$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/B9D00D3C195A11EE83248835C4F9AE02.roa File: B9D00D3C195A11EE83248835C4F9AE02.roa (raw, json) Hash identifier: 3kdta5Pi/N5KniM95Q0zJF7VC4SA3fQTqDL8ggYKjfQ= Subject key identifier: C8:6C:6D:5A:EA:45:86:53:71:92:09:14:8B:CE:50:AF:BD:7C:38:FB Certificate issuer: /CN=A91A0848/serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Certificate serial: F5 Authority key identifier: 02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/B9D00D3C195A11EE83248835C4F9AE02.roa Signing time: Mon 05 Feb 2024 05:06:37 +0000 ROA not before: Mon 05 Feb 2024 05:06:37 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150671 IP address blocks: 2001:df1:ac40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0848/serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Validity Not Before: Feb 5 05:06:37 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c06cdd-3213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:27:a2:a8:7e:3c:45:62:dd:b5:cc:fa:8e: 8b:97:78:b6:cd:bb:8a:e8:3e:56:59:51:bb:4b:34: 26:fe:91:59:29:12:cb:89:42:64:07:29:d9:a3:6f: 10:16:8f:6f:4e:67:1d:4b:9d:c4:57:d9:3a:e7:0d: 0f:11:41:3d:69:2c:8a:64:97:40:e4:62:df:70:81: 85:81:f7:65:0d:2d:9c:0b:75:96:69:e1:8c:07:49: 8e:71:57:c7:13:e2:61:c9:bc:be:9d:c7:80:71:4b: fb:d8:b2:b5:ca:5a:c6:6c:7b:e7:87:6f:a9:8f:82: 59:f5:22:7b:23:63:1d:d6:ef:6c:13:97:71:80:5c: 37:cb:b5:86:34:5f:bf:e9:6b:31:c6:e0:00:91:64: 02:d7:35:8c:ed:66:5c:c9:82:c5:34:b2:36:6c:5d: 26:fb:e9:d9:e8:d9:df:db:ba:1e:17:98:e4:e7:65: 23:17:16:4a:6a:c5:96:9f:18:ac:d2:33:36:06:5f: 9b:37:db:03:dc:0a:14:a5:a9:f5:dc:94:d8:c4:c2: a9:92:a3:3c:59:b8:e3:bb:d4:aa:bb:07:c3:88:1c: 30:12:fb:dc:55:4b:20:4f:a6:b3:20:ed:6a:16:d3: f3:15:bc:a9:1e:d9:f0:5b:48:8d:2f:7b:f1:86:e2: b9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6C:6D:5A:EA:45:86:53:71:92:09:14:8B:CE:50:AF:BD:7C:38:FB X509v3 Authority Key Identifier: keyid:02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/B9D00D3C195A11EE83248835C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:ac40::/48 Signature Algorithm: sha256WithRSAEncryption 59:c8:c8:68:96:38:04:5a:83:79:55:e7:b5:9c:55:1c:e6:d5: 8f:5f:09:1f:7a:ff:f9:a7:72:67:ae:cf:16:d6:27:fa:bc:7a: c8:9b:4e:99:13:8b:b7:cc:27:bd:60:d8:96:6a:69:93:e4:82: e2:c7:7a:36:4d:ef:ae:50:5d:79:8e:85:02:fb:c6:50:4d:b5: ae:8b:8f:0e:37:bf:2f:3f:87:7a:39:a9:e8:97:92:b4:ce:c4: 78:8d:e6:2c:7f:e5:df:a6:9a:7c:e6:82:39:26:53:d7:01:a9: c4:77:bc:20:37:8d:41:ef:2d:bb:84:15:2f:61:53:c2:52:69: b6:cf:cf:29:58:b2:b7:e5:1f:ab:84:ba:91:52:e3:14:5d:21: e9:71:4b:d1:1d:7e:3e:d9:4a:7e:02:83:eb:dc:5a:ef:d1:0b: 93:90:67:9a:3a:88:34:b0:3c:e6:83:93:a1:d6:65:c4:a2:5e: d6:ed:30:c7:26:cf:91:0e:a5:c1:2b:cd:15:09:e2:b4:ce:62: 41:01:25:bf:30:1e:0a:39:ce:2c:17:fd:1c:6d:94:1f:3c:db: a4:b9:12:09:c5:ea:79:e6:d2:20:77:5e:64:43:ba:61:d5:fd: 97:7b:db:e1:1f:d6:23:be:4d:b5:0a:2b:02:42:75:9f:75:86: 93:39:9b:23 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4NDgxMTAvBgNVBAUTKDAyNDIyOUM4MUFDMzUzNUEyMUQ2MEUyREMzMkE5Qjg4 QkQ2QUQ4MUYwHhcNMjQwMjA1MDUwNjM3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMwNmNkZC0zMjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVwnoqh+PEVi3bXM+o6Ll3i2zbuK6D5WWVG7SzQm/pFZKRLLiUJkBynZo28Q Fo9vTmcdS53EV9k65w0PEUE9aSyKZJdA5GLfcIGFgfdlDS2cC3WWaeGMB0mOcVfH E+Jhyby+nceAcUv72LK1ylrGbHvnh2+pj4JZ9SJ7I2Md1u9sE5dxgFw3y7WGNF+/ 6WsxxuAAkWQC1zWM7WZcyYLFNLI2bF0m++nZ6Nnf27oeF5jk52UjFxZKasWWnxis 0jM2Bl+bN9sD3AoUpan13JTYxMKpkqM8Wbjju9SquwfDiBwwEvvcVUsgT6azIO1q FtPzFbypHtnwW0iNL3vxhuK5gQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMhsbVrq RYZTcZIJFIvOUK+9fDj7MB8GA1UdIwQYMBaAFAJCKcgaw1NaIdYOLcMqm4i9atgf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDg0OC82NEQ4QjFERTc3 RTQxMUVEOTdGNTkzNERDNEY5QUUwMi9Ba0lweUJyRFUxb2gxZzR0d3lxYmlMMXEy QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FrSXB5QnJEVTFvaDFnNHR3eXFiaUwxcTJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4NDgvNjREOEIxREU3N0U0MTFFRDk3RjU5MzREQzRGOUFFMDIvQjlEMDBEM0Mx OTVBMTFFRTgzMjQ4ODM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3xrEAwDQYJKoZIhvcNAQELBQADggEBAFnIyGiWOARa g3lV57WcVRzm1Y9fCR96//mncmeuzxbWJ/q8esibTpkTi7fMJ71g2JZqaZPkguLH ejZN765QXXmOhQL7xlBNta6Ljw43vy8/h3o5qeiXkrTOxHiN5ix/5d+mmnzmgjkm U9cBqcR3vCA3jUHvLbuEFS9hU8JSabbPzylYsrflH6uEupFS4xRdIelxS9Edfj7Z Sn4Cg+vcWu/RC5OQZ5o6iDSwPOaDk6HWZcSiXtbtMMcmz5EOpcErzRUJ4rTOYkEB Jb8wHgo5ziwX/RxtlB8826S5EgnF6nnm0iB3XmRDumHV/Zd72+Ef1iO+TbUKKwJC dZ91hpM5myM= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:46 2024 by rpki-client on console-ams.rpki-client.org