$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C2356A948FE811E98B967A66C4F9AE02.roa File: C2356A948FE811E98B967A66C4F9AE02.roa (raw, json) Hash identifier: lh6cNUm2NUCxz6vyJ9O8vhiCdo9/t7r94k2HgugqWk4= Subject key identifier: 57:CA:96:14:AA:03:77:93:26:DE:26:BC:1B:DE:DC:5F:10:5C:7D:65 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 107B Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C2356A948FE811E98B967A66C4F9AE02.roa Signing time: Fri 16 Aug 2024 18:16:33 +0000 ROA not before: Fri 16 Aug 2024 18:16:33 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 209300 IP address blocks: 2404:f4c0:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4219 (0x107b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 16 18:16:33 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66bf9781-eb59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d2:eb:9f:77:f2:96:50:1b:f4:1c:a7:fc:ab: 0d:f4:dd:2f:c6:bf:78:42:14:3d:6a:57:6a:cc:32: 4e:d3:3a:60:1f:dd:9f:d9:ea:21:17:04:15:67:bd: 23:f9:0b:98:ec:c6:e7:05:ef:de:8a:66:c2:aa:d8: 03:c8:13:8f:a4:22:74:be:50:06:c2:d2:7a:76:47: da:71:2d:be:61:90:85:4c:af:11:7e:d1:9c:87:b6: 09:bc:11:6f:2b:33:e4:bb:06:48:91:0b:b1:9e:f8: e4:00:40:76:12:fa:7f:67:28:c0:70:34:35:29:b4: a3:4b:55:99:fe:b1:f4:0a:8c:df:e6:e1:28:e8:99: 33:81:3e:54:23:2e:14:06:7e:1a:6d:26:87:b9:d4: 8e:c4:f4:94:ea:ea:0c:69:60:96:9a:0d:a5:d3:e4: ec:b9:ad:4a:dc:08:06:2f:0c:5a:2e:d2:43:3e:86: 92:a8:e6:17:ec:fa:a1:4e:96:85:ba:29:e6:fd:91: f3:50:c2:36:1a:d7:5a:39:2a:de:95:83:69:6d:af: 88:08:e2:a8:17:e0:9e:2b:97:19:f8:fe:3c:5a:71: e0:6f:26:da:f9:ac:50:97:69:1d:d8:27:62:17:cf: 09:6c:4c:61:80:74:4a:f9:d9:9d:79:81:5e:ab:df: 6b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CA:96:14:AA:03:77:93:26:DE:26:BC:1B:DE:DC:5F:10:5C:7D:65 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C2356A948FE811E98B967A66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f4c0:f000::/44 Signature Algorithm: sha256WithRSAEncryption b2:02:0a:d0:f7:67:85:f6:2a:ec:30:1c:59:e8:7a:50:7c:ba: c8:44:3f:62:d0:22:3d:e1:24:b6:04:9f:45:e5:97:25:ee:3b: f4:84:30:c3:91:71:55:4b:d7:c1:82:9e:b8:9e:87:f8:33:5c: 0c:1b:02:38:74:98:ab:3f:1b:7a:f3:45:da:bb:2e:11:3e:b8: aa:14:e3:fd:32:85:48:2b:3b:77:4f:ff:1a:b3:1a:9b:42:6d: d1:f0:f7:b3:1c:52:ed:db:23:8e:45:ad:21:4f:05:c7:28:17: 7d:b0:8b:09:14:35:3b:4d:d1:6e:f2:a8:31:0f:27:7f:c9:2a: ce:c8:5e:fd:29:49:52:3b:19:93:c5:cc:6a:96:56:64:72:9f: 07:6c:bd:a6:aa:02:28:35:af:88:43:b5:f2:33:2f:0c:4c:fc: cc:1d:8e:bc:73:5a:b2:ba:45:1f:3a:06:64:51:4b:93:63:45: 43:50:45:e7:0e:9c:3f:b1:ec:66:e1:c9:d1:a6:7b:18:0b:da: 05:4d:a9:b7:a7:c6:6f:ef:c6:d9:d3:b3:76:bb:83:00:00:e9: b6:82:08:b1:74:10:aa:f8:ee:90:50:44:3c:9e:d6:16:66:0a: 6b:a7:30:3e:59:d1:63:d6:04:c7:57:64:ca:b4:91:7d:1c:54: e5:c4:83:72 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjQwODE2MTgxNjMzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmOTc4MS1lYjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NLrn3fyllAb9Byn/KsN9N0vxr94QhQ9aldqzDJO0zpgH92f2eohFwQVZ70j +QuY7MbnBe/eimbCqtgDyBOPpCJ0vlAGwtJ6dkfacS2+YZCFTK8RftGch7YJvBFv KzPkuwZIkQuxnvjkAEB2Evp/ZyjAcDQ1KbSjS1WZ/rH0Cozf5uEo6JkzgT5UIy4U Bn4abSaHudSOxPSU6uoMaWCWmg2l0+Tsua1K3AgGLwxaLtJDPoaSqOYX7PqhTpaF uinm/ZHzUMI2GtdaOSrelYNpba+ICOKoF+CeK5cZ+P48WnHgbyba+axQl2kd2Cdi F88JbExhgHRK+dmdeYFeq99r+QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFfKlhSq A3eTJt4mvBve3F8QXH1lMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvQzIzNTZBOTQ4 RkU4MTFFOThCOTY3QTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBPTA8AAwDQYJKoZIhvcNAQELBQADggEBALICCtD3Z4X2 KuwwHFnoelB8ushEP2LQIj3hJLYEn0XllyXuO/SEMMORcVVL18GCnrieh/gzXAwb Ajh0mKs/G3rzRdq7LhE+uKoU4/0yhUgrO3dP/xqzGptCbdHw97McUu3bI45FrSFP BccoF32wiwkUNTtN0W7yqDEPJ3/JKs7IXv0pSVI7GZPFzGqWVmRynwdsvaaqAig1 r4hDtfIzLwxM/MwdjrxzWrK6RR86BmRRS5NjRUNQRecOnD+x7GbhydGmexgL2gVN qbenxm/vxtnTs3a7gwAA6baCCLF0EKr47pBQRDye1hZmCmunMD5Z0WPWBMdXZMq0 kX0cVOXEg3I= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org