$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/04EB22A890CF11EDA79E3741C4F9AE02.roa File: 04EB22A890CF11EDA79E3741C4F9AE02.roa (raw, json) Hash identifier: f3uGCbB6QwrsNB/xM38UFuKjblHiedvWnu7kZZDsawU= Subject key identifier: FE:57:93:A9:59:7C:1B:3F:37:35:DC:F4:79:91:88:24:EA:A9:CF:51 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45B5 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/04EB22A890CF11EDA79E3741C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:33:40 +0000 ROA not before: Thu 05 Sep 2024 03:33:40 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149064 IP address blocks: 2001:df0:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17845 (0x45b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:33:40 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92694-434d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:a6:bb:fe:50:05:a4:96:08:e9:bc:25:4b: e4:54:34:4f:7b:07:0d:bb:4d:74:f7:31:5e:a6:20: 58:b4:83:c3:06:18:98:60:b2:f2:d1:e7:87:9a:af: 97:50:aa:01:df:45:7a:41:c3:e2:da:73:21:8a:f8: 21:34:46:8f:12:6a:45:cb:40:d8:50:c3:12:f2:53: bb:d1:b4:c5:20:04:f5:87:8f:81:69:13:b3:99:e4: 42:d7:3c:95:5a:87:92:4f:3f:df:e1:5d:51:e4:26: 57:60:ac:db:d8:02:60:95:58:f5:ce:6e:39:c9:e5: 75:ae:8b:b1:6a:f1:1d:ca:b0:dc:0f:3c:90:81:24: 3d:fd:52:cf:c2:30:42:2f:10:34:0a:c5:1c:37:45: a3:f7:28:d6:c9:95:a2:60:c5:80:44:2b:e2:4e:a2: 7d:f6:d1:4a:aa:70:74:84:7a:1e:7f:52:af:a8:54: e1:ca:25:49:9a:24:f0:19:f0:84:b1:31:5e:20:dd: 56:4e:17:25:b4:85:b3:b9:41:1d:b0:e1:8d:3d:bc: a5:b6:6e:f4:0c:bc:21:f0:3a:11:ad:10:c9:28:22: d3:12:c2:41:07:80:a3:2f:3c:61:c9:41:42:44:89: d7:2a:01:4b:8d:e5:a5:ed:fa:d5:50:cb:42:6d:fa: ba:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:57:93:A9:59:7C:1B:3F:37:35:DC:F4:79:91:88:24:EA:A9:CF:51 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/04EB22A890CF11EDA79E3741C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:2040::/48 Signature Algorithm: sha256WithRSAEncryption 87:58:55:2a:f7:24:31:75:ac:9f:e9:b0:b9:46:dc:cd:78:e2: 6d:a8:6d:78:71:3b:7c:8e:c3:8e:bd:f0:2f:3f:dd:22:16:6d: 35:e5:d8:64:d0:71:15:a2:00:2e:5a:c8:1f:34:a3:76:ee:4a: ba:34:ab:26:31:47:83:f3:eb:6b:6a:c1:ed:8e:e2:43:7d:bd: 6f:20:14:7a:bb:a0:78:02:c5:f8:dd:ac:b2:00:ad:57:f4:82: fd:c5:d7:d8:84:e6:36:29:4d:d0:38:1b:49:0c:e5:d2:8e:b9: 51:75:ad:95:3d:6a:f4:99:65:3a:7c:01:8d:f1:c0:80:71:86: 47:ae:d8:26:19:4a:d3:4c:4d:2c:7d:e7:22:97:86:c9:0a:99: 72:d4:36:dc:0d:ce:15:33:f8:6c:69:3d:a1:e9:de:f5:2e:75: 85:4f:07:81:c0:17:68:78:44:5b:f3:d6:06:0f:37:23:93:ef: bd:e5:30:cc:eb:33:91:08:70:c5:29:51:32:e7:7d:06:71:ff: ec:5a:df:85:55:40:68:81:91:62:7c:63:ec:32:37:d7:14:d4: 78:0e:4d:15:9a:c1:d9:c5:00:8a:ab:34:ea:a1:04:7f:90:78: f3:dc:d6:6f:bf:61:5a:b4:1d:ee:39:7b:0d:f1:0a:b6:7c:2f: 53:bc:21:0f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICRbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMzQwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY5NC00MzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreCmu/5QBaSWCOm8JUvkVDRPewcNu0109zFepiBYtIPDBhiYYLLy0eeHmq+X UKoB30V6QcPi2nMhivghNEaPEmpFy0DYUMMS8lO70bTFIAT1h4+BaROzmeRC1zyV WoeSTz/f4V1R5CZXYKzb2AJglVj1zm45yeV1rouxavEdyrDcDzyQgSQ9/VLPwjBC LxA0CsUcN0Wj9yjWyZWiYMWARCviTqJ99tFKqnB0hHoef1KvqFThyiVJmiTwGfCE sTFeIN1WThcltIWzuUEdsOGNPbyltm70DLwh8DoRrRDJKCLTEsJBB4CjLzxhyUFC RInXKgFLjeWl7frVUMtCbfq6CQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFP5Xk6lZ fBs/NzXc9HmRiCTqqc9RMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMDRFQjIyQTg5 MENGMTFFREE3OUUzNzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wIEAwDQYJKoZIhvcNAQELBQADggEBAIdYVSr3JDF1 rJ/psLlG3M144m2obXhxO3yOw4698C8/3SIWbTXl2GTQcRWiAC5ayB80o3buSro0 qyYxR4Pz62tqwe2O4kN9vW8gFHq7oHgCxfjdrLIArVf0gv3F19iE5jYpTdA4G0kM 5dKOuVF1rZU9avSZZTp8AY3xwIBxhkeu2CYZStNMTSx95yKXhskKmXLUNtwNzhUz +GxpPaHp3vUudYVPB4HAF2h4RFvz1gYPNyOT773lMMzrM5EIcMUpUTLnfQZx/+xa 34VVQGiBkWJ8Y+wyN9cU1HgOTRWawdnFAIqrNOqhBH+QePPc1m+/YVq0He45ew3x CrZ8L1O8IQ8= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:59 2024 by rpki-client on console-ams.rpki-client.org