$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa File: F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa (raw, json) Hash identifier: ebgShmBvzJZ3qmN/KtJc0apKg8RyItgKLjz53kqARW4= Subject key identifier: B5:47:B7:14:8A:43:66:27:18:11:22:07:E6:B0:CE:E6:3E:9B:C7:A4 Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Certificate serial: 08 Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa Signing time: Thu 13 Jun 2024 08:00:19 +0000 ROA not before: Thu 13 Jun 2024 08:00:19 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 150062 IP address blocks: 2001:df1:1840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Validity Not Before: Jun 13 08:00:19 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=666aa713-395c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9e:c0:a6:c3:0f:14:c6:95:b6:bd:b2:40:a1: 11:78:43:87:5f:a1:68:69:01:cc:fb:a9:48:af:ea: da:c6:2c:db:8c:5f:c3:8d:25:95:eb:bd:29:c5:4d: a1:ae:3f:f7:87:f4:12:79:ca:f1:79:6f:10:d4:ad: f3:1d:31:5d:47:52:e6:4d:4c:c3:65:23:f7:d4:21: 58:8b:9b:50:de:09:a8:06:f8:4d:67:f0:cb:b8:89: 68:25:fc:33:3f:76:1f:4a:ae:82:c9:61:2d:3f:4c: c4:ac:d9:6c:a5:1f:dc:29:ae:71:02:41:e9:49:14: 90:69:f0:5d:62:70:c3:af:30:4d:6d:33:0d:30:8d: cf:a7:02:24:f1:8e:cf:bd:dc:58:07:f3:ad:0b:3a: 6a:ad:40:78:9b:67:4a:aa:cb:32:e0:9b:3d:f8:1e: df:7d:6d:37:ce:bd:50:45:f2:b1:47:70:ad:a0:d5: 7f:f2:a1:57:44:f2:04:d6:3d:46:e0:89:94:52:9e: 24:68:4a:02:cb:21:f4:ac:16:a6:c8:03:4b:f3:ee: af:8b:34:6f:1d:d0:b2:b1:fc:b1:67:32:f2:bc:06: 92:80:21:65:a2:aa:ac:08:b7:86:93:25:9b:c7:43: 37:98:13:1f:22:8b:43:2f:ae:20:61:c9:49:97:8e: 5e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:47:B7:14:8A:43:66:27:18:11:22:07:E6:B0:CE:E6:3E:9B:C7:A4 X509v3 Authority Key Identifier: keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:1840::/48 Signature Algorithm: sha256WithRSAEncryption 19:00:32:c9:82:ed:bc:73:59:57:01:aa:41:06:97:15:07:6a: bb:86:69:3e:d7:70:51:81:68:70:60:89:5b:33:c0:3c:92:1f: ad:cc:20:57:7d:3e:76:ff:34:7b:1c:66:0c:33:fd:5d:c5:d7: 1d:92:8e:2f:6c:db:ce:1b:99:40:6a:a7:d0:7b:a7:8a:99:37: f0:84:c6:42:68:e6:93:ee:da:90:87:cd:64:37:4a:db:4e:6d: ba:4b:bd:78:9e:da:5c:75:e7:37:68:15:04:ea:38:f9:21:1e: 08:0e:61:5b:74:cb:54:5a:b7:70:5b:be:1a:08:d2:df:84:8f: d3:e2:fa:55:5e:b4:ef:46:bb:52:8b:cf:7d:92:cd:99:79:93: b0:52:c1:1b:be:77:50:0a:cd:af:cb:e6:b5:9d:12:28:58:bf: 1f:01:16:87:84:b2:c6:c6:e0:26:b4:94:09:54:2c:09:6f:d3: fd:85:f8:6c:1c:0a:03:d3:b7:18:97:34:60:6b:44:b2:9e:b4: 6f:4b:04:16:13:72:2d:66:c5:fa:e7:fe:a5:b2:d0:97:7e:bb: 5b:0f:af:28:55:03:b8:e3:08:cd:41:c1:1d:82:40:23:0b:de: e3:d7:93:09:89:39:12:1a:55:bf:a4:6d:62:2b:51:8c:8d:79: ed:90:fe:5e -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTU2MDExMC8GA1UEBRMoRTM4RUIzRjVBNTEwN0UzMEYwQ0E3MURERUE3NUIxNzBE MEIwMzI1NjAeFw0yNDA2MTMwODAwMTlaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NmFhNzEzLTM5NWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvnsCmww8UxpW2vbJAoRF4Q4dfoWhpAcz7qUiv6trGLNuMX8ONJZXrvSnFTaGu P/eH9BJ5yvF5bxDUrfMdMV1HUuZNTMNlI/fUIViLm1DeCagG+E1n8Mu4iWgl/DM/ dh9KroLJYS0/TMSs2WylH9wprnECQelJFJBp8F1icMOvME1tMw0wjc+nAiTxjs+9 3FgH860LOmqtQHibZ0qqyzLgmz34Ht99bTfOvVBF8rFHcK2g1X/yoVdE8gTWPUbg iZRSniRoSgLLIfSsFqbIA0vz7q+LNG8d0LKx/LFnMvK8BpKAIWWiqqwIt4aTJZvH QzeYEx8ii0MvriBhyUmXjl4lAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUtUe3FIpD ZicYESIH5rDO5j6bx6QwHwYDVR0jBBgwFoAU446z9aUQfjDwynHd6nWxcNCwMlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1NTYwLzRDM0Q2QkMwMjE2 RjExRUZBRjQ1RUEyREM0RjlBRTAyLzQ0Nno5YVVRZmpEd3luSGQ2bld4Y05Dd01s WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDQ2ejlhVVFmakR3eW5IZDZuV3hjTkN3TWxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTU2MC80QzNENkJDMDIxNkYxMUVGQUY0NUVBMkRDNEY5QUUwMi9GOUVDRjRBMDI5 NUExMUVGQkVDRkNBN0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfEYQDANBgkqhkiG9w0BAQsFAAOCAQEAGQAyyYLtvHNZ VwGqQQaXFQdqu4ZpPtdwUYFocGCJWzPAPJIfrcwgV30+dv80exxmDDP9XcXXHZKO L2zbzhuZQGqn0Hunipk38ITGQmjmk+7akIfNZDdK205tuku9eJ7aXHXnN2gVBOo4 +SEeCA5hW3TLVFq3cFu+GgjS34SP0+L6VV6070a7UovPfZLNmXmTsFLBG753UArN r8vmtZ0SKFi/HwEWh4SyxsbgJrSUCVQsCW/T/YX4bBwKA9O3GJc0YGtEsp60b0sE FhNyLWbF+uf+pbLQl367Ww+vKFUDuOMIzUHBHYJAIwve49eTCYk5EhpVv6RtYitR jI157ZD+Xg== -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:20 2024 by rpki-client on console-fra.rpki-client.org