$ rpki-client -vvf rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/F0F17BEC9D5911EEAA9F0413C4F9AE02.roa File: F0F17BEC9D5911EEAA9F0413C4F9AE02.roa (raw, json) Hash identifier: PALIyVWAsvtscgbg+sm73eiiYRuD68MSbPN0evXTaxE= Subject key identifier: 1F:E5:84:45:D3:8B:2F:92:66:D0:A6:B9:5B:0F:A2:10:4D:44:54:91 Certificate issuer: /CN=A91A001E/serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015 Certificate serial: 3ED3 Authority key identifier: 82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/F0F17BEC9D5911EEAA9F0413C4F9AE02.roa Signing time: Mon 02 Sep 2024 14:50:13 +0000 ROA not before: Mon 02 Sep 2024 14:50:13 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 666 IP address blocks: 2001:df7:5381::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.crl rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16083 (0x3ed3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A001E/serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015 Validity Not Before: Sep 2 14:50:13 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66d5d0a4-e42e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:78:63:29:fc:59:1e:91:2e:92:04:21:b4:ff: 97:d9:1d:8f:9c:f0:e9:33:b2:b4:5a:05:a8:f9:b6: 49:22:d9:76:ad:c5:f9:f1:31:fb:3b:c9:c4:5b:53: f6:d6:b0:a7:02:79:18:ce:be:bd:c9:a5:b2:f6:6c: 31:b5:13:58:15:3a:87:4b:48:b7:c3:68:28:0f:af: b0:c0:f9:da:6e:d8:a9:cc:68:09:50:b3:70:5d:60: 30:ae:2f:4f:69:16:04:a6:54:7e:55:62:49:2a:77: 81:e8:6e:aa:dd:2a:66:6f:80:57:03:a7:d6:4b:34: 0c:18:d3:57:d1:68:cb:f8:5f:5c:39:35:72:49:0f: 28:1f:14:b2:b4:71:5c:51:af:cd:f5:30:18:53:19: 52:d7:e8:9d:68:ab:64:34:41:f2:81:62:72:4b:bb: 1f:ef:f1:0f:ec:d1:2c:bf:b7:7c:ef:ce:20:15:bb: 46:95:da:8d:e6:7c:65:55:f6:a6:9d:c5:2d:9d:ee: 7a:de:fa:54:9d:d6:f1:6a:04:40:6e:4c:8d:7e:55: a9:a6:ac:a5:0d:5c:1e:65:2a:d5:ed:16:65:19:6e: 45:f9:49:3e:77:0a:aa:61:d2:09:65:a0:88:23:15: f0:42:8a:15:a2:5c:9d:5e:38:c2:31:5f:76:2c:04: f1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E5:84:45:D3:8B:2F:92:66:D0:A6:B9:5B:0F:A2:10:4D:44:54:91 X509v3 Authority Key Identifier: keyid:82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/F0F17BEC9D5911EEAA9F0413C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df7:5381::/48 Signature Algorithm: sha256WithRSAEncryption 5c:3c:b9:48:54:fc:ef:48:2c:28:57:43:a0:e2:07:92:0e:68: 28:dc:e0:d0:95:25:bd:e4:1c:e4:b9:32:24:d7:88:87:a7:46: 6a:58:62:24:a7:e5:97:80:9f:1f:b2:99:5a:f9:d6:fd:36:45: 82:08:f7:8f:16:33:85:04:69:39:c4:1f:20:db:37:bd:53:77: 60:d1:3a:43:45:ff:83:48:06:21:f7:b8:0d:8e:60:9e:f3:f6: 30:d1:fd:26:ea:dc:04:19:ac:30:93:a7:4b:a4:4c:50:37:40: b0:e0:04:19:2d:bd:8e:47:b7:c7:3d:ff:06:f7:61:66:69:be: fe:bb:48:7f:38:01:b9:47:a8:d4:f0:35:c5:f2:da:1e:7f:2c: c3:22:bf:5e:c2:aa:4a:6e:16:ce:d5:84:53:c5:da:c7:6e:1d: 42:24:05:71:d5:5b:8a:f8:70:85:b1:76:e1:96:53:9b:1e:f4: 92:5f:37:95:be:61:02:bb:07:14:7c:ea:9c:a9:38:91:e9:5f: 82:31:cf:b2:f5:30:19:e5:58:ca:15:0f:20:d5:02:51:df:56: af:bb:24:d5:81:be:2a:8c:fe:94:a8:55:13:70:38:31:08:6b: 9a:52:39:4a:a9:ee:40:a2:57:b8:ed:f9:7a:48:2f:94:33:71: e9:7f:a8:47 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICPtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAwMUUxMTAvBgNVBAUTKDgyNzhGNDdERUM1QjdBREMyMDE4OTdGOTlCQ0M2RTJC RkE4OEQwMTUwHhcNMjQwOTAyMTQ1MDEzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ1ZDBhNC1lNDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHhjKfxZHpEukgQhtP+X2R2PnPDpM7K0WgWo+bZJItl2rcX58TH7O8nEW1P2 1rCnAnkYzr69yaWy9mwxtRNYFTqHS0i3w2goD6+wwPnabtipzGgJULNwXWAwri9P aRYEplR+VWJJKneB6G6q3Spmb4BXA6fWSzQMGNNX0WjL+F9cOTVySQ8oHxSytHFc Ua/N9TAYUxlS1+idaKtkNEHygWJyS7sf7/EP7NEsv7d8784gFbtGldqN5nxlVfam ncUtne563vpUndbxagRAbkyNflWppqylDVweZSrV7RZlGW5F+Uk+dwqqYdIJZaCI IxXwQooVolydXjjCMV92LATx5wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFB/lhEXT iy+SZtCmuVsPohBNRFSRMB8GA1UdIwQYMBaAFIJ49H3sW3rcIBiX+ZvMbiv6iNAV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDAxRS8zNUZBMEY1NjFE NzgxMUUyOTM3NzFGQzQwOEIwMkNEMi9nbmowZmV4YmV0d2dHSmY1bTh4dUtfcUkw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2duajBmZXhiZXR3Z0dKZjVtOHh1S19xSTBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTAwMUUvMzVGQTBGNTYxRDc4MTFFMjkzNzcxRkM0MDhCMDJDRDIvRjBGMTdCRUM5 RDU5MTFFRUFBOUYwNDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ33U4EwDQYJKoZIhvcNAQELBQADggEBAFw8uUhU/O9I LChXQ6DiB5IOaCjc4NCVJb3kHOS5MiTXiIenRmpYYiSn5ZeAnx+ymVr51v02RYII 948WM4UEaTnEHyDbN71Td2DROkNF/4NIBiH3uA2OYJ7z9jDR/Sbq3AQZrDCTp0uk TFA3QLDgBBktvY5Ht8c9/wb3YWZpvv67SH84AblHqNTwNcXy2h5/LMMiv17Cqkpu Fs7VhFPF2sduHUIkBXHVW4r4cIWxduGWU5se9JJfN5W+YQK7BxR86pypOJHpX4Ix z7L1MBnlWMoVDyDVAlHfVq+7JNWBviqM/pSoVRNwODEIa5pSOUqp7kCiV7jt+XpI L5Qzcel/qEc= -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:00 2024 by rpki-client on console-fra.rpki-client.org