$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4878C418888411EFA160AD84C4F9AE02.roa File: 4878C418888411EFA160AD84C4F9AE02.roa (raw, json) Hash identifier: uTQ7Dc8JELh0hAR13ioBANTxfAAcJPuLkjD3OtSzgkA= Subject key identifier: 7D:52:61:81:9B:B7:C8:02:C3:5C:0B:69:2F:AE:75:C5:3A:A2:38:36 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4832 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4878C418888411EFA160AD84C4F9AE02.roa Signing time: Sat 16 Nov 2024 14:46:04 +0000 ROA not before: Sat 16 Nov 2024 14:46:04 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153002 IP address blocks: 2001:df4:5740::/48 maxlen: 48 2001:df4:7dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18482 (0x4832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Nov 16 14:46:04 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6738b02c-ca07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:65:ba:8f:51:7c:a0:07:d1:ce:d2:01:42:ce: 43:8c:4d:70:c9:cd:41:43:12:ce:17:06:f3:c4:8f: 05:34:21:fb:b3:84:54:29:82:97:79:f1:7f:6d:b9: 20:a9:2b:88:11:72:b2:48:46:90:59:06:d2:cd:d8: e8:7f:e3:7f:0d:4b:63:22:03:92:54:08:7d:e3:6d: 06:89:46:63:81:95:47:aa:cf:1b:aa:7e:48:c3:9d: f4:3f:1a:7b:c7:6e:33:4f:06:ee:5f:b5:11:e4:2c: cf:77:c1:5b:b8:a9:ed:57:4c:80:d7:16:32:9a:41: af:4f:5f:ce:a2:03:2f:fb:66:af:68:57:65:e5:fc: eb:4f:cc:f1:fa:52:d5:c1:eb:63:87:66:0e:57:86: 47:ea:d6:5d:b7:21:1d:e8:31:d1:4a:3b:ee:e1:00: a6:dc:5a:8d:ec:78:bb:b1:ac:8a:12:13:3d:ce:73: 4e:80:08:7c:ed:c7:08:2b:10:5b:3d:86:2a:3a:58: 3f:23:78:48:00:5a:bf:e5:4d:17:db:44:48:01:94: 49:ef:b4:ee:71:16:4a:79:85:3c:b3:cd:30:a4:63: e7:ca:66:73:3a:3a:36:56:e1:68:ab:1f:47:91:c4: af:fd:75:48:38:c0:79:ab:cd:46:4e:08:20:bc:d2: 0d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:52:61:81:9B:B7:C8:02:C3:5C:0B:69:2F:AE:75:C5:3A:A2:38:36 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4878C418888411EFA160AD84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:5740::/48 2001:df4:7dc0::/48 Signature Algorithm: sha256WithRSAEncryption 7c:37:9a:d6:fa:20:82:d2:7d:81:6c:41:41:4f:83:b7:36:38: ea:6b:3d:ee:01:a5:2d:0f:1f:fe:5d:0b:72:52:55:8e:88:a6: 1c:12:36:2d:82:ef:6c:7b:f7:94:88:4b:7c:da:98:3a:56:fd: 33:53:d5:ba:d6:9f:ce:81:0b:e5:ae:e7:8f:9c:ae:8d:32:24: 0b:0c:48:23:b6:3d:7f:8a:b3:d9:7b:76:21:00:cf:79:b1:56: a1:91:08:a0:86:83:8b:3d:f7:09:dc:ec:65:a2:9c:9b:25:2c: fe:15:36:ca:7b:59:19:79:23:e2:c9:0a:82:1e:bf:9a:7d:42: ec:4b:8d:8a:22:b4:21:b5:93:42:39:44:79:e4:b6:47:40:fc: e4:9e:67:ab:e9:bb:02:58:a3:3f:a6:13:06:28:22:8f:af:fb: 4a:e8:2c:fa:2c:ea:37:8e:96:f5:67:cc:35:6f:5e:ad:f0:76: ed:f1:86:dd:b6:e9:16:1e:06:05:20:1c:94:63:8d:50:7e:3f: b4:15:ba:9e:9b:72:40:a7:e0:b8:a2:08:85:9f:92:bd:da:21: a0:d5:af:5e:04:71:c9:2c:67:ee:a3:b4:aa:3f:17:81:68:81: d4:21:69:35:6a:29:dc:df:33:6c:cf:26:01:21:f8:a7:97:5e: 05:13:00:d1 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICSDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQxMTE2MTQ0NjA0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM4YjAyYy1jYTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWW6j1F8oAfRztIBQs5DjE1wyc1BQxLOFwbzxI8FNCH7s4RUKYKXefF/bbkg qSuIEXKySEaQWQbSzdjof+N/DUtjIgOSVAh9420GiUZjgZVHqs8bqn5Iw530Pxp7 x24zTwbuX7UR5CzPd8FbuKntV0yA1xYymkGvT1/OogMv+2avaFdl5fzrT8zx+lLV wetjh2YOV4ZH6tZdtyEd6DHRSjvu4QCm3FqN7Hi7sayKEhM9znNOgAh87ccIKxBb PYYqOlg/I3hIAFq/5U0X20RIAZRJ77TucRZKeYU8s80wpGPnymZzOjo2VuFoqx9H kcSv/XVIOMB5q81GTgggvNINmQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFH1SYYGb t8gCw1wLaS+udcU6ojg2MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDg3OEM0MTg4 ODg0MTFFRkExNjBBRDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAgAQ30V0ADBwAgAQ30fcAwDQYJKoZIhvcNAQELBQADggEB AHw3mtb6IILSfYFsQUFPg7c2OOprPe4BpS0PH/5dC3JSVY6IphwSNi2C72x795SI S3zamDpW/TNT1brWn86BC+Wu54+cro0yJAsMSCO2PX+Ks9l7diEAz3mxVqGRCKCG g4s99wnc7GWinJslLP4VNsp7WRl5I+LJCoIev5p9QuxLjYoitCG1k0I5RHnktkdA /OSeZ6vpuwJYoz+mEwYoIo+v+0roLPos6jeOlvVnzDVvXq3wdu3xht226RYeBgUg HJRjjVB+P7QVup6bckCn4LiiCIWfkr3aIaDVr14EccksZ+6jtKo/F4FogdQhaTVq KdzfM2zPJgEh+KeXXgUTANE= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:00 2024 by rpki-client on console-ams.rpki-client.org