$ rpki-client -vvf rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/21D692500C1E11EFBA32F937C4F9AE02.roa File: 21D692500C1E11EFBA32F937C4F9AE02.roa (raw, json) Hash identifier: j53FYXjGc/599zdaBieamNPiQo1kdc52Cv1Y45S30ck= Subject key identifier: 4C:17:8C:7A:66:1C:39:95:10:6F:25:62:F0:FE:0F:8F:CC:0C:E0:97 Certificate issuer: /CN=A91846F6/serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Certificate serial: 08 Authority key identifier: 8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/21D692500C1E11EFBA32F937C4F9AE02.roa Signing time: Tue 07 May 2024 03:01:43 +0000 ROA not before: Tue 07 May 2024 03:01:43 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17990 IP address blocks: 2001:df0:a300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 04:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91846F6/serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Validity Not Before: May 7 03:01:43 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=66399997-1968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:25:50:14:36:8c:3d:a3:cc:94:e6:84:79:7a: a2:74:0c:45:4b:52:3f:fa:78:2c:06:e1:9e:a8:9b: ea:57:8a:4d:bc:75:60:d8:5a:47:7a:17:a4:7c:80: 08:ce:a2:77:2c:ad:e5:d0:a5:00:cb:78:ee:03:e4: ac:e0:88:99:59:ae:e1:0c:2c:71:34:c8:5a:d5:51: 5d:33:89:af:b0:e9:d8:e6:3b:46:43:65:41:aa:28: ef:d4:bf:a7:b9:24:8f:67:df:0a:e5:da:67:f7:01: 00:de:f0:a9:48:6b:26:23:ae:38:86:b7:20:8a:71: 12:1c:04:81:11:3b:7a:c8:77:de:98:0a:77:2d:65: 75:35:94:37:1b:7d:58:34:e2:ac:ba:80:5a:1d:ad: 67:dc:40:37:bb:d2:8c:aa:dd:cd:37:75:c9:6b:71: ec:13:d7:17:40:60:c1:9e:c9:a4:3c:8d:70:08:4c: 1b:d3:66:14:7d:56:49:ce:a5:50:7f:2f:dc:e9:14: ce:d6:fa:ea:c2:76:1e:45:f2:1d:96:e0:a1:84:d3: 6e:88:61:16:65:96:c9:2e:3e:80:5c:15:fc:53:d8: ab:92:45:97:a8:0d:5b:52:c0:9e:6c:d0:48:87:23: 55:6a:c9:77:83:e5:c1:14:84:93:01:a2:a5:35:c7: bb:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:17:8C:7A:66:1C:39:95:10:6F:25:62:F0:FE:0F:8F:CC:0C:E0:97 X509v3 Authority Key Identifier: keyid:8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/21D692500C1E11EFBA32F937C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:a300::/48 Signature Algorithm: sha256WithRSAEncryption 74:e7:b7:cc:6b:40:de:93:7a:42:36:d5:ca:a8:77:e0:32:25: e7:11:04:2e:96:b9:d0:73:25:49:e6:05:6f:24:95:2e:d0:8c: 04:5a:0b:4b:1d:d2:d5:02:59:d2:2e:40:b9:da:51:d2:a5:e1: 5e:9d:0c:10:85:68:45:db:c2:d0:a4:fd:f2:a9:0e:29:cc:dd: 15:13:14:19:f7:98:f0:e0:0e:ef:de:3a:0d:e7:84:b1:57:79: 38:87:52:64:5e:28:79:cc:72:52:36:6a:84:eb:c3:41:f7:47: 2a:5c:24:7c:d6:24:49:1d:fa:25:77:71:17:8c:53:64:e6:5d: a6:61:44:47:69:8d:85:c8:69:67:40:00:47:d6:45:f7:75:21: b5:f7:ea:02:87:ef:9e:fc:ca:eb:79:ed:ec:b6:9c:69:7d:76: 86:c7:b7:6f:26:c8:28:d0:71:aa:f7:87:7c:9a:99:87:94:20: d6:1f:d8:ab:5b:0f:92:74:eb:06:3b:b9:50:4e:ea:20:15:ce: 03:a2:61:92:10:96:bc:2d:c0:b2:d1:da:02:7e:15:dd:a2:a9: ad:fe:73:07:52:c1:a8:e0:2a:66:43:89:b7:40:97:5a:a9:c4: 38:a2:fa:f9:0c:74:63:53:51:30:4c:ee:25:51:78:2a:25:98: 3d:b1:0d:39 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDZGNjExMC8GA1UEBRMoOERFODJFRkY2MjM0RDc5QjdBNjVGQTYwQTA1MzAwN0RB ODI4MUZDQzAeFw0yNDA1MDcwMzAxNDNaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Mzk5OTk3LTE5NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIJVAUNow9o8yU5oR5eqJ0DEVLUj/6eCwG4Z6om+pXik28dWDYWkd6F6R8gAjO oncsreXQpQDLeO4D5KzgiJlZruEMLHE0yFrVUV0zia+w6djmO0ZDZUGqKO/Uv6e5 JI9n3wrl2mf3AQDe8KlIayYjrjiGtyCKcRIcBIERO3rId96YCnctZXU1lDcbfVg0 4qy6gFodrWfcQDe70oyq3c03dclrcewT1xdAYMGeyaQ8jXAITBvTZhR9VknOpVB/ L9zpFM7W+urCdh5F8h2W4KGE026IYRZllskuPoBcFfxT2KuSRZeoDVtSwJ5s0EiH I1VqyXeD5cEUhJMBoqU1x7udAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUTBeMemYc OZUQbyVi8P4Pj8wM4JcwHwYDVR0jBBgwFoAUjegu/2I015t6ZfpgoFMAfagoH8ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0NkY2L0Y0QTFCMkQ4MEMx ODExRUY5RkY3MDE0MUM0RjlBRTAyL2plZ3VfMkkwMTV0NlpmcGdvRk1BZmFnb0g4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamVndV8ySTAxNXQ2WmZwZ29GTUFmYWdvSDh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDZGNi9GNEExQjJEODBDMTgxMUVGOUZGNzAxNDFDNEY5QUUwMi8yMUQ2OTI1MDBD MUUxMUVGQkEzMkY5MzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfCjADANBgkqhkiG9w0BAQsFAAOCAQEAdOe3zGtA3pN6 QjbVyqh34DIl5xEELpa50HMlSeYFbySVLtCMBFoLSx3S1QJZ0i5AudpR0qXhXp0M EIVoRdvC0KT98qkOKczdFRMUGfeY8OAO7946DeeEsVd5OIdSZF4oecxyUjZqhOvD QfdHKlwkfNYkSR36JXdxF4xTZOZdpmFER2mNhchpZ0AAR9ZF93UhtffqAofvnvzK 63nt7LacaX12hse3bybIKNBxqveHfJqZh5Qg1h/Yq1sPknTrBju5UE7qIBXOA6Jh khCWvC3AstHaAn4V3aKprf5zB1LBqOAqZkOJt0CXWqnEOKL6+Qx0Y1NRMEzuJVF4 KiWYPbENOQ== -----END CERTIFICATE-----Generated at Thu Oct 17 06:45:48 2024 by rpki-client on console-fra.rpki-client.org