$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3816FE9844B211EFA3EEED58C4F9AE02.roa File: 3816FE9844B211EFA3EEED58C4F9AE02.roa (raw, json) Hash identifier: AS92LE2eSR4JK1XikGZpAHBn1a0QPtyZfQcsVBouQhI= Subject key identifier: 2E:7F:76:91:69:5A:9B:D0:68:49:D7:91:A2:BD:ED:BA:0A:20:09:6C Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4631 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3816FE9844B211EFA3EEED58C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:28 +0000 ROA not before: Thu 05 Sep 2024 03:35:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152949 IP address blocks: 2001:df4:dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17969 (0x4631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926ff-5e67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:af:92:4f:f9:36:04:aa:68:3f:b6:b3:d9:f6: e1:b4:95:17:76:67:46:74:da:ce:bf:4d:01:31:5d: d8:21:41:2b:cb:60:7a:cb:32:3a:3c:9c:65:3a:34: ff:af:58:77:e2:6a:07:ef:3a:5a:9a:c1:b9:5f:3b: a7:b1:5f:82:06:a9:37:cd:af:b0:23:0e:6a:ec:37: db:aa:8e:fa:cf:4e:cf:95:9e:20:d7:6b:66:cd:ef: cd:84:3c:60:c9:8f:af:c2:8e:73:b7:2e:d3:4c:f4: eb:0f:d6:aa:b0:ec:bf:06:aa:c8:27:42:ed:f1:35: 67:22:6a:c7:7a:79:98:ff:35:53:1e:bd:a6:14:c8: 81:a1:5d:c8:d5:ed:cb:d5:d8:0a:03:79:f1:a2:1c: 1f:56:2c:48:f4:67:b1:77:10:7b:49:9c:1f:0d:8d: 27:9d:66:da:ed:53:2c:74:34:55:50:94:42:97:0e: ad:62:3c:20:fc:7f:21:cc:e4:be:81:92:c4:35:6b: db:c7:87:a7:0b:a8:f0:83:db:3f:40:11:48:87:fa: 73:69:60:51:d6:88:3b:07:8e:f3:3b:c6:d4:a3:d5: 7e:23:20:1c:45:ae:b5:e8:9c:f6:3d:bd:67:10:b7: ee:b8:de:9b:a2:c1:e1:a7:d2:ff:5b:4d:76:97:8e: d7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:7F:76:91:69:5A:9B:D0:68:49:D7:91:A2:BD:ED:BA:0A:20:09:6C X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3816FE9844B211EFA3EEED58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:dc0::/48 Signature Algorithm: sha256WithRSAEncryption 22:50:2a:a8:97:1a:83:98:2d:23:76:37:41:3a:55:da:c9:c8: 1d:7d:b5:dd:27:c9:54:33:34:fa:3c:9c:e2:54:17:31:7c:2c: 2c:78:56:d8:4b:88:63:d6:3c:6c:77:ab:87:69:db:a6:d9:f0: 1c:03:ad:86:8c:5f:b6:bf:2c:34:44:83:36:88:82:76:7c:66: 8b:eb:e3:32:16:97:1d:ad:20:0f:3e:b1:be:06:49:87:c3:fb: c6:ee:bd:dd:4d:d5:68:e9:4b:ef:ff:f2:05:20:ac:9d:18:cf: f1:1f:1f:15:6e:b5:9f:ec:0f:33:93:77:47:08:85:3f:88:3b: ec:2e:3e:09:c6:e7:43:30:0b:9e:9e:e2:80:4c:46:64:11:73: 27:4e:96:80:79:9f:57:ed:d3:2b:5a:61:d2:63:f3:18:a7:bf: 89:9e:80:8e:e8:7a:b8:03:76:37:a9:1d:cb:b1:fb:a4:db:4f: 66:d1:7f:c3:59:39:20:a2:66:71:cd:b2:e8:76:b4:3d:c6:c1: b7:da:5a:92:aa:2e:d2:44:87:2a:70:2e:46:ab:75:ad:2b:35: 52:c9:92:21:8b:4f:69:03:39:17:af:3d:87:ed:5b:6a:fe:19: 74:86:10:d3:2a:23:a7:3f:a4:3f:a0:76:fc:21:c9:2c:df:6c: 7d:99:6d:25 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICRjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZmZi01ZTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwq+ST/k2BKpoP7az2fbhtJUXdmdGdNrOv00BMV3YIUEry2B6yzI6PJxlOjT/ r1h34moH7zpamsG5XzunsV+CBqk3za+wIw5q7Dfbqo76z07PlZ4g12tmze/NhDxg yY+vwo5zty7TTPTrD9aqsOy/BqrIJ0Lt8TVnImrHenmY/zVTHr2mFMiBoV3I1e3L 1dgKA3nxohwfVixI9GexdxB7SZwfDY0nnWba7VMsdDRVUJRClw6tYjwg/H8hzOS+ gZLENWvbx4enC6jwg9s/QBFIh/pzaWBR1og7B47zO8bUo9V+IyAcRa616Jz2Pb1n ELfuuN6bosHhp9L/W012l47XiwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFC5/dpFp WpvQaEnXkaK97boKIAlsMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzgxNkZFOTg0 NEIyMTFFRkEzRUVFRDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30DcAwDQYJKoZIhvcNAQELBQADggEBACJQKqiXGoOY LSN2N0E6VdrJyB19td0nyVQzNPo8nOJUFzF8LCx4VthLiGPWPGx3q4dp26bZ8BwD rYaMX7a/LDREgzaIgnZ8Zovr4zIWlx2tIA8+sb4GSYfD+8buvd1N1WjpS+//8gUg rJ0Yz/EfHxVutZ/sDzOTd0cIhT+IO+wuPgnG50MwC56e4oBMRmQRcydOloB5n1ft 0ytaYdJj8xinv4megI7oergDdjepHcux+6TbT2bRf8NZOSCiZnHNsuh2tD3Gwbfa WpKqLtJEhypwLkarda0rNVLJkiGLT2kDORevPYftW2r+GXSGENMqI6c/pD+gdvwh ySzfbH2ZbSU= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:40 2024 by rpki-client on console-fra.rpki-client.org