$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/21E5A30A1EE111EF93F9853DC4F9AE02/02BCE50286AF11EF9EFFD52FC4F9AE02.roa File: 02BCE50286AF11EF9EFFD52FC4F9AE02.roa (raw, json) Hash identifier: erN7f1B2CkGS1+dEWje+lQKXL/zVRbw1MSrnrEP1M7Y= Subject key identifier: 0A:35:D2:B7:A7:72:18:D7:E8:B0:1E:E6:01:EF:CA:11:AA:DD:4A:6A Certificate issuer: /CN=A91698EC/serialNumber=E58F0F52A4D2D1DE44675ACA17557BF982EC7D79 Certificate serial: 4C Authority key identifier: E5:8F:0F:52:A4:D2:D1:DE:44:67:5A:CA:17:55:7B:F9:82:EC:7D:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y8PUqTS0d5EZ1rKF1V7-YLsfXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/21E5A30A1EE111EF93F9853DC4F9AE02/02BCE50286AF11EF9EFFD52FC4F9AE02.roa Signing time: Thu 10 Oct 2024 02:26:10 +0000 ROA not before: Thu 10 Oct 2024 02:26:10 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140065 IP address blocks: 2001:df3:dec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/21E5A30A1EE111EF93F9853DC4F9AE02/5Y8PUqTS0d5EZ1rKF1V7-YLsfXk.crl rsync://rpki.apnic.net/member_repository/A91698EC/21E5A30A1EE111EF93F9853DC4F9AE02/5Y8PUqTS0d5EZ1rKF1V7-YLsfXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y8PUqTS0d5EZ1rKF1V7-YLsfXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:10:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC/serialNumber=E58F0F52A4D2D1DE44675ACA17557BF982EC7D79 Validity Not Before: Oct 10 02:26:10 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67073b41-694c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c8:fc:e2:07:91:52:3c:69:05:ea:92:17:f6: 9b:48:de:e6:ad:00:5e:ce:30:42:43:dc:83:78:3c: f7:cd:cb:27:93:44:d1:9c:16:89:98:f4:9d:49:2e: ee:f9:0e:71:36:12:20:66:0d:b3:14:d8:6d:34:e2: 16:b8:56:fe:c7:ee:1a:5f:11:d1:90:19:15:fe:40: 66:0f:ce:19:05:1d:e7:44:ba:f6:47:e2:16:2a:29: 60:0d:36:ac:ee:6b:ec:84:89:4f:1a:ca:87:12:4f: 61:9c:97:13:af:bd:ac:c8:9e:99:53:aa:79:14:39: f1:62:75:d8:8c:1e:02:2b:e2:64:3d:58:dd:9a:d3: 43:29:35:16:3d:56:20:56:18:e8:78:83:72:13:2f: 3e:b5:0f:1b:61:4b:b5:40:60:1c:a6:7a:df:c4:dc: a8:22:de:8a:cc:75:db:d7:07:24:4a:61:6a:7f:44: 1a:12:f2:a8:f2:e0:1b:c8:03:3f:36:83:b6:e9:57: 70:4a:d2:ab:27:a1:47:00:81:2b:e5:25:62:b6:b9: 7d:d1:50:fd:bc:8d:b1:dc:c2:93:c7:c6:0d:ea:3f: 68:ab:1d:d6:13:89:8e:8d:10:d5:bb:f0:34:78:3b: 99:1b:3a:70:e2:3e:e9:e4:87:28:0d:a1:6d:b6:22: ea:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:35:D2:B7:A7:72:18:D7:E8:B0:1E:E6:01:EF:CA:11:AA:DD:4A:6A X509v3 Authority Key Identifier: keyid:E5:8F:0F:52:A4:D2:D1:DE:44:67:5A:CA:17:55:7B:F9:82:EC:7D:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/21E5A30A1EE111EF93F9853DC4F9AE02/5Y8PUqTS0d5EZ1rKF1V7-YLsfXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y8PUqTS0d5EZ1rKF1V7-YLsfXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/21E5A30A1EE111EF93F9853DC4F9AE02/02BCE50286AF11EF9EFFD52FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:dec0::/48 Signature Algorithm: sha256WithRSAEncryption c2:a1:6b:e7:10:77:89:f3:ad:d9:0d:eb:26:6b:b1:bf:03:f8: 22:64:56:66:a8:4e:9b:9b:0c:7b:a3:e1:1c:be:74:1f:f2:21: 72:b3:af:91:f2:52:b0:04:1b:ca:19:da:5c:bf:ec:b2:6b:e9: c6:c6:64:97:f9:23:ba:ea:f3:12:92:22:8c:0a:e9:84:00:50: 0e:94:fc:f2:9b:79:ad:0f:d7:18:8b:e1:6d:29:b9:4d:6f:8c: 67:7c:8c:0b:1a:b9:5d:71:71:73:08:98:93:c2:1d:bd:a7:50: 31:91:98:3b:6c:5a:e9:9e:93:d7:8b:b7:eb:e2:5e:c7:30:35: 99:64:03:86:94:97:70:77:91:f2:b5:b1:cc:f8:14:11:0a:55: 25:2b:51:1d:f5:5d:44:40:d8:73:6f:f4:4d:95:30:a1:b1:a5: 59:b4:7b:57:c3:18:29:14:4b:01:e5:9c:ab:e3:29:73:bf:e3: 15:14:f9:25:a7:40:d0:c0:12:95:97:b6:8c:2a:95:74:e9:eb: b6:29:be:f4:8a:0c:a3:56:88:06:32:59:80:59:2b:17:31:45: 93:5c:57:35:69:23:e4:d2:10:ad:7b:04:4c:22:cc:9f:31:81: bc:89:24:0d:1e:a4:93:23:37:c9:20:78:62:12:31:91:39:17: 3f:a6:67:54 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OThFQzExMC8GA1UEBRMoRTU4RjBGNTJBNEQyRDFERTQ0Njc1QUNBMTc1NTdCRjk4 MkVDN0Q3OTAeFw0yNDEwMTAwMjI2MTBaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDczYjQxLTY5NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2yPziB5FSPGkF6pIX9ptI3uatAF7OMEJD3IN4PPfNyyeTRNGcFomY9J1JLu75 DnE2EiBmDbMU2G004ha4Vv7H7hpfEdGQGRX+QGYPzhkFHedEuvZH4hYqKWANNqzu a+yEiU8ayocST2GclxOvvazInplTqnkUOfFiddiMHgIr4mQ9WN2a00MpNRY9ViBW GOh4g3ITLz61DxthS7VAYBymet/E3Kgi3orMddvXByRKYWp/RBoS8qjy4BvIAz82 g7bpV3BK0qsnoUcAgSvlJWK2uX3RUP28jbHcwpPHxg3qP2irHdYTiY6NENW78DR4 O5kbOnDiPunkhygNoW22IupzAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUCjXSt6dy GNfosB7mAe/KEardSmowHwYDVR0jBBgwFoAU5Y8PUqTS0d5EZ1rKF1V7+YLsfXkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5OEVDLzIxRTVBMzBBMUVF MTExRUY5M0Y5ODUzREM0RjlBRTAyLzVZOFBVcVRTMGQ1RVoxcktGMVY3LVlMc2ZY ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNVk4UFVxVFMwZDVFWjFyS0YxVjctWUxzZlhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OThFQy8yMUU1QTMwQTFFRTExMUVGOTNGOTg1M0RDNEY5QUUwMi8wMkJDRTUwMjg2 QUYxMUVGOUVGRkQ1MkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfPewDANBgkqhkiG9w0BAQsFAAOCAQEAwqFr5xB3ifOt 2Q3rJmuxvwP4ImRWZqhOm5sMe6PhHL50H/IhcrOvkfJSsAQbyhnaXL/ssmvpxsZk l/kjuurzEpIijArphABQDpT88pt5rQ/XGIvhbSm5TW+MZ3yMCxq5XXFxcwiYk8Id vadQMZGYO2xa6Z6T14u36+JexzA1mWQDhpSXcHeR8rWxzPgUEQpVJStRHfVdREDY c2/0TZUwobGlWbR7V8MYKRRLAeWcq+Mpc7/jFRT5JadA0MASlZe2jCqVdOnrtim+ 9IoMo1aIBjJZgFkrFzFFk1xXNWkj5NIQrXsETCLMnzGBvIkkDR6kkyM3ySB4YhIx kTkXP6ZnVA== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:16 2024 by rpki-client on console-fra.rpki-client.org