$ rpki-client -vvf rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/DC76F25EBCFD11EFAF51D253C4F9AE02.roa File: DC76F25EBCFD11EFAF51D253C4F9AE02.roa (raw, json) Hash identifier: zJ3vBuHNvU2BtLgZ93Uo5Q9St8BhgcO1ynlNtZ1Jaf4= Subject key identifier: 76:DE:6E:11:9C:8B:0B:0F:38:B8:BA:0B:AD:A7:B7:BB:D8:1C:20:E2 Certificate issuer: /CN=A91921AE/serialNumber=82A769DD746C831F4C4DB29D6A65DE08D6AD95ED Certificate serial: 0D Authority key identifier: 82:A7:69:DD:74:6C:83:1F:4C:4D:B2:9D:6A:65:DE:08:D6:AD:95:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqdp3XRsgx9MTbKdamXeCNatle0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/DC76F25EBCFD11EFAF51D253C4F9AE02.roa Signing time: Wed 18 Dec 2024 05:06:38 +0000 ROA not before: Wed 18 Dec 2024 05:06:38 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 136396 IP address blocks: 2001:df4:adc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.crl rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqdp3XRsgx9MTbKdamXeCNatle0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91921AE/serialNumber=82A769DD746C831F4C4DB29D6A65DE08D6AD95ED Validity Not Before: Dec 18 05:06:38 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6762585e-733f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b5:56:9e:0c:a9:0a:db:42:d2:bc:b4:f7:2f: 80:f3:b5:2d:34:b9:b0:d5:44:39:ad:3e:34:34:4b: 4c:ff:44:50:58:f0:cf:e5:76:9b:77:99:96:ab:b0: 3d:74:a2:57:eb:75:46:6f:5f:e6:7e:23:51:eb:30: 31:cd:80:f5:36:d4:9f:b6:b0:65:a0:49:ee:f3:4e: a8:e8:bd:dd:6c:81:56:18:b8:32:37:10:43:d7:e7: 83:67:24:8e:f1:0f:66:ff:37:ca:6b:a0:37:b6:9a: 2d:3c:16:43:2c:fc:0d:27:1b:11:f3:98:fa:73:29: 20:29:8d:c8:20:92:41:ca:b4:26:d4:db:84:7f:3e: 4d:b5:ec:9b:cc:48:cc:57:4e:49:8c:9a:67:9c:38: 15:f9:29:84:a3:72:8d:b8:7b:a3:b6:3b:44:a5:16: c9:17:d7:b1:c9:3d:8b:0c:04:4f:54:3f:db:28:2c: c7:ec:50:88:5c:55:a6:a4:ad:39:20:48:74:f9:bb: 02:36:77:fa:4f:33:c9:6e:40:c5:cf:38:61:44:55: 1f:c0:d7:ad:34:40:df:37:fc:0d:59:17:c3:c0:80: bc:8c:87:b8:9b:5f:73:16:10:3b:16:7d:2f:a7:0c: bb:1c:40:35:93:8f:39:b9:54:8b:d4:d0:9c:e5:4f: c3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:DE:6E:11:9C:8B:0B:0F:38:B8:BA:0B:AD:A7:B7:BB:D8:1C:20:E2 X509v3 Authority Key Identifier: keyid:82:A7:69:DD:74:6C:83:1F:4C:4D:B2:9D:6A:65:DE:08:D6:AD:95:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqdp3XRsgx9MTbKdamXeCNatle0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/DC76F25EBCFD11EFAF51D253C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:adc0::/48 Signature Algorithm: sha256WithRSAEncryption 34:41:0f:9e:37:5e:17:70:86:ae:56:00:8f:ba:cc:0b:42:b6: d3:a2:ff:cc:12:e0:26:07:e6:22:1b:bb:63:b6:2d:3a:88:c0: b0:83:f7:7c:d3:82:17:e0:1d:bf:45:e2:fa:20:d2:87:fe:71: de:4a:16:ba:0d:2d:84:59:9e:6b:8f:08:b1:75:cc:9c:ec:24: c6:cf:79:3b:a9:53:00:a5:b6:bb:b8:6b:55:8b:a0:9f:a2:b5: 11:77:01:90:af:64:37:5c:cf:dd:9d:79:a9:79:48:f3:7d:de: 37:1a:b1:f3:bf:65:d4:a1:24:78:15:a6:6e:49:2e:82:a7:56: 84:97:9b:1b:3c:ea:22:ff:99:9c:8f:7b:5c:7f:e9:8d:f9:e9: 14:15:22:dd:ae:db:a3:16:fb:d3:63:a0:25:48:01:7e:34:22: 37:2b:e2:fc:d0:b1:38:4d:e1:87:08:e4:91:d1:a0:8c:a8:6b: 51:2d:d9:07:aa:62:dd:d9:3a:72:ff:2a:ea:e3:7d:46:70:a3: 72:40:d7:a4:af:a0:04:bc:fe:99:67:fb:fd:cb:7f:39:a7:49: 12:8f:06:8a:4c:74:12:a8:51:e3:22:44:e7:6c:7c:cf:24:13: ea:1d:92:a2:96:80:bf:d7:9d:83:33:7a:f7:69:53:7e:a8:4c: d2:91:34:01 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MjFBRTExMC8GA1UEBRMoODJBNzY5REQ3NDZDODMxRjRDNERCMjlENkE2NURFMDhE NkFEOTVFRDAeFw0yNDEyMTgwNTA2MzhaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NjI1ODVlLTczM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPtVaeDKkK20LSvLT3L4DztS00ubDVRDmtPjQ0S0z/RFBY8M/ldpt3mZarsD10 olfrdUZvX+Z+I1HrMDHNgPU21J+2sGWgSe7zTqjovd1sgVYYuDI3EEPX54NnJI7x D2b/N8proDe2mi08FkMs/A0nGxHzmPpzKSApjcggkkHKtCbU24R/Pk217JvMSMxX TkmMmmecOBX5KYSjco24e6O2O0SlFskX17HJPYsMBE9UP9soLMfsUIhcVaakrTkg SHT5uwI2d/pPM8luQMXPOGFEVR/A1600QN83/A1ZF8PAgLyMh7ibX3MWEDsWfS+n DLscQDWTjzm5VIvU0JzlT8NLAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUdt5uEZyL Cw84uLoLrae3u9gcIOIwHwYDVR0jBBgwFoAUgqdp3XRsgx9MTbKdamXeCNatle0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyMUFFLzc0OTEyQjJDQUM3 MzExRUZBM0NCRDE0QUM0RjlBRTAyL2dxZHAzWFJzZ3g5TVRiS2RhbVhlQ05hdGxl MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3FkcDNYUnNneDlNVGJLZGFtWGVDTmF0bGUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MjFBRS83NDkxMkIyQ0FDNzMxMUVGQTNDQkQxNEFDNEY5QUUwMi9EQzc2RjI1RUJD RkQxMUVGQUY1MUQyNTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfStwDANBgkqhkiG9w0BAQsFAAOCAQEANEEPnjdeF3CG rlYAj7rMC0K206L/zBLgJgfmIhu7Y7YtOojAsIP3fNOCF+Adv0Xi+iDSh/5x3koW ug0thFmea48IsXXMnOwkxs95O6lTAKW2u7hrVYugn6K1EXcBkK9kN1zP3Z15qXlI 833eNxqx879l1KEkeBWmbkkugqdWhJebGzzqIv+ZnI97XH/pjfnpFBUi3a7boxb7 02OgJUgBfjQiNyvi/NCxOE3hhwjkkdGgjKhrUS3ZB6pi3dk6cv8q6uN9RnCjckDX pK+gBLz+mWf7/ct/OadJEo8Gikx0EqhR4yJE52x8zyQT6h2SopaAv9edgzN692lT fqhM0pE0AQ== -----END CERTIFICATE-----Generated at Fri Dec 27 08:43:48 2024 by rpki-client on console-fra.rpki-client.org