$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C4A85FD48FE811E98B967A66C4F9AE02.roa File: C4A85FD48FE811E98B967A66C4F9AE02.roa (raw, json) Hash identifier: aiooAIoivVql5FC+SCyKWbhdV5nV3qmBQRAodXfPFtU= Subject key identifier: 07:E3:C3:31:F6:F0:49:84:DE:EB:93:58:C8:F3:12:1C:66:BF:55:AA Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 107F Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C4A85FD48FE811E98B967A66C4F9AE02.roa Signing time: Fri 16 Aug 2024 18:16:36 +0000 ROA not before: Fri 16 Aug 2024 18:16:36 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 24239 IP address blocks: 2404:f4c0:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4223 (0x107f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 16 18:16:36 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66bf9784-e368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5c:93:3a:d7:59:83:8b:27:a0:6f:f1:01:89: c8:9e:86:9b:12:9b:c7:ae:e0:07:de:02:5d:8c:f5: a8:a0:d0:49:61:5e:7c:ce:a9:7f:83:d2:2e:6d:ea: 98:01:d7:0c:58:2c:62:35:5e:fc:16:a6:2b:48:bc: 3d:53:9f:79:96:8b:36:e7:7b:a3:9d:e7:55:d0:5b: f2:13:77:93:8d:60:7d:a8:99:a2:49:64:62:88:d1: a9:a6:b4:5c:b8:c1:c2:c8:0f:0f:be:c1:68:f1:3b: b2:d8:63:59:a6:98:1c:72:01:1d:c4:e8:6a:e0:63: 8f:5d:f9:bc:49:6a:d1:6e:70:87:bb:cd:b1:77:a3: 46:28:0e:9f:91:51:5b:f4:03:db:88:e1:c4:96:d4: 5b:ab:cb:fb:98:8f:89:6a:dc:39:b2:c0:32:2e:5c: 29:8e:4c:56:0b:a2:ca:16:da:72:b4:55:d7:81:e7: 4b:c6:9b:19:4e:6f:c1:d3:89:27:9e:84:d2:76:ad: fb:a0:4c:4c:6d:7f:de:1b:ee:47:ea:27:a3:98:cd: aa:cf:ee:55:07:bb:a7:13:4f:d9:a5:63:33:b3:1f: 7a:70:1b:89:6f:03:ee:70:7e:f0:8b:41:f4:d2:c6: ca:65:38:32:9d:52:cf:c7:e5:56:f3:54:7c:eb:19: b3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E3:C3:31:F6:F0:49:84:DE:EB:93:58:C8:F3:12:1C:66:BF:55:AA X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C4A85FD48FE811E98B967A66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f4c0:f000::/44 Signature Algorithm: sha256WithRSAEncryption 25:57:15:0d:63:83:42:39:68:93:c1:4f:8d:d3:d2:9d:b2:2c: e3:05:81:66:be:6e:81:54:42:6c:9d:9e:7c:ad:0d:20:37:a7: 25:8a:c2:df:d9:27:15:57:22:67:84:63:2a:6c:77:1b:a4:51: f7:10:7e:6c:72:11:e1:d2:d5:ec:9b:62:7d:b0:ae:0e:cf:48: 1e:7b:d0:d5:1a:03:bb:4a:c4:17:f7:ab:c7:9a:bd:43:36:8a: db:be:5a:20:85:d2:4f:84:37:bf:50:26:4b:86:df:2e:33:ce: 0b:0f:4b:10:8b:67:a3:d9:65:83:b7:10:1d:c6:25:8c:e6:5e: 7a:9b:1f:61:c7:ca:e3:40:a6:3e:d3:8e:a3:03:e3:eb:1c:a6: 96:1a:c3:4a:dc:95:10:dd:bc:d5:da:c3:4a:48:27:76:45:f7: 7a:1b:9d:c5:a8:ef:a6:9e:3c:e1:82:0b:ab:c4:04:48:c7:c6: 76:67:69:b6:e5:8b:2a:98:e6:c7:ba:a5:59:28:ee:a7:13:8e: dd:ac:2e:08:af:3c:a6:a8:d7:d7:db:a8:8b:07:c4:7d:74:d7: 0f:d9:7c:d7:a3:5c:0e:ab:06:cd:a9:c6:e9:8a:f3:2d:03:fc: f2:62:58:73:c4:2a:0a:fb:ca:0f:8f:c9:bf:7f:f0:89:d4:28: 0b:54:24:79 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjQwODE2MTgxNjM2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmOTc4NC1lMzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylyTOtdZg4snoG/xAYnInoabEpvHruAH3gJdjPWooNBJYV58zql/g9IubeqY AdcMWCxiNV78FqYrSLw9U595los253ujnedV0FvyE3eTjWB9qJmiSWRiiNGpprRc uMHCyA8PvsFo8Tuy2GNZppgccgEdxOhq4GOPXfm8SWrRbnCHu82xd6NGKA6fkVFb 9APbiOHEltRbq8v7mI+Jatw5ssAyLlwpjkxWC6LKFtpytFXXgedLxpsZTm/B04kn noTSdq37oExMbX/eG+5H6iejmM2qz+5VB7unE0/ZpWMzsx96cBuJbwPucH7wi0H0 0sbKZTgynVLPx+VW81R86xmz+wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAfjwzH2 8EmE3uuTWMjzEhxmv1WqMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvQzRBODVGRDQ4 RkU4MTFFOThCOTY3QTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBPTA8AAwDQYJKoZIhvcNAQELBQADggEBACVXFQ1jg0I5 aJPBT43T0p2yLOMFgWa+boFUQmydnnytDSA3pyWKwt/ZJxVXImeEYypsdxukUfcQ fmxyEeHS1eybYn2wrg7PSB570NUaA7tKxBf3q8eavUM2itu+WiCF0k+EN79QJkuG 3y4zzgsPSxCLZ6PZZYO3EB3GJYzmXnqbH2HHyuNApj7TjqMD4+scppYaw0rclRDd vNXaw0pIJ3ZF93obncWo76aePOGCC6vEBEjHxnZnabbliyqY5se6pVko7qcTjt2s LgivPKao19fbqIsHxH101w/ZfNejXA6rBs2pxumK8y0D/PJiWHPEKgr7yg+Pyb9/ 8InUKAtUJHk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:06 2024 by rpki-client on console-ams.rpki-client.org