$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/FCA6FF8C749E11E8B07CAE80C4F9AE02.roa File: FCA6FF8C749E11E8B07CAE80C4F9AE02.roa (raw, json) Hash identifier: k/o6QQeGjIebtK3cSFt7OP5rP3xEncXYao5ZQWxg/pA= Subject key identifier: 4D:C8:DC:F3:F2:5C:EB:34:3F:2D:03:4A:F6:FD:B3:06:D5:14:97:43 Certificate issuer: /CN=A91A0C55/serialNumber=24CF7A2545A74EA2550201B6EDDB99F9BEDB81B5 Certificate serial: 1C56 Authority key identifier: 24:CF:7A:25:45:A7:4E:A2:55:02:01:B6:ED:DB:99:F9:BE:DB:81:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JM96JUWnTqJVAgG27duZ-b7bgbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/FCA6FF8C749E11E8B07CAE80C4F9AE02.roa Signing time: Sat 02 Nov 2024 16:23:51 +0000 ROA not before: Sat 02 Nov 2024 16:23:51 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134442 IP address blocks: 2404:6980:32::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/JM96JUWnTqJVAgG27duZ-b7bgbU.crl rsync://rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/JM96JUWnTqJVAgG27duZ-b7bgbU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JM96JUWnTqJVAgG27duZ-b7bgbU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7254 (0x1c56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0C55/serialNumber=24CF7A2545A74EA2550201B6EDDB99F9BEDB81B5 Validity Not Before: Nov 2 16:23:51 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67265217-9ac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e4:1d:53:85:ef:2e:48:ac:54:a2:aa:17:f1: b8:40:10:fe:e6:b7:14:d8:f6:fd:6d:fb:46:86:cf: 7e:74:e6:66:ec:03:10:72:69:36:fa:a7:95:ee:b1: dc:2f:0b:f3:f6:05:45:02:0e:17:00:ec:03:60:66: 0b:e6:a1:f7:3a:6c:fa:e6:57:21:f9:53:28:f4:76: 79:02:7f:f6:ec:2f:9b:33:75:96:06:b1:e7:0f:0b: eb:c1:d4:21:8b:a8:ce:37:7d:52:3c:4f:d4:c6:a4: 2f:63:b5:a1:42:24:3c:7e:76:7d:59:6c:4e:0f:52: 9e:6e:8d:19:b2:ad:88:84:63:34:0b:82:24:f1:d6: 7f:ce:cd:31:43:ac:6e:d6:96:76:45:53:ca:15:d0: 5b:d8:60:dc:55:1a:28:26:c5:7b:47:30:8c:cb:f3: 5d:14:cb:d6:95:23:40:e4:c5:46:bd:9b:a7:29:5e: 9f:b4:64:1c:9d:ef:21:22:c1:9d:e8:5e:bf:c9:7f: 85:3c:dd:94:06:4a:75:05:17:1d:92:47:8e:fe:ec: fb:55:0a:af:b6:25:3c:42:80:89:f8:90:04:02:71: 3d:10:6b:b3:4d:41:e3:ac:fe:31:eb:87:0e:5a:ec: 31:1f:8c:69:06:58:b3:5a:97:e9:e7:66:61:b7:a1: 5f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C8:DC:F3:F2:5C:EB:34:3F:2D:03:4A:F6:FD:B3:06:D5:14:97:43 X509v3 Authority Key Identifier: keyid:24:CF:7A:25:45:A7:4E:A2:55:02:01:B6:ED:DB:99:F9:BE:DB:81:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/JM96JUWnTqJVAgG27duZ-b7bgbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JM96JUWnTqJVAgG27duZ-b7bgbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/FCA6FF8C749E11E8B07CAE80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:6980:32::/48 Signature Algorithm: sha256WithRSAEncryption 4e:7f:99:6d:12:20:1c:b4:43:2a:47:a3:21:81:f6:0f:4f:0f: 51:1a:75:81:fc:d6:1d:80:51:4b:b7:59:86:ab:14:51:b3:33: 84:30:eb:8b:8d:b3:e4:85:3e:96:66:d5:10:c6:d8:07:d3:49: b3:86:f6:f3:00:d1:b5:68:99:3f:94:85:dc:12:26:0b:6b:ff: d1:f0:3e:ea:26:12:91:84:43:90:10:e7:bf:1d:56:fc:60:35: e9:3d:51:90:36:20:c8:77:10:ab:b6:34:68:0c:2b:4e:2a:46: 16:fa:9e:dd:09:a6:36:bc:72:77:31:57:09:02:2d:4e:8b:e2: c6:bc:09:5c:0e:2f:6f:7f:29:5b:34:06:6c:23:57:4c:ac:99: 2a:4b:16:5f:6a:d1:8e:c8:02:07:ae:b6:76:9a:b9:74:cc:ff: 87:93:fe:7d:f6:df:76:09:7c:e4:ef:78:e7:93:7e:f5:79:59: 20:40:c6:3c:4a:2c:3e:ef:05:c7:b3:56:03:a6:e4:82:2a:ab: 60:b0:96:29:1b:7e:48:8b:ce:41:a4:0e:78:cd:e3:c8:e9:fd: 8c:95:61:45:52:94:5c:1b:2c:e1:cf:33:eb:a2:f3:2d:b7:d9: 39:33:f4:9b:c4:77:a1:a2:e7:2e:db:08:72:d9:53:db:b4:31: 06:cc:f1:d0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICHFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBDNTUxMTAvBgNVBAUTKDI0Q0Y3QTI1NDVBNzRFQTI1NTAyMDFCNkVEREI5OUY5 QkVEQjgxQjUwHhcNMjQxMTAyMTYyMzUxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NTIxNy05YWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+QdU4XvLkisVKKqF/G4QBD+5rcU2Pb9bftGhs9+dOZm7AMQcmk2+qeV7rHc Lwvz9gVFAg4XAOwDYGYL5qH3Omz65lch+VMo9HZ5An/27C+bM3WWBrHnDwvrwdQh i6jON31SPE/UxqQvY7WhQiQ8fnZ9WWxOD1Kebo0Zsq2IhGM0C4Ik8dZ/zs0xQ6xu 1pZ2RVPKFdBb2GDcVRooJsV7RzCMy/NdFMvWlSNA5MVGvZunKV6ftGQcne8hIsGd 6F6/yX+FPN2UBkp1BRcdkkeO/uz7VQqvtiU8QoCJ+JAEAnE9EGuzTUHjrP4x64cO WuwxH4xpBlizWpfp52Zht6FfHQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFE3I3PPy XOs0Py0DSvb9swbVFJdDMB8GA1UdIwQYMBaAFCTPeiVFp06iVQIBtu3bmfm+24G1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEM1NS8yRUE3QTQ2Q0NF NzExMUU2OUUyQjk0NDRDNEY5QUUwMi9KTTk2SlVXblRxSlZBZ0cyN2R1Wi1iN2Jn YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pNOTZKVVduVHFKVkFnRzI3ZHVaLWI3YmdiVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBDNTUvMkVBN0E0NkNDRTcxMTFFNjlFMkI5NDQ0QzRGOUFFMDIvRkNBNkZGOEM3 NDlFMTFFOEIwN0NBRTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBGmAADIwDQYJKoZIhvcNAQELBQADggEBAE5/mW0SIBy0 QypHoyGB9g9PD1EadYH81h2AUUu3WYarFFGzM4Qw64uNs+SFPpZm1RDG2AfTSbOG 9vMA0bVomT+UhdwSJgtr/9HwPuomEpGEQ5AQ578dVvxgNek9UZA2IMh3EKu2NGgM K04qRhb6nt0Jpja8cncxVwkCLU6L4sa8CVwOL29/KVs0BmwjV0ysmSpLFl9q0Y7I AgeutnaauXTM/4eT/n3233YJfOTveOeTfvV5WSBAxjxKLD7vBcezVgOm5IIqq2Cw likbfkiLzkGkDnjN48jp/YyVYUVSlFwbLOHPM+ui8y232Tkz9JvEd6Gi5y7bCHLZ U9u0MQbM8dA= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:03 2024 by rpki-client on console-fra.rpki-client.org