$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/FE6E6B48749E11E8B07CAE80C4F9AE02.roa File: FE6E6B48749E11E8B07CAE80C4F9AE02.roa (raw, json) Hash identifier: Ruri1qHSgWDfSjLB7GMruorS7uq7+YoW4Hew6bZFFkY= Subject key identifier: 60:CC:F1:92:98:4E:C0:45:79:66:59:49:C9:EF:02:49:9C:28:C7:D8 Certificate issuer: /CN=A91A0C55/serialNumber=24CF7A2545A74EA2550201B6EDDB99F9BEDB81B5 Certificate serial: 1C59 Authority key identifier: 24:CF:7A:25:45:A7:4E:A2:55:02:01:B6:ED:DB:99:F9:BE:DB:81:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JM96JUWnTqJVAgG27duZ-b7bgbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/FE6E6B48749E11E8B07CAE80C4F9AE02.roa Signing time: Sat 02 Nov 2024 16:23:55 +0000 ROA not before: Sat 02 Nov 2024 16:23:55 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58431 IP address blocks: 2404:6980:31::/48 maxlen: 48 2404:6980:32::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/JM96JUWnTqJVAgG27duZ-b7bgbU.crl rsync://rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/JM96JUWnTqJVAgG27duZ-b7bgbU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JM96JUWnTqJVAgG27duZ-b7bgbU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7257 (0x1c59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0C55/serialNumber=24CF7A2545A74EA2550201B6EDDB99F9BEDB81B5 Validity Not Before: Nov 2 16:23:55 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726521a-0e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a9:7f:9a:2f:09:7a:cc:af:f5:49:4a:13:f2: e1:fa:a0:30:da:6c:d4:15:5f:61:79:ba:59:2b:93: 90:0f:25:c7:db:73:54:47:18:ae:77:14:8d:f9:2e: 5f:c3:3f:41:0c:20:5b:47:a1:1d:63:c1:92:68:a3: f5:d6:ea:e5:b0:43:18:36:c7:e5:77:1c:87:34:20: e1:9a:8a:39:72:2e:52:23:9c:50:a0:3c:6d:ec:80: 54:fe:68:08:25:23:20:1e:50:95:5a:51:55:cd:f1: a7:fe:c2:8d:23:aa:9a:5b:49:f7:eb:d7:e8:5f:bd: 23:29:58:9c:23:52:67:ff:62:e2:65:65:da:68:a0: 23:72:50:26:3c:ae:b1:42:b8:bd:e7:af:17:1d:59: 55:00:26:8b:5c:28:1d:58:e9:dd:83:43:72:d1:a5: 42:e4:e3:e2:3c:57:06:b4:61:b4:40:6a:31:3a:0c: 40:ba:18:81:1e:01:71:85:a1:55:22:e7:6d:18:3d: 17:14:ed:89:09:dd:20:92:07:49:fe:c0:2c:6e:56: cf:fe:8f:5d:bf:a9:55:d6:87:1c:42:ec:65:43:35: b0:03:db:b7:a1:0e:88:31:24:c9:a8:4c:d4:34:31: d5:1e:35:6d:1a:47:32:41:22:75:46:ca:de:82:da: 2d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:CC:F1:92:98:4E:C0:45:79:66:59:49:C9:EF:02:49:9C:28:C7:D8 X509v3 Authority Key Identifier: keyid:24:CF:7A:25:45:A7:4E:A2:55:02:01:B6:ED:DB:99:F9:BE:DB:81:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/JM96JUWnTqJVAgG27duZ-b7bgbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JM96JUWnTqJVAgG27duZ-b7bgbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0C55/2EA7A46CCE7111E69E2B9444C4F9AE02/FE6E6B48749E11E8B07CAE80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:6980:31::-2404:6980:32:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 4e:bb:2e:78:23:db:04:45:c7:fd:7a:44:eb:37:16:85:05:9e: a7:26:be:41:ef:0f:4d:b2:c2:b7:a5:5b:80:21:52:4d:ea:93: 5f:07:f8:9f:ff:b8:32:e5:d7:ed:7f:26:56:a3:e7:2e:16:2d: 3d:89:f3:ce:28:83:f0:fe:cb:ea:3e:4b:89:ec:ca:29:e8:3f: 5f:4f:d1:7b:89:a7:f9:1c:9d:9f:70:28:f2:2f:7a:67:66:49: 3e:ed:07:7c:29:6c:6f:17:99:09:af:ba:27:3f:79:df:98:11: 3f:98:1b:61:a6:35:dd:07:e7:3e:17:5f:49:41:02:45:26:b9: c5:13:e2:2e:fa:aa:36:d6:04:36:c9:92:af:74:1d:3e:47:09: 0e:1d:47:d1:09:1c:e5:3b:3f:85:9f:6c:2d:8a:c8:52:06:b4: 44:b5:ca:b6:1a:74:46:3d:1e:99:de:96:06:f2:93:d8:cf:86: bd:c6:04:61:c4:16:e2:98:d1:c0:9a:45:9d:15:c6:f2:12:52: b2:5f:87:c1:6c:1a:66:19:9e:cf:7b:58:c4:3a:16:d7:5f:f3: 71:83:7c:87:81:6c:32:5c:2a:b4:d1:c4:91:e7:14:53:e6:25: 47:e2:65:7e:b1:78:bd:21:02:bd:d2:6b:ee:dd:fe:82:31:0c: d6:08:a1:7c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICHFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBDNTUxMTAvBgNVBAUTKDI0Q0Y3QTI1NDVBNzRFQTI1NTAyMDFCNkVEREI5OUY5 QkVEQjgxQjUwHhcNMjQxMTAyMTYyMzU1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NTIxYS0wZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApql/mi8Jesyv9UlKE/Lh+qAw2mzUFV9hebpZK5OQDyXH23NURxiudxSN+S5f wz9BDCBbR6EdY8GSaKP11urlsEMYNsfldxyHNCDhmoo5ci5SI5xQoDxt7IBU/mgI JSMgHlCVWlFVzfGn/sKNI6qaW0n369foX70jKVicI1Jn/2LiZWXaaKAjclAmPK6x Qri9568XHVlVACaLXCgdWOndg0Ny0aVC5OPiPFcGtGG0QGoxOgxAuhiBHgFxhaFV IudtGD0XFO2JCd0gkgdJ/sAsblbP/o9dv6lV1occQuxlQzWwA9u3oQ6IMSTJqEzU NDHVHjVtGkcyQSJ1RsregtotKwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFGDM8ZKY TsBFeWZZScnvAkmcKMfYMB8GA1UdIwQYMBaAFCTPeiVFp06iVQIBtu3bmfm+24G1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEM1NS8yRUE3QTQ2Q0NF NzExMUU2OUUyQjk0NDRDNEY5QUUwMi9KTTk2SlVXblRxSlZBZ0cyN2R1Wi1iN2Jn YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pNOTZKVVduVHFKVkFnRzI3ZHVaLWI3YmdiVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBDNTUvMkVBN0E0NkNDRTcxMTFFNjlFMkI5NDQ0QzRGOUFFMDIvRkU2RTZCNDg3 NDlFMTFFOEIwN0NBRTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHACQEaYAAMQMHACQEaYAAMjANBgkqhkiG9w0BAQsFAAOC AQEATrsueCPbBEXH/XpE6zcWhQWepya+Qe8PTbLCt6VbgCFSTeqTXwf4n/+4MuXX 7X8mVqPnLhYtPYnzziiD8P7L6j5LiezKKeg/X0/Re4mn+Rydn3Ao8i96Z2ZJPu0H fClsbxeZCa+6Jz9535gRP5gbYaY13QfnPhdfSUECRSa5xRPiLvqqNtYENsmSr3Qd PkcJDh1H0Qkc5Ts/hZ9sLYrIUga0RLXKthp0Rj0emd6WBvKT2M+GvcYEYcQW4pjR wJpFnRXG8hJSsl+HwWwaZhmez3tYxDoW11/zcYN8h4FsMlwqtNHEkecUU+YlR+Jl frF4vSECvdJr7t3+gjEM1gihfA== -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:52 2024 by rpki-client on console-ams.rpki-client.org