$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa File: F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa (raw, json) Hash identifier: NdbphxCCW/0QaYFIIuCoc2s3U5MsSxFLdZGoiC7E3Ew= Subject key identifier: 0B:B0:F3:42:63:03:29:81:97:C7:57:15:1B:92:87:92:C5:99:BF:6D Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Certificate serial: 51 Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa Signing time: Fri 25 Oct 2024 06:21:27 +0000 ROA not before: Fri 25 Oct 2024 06:21:27 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150062 IP address blocks: 2001:df1:1840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Validity Not Before: Oct 25 06:21:27 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671b38e7-e0b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:74:c9:24:b4:5f:38:2b:5c:77:6a:23:c4:1c: f5:f2:6f:21:17:d6:05:73:ba:b2:1f:fd:8e:13:2c: 1f:10:eb:08:3b:9d:6a:9b:69:56:24:60:6c:de:aa: 41:02:f5:a9:41:7d:8e:23:1d:bf:37:d5:d0:10:14: ef:50:6d:04:bc:bd:c3:4c:b8:07:c7:9c:02:6b:65: 23:3c:14:f8:f7:a4:8e:1d:33:93:85:d5:17:96:3c: cd:a1:e4:c4:18:b4:f0:d2:63:7f:b4:9b:b4:1c:ee: 9d:55:05:1d:77:95:c3:a6:97:a8:a1:0e:79:3f:66: ef:d2:ed:61:42:a0:fa:03:8e:88:dc:fb:2f:72:95: 16:9e:54:38:e9:b9:61:28:9f:88:65:b9:87:ea:3e: e5:0a:86:61:ca:9b:e5:65:14:b3:2b:0b:d7:27:0a: a9:49:ec:e2:fb:04:d8:9f:6e:ca:ae:73:c6:10:1c: a5:02:bb:d4:f4:89:4c:9e:17:64:71:87:af:0c:4e: 46:b3:ec:b0:1e:53:16:e9:6b:18:44:a0:d5:7a:eb: 80:f4:60:81:b5:0e:44:4e:61:07:03:cf:dd:27:78: b6:1e:1d:03:4e:03:34:33:bf:f2:2b:ec:09:bf:bc: 46:3a:5e:64:fe:ed:93:22:b4:ce:fc:ab:75:f1:d7: 47:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B0:F3:42:63:03:29:81:97:C7:57:15:1B:92:87:92:C5:99:BF:6D X509v3 Authority Key Identifier: keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:1840::/48 Signature Algorithm: sha256WithRSAEncryption 9c:c2:1e:e0:c6:b6:08:bd:9e:6a:e9:38:b4:2a:91:97:13:d5: 41:73:53:d4:80:b6:d9:3c:ee:ac:64:7c:f5:64:f7:88:d7:a7: 7e:05:11:f5:ad:fa:4f:38:91:37:da:d9:a8:e2:95:08:43:51: 04:56:24:0f:68:29:8f:08:d3:ed:17:bc:0f:fc:4b:81:1f:b0: dd:85:ee:44:81:81:e5:81:9d:91:9f:3d:f4:f1:01:b6:03:59: 36:62:2f:3a:4a:41:78:f9:c5:f5:8e:42:e3:b7:92:e7:e7:9d: c1:6a:54:5d:4f:26:ea:06:78:0f:29:0f:aa:c9:fc:18:b1:25: 26:8f:89:ed:c8:0a:91:41:8f:31:93:56:ca:67:48:26:7e:b9: 0d:43:27:33:8f:e0:e8:10:a9:16:88:85:33:e0:8c:1e:a6:19: 2f:88:d9:1d:06:1c:0a:fb:e8:96:20:0e:68:0d:be:1a:6a:e0: 93:19:5b:f0:b6:d3:51:5a:52:b6:0e:c0:ed:08:70:d4:c6:be: 0a:64:0d:8c:af:20:ba:83:a8:70:72:84:45:bd:e2:40:e5:76: 9f:8c:50:d0:0a:6a:33:73:fa:4e:6b:98:08:4d:51:c2:0a:42: c0:b5:7d:ac:71:10:5f:65:ed:80:6d:9f:5b:1f:f4:08:00:b9: d5:41:bd:45 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTU2MDExMC8GA1UEBRMoRTM4RUIzRjVBNTEwN0UzMEYwQ0E3MURERUE3NUIxNzBE MEIwMzI1NjAeFw0yNDEwMjUwNjIxMjdaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWIzOGU3LWUwYjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXdMkktF84K1x3aiPEHPXybyEX1gVzurIf/Y4TLB8Q6wg7nWqbaVYkYGzeqkEC 9alBfY4jHb831dAQFO9QbQS8vcNMuAfHnAJrZSM8FPj3pI4dM5OF1ReWPM2h5MQY tPDSY3+0m7Qc7p1VBR13lcOml6ihDnk/Zu/S7WFCoPoDjojc+y9ylRaeVDjpuWEo n4hluYfqPuUKhmHKm+VlFLMrC9cnCqlJ7OL7BNifbsquc8YQHKUCu9T0iUyeF2Rx h68MTkaz7LAeUxbpaxhEoNV664D0YIG1DkROYQcDz90neLYeHQNOAzQzv/Ir7Am/ vEY6XmT+7ZMitM78q3Xx10cdAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUC7DzQmMD KYGXx1cVG5KHksWZv20wHwYDVR0jBBgwFoAU446z9aUQfjDwynHd6nWxcNCwMlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1NTYwLzRDM0Q2QkMwMjE2 RjExRUZBRjQ1RUEyREM0RjlBRTAyLzQ0Nno5YVVRZmpEd3luSGQ2bld4Y05Dd01s WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDQ2ejlhVVFmakR3eW5IZDZuV3hjTkN3TWxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTU2MC80QzNENkJDMDIxNkYxMUVGQUY0NUVBMkRDNEY5QUUwMi9GOUVDRjRBMDI5 NUExMUVGQkVDRkNBN0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfEYQDANBgkqhkiG9w0BAQsFAAOCAQEAnMIe4Ma2CL2e auk4tCqRlxPVQXNT1IC22TzurGR89WT3iNenfgUR9a36TziRN9rZqOKVCENRBFYk D2gpjwjT7Re8D/xLgR+w3YXuRIGB5YGdkZ899PEBtgNZNmIvOkpBePnF9Y5C47eS 5+edwWpUXU8m6gZ4DykPqsn8GLElJo+J7cgKkUGPMZNWymdIJn65DUMnM4/g6BCp FoiFM+CMHqYZL4jZHQYcCvvoliAOaA2+Gmrgkxlb8LbTUVpStg7A7Qhw1Ma+CmQN jK8guoOocHKERb3iQOV2n4xQ0ApqM3P6TmuYCE1RwgpCwLV9rHEQX2XtgG2fWx/0 CAC51UG9RQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:47 2024 by rpki-client on console-fra.rpki-client.org