$ rpki-client -vvf rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/BFFAF880912711EE92065180C4F9AE02.roa File: BFFAF880912711EE92065180C4F9AE02.roa (raw, json) Hash identifier: +cOVT6IUlf5AF9Iwe8S2ZR7C+kK58G6HwMNDUoEK6dU= Subject key identifier: 4C:6E:CE:4D:C4:C9:48:94:20:BC:05:E6:F1:1A:86:6A:B9:EF:6A:1E Certificate issuer: /CN=A91900BF/serialNumber=28EA1557B99E2B127551CD340C3AAF4C0A61006B Certificate serial: 02B3 Authority key identifier: 28:EA:15:57:B9:9E:2B:12:75:51:CD:34:0C:3A:AF:4C:0A:61:00:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/BFFAF880912711EE92065180C4F9AE02.roa Signing time: Thu 23 May 2024 03:37:49 +0000 ROA not before: Thu 23 May 2024 03:37:49 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151396 IP address blocks: 2400:6be0::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.crl rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91900BF/serialNumber=28EA1557B99E2B127551CD340C3AAF4C0A61006B Validity Not Before: May 23 03:37:49 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=664eba0c-aaec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:78:66:9e:92:dd:f7:b3:77:83:da:6c:c4:8a: 4a:5b:86:14:ac:25:9e:a6:e4:97:ca:e6:fc:73:33: a0:c6:c1:7a:b6:83:1b:13:11:e4:6f:57:45:ea:d1: 38:27:1a:cd:00:ae:6b:32:3e:6e:82:b0:f5:91:01: 30:cd:d9:a0:e3:f4:63:69:57:14:57:b5:bf:70:af: c0:5f:4a:35:7a:b3:11:af:4b:3a:85:09:32:75:95: 45:cc:f4:4c:64:71:d5:39:fc:9e:d0:1d:5f:cb:ce: 35:c4:26:5c:7f:c0:4a:bb:33:58:40:b5:c0:7b:02: bd:19:48:6c:40:8e:b9:b6:e6:7e:55:97:06:61:ca: 3b:14:7d:66:86:15:bd:4c:79:b0:20:e4:15:c8:f8: 3a:6e:4b:db:ce:77:33:ed:f0:30:ad:84:38:88:42: 7e:e8:3b:9c:54:31:dd:36:ae:0b:e4:04:d9:f2:b4: 9f:89:d9:db:ce:53:15:c5:c2:04:a7:a3:ff:27:fd: 33:8c:80:2a:45:98:f5:30:63:d1:d2:03:f3:bc:b3: 48:32:8b:20:cb:32:90:63:17:80:15:93:a8:8c:9c: cc:37:28:3b:7d:c8:43:47:6f:17:d1:c1:db:9f:84: 4f:24:a5:de:ed:8d:7c:af:48:05:c1:03:47:32:99: 9a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:6E:CE:4D:C4:C9:48:94:20:BC:05:E6:F1:1A:86:6A:B9:EF:6A:1E X509v3 Authority Key Identifier: keyid:28:EA:15:57:B9:9E:2B:12:75:51:CD:34:0C:3A:AF:4C:0A:61:00:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/BFFAF880912711EE92065180C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6be0::/36 Signature Algorithm: sha256WithRSAEncryption 98:46:93:56:fa:e8:9d:bd:0e:49:e5:02:63:af:6e:3a:dd:92: 03:98:cf:60:26:1f:00:c9:bc:01:c6:ae:0e:ab:05:92:0a:96: 5f:e3:64:30:7f:d1:e9:4b:67:d4:09:cc:c6:13:1a:04:ca:2c: 0f:47:57:b2:5c:df:57:eb:0d:74:2a:1b:11:2c:5c:55:cb:b7: b2:0a:ed:c7:fe:8f:b0:0c:ed:ef:ee:51:6e:d2:63:67:03:27: 11:32:db:e7:48:8c:9f:d2:3c:c9:16:d0:ed:37:14:a3:26:23: d7:07:e1:70:b7:1e:f7:26:b6:e8:0b:5f:71:58:31:f3:d2:ae: 49:80:3b:4e:91:c7:5d:88:0f:90:07:fa:de:5b:53:fd:96:00: cb:6f:42:3b:f4:4f:98:1c:1d:8e:84:ca:de:5c:4f:15:f7:be: 9b:4c:e9:15:95:60:bf:ae:a2:8f:70:96:68:3b:fa:f4:5a:37: 78:29:a4:26:9c:9d:a9:de:5d:dc:2b:e6:c9:7f:e2:08:72:a2: a2:b1:90:ec:64:f4:b0:89:ab:d1:9f:6d:bc:89:b2:bc:0a:40: 4a:b3:ec:1e:9a:da:05:0c:92:d7:34:06:0c:98:f2:1b:87:d2: a0:64:b2:cf:07:eb:4a:be:36:ab:a7:6d:c4:82:6e:91:f1:83: 88:d3:d7:c3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICArMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAwQkYxMTAvBgNVBAUTKDI4RUExNTU3Qjk5RTJCMTI3NTUxQ0QzNDBDM0FBRjRD MEE2MTAwNkIwHhcNMjQwNTIzMDMzNzQ5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlYmEwYy1hYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnhmnpLd97N3g9psxIpKW4YUrCWepuSXyub8czOgxsF6toMbExHkb1dF6tE4 JxrNAK5rMj5ugrD1kQEwzdmg4/RjaVcUV7W/cK/AX0o1erMRr0s6hQkydZVFzPRM ZHHVOfye0B1fy841xCZcf8BKuzNYQLXAewK9GUhsQI65tuZ+VZcGYco7FH1mhhW9 THmwIOQVyPg6bkvbzncz7fAwrYQ4iEJ+6DucVDHdNq4L5ATZ8rSfidnbzlMVxcIE p6P/J/0zjIAqRZj1MGPR0gPzvLNIMosgyzKQYxeAFZOojJzMNyg7fchDR28X0cHb n4RPJKXe7Y18r0gFwQNHMpmaSQIDAQABo4IClzCCApMwHQYDVR0OBBYEFExuzk3E yUiUILwF5vEahmq572oeMB8GA1UdIwQYMBaAFCjqFVe5nisSdVHNNAw6r0wKYQBr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDBCRi9GRUExQ0Q2OEI2 RTMxMUVDQkU1OTk5MkRDNEY5QUUwMi9LT29WVjdtZUt4SjFVYzAwRERxdlRBcGhB R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPb1ZWN21lS3hKMVVjMDBERHF2VEFwaEFHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTAwQkYvRkVBMUNENjhCNkUzMTFFQ0JFNTk5OTJEQzRGOUFFMDIvQkZGQUY4ODA5 MTI3MTFFRTkyMDY1MTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAGvgADANBgkqhkiG9w0BAQsFAAOCAQEAmEaTVvronb0O SeUCY69uOt2SA5jPYCYfAMm8AcauDqsFkgqWX+NkMH/R6Utn1AnMxhMaBMosD0dX slzfV+sNdCobESxcVcu3sgrtx/6PsAzt7+5RbtJjZwMnETLb50iMn9I8yRbQ7TcU oyYj1wfhcLce9ya26AtfcVgx89KuSYA7TpHHXYgPkAf63ltT/ZYAy29CO/RPmBwd joTK3lxPFfe+m0zpFZVgv66ij3CWaDv69Fo3eCmkJpydqd5d3CvmyX/iCHKiorGQ 7GT0sImr0Z9tvImyvApASrPsHpraBQyS1zQGDJjyG4fSoGSyzwfrSr42q6dtxIJu kfGDiNPXww== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:45 2024 by rpki-client on console-ams.rpki-client.org