$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/54FB2C8CD61711EEB983D919C4F9AE02.roa File: 54FB2C8CD61711EEB983D919C4F9AE02.roa (raw, json) Hash identifier: QVA6cnHl8Ur5a0kDBgQcj4pP7Ka7QThHbgUyDhuNztQ= Subject key identifier: 41:17:60:40:B3:F2:D6:23:E5:F8:11:61:DB:79:74:03:FA:82:50:4D Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: 012F Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/54FB2C8CD61711EEB983D919C4F9AE02.roa Signing time: Tue 15 Oct 2024 03:27:03 +0000 ROA not before: Tue 15 Oct 2024 03:27:03 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 135381 IP address blocks: 2403:f040:13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Validity Not Before: Oct 15 03:27:03 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=670de106-44d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:34:36:24:5d:44:2a:51:c5:3a:2d:28:65:c9: cc:bb:f5:8a:06:68:77:f8:3b:99:16:2a:87:13:78: f2:ba:7d:df:72:90:88:b3:15:5d:41:ba:8a:1d:1b: ca:0a:7b:16:87:59:45:d0:49:17:ca:77:c0:51:a0: 10:37:53:ed:cc:3e:c1:22:1a:50:e4:e0:19:73:28: 7e:5d:43:22:75:e1:6b:18:b1:e6:e4:5b:10:07:0d: 45:8a:c2:8a:08:32:0c:f9:00:ee:a8:a1:f4:ae:be: 3c:4b:5f:5a:77:47:84:2d:09:3a:4a:58:c4:4d:8f: 89:5f:9e:6e:9c:b4:f2:7b:0c:19:59:e4:3c:64:1c: b0:8f:5f:ec:1a:5e:f4:a7:bc:85:ed:be:65:fa:46: 2a:e5:88:ca:92:43:93:bd:94:a3:09:3c:cf:d9:60: f6:66:e8:75:a8:61:83:87:74:e0:7d:ff:45:0c:02: 32:ad:80:97:5c:48:d1:89:38:75:dd:5b:89:15:c0: 36:9d:1e:1d:29:56:d1:07:62:bb:23:03:19:73:b0: 7d:a0:6d:af:5d:c1:7e:b4:3d:6a:44:16:31:2c:2f: c8:16:2b:22:db:84:80:92:54:2b:58:be:09:8a:07: 82:3e:fc:81:83:68:89:6b:f8:c4:15:14:f3:b9:bb: b1:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:17:60:40:B3:F2:D6:23:E5:F8:11:61:DB:79:74:03:FA:82:50:4D X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/54FB2C8CD61711EEB983D919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:f040:13::/48 Signature Algorithm: sha256WithRSAEncryption 75:c6:85:b3:57:6a:51:73:2f:dd:11:29:bf:ae:ab:17:cd:f2: d9:89:cf:01:18:5e:04:a9:06:6c:79:7a:1e:35:4a:87:4d:98: 5f:cf:e3:00:a0:e0:8e:18:dd:1c:3d:2a:97:68:aa:a0:26:b4: 40:cb:19:2e:64:09:f9:2f:88:4f:20:58:f9:31:ed:4b:5c:2e: 80:12:51:46:29:54:f7:c2:11:8a:8c:1f:03:67:0b:86:10:e5: 8c:61:57:ea:45:17:15:a4:7b:8f:f2:13:34:87:54:28:a3:c3: eb:37:f3:1d:0b:90:b1:aa:22:b2:c7:d0:a9:f4:58:da:4d:e6: a4:5b:cd:65:86:e1:1a:a6:7b:04:3f:25:a4:77:33:bb:9e:2c: c1:9f:8e:27:fc:de:da:3d:10:42:8e:f8:bc:7b:49:f1:06:60: ec:b7:1c:da:eb:55:34:70:a2:87:60:fd:3c:69:ac:04:11:c0: a4:c9:da:fe:a2:9d:9b:f1:fc:ac:66:9b:47:0c:6b:34:50:09: 48:f1:2e:fe:34:f2:70:78:98:e3:e8:d1:7d:18:bb:90:c1:42: 50:b0:5f:35:d5:4d:57:6e:60:dd:0f:e1:eb:16:9c:7f:36:5d: d4:28:e4:5d:23:0b:1d:95:3c:a1:77:3d:8b:c0:83:db:74:71: 8d:8b:7b:14 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjQxMDE1MDMyNzAzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkZTEwNi00NGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjQ2JF1EKlHFOi0oZcnMu/WKBmh3+DuZFiqHE3jyun3fcpCIsxVdQbqKHRvK CnsWh1lF0EkXynfAUaAQN1PtzD7BIhpQ5OAZcyh+XUMideFrGLHm5FsQBw1FisKK CDIM+QDuqKH0rr48S19ad0eELQk6SljETY+JX55unLTyewwZWeQ8ZBywj1/sGl70 p7yF7b5l+kYq5YjKkkOTvZSjCTzP2WD2Zuh1qGGDh3Tgff9FDAIyrYCXXEjRiTh1 3VuJFcA2nR4dKVbRB2K7IwMZc7B9oG2vXcF+tD1qRBYxLC/IFisi24SAklQrWL4J igeCPvyBg2iJa/jEFRTzubuxGwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEEXYECz 8tYj5fgRYdt5dAP6glBNMB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU4QkUvN0M3RkIyRkVDMjE5MTFFRDgwMjU2RjRFQzRGOUFFMDIvNTRGQjJDOENE NjE3MTFFRUI5ODNEOTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkA/BAABMwDQYJKoZIhvcNAQELBQADggEBAHXGhbNXalFz L90RKb+uqxfN8tmJzwEYXgSpBmx5eh41SodNmF/P4wCg4I4Y3Rw9KpdoqqAmtEDL GS5kCfkviE8gWPkx7UtcLoASUUYpVPfCEYqMHwNnC4YQ5YxhV+pFFxWke4/yEzSH VCijw+s38x0LkLGqIrLH0Kn0WNpN5qRbzWWG4RqmewQ/JaR3M7ueLMGfjif83to9 EEKO+Lx7SfEGYOy3HNrrVTRwoodg/TxprAQRwKTJ2v6inZvx/Kxmm0cMazRQCUjx Lv408nB4mOPo0X0Yu5DBQlCwXzXVTVduYN0P4esWnH82XdQo5F0jCx2VPKF3PYvA g9t0cY2LexQ= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org