$ rpki-client -vvf rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/443241A0321B11EA83044473C4F9AE02.roa File: 443241A0321B11EA83044473C4F9AE02.roa (raw, json) Hash identifier: peb0NN3rQarXiwZVSr4hzfm6X65GogoSGj3wgr1dCxc= Subject key identifier: 5B:FB:93:70:70:4F:CB:37:73:AF:F4:D3:8A:E9:92:F5:4C:7E:C1:4B Certificate issuer: /CN=A91771E3/serialNumber=1596C4BBE732DA85CB83E8A770873EA3413701A5 Certificate serial: 1235 Authority key identifier: 15:96:C4:BB:E7:32:DA:85:CB:83:E8:A7:70:87:3E:A3:41:37:01:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/443241A0321B11EA83044473C4F9AE02.roa Signing time: Mon 18 Dec 2023 17:44:49 +0000 ROA not before: Mon 18 Dec 2023 17:44:49 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 24474 IP address blocks: 2001:dd8:24::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.crl rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4661 (0x1235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91771E3/serialNumber=1596C4BBE732DA85CB83E8A770873EA3413701A5 Validity Not Before: Dec 18 17:44:49 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65808511-63e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:02:37:26:9a:fb:26:c3:2b:18:4e:7d:b7:b0: 12:0f:b3:2a:e6:85:ef:1b:43:10:27:54:5e:31:98: d6:2d:17:38:ae:5a:5a:fb:47:fb:3e:fd:e0:99:4a: e6:cd:43:18:f7:c6:79:da:fc:21:96:92:8a:df:fb: 0c:f1:96:1f:86:1f:7c:7f:b3:62:91:29:56:de:0f: 9b:06:ff:e9:dc:c7:0b:de:91:3f:75:31:ff:41:5c: b1:dc:37:ab:7a:74:51:a0:2b:f8:0d:9e:fe:bf:c7: 33:8d:0c:b7:84:b0:8f:02:ce:75:50:7f:b2:1b:d6: d1:4c:cb:2b:23:6c:8c:3f:b9:c2:b5:7a:76:20:b4: eb:53:34:01:45:78:0d:48:3b:7d:b5:35:2a:e4:86: d6:01:84:af:47:96:db:b4:ee:5e:27:c7:da:30:75: 48:66:3d:4b:0f:ab:95:29:8d:b5:f5:49:31:1d:ae: 63:2f:bb:9c:94:35:8a:71:a2:1f:1b:bc:7d:f1:36: 51:39:4d:95:4d:b5:a8:7a:f3:fd:d5:a1:44:dc:27: 4f:cd:23:95:87:7a:ee:81:50:b7:df:ed:0e:02:7a: ad:d0:95:4b:d3:56:23:c4:8b:94:01:42:c7:97:51: fd:e0:e9:10:13:da:3b:08:e3:ea:b5:a5:c1:c2:a9: 64:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:FB:93:70:70:4F:CB:37:73:AF:F4:D3:8A:E9:92:F5:4C:7E:C1:4B X509v3 Authority Key Identifier: keyid:15:96:C4:BB:E7:32:DA:85:CB:83:E8:A7:70:87:3E:A3:41:37:01:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/443241A0321B11EA83044473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dd8:24::/47 Signature Algorithm: sha256WithRSAEncryption 61:ad:57:7a:56:f5:72:b7:68:9f:74:ef:4f:44:5e:c5:c0:47: ee:1f:80:10:ef:5d:ec:c3:ec:9b:42:82:a9:08:6b:38:2b:2e: fb:fc:19:af:f2:25:10:61:ad:50:bb:8f:d1:43:c5:1f:12:27: a9:f2:41:77:ee:86:07:a1:fd:a2:a6:a5:40:32:40:35:cf:81: 19:6a:d7:76:b1:ef:e6:b0:92:8a:99:13:6c:15:e5:93:a5:40: 27:f9:f7:03:70:4e:7a:b3:d0:0a:cf:18:ba:87:a1:35:27:80: 5f:86:5f:8c:97:8d:02:4c:e8:2a:ac:56:ff:8d:39:40:94:ac: 0d:62:ce:66:26:42:5b:74:fb:a7:64:98:c4:f0:0d:d6:73:58: b6:18:4e:83:62:7a:a4:49:87:48:c8:c4:d6:dd:1a:eb:51:1e: d5:6c:af:64:f8:82:71:12:8c:05:4a:fc:00:1f:f6:a9:56:c8: 49:e4:90:33:c2:2a:8a:c8:1d:23:b4:45:57:10:71:4a:79:bd: cb:10:d5:5b:97:04:64:cf:ce:b1:4e:d1:22:f9:99:f4:87:b1: 7b:64:14:28:67:84:c8:bf:fa:c6:3d:f8:91:12:5d:59:94:61: b2:5a:ab:18:89:37:6f:ea:88:5c:be:ef:e9:27:85:ca:c5:e5: 8d:68:5e:e4 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcxRTMxMTAvBgNVBAUTKDE1OTZDNEJCRTczMkRBODVDQjgzRThBNzcwODczRUEz NDEzNzAxQTUwHhcNMjMxMjE4MTc0NDQ5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgwODUxMS02M2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wI3Jpr7JsMrGE59t7ASD7Mq5oXvG0MQJ1ReMZjWLRc4rlpa+0f7Pv3gmUrm zUMY98Z52vwhlpKK3/sM8ZYfhh98f7NikSlW3g+bBv/p3McL3pE/dTH/QVyx3Der enRRoCv4DZ7+v8czjQy3hLCPAs51UH+yG9bRTMsrI2yMP7nCtXp2ILTrUzQBRXgN SDt9tTUq5IbWAYSvR5bbtO5eJ8faMHVIZj1LD6uVKY219UkxHa5jL7uclDWKcaIf G7x98TZROU2VTbWoevP91aFE3CdPzSOVh3rugVC33+0OAnqt0JVL01YjxIuUAULH l1H94OkQE9o7COPqtaXBwqlkDwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFv7k3Bw T8s3c6/004rpkvVMfsFLMB8GA1UdIwQYMBaAFBWWxLvnMtqFy4Pop3CHPqNBNwGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzFFMy85MzgzRTY0NkFE NjUxMUU4QUNCRDBENkFDNEY5QUUwMi9GWmJFdS1jeTJvWExnLWluY0ljLW8wRTNB YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZaYkV1LWN5Mm9YTGctaW5jSWMtbzBFM0FhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzcxRTMvOTM4M0U2NDZBRDY1MTFFOEFDQkQwRDZBQzRGOUFFMDIvNDQzMjQxQTAz MjFCMTFFQTgzMDQ0NDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEgAQ3YACQwDQYJKoZIhvcNAQELBQADggEBAGGtV3pW9XK3 aJ90709EXsXAR+4fgBDvXezD7JtCgqkIazgrLvv8Ga/yJRBhrVC7j9FDxR8SJ6ny QXfuhgeh/aKmpUAyQDXPgRlq13ax7+awkoqZE2wV5ZOlQCf59wNwTnqz0ArPGLqH oTUngF+GX4yXjQJM6CqsVv+NOUCUrA1izmYmQlt0+6dkmMTwDdZzWLYYToNieqRJ h0jIxNbdGutRHtVsr2T4gnESjAVK/AAf9qlWyEnkkDPCKorIHSO0RVcQcUp5vcsQ 1VuXBGTPzrFO0SL5mfSHsXtkFChnhMi/+sY9+JESXVmUYbJaqxiJN2/qiFy+7+kn hcrF5Y1oXuQ= -----END CERTIFICATE-----Generated at Thu May 16 18:26:05 2024 by rpki-client on console-fra.rpki-client.org