$ rpki-client -vvf rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/57F6EF0C5BD211EF992CFC15C4F9AE02.roa File: 57F6EF0C5BD211EF992CFC15C4F9AE02.roa (raw, json) Hash identifier: 3nA72tHDmFfUPzw47VV3xufiMO/gtK8JVIbiIAFnnPM= Subject key identifier: 94:90:91:1C:58:C4:1A:45:80:76:51:EB:15:EF:C3:66:FC:00:83:26 Certificate issuer: /CN=A91602BE/serialNumber=17F951844051448C89061404CFB41EAAE0473A7A Certificate serial: 0DC8 Authority key identifier: 17:F9:51:84:40:51:44:8C:89:06:14:04:CF:B4:1E:AA:E0:47:3A:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/57F6EF0C5BD211EF992CFC15C4F9AE02.roa Signing time: Fri 16 Aug 2024 13:20:45 +0000 ROA not before: Fri 16 Aug 2024 13:20:45 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141039 IP address blocks: 2400:bb40:2000::/48 maxlen: 48 2400:bb40:2001::/48 maxlen: 48 2400:bb40:2002::/48 maxlen: 48 2400:bb40:2003::/48 maxlen: 48 2400:bb40:2004::/48 maxlen: 48 2400:bb40:2005::/48 maxlen: 48 2400:bb40:2006::/48 maxlen: 48 2400:bb40:2007::/48 maxlen: 48 2400:bb40:2008::/48 maxlen: 48 2400:bb40:2009::/48 maxlen: 48 2400:bb40:2010::/48 maxlen: 48 2400:bb40:2011::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.crl rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3528 (0xdc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602BE/serialNumber=17F951844051448C89061404CFB41EAAE0473A7A Validity Not Before: Aug 16 13:20:45 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66bf522d-ace7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c9:1a:64:02:d9:f1:f7:ca:bc:5a:ef:d1:05: f1:bf:98:b5:d2:fb:0f:0b:85:a5:04:e9:71:bb:8e: 17:2b:e0:b6:5e:a5:6c:45:21:e6:ca:60:d8:13:7d: 9e:d9:6f:9b:dd:f2:34:68:52:0e:40:d8:f0:4d:3e: 08:2f:fc:ef:0c:45:e9:b7:86:09:36:c3:ca:8d:ac: bc:44:34:60:4e:34:6e:1d:46:c5:e4:49:44:de:4b: b8:3c:58:6e:b0:1b:86:61:7d:3b:64:0b:5b:d4:91: ac:a6:ee:55:10:73:06:ad:1e:50:fb:a2:b4:39:88: 2d:ed:ed:be:a7:33:7c:ca:fb:28:d3:e9:06:40:07: 61:d1:12:6b:ed:42:86:5a:94:46:78:c5:de:c2:a5: 35:14:e3:11:d7:73:ab:11:b4:52:29:a8:f8:55:3e: 61:c0:99:cb:1b:2e:e5:b9:45:1e:71:1a:b8:3d:bd: cc:31:56:cb:4a:b5:20:26:ec:00:b5:cf:60:c5:3e: 50:71:5d:60:e8:70:88:a0:98:5e:ac:3c:da:ce:66: e0:87:e0:cd:31:b8:53:97:52:43:fc:6e:13:bc:b4: b4:50:27:dc:f2:97:d8:49:e4:a7:81:da:d1:0a:3c: 73:88:12:73:2e:37:0f:4e:f1:5f:22:ce:66:43:f0: 09:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:90:91:1C:58:C4:1A:45:80:76:51:EB:15:EF:C3:66:FC:00:83:26 X509v3 Authority Key Identifier: keyid:17:F9:51:84:40:51:44:8C:89:06:14:04:CF:B4:1E:AA:E0:47:3A:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/57F6EF0C5BD211EF992CFC15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:bb40:2000::-2400:bb40:2009:ffff:ffff:ffff:ffff:ffff 2400:bb40:2010::/47 Signature Algorithm: sha256WithRSAEncryption 46:ab:e2:ba:10:88:4b:3f:cf:bd:5f:6f:bf:5a:dd:07:cc:96: 2b:b1:66:5e:c1:a7:43:5a:c6:d4:51:f4:fa:08:3d:2f:0c:c0: da:9c:0b:46:40:bc:b2:ce:ef:f1:32:c0:ee:1a:9e:c8:1c:e3: a8:f7:3a:8f:85:4c:7e:cd:e0:57:62:41:3a:83:b9:71:0f:ee: 85:2f:15:22:b1:93:8c:6a:64:c0:00:27:42:6b:7b:1c:b0:09: 74:11:92:d1:a4:46:13:23:4e:42:97:30:7f:45:e6:56:7a:31: a5:5e:d8:47:32:96:74:2e:84:b6:4b:2d:f3:ef:db:ce:25:4a: ae:81:29:b0:39:81:43:c7:3f:bb:0c:a9:5d:ba:28:eb:ad:09: 58:d9:9c:ff:bd:c0:5e:75:9f:f2:96:01:fb:69:7d:0e:85:77: da:5d:1e:df:3a:15:d0:f6:dd:df:96:7b:53:c4:a9:c1:38:11: a2:f2:c5:65:20:dd:77:df:44:08:95:82:b7:ae:ea:59:69:31: 57:53:e3:c8:07:5b:e5:7d:61:a8:c6:92:0e:4e:c8:86:04:36: 73:d4:82:32:07:51:95:0b:92:63:98:4d:03:f5:dd:0e:7a:aa: ae:c3:fb:d5:0f:23:ff:4d:40:fc:2d:39:93:eb:82:63:33:4b: 34:83:5f:b4 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICDcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyQkUxMTAvBgNVBAUTKDE3Rjk1MTg0NDA1MTQ0OEM4OTA2MTQwNENGQjQxRUFB RTA0NzNBN0EwHhcNMjQwODE2MTMyMDQ1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNTIyZC1hY2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18kaZALZ8ffKvFrv0QXxv5i10vsPC4WlBOlxu44XK+C2XqVsRSHmymDYE32e 2W+b3fI0aFIOQNjwTT4IL/zvDEXpt4YJNsPKjay8RDRgTjRuHUbF5ElE3ku4PFhu sBuGYX07ZAtb1JGspu5VEHMGrR5Q+6K0OYgt7e2+pzN8yvso0+kGQAdh0RJr7UKG WpRGeMXewqU1FOMR13OrEbRSKaj4VT5hwJnLGy7luUUecRq4Pb3MMVbLSrUgJuwA tc9gxT5QcV1g6HCIoJherDzazmbgh+DNMbhTl1JD/G4TvLS0UCfc8pfYSeSngdrR CjxziBJzLjcPTvFfIs5mQ/AJTwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFJSQkRxY xBpFgHZR6xXvw2b8AIMmMB8GA1UdIwQYMBaAFBf5UYRAUUSMiQYUBM+0HqrgRzp6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJCRS8zODIxODMzMkEy MUQxMUU5OUM5REM3N0RDNEY5QUUwMi9GX2xSaEVCUlJJeUpCaFFFejdRZXF1QkhP bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZfbFJoRUJSUkl5SkJoUUV6N1FlcXVCSE9uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjAyQkUvMzgyMTgzMzJBMjFEMTFFOTlDOURDNzdEQzRGOUFFMDIvNTdGNkVGMEM1 QkQyMTFFRjk5MkNGQzE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgACMBwwEQMGBSQAu0AgAwcBJAC7QCAIAwcBJAC7QCAQMA0GCSqGSIb3 DQEBCwUAA4IBAQBGq+K6EIhLP8+9X2+/Wt0HzJYrsWZewadDWsbUUfT6CD0vDMDa nAtGQLyyzu/xMsDuGp7IHOOo9zqPhUx+zeBXYkE6g7lxD+6FLxUisZOMamTAACdC a3scsAl0EZLRpEYTI05ClzB/ReZWejGlXthHMpZ0LoS2Sy3z79vOJUqugSmwOYFD xz+7DKlduijrrQlY2Zz/vcBedZ/ylgH7aX0OhXfaXR7fOhXQ9t3flntTxKnBOBGi 8sVlIN1330QIlYK3rupZaTFXU+PIB1vlfWGoxpIOTsiGBDZz1IIyB1GVC5JjmE0D 9d0Oeqquw/vVDyP/TUD8LTmT64JjM0s0g1+0 -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:57 2024 by rpki-client on console-fra.rpki-client.org