$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/5B58485AB9DC11EEA6B2DC1DC4F9AE02.roa File: 5B58485AB9DC11EEA6B2DC1DC4F9AE02.roa (raw, json) Hash identifier: HpYoD/7amrQw23qk7qiGVySn5/tkgSZijl5VcOrQDaU= Subject key identifier: 65:DE:B9:6B:8D:13:84:7A:8B:5D:C2:48:C9:25:29:3D:0C:DF:20:D7 Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 2FC3 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/5B58485AB9DC11EEA6B2DC1DC4F9AE02.roa Signing time: Tue 30 Apr 2024 15:52:53 +0000 ROA not before: Tue 30 Apr 2024 15:52:53 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 10103 IP address blocks: 2405:2000:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12227 (0x2fc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 30 15:52:53 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663113d4-ba26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e3:59:5a:12:4e:aa:dc:b8:6e:c2:0c:f4:88: 91:a2:7e:6c:7f:a0:64:1a:e2:e9:18:68:6f:ea:23: e7:18:35:c6:89:aa:bf:08:d5:31:c8:d0:a4:29:80: 5c:83:5b:a0:15:87:67:13:1b:7c:3c:d7:f2:21:79: b5:3c:12:34:5d:eb:d7:21:0a:89:0d:ba:06:3f:e8: 99:12:c5:7c:11:e1:f3:e2:f6:46:0e:85:1d:b1:32: 3a:0a:51:90:df:66:46:28:24:12:8c:5d:4b:af:f4: e1:4a:16:ae:da:6c:eb:6c:42:e0:aa:47:fc:94:37: cb:89:c8:e5:cf:19:4c:f4:e1:75:f0:1d:42:91:9f: d9:be:59:d8:c8:59:92:a9:0a:24:64:77:eb:01:10: d9:15:01:bb:a9:8a:1c:a3:24:9b:9b:72:64:a1:5a: c2:10:a1:d7:4b:2a:5c:86:c7:77:36:93:b5:93:32: 52:04:bd:4a:7e:b4:22:7f:59:f5:51:3c:54:76:90: 1d:4a:e8:d4:9b:56:9b:6b:07:ca:82:8d:1a:93:6c: dd:6d:13:a0:ff:15:88:60:21:e9:db:3c:fd:61:0a: 78:fe:7f:9f:ff:72:2a:16:ab:9c:91:99:19:30:bf: 61:33:53:ec:ea:ee:e4:80:ed:56:78:4e:97:d2:b0: fd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DE:B9:6B:8D:13:84:7A:8B:5D:C2:48:C9:25:29:3D:0C:DF:20:D7 X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/5B58485AB9DC11EEA6B2DC1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:2000:1002::/48 Signature Algorithm: sha256WithRSAEncryption 12:bf:9a:cf:fa:f2:ad:88:27:96:20:35:76:cf:46:e7:43:f2: e9:b3:a7:0f:cc:b6:69:0b:d7:61:81:e3:3a:c7:cf:f0:15:4d: 53:ed:08:20:5d:09:c1:3c:f0:43:cc:ef:b6:8c:34:60:81:62: 61:df:a6:55:c8:45:3a:6f:10:04:9c:b4:43:d6:d9:5d:a5:17: 5b:c8:51:d6:2f:95:1a:df:42:f4:dd:c4:d5:4a:26:b8:cc:53: eb:af:a1:bf:d8:fa:a3:ae:0a:57:62:46:f3:2f:3d:83:a2:0b: 1c:c9:e5:b8:a5:9a:46:03:1d:d4:31:a5:e4:c8:47:19:58:e8: 0f:49:e6:f4:af:e0:1f:f9:54:7b:ff:a3:b2:2c:ae:b1:08:6e: 68:71:09:4c:f1:35:79:e1:fe:8c:05:c3:2c:5b:9a:94:35:02: 8b:00:94:1f:9a:ad:16:d8:18:27:f6:9c:b7:9d:3e:2d:64:ea: ce:ed:c1:f8:f1:48:55:27:1b:70:72:7b:47:81:11:ca:06:4b: 59:79:b7:22:c4:b7:c4:a3:c3:5f:d2:2f:73:40:70:9a:1d:30: a1:41:41:64:43:82:02:9a:7d:a3:c6:f8:3b:c5:50:e7:7b:44: 7c:c7:21:bc:d3:87:35:f5:11:26:4a:8f:ae:cd:f5:5a:fb:dc: a7:5f:3f:54 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICL8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjQwNDMwMTU1MjUzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMTNkNC1iYTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuNZWhJOqty4bsIM9IiRon5sf6BkGuLpGGhv6iPnGDXGiaq/CNUxyNCkKYBc g1ugFYdnExt8PNfyIXm1PBI0XevXIQqJDboGP+iZEsV8EeHz4vZGDoUdsTI6ClGQ 32ZGKCQSjF1Lr/ThShau2mzrbELgqkf8lDfLicjlzxlM9OF18B1CkZ/ZvlnYyFmS qQokZHfrARDZFQG7qYocoySbm3JkoVrCEKHXSypchsd3NpO1kzJSBL1KfrQif1n1 UTxUdpAdSujUm1abawfKgo0ak2zdbROg/xWIYCHp2zz9YQp4/n+f/3IqFquckZkZ ML9hM1Ps6u7kgO1WeE6X0rD9TwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGXeuWuN E4R6i13CSMklKT0M3yDXMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvNUI1ODQ4NUFC OURDMTFFRUE2QjJEQzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBSAAEAIwDQYJKoZIhvcNAQELBQADggEBABK/ms/68q2I J5YgNXbPRudD8umzpw/MtmkL12GB4zrHz/AVTVPtCCBdCcE88EPM77aMNGCBYmHf plXIRTpvEASctEPW2V2lF1vIUdYvlRrfQvTdxNVKJrjMU+uvob/Y+qOuCldiRvMv PYOiCxzJ5bilmkYDHdQxpeTIRxlY6A9J5vSv4B/5VHv/o7IsrrEIbmhxCUzxNXnh /owFwyxbmpQ1AosAlB+arRbYGCf2nLedPi1k6s7twfjxSFUnG3Bye0eBEcoGS1l5 tyLEt8Sjw1/SL3NAcJodMKFBQWRDggKafaPG+DvFUOd7RHzHIbzThzX1ESZKj67N 9Vr73KdfP1Q= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:01 2024 by rpki-client on console-ams.rpki-client.org