$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1B8AE2C6AB0F11EF98900631C4F9AE02.roa File: 1B8AE2C6AB0F11EF98900631C4F9AE02.roa (raw, json) Hash identifier: 1uxK20Wuoly+jcbbv/pSwNmErfeNVcqI8sCQrZu58BI= Subject key identifier: 0D:3A:0E:98:41:C8:3A:BD:85:D7:B5:73:8B:25:6F:6C:9E:A7:0A:86 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4868 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1B8AE2C6AB0F11EF98900631C4F9AE02.roa Signing time: Mon 25 Nov 2024 09:24:45 +0000 ROA not before: Mon 25 Nov 2024 09:24:45 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153410 IP address blocks: 2001:df4:97c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18536 (0x4868) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Nov 25 09:24:45 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6744425c-f2d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d2:57:13:d5:78:59:e6:1b:0e:87:f5:ee:e3: 08:b9:1d:a5:c7:52:f0:b0:52:8d:f4:4c:3f:8b:28: 32:50:d7:67:35:bb:60:85:65:d7:40:35:72:03:97: 91:32:8e:28:cf:cc:3d:b5:21:2b:b9:7c:0b:26:4a: c1:a0:ff:6e:e9:7b:58:ef:6c:69:a3:fa:81:55:17: c9:79:c4:9a:42:02:db:7d:fa:5a:ff:06:12:04:22: a2:40:16:b2:60:98:ba:c8:16:0b:c6:22:ef:14:89: f2:2d:e3:c8:3a:bd:b5:77:34:7b:67:e2:7d:d0:ef: 90:75:27:a3:f2:f9:14:1c:1e:3b:eb:b0:dc:1a:d5: ad:08:d6:79:14:2a:68:a4:6b:e5:65:47:55:bc:65: 8f:d3:53:44:8f:1a:d9:b5:35:a5:09:d3:b6:c8:c0: 5a:7c:d3:c0:1f:01:fe:91:96:b6:39:cb:1d:87:2e: 76:88:5f:f2:9e:7b:65:ce:2c:e1:11:ad:11:0c:76: 06:89:de:0c:66:d7:1b:39:34:8d:97:5d:0d:c5:16: 51:bf:6c:16:17:9a:06:83:32:43:39:06:ad:f7:23: d9:b6:42:00:6d:7b:8c:1c:1d:50:b2:d1:72:77:e4: dd:d0:62:3a:ee:78:cd:1a:d7:4f:72:2d:f0:59:5b: 08:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:3A:0E:98:41:C8:3A:BD:85:D7:B5:73:8B:25:6F:6C:9E:A7:0A:86 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1B8AE2C6AB0F11EF98900631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:97c0::/48 Signature Algorithm: sha256WithRSAEncryption 77:e6:f2:cc:c3:0f:4d:3b:df:ee:d5:42:9f:3d:a0:37:b4:90: 9c:bf:32:0d:a8:90:4a:26:b9:4e:9c:ec:66:af:7d:c5:c2:50: e4:46:fc:f8:a8:61:b4:21:9f:cb:8f:72:4f:97:cc:e1:00:5c: 8b:cd:1f:81:2a:43:0c:e6:4f:bb:88:ea:50:c8:6d:f3:99:f7: bc:e0:f0:cd:66:56:65:be:80:e0:be:97:99:e8:e0:7c:0d:94: e3:72:55:f2:a6:b0:f6:92:56:8e:23:23:f9:88:2b:5b:d1:ce: 33:f9:30:7a:3d:e3:30:db:f3:2c:42:50:0b:eb:52:b6:fc:9f: 6a:bb:ad:ef:69:e1:a2:b1:30:73:e8:f1:e8:2d:3d:b1:92:85: ea:ef:47:df:d7:8d:88:80:77:f9:fa:81:4b:bc:cb:40:1d:57: 59:95:74:7f:a3:6a:16:6b:9a:15:ba:ed:02:a0:4f:c5:7c:bc: d3:1b:1b:07:3d:fc:5b:95:b4:3e:e1:56:45:6e:e4:f2:e3:16: eb:06:6a:e5:95:ef:1f:01:12:ca:cb:bc:11:7a:4f:fe:4a:87: 2d:ec:5b:62:f0:61:fa:ed:2c:22:02:6c:ad:b2:54:2e:ba:d0: 96:a2:22:73:1a:2c:bd:ad:d1:ce:b1:54:50:e4:4f:31:8d:85: 7b:ea:2f:b3 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICSGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQxMTI1MDkyNDQ1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ0NDI1Yy1mMmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9JXE9V4WeYbDof17uMIuR2lx1LwsFKN9Ew/iygyUNdnNbtghWXXQDVyA5eR Mo4oz8w9tSEruXwLJkrBoP9u6XtY72xpo/qBVRfJecSaQgLbffpa/wYSBCKiQBay YJi6yBYLxiLvFInyLePIOr21dzR7Z+J90O+QdSej8vkUHB4767DcGtWtCNZ5FCpo pGvlZUdVvGWP01NEjxrZtTWlCdO2yMBafNPAHwH+kZa2Ocsdhy52iF/ynntlzizh Ea0RDHYGid4MZtcbOTSNl10NxRZRv2wWF5oGgzJDOQat9yPZtkIAbXuMHB1QstFy d+Td0GI67njNGtdPci3wWVsIgwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFA06DphB yDq9hde1c4slb2yepwqGMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMUI4QUUyQzZB QjBGMTFFRjk4OTAwNjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30l8AwDQYJKoZIhvcNAQELBQADggEBAHfm8szDD007 3+7VQp89oDe0kJy/Mg2okEomuU6c7GavfcXCUORG/PioYbQhn8uPck+XzOEAXIvN H4EqQwzmT7uI6lDIbfOZ97zg8M1mVmW+gOC+l5no4HwNlONyVfKmsPaSVo4jI/mI K1vRzjP5MHo94zDb8yxCUAvrUrb8n2q7re9p4aKxMHPo8egtPbGShervR9/XjYiA d/n6gUu8y0AdV1mVdH+jahZrmhW67QKgT8V8vNMbGwc9/FuVtD7hVkVu5PLjFusG auWV7x8BEsrLvBF6T/5Khy3sW2LwYfrtLCICbK2yVC660JaiInMaLL2t0c6xVFDk TzGNhXvqL7M= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org