$ rpki-client -vvf rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/500DFDA8578611EA8CC3B124C4F9AE02.roa File: 500DFDA8578611EA8CC3B124C4F9AE02.roa (raw, json) Hash identifier: 1vTwS6NmMwWfh2eOEtEYiCFnJVIHS5ywk/KgkT3QCd4= Subject key identifier: 6D:CD:8F:1F:0B:61:A1:96:C4:6B:25:69:AE:4F:0E:EA:BC:D0:02:AA Certificate issuer: /CN=A91731EA/serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Certificate serial: 1E9F Authority key identifier: D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/500DFDA8578611EA8CC3B124C4F9AE02.roa Signing time: Mon 30 Sep 2024 16:23:47 +0000 ROA not before: Mon 30 Sep 2024 16:23:47 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17501 IP address blocks: 2407:6200::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7839 (0x1e9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731EA/serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Validity Not Before: Sep 30 16:23:47 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fad092-9b28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0e:fa:0c:d0:56:3c:f7:f4:69:6d:4e:3e:b5: 91:b5:b1:8f:39:49:ab:80:ab:33:fd:71:5b:ce:59: be:36:9f:77:e8:a5:66:59:92:88:4c:11:47:f4:0d: 02:23:64:2a:8b:f0:9e:63:18:9e:95:a4:86:6d:8d: 59:5f:41:12:c3:e9:55:29:e4:0c:a2:3d:84:85:41: 1d:e5:90:03:d5:ca:ca:af:67:ba:d1:d0:86:6b:3d: b7:55:05:35:42:92:cd:a6:b8:25:e0:5e:08:92:e2: 3f:a7:87:6b:ff:fc:51:47:ba:9c:6b:eb:89:01:ed: ce:60:8d:12:9c:20:27:5f:f3:c0:3b:ab:7b:14:49: 90:59:13:84:de:a2:76:e7:81:60:99:e4:73:32:f0: 67:f8:7a:5e:5d:6e:3b:18:fc:07:15:c3:46:d6:40: 58:e6:c0:42:b9:96:66:8b:43:6e:d8:4c:cd:24:1d: dc:24:51:90:7a:31:b4:0f:ac:9e:1f:d8:28:f2:d0: 4c:54:81:77:33:50:09:8c:de:55:cf:47:9b:b9:ca: d7:c6:37:72:dd:20:92:f3:be:59:4b:5f:fb:b9:38: 16:6d:44:b7:67:11:1a:63:35:c6:50:e8:f8:c8:42: cf:75:b8:df:a9:b7:4c:2d:e4:9f:da:83:54:a1:25: a2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:CD:8F:1F:0B:61:A1:96:C4:6B:25:69:AE:4F:0E:EA:BC:D0:02:AA X509v3 Authority Key Identifier: keyid:D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/500DFDA8578611EA8CC3B124C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:6200::/32 Signature Algorithm: sha256WithRSAEncryption 65:5c:56:a8:53:a2:f6:49:d0:6e:f1:83:e9:0a:3f:46:a4:da: 85:ae:0b:f0:2e:e0:f2:fd:41:8e:64:42:b3:d8:22:e0:68:f6: c9:99:ce:ac:ae:44:c2:a1:c7:be:b9:80:09:0e:64:12:73:fc: 06:13:02:12:b8:8f:db:2c:ee:99:89:32:6c:ba:3d:af:d6:64: 01:a6:62:85:cc:37:a7:ff:99:01:66:1a:f1:e7:60:2c:ce:63: 42:a4:de:35:24:1b:19:b2:cc:b7:02:a5:46:d6:44:9b:d2:fc: b4:01:0c:50:24:17:ab:4e:04:4d:95:6a:52:45:46:5e:90:03: 8f:64:64:ae:22:4a:ca:28:bd:c7:0b:1d:79:ec:a7:73:7f:c2: fd:51:43:c2:ff:b7:b1:60:74:4e:a0:ad:92:ea:fa:95:69:9b: be:00:c7:e1:12:7d:89:4f:de:df:a6:f7:a3:20:fe:8f:3f:e6: a2:01:80:33:e8:80:02:2f:b5:de:7e:d5:54:95:63:33:43:ff: e9:ac:75:0b:9e:ce:52:82:fa:6b:93:35:5c:35:38:46:53:27: 71:f3:a8:36:c8:95:de:dc:83:58:fa:8f:26:cd:29:74:7f:91: 19:ba:e2:8e:38:0f:99:06:af:94:2c:a7:c9:79:f5:ef:b6:a9: aa:cf:c8:68 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICHp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxRUExMTAvBgNVBAUTKEQ1Njc5MkQ1OTdFOUNERDAyQkZDMTZEMEI0OTJEQTNE QUFFMDgwRkMwHhcNMjQwOTMwMTYyMzQ3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZhZDA5Mi05YjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApw76DNBWPPf0aW1OPrWRtbGPOUmrgKsz/XFbzlm+Np936KVmWZKITBFH9A0C I2Qqi/CeYxielaSGbY1ZX0ESw+lVKeQMoj2EhUEd5ZAD1crKr2e60dCGaz23VQU1 QpLNprgl4F4IkuI/p4dr//xRR7qca+uJAe3OYI0SnCAnX/PAO6t7FEmQWROE3qJ2 54FgmeRzMvBn+HpeXW47GPwHFcNG1kBY5sBCuZZmi0Nu2EzNJB3cJFGQejG0D6ye H9go8tBMVIF3M1AJjN5Vz0ebucrXxjdy3SCS875ZS1/7uTgWbUS3ZxEaYzXGUOj4 yELPdbjfqbdMLeSf2oNUoSWiYwIDAQABo4ICljCCApIwHQYDVR0OBBYEFG3Njx8L YaGWxGslaa5PDuq80AKqMB8GA1UdIwQYMBaAFNVnktWX6c3QK/wW0LSS2j2q4ID8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzFFQS85QUYzRUQyODVF RUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpkQXJfQmJRdEpMYVBhcmdn UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXZVMxWmZwemRBcl9CYlF0SkxhUGFyZ2dQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMxRUEvOUFGM0VEMjg1RUVDMTFFNjg4NkVDNTFCQzRGOUFFMDIvNTAwREZEQTg1 Nzg2MTFFQThDQzNCMTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkB2IAMA0GCSqGSIb3DQEBCwUAA4IBAQBlXFaoU6L2SdBu 8YPpCj9GpNqFrgvwLuDy/UGOZEKz2CLgaPbJmc6srkTCoce+uYAJDmQSc/wGEwIS uI/bLO6ZiTJsuj2v1mQBpmKFzDen/5kBZhrx52AszmNCpN41JBsZssy3AqVG1kSb 0vy0AQxQJBerTgRNlWpSRUZekAOPZGSuIkrKKL3HCx157Kdzf8L9UUPC/7exYHRO oK2S6vqVaZu+AMfhEn2JT97fpvejIP6PP+aiAYAz6IACL7XeftVUlWMzQ//prHUL ns5SgvprkzVcNThGUydx86g2yJXe3INY+o8mzSl0f5EZuuKOOA+ZBq+ULKfJefXv tqmqz8ho -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:49 2024 by rpki-client on console-fra.rpki-client.org