$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/3CA46D445C4511ED9CD04525C4F9AE02.roa File: 3CA46D445C4511ED9CD04525C4F9AE02.roa (raw, json) Hash identifier: giIiPUtPJMsnxV7q7XX504j7kFz4zbVIDC2pfaZxbJQ= Subject key identifier: 7A:B5:F2:90:B2:FE:48:63:78:F4:51:8D:C5:98:81:9D:F5:FB:DA:4C Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 03B5 Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/3CA46D445C4511ED9CD04525C4F9AE02.roa Signing time: Wed 31 Jan 2024 03:05:30 +0000 ROA not before: Wed 31 Jan 2024 03:05:30 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9267 IP address blocks: 2407:9240:3600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Validity Not Before: Jan 31 03:05:30 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b9b8f9-d4b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:37:df:1e:bd:d3:6c:7d:cc:c1:ed:ec:ca:4a: 6f:f5:77:d7:a7:b2:73:ba:7a:d5:43:29:aa:2a:99: b8:4f:20:e7:f2:6d:d3:57:97:b2:6e:30:5f:c0:a5: 22:29:d5:28:23:a1:8f:9e:7c:35:45:17:30:ef:b8: 85:0a:b9:82:5d:77:5d:41:cc:5e:2a:12:44:9e:7b: 97:69:b2:7a:55:83:b6:ec:51:e5:1a:d3:64:13:51: 08:c3:37:7c:90:d1:10:12:c3:6c:23:91:bd:c9:53: fa:90:a5:13:62:f4:ba:4e:89:b7:31:63:f5:38:51: d0:bf:f0:c4:c3:bd:78:df:fe:8a:ed:10:0e:3d:87: 10:61:e8:46:95:86:0f:76:f7:39:a8:1e:79:5b:0c: c7:53:ee:fb:f1:50:55:5b:35:ef:29:bd:e3:42:3a: 10:e2:f4:1f:a9:b3:f4:38:6f:f8:5a:98:dd:ea:14: c5:26:05:8c:bd:c8:89:26:57:ad:4f:9b:6e:49:aa: 7c:b4:e7:7f:9a:c8:8e:44:9f:40:30:ca:24:8c:4b: fd:b3:30:9d:8c:c2:7c:7b:c5:f2:1e:50:c2:fb:05: e5:40:23:b4:04:80:50:29:98:64:33:d7:ae:6e:4b: d9:f2:fe:06:6c:c6:0c:04:18:3f:d3:62:07:4c:67: 29:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B5:F2:90:B2:FE:48:63:78:F4:51:8D:C5:98:81:9D:F5:FB:DA:4C X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/3CA46D445C4511ED9CD04525C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:3600::/40 Signature Algorithm: sha256WithRSAEncryption 49:f9:c4:d5:24:12:f0:14:d8:a2:6b:76:65:91:d0:16:d9:18: 2a:b4:5a:fe:6d:fc:e3:09:ab:b2:2d:4c:65:00:05:19:23:dd: ff:c5:be:e6:5e:27:57:a8:65:e8:99:96:68:b3:0b:5a:4c:2f: 4f:35:8d:c4:26:69:e4:73:4b:58:e7:2e:8b:86:0d:a6:b0:ff: dd:a1:9b:cc:c3:99:32:7b:f1:57:65:df:33:1b:77:ae:48:99: 52:b4:6d:e8:53:63:24:58:c6:d6:27:ff:ad:8f:3f:c6:66:39: 84:e2:04:e1:5b:d2:f1:7d:2b:20:a1:08:bb:b2:8b:70:bb:42: 64:bc:c7:3f:ce:af:24:f7:a7:5a:47:df:cf:55:81:06:02:7b: f9:f8:e4:69:15:3c:f6:0b:56:00:0d:32:14:fc:dc:e8:d3:c5: 55:e6:f4:bf:14:b8:1e:e6:18:80:2c:1e:d4:85:58:08:e3:f8: d6:9b:40:3e:a8:0f:27:53:26:cd:c1:fb:63:c5:ee:15:66:21: 62:59:33:7e:ad:e2:3e:ce:24:4b:c4:ab:8c:71:d0:5c:47:d8: 0d:69:69:89:31:5e:98:84:5f:ac:1a:2f:8a:58:24:89:69:3d: 97:08:b5:5d:51:2a:98:64:2b:dd:5d:1e:1f:d7:c3:1f:63:42: fe:f8:ab:f7 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjQwMTMxMDMwNTMwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YjhmOS1kNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DffHr3TbH3Mwe3sykpv9XfXp7JzunrVQymqKpm4TyDn8m3TV5eybjBfwKUi KdUoI6GPnnw1RRcw77iFCrmCXXddQcxeKhJEnnuXabJ6VYO27FHlGtNkE1EIwzd8 kNEQEsNsI5G9yVP6kKUTYvS6Tom3MWP1OFHQv/DEw7143/6K7RAOPYcQYehGlYYP dvc5qB55WwzHU+778VBVWzXvKb3jQjoQ4vQfqbP0OG/4Wpjd6hTFJgWMvciJJlet T5tuSap8tOd/msiORJ9AMMokjEv9szCdjMJ8e8XyHlDC+wXlQCO0BIBQKZhkM9eu bkvZ8v4GbMYMBBg/02IHTGcpUQIDAQABo4IClzCCApMwHQYDVR0OBBYEFHq18pCy /khjePRRjcWYgZ31+9pMMB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvM0NBNDZENDQ1 QzQ1MTFFRDlDRDA0NTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkB5JANjANBgkqhkiG9w0BAQsFAAOCAQEASfnE1SQS8BTY omt2ZZHQFtkYKrRa/m384wmrsi1MZQAFGSPd/8W+5l4nV6hl6JmWaLMLWkwvTzWN xCZp5HNLWOcui4YNprD/3aGbzMOZMnvxV2XfMxt3rkiZUrRt6FNjJFjG1if/rY8/ xmY5hOIE4VvS8X0rIKEIu7KLcLtCZLzHP86vJPenWkffz1WBBgJ7+fjkaRU89gtW AA0yFPzc6NPFVeb0vxS4HuYYgCwe1IVYCOP41ptAPqgPJ1MmzcH7Y8XuFWYhYlkz fq3iPs4kS8SrjHHQXEfYDWlpiTFemIRfrBovilgkiWk9lwi1XVEqmGQr3V0eH9fD H2NC/vir9w== -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:58 2024 by rpki-client on console-ams.rpki-client.org