 27A1A5A2174911EC896AD61BC4F9AE02.roa (raw, json) Hash identifier: PT9TyyH2chY28D7xFpiGeKe73ZXXzfI6IzydINCCygw= Subject key identifier: 2E:81:4C:B4:24:12:88:45:97:97:5F:16:07:08:6A:E0:40:A3:A5:65 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 0534 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/27A1A5A2174911EC896AD61BC4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:53 +0000 ROA not before: Tue 03 Sep 2024 01:14:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 17719 IP address blocks: 2405:9000:80::/48 maxlen: 48 2405:9000:90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1332 (0x534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Sep 3 01:14:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d6630d-88b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ed:1d:4e:ba:f6:4e:4a:13:7a:4a:10:d8:78: de:0f:03:d0:69:89:ff:29:a1:c3:8c:9d:e7:51:ed: 72:32:cc:f4:4b:5e:a1:d6:78:14:8f:41:6f:48:6e: e2:bd:2b:88:0a:5e:90:74:71:84:b9:c3:1f:fc:74: 66:f6:17:fd:24:1c:12:f6:f4:e4:ae:a1:a2:2f:f1: 5a:0a:0c:26:52:de:7f:78:a5:e1:00:eb:c3:4c:c2: 0a:2f:29:66:1c:cd:d6:ce:06:78:82:0b:e2:60:d4: 3d:5c:ba:96:36:06:6f:95:98:45:a4:ce:d0:c4:21: 58:a5:91:a9:72:e2:55:b8:93:03:17:49:68:98:8f: fe:08:2c:da:b0:24:bd:1e:1e:b1:8b:f0:01:50:b5: f2:ec:bc:7a:9e:30:48:b3:bb:46:6a:3e:3d:64:91: b5:60:39:dc:27:d8:33:a8:27:0d:5d:f6:9f:e5:0c: c6:d3:6b:1f:f2:8a:36:21:f2:36:8c:ba:ee:d6:df: 0f:bb:4a:57:bb:ab:f8:98:1e:6c:bf:a3:99:55:77: bd:ed:10:0f:c5:04:f9:31:27:ff:99:f4:57:cc:4c: 21:2e:90:a9:e4:d5:5d:90:4c:5d:94:47:f0:d2:b3: 41:93:1d:3e:4c:7a:47:db:dc:dd:78:24:40:9e:23: 0d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:81:4C:B4:24:12:88:45:97:97:5F:16:07:08:6A:E0:40:A3:A5:65 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/27A1A5A2174911EC896AD61BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:9000:80::/48 2405:9000:90::/48 Signature Algorithm: sha256WithRSAEncryption 5b:67:01:6d:83:b4:31:c3:1e:79:5e:17:cc:3e:fd:97:bf:57: 4e:ee:ce:0c:44:48:58:84:e8:77:67:60:7f:e3:1d:40:4a:62: f7:28:1f:57:74:38:55:61:23:d9:79:2c:e9:69:eb:6d:d7:33: 68:0a:54:1a:d6:dc:a8:32:c3:b8:c2:5b:d0:19:c5:bf:b1:11: 0d:d3:db:f9:03:d6:b5:a8:4c:2c:8d:b8:02:4f:34:47:3a:c4: 39:f9:fb:65:ab:20:d2:58:7c:2f:33:75:2e:ed:37:fa:d1:e3: 5f:4f:d9:21:1f:29:b1:7f:92:c8:59:ab:f5:df:68:f8:6c:5e: c4:44:77:bc:95:ee:69:2d:eb:52:d6:6e:98:6f:eb:7a:02:37: 57:68:70:45:d9:ae:00:4c:1a:6a:70:ae:fc:92:98:fb:3e:9c: 01:d7:5a:d8:d9:4d:ca:fb:0b:29:08:7e:c6:34:1a:a1:ca:5b: 19:1d:8f:12:b8:d7:2a:07:b0:9b:a1:b2:77:6f:7b:91:4f:6a: 73:5b:db:dc:3f:26:5c:66:5b:f6:b4:d6:00:48:42:0f:21:9c: 8e:49:ae:57:28:aa:dd:fd:b2:ec:cc:42:aa:dc:f6:f1:6e:92: 67:71:c4:4e:7d:7d:19:f8:d6:87:3d:44:3b:46:58:57:cf:b5: 92:26:09:41 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjQwOTAzMDExNDUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMwZC04OGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3u0dTrr2TkoTekoQ2HjeDwPQaYn/KaHDjJ3nUe1yMsz0S16h1ngUj0FvSG7i vSuICl6QdHGEucMf/HRm9hf9JBwS9vTkrqGiL/FaCgwmUt5/eKXhAOvDTMIKLylm HM3WzgZ4ggviYNQ9XLqWNgZvlZhFpM7QxCFYpZGpcuJVuJMDF0lomI/+CCzasCS9 Hh6xi/ABULXy7Lx6njBIs7tGaj49ZJG1YDncJ9gzqCcNXfaf5QzG02sf8oo2IfI2 jLru1t8Pu0pXu6v4mB5sv6OZVXe97RAPxQT5MSf/mfRXzEwhLpCp5NVdkExdlEfw 0rNBkx0+THpH29zdeCRAniMNTwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFC6BTLQk EohFl5dfFgcIauBAo6VlMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvMjdBMUE1QTIx NzQ5MTFFQzg5NkFENjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBZAAAIADBwAkBZAAAJAwDQYJKoZIhvcNAQELBQADggEB AFtnAW2DtDHDHnleF8w+/Ze/V07uzgxESFiE6HdnYH/jHUBKYvcoH1d0OFVhI9l5 LOlp623XM2gKVBrW3Kgyw7jCW9AZxb+xEQ3T2/kD1rWoTCyNuAJPNEc6xDn5+2Wr INJYfC8zdS7tN/rR419P2SEfKbF/kshZq/XfaPhsXsREd7yV7mkt61LWbphv63oC N1docEXZrgBMGmpwrvySmPs+nAHXWtjZTcr7CykIfsY0GqHKWxkdjxK41yoHsJuh sndve5FPanNb29w/JlxmW/a01gBIQg8hnI5Jrlcoqt39suzMQqrc9vFukmdxxE59 fRn41oc9RDtGWFfPtZImCUE= -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:46 2024 by rpki-client on console-fra.rpki-client.org