$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/87221D64592111EF8909412FC4F9AE02.roa File: 87221D64592111EF8909412FC4F9AE02.roa (raw, json) Hash identifier: n6xypyulJqMcGshFoh+Xto3cCgx59BIHvv/sUVKQHm4= Subject key identifier: 14:F9:6D:24:77:28:E7:34:74:B6:82:CA:73:F7:AC:23:E2:19:D1:B6 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4633 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/87221D64592111EF8909412FC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:29 +0000 ROA not before: Thu 05 Sep 2024 03:35:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152963 IP address blocks: 2001:df4:1f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17971 (0x4633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92701-ad84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ea:61:8c:be:e0:8c:68:7b:ec:2e:84:c2:ce: 38:d6:ea:a1:c9:6a:e0:79:8f:a2:50:be:65:45:81: 41:d1:51:8c:58:5a:1e:70:5d:d8:47:8a:f8:86:c2: 36:9f:8c:c2:62:76:81:77:17:26:76:0c:15:21:13: 6e:e2:f2:b9:6f:ec:96:18:02:cb:24:92:b4:56:04: 6b:4a:6e:35:01:28:b2:3c:06:d6:a8:46:b6:df:d4: f1:de:35:81:ad:1e:13:0f:0b:96:a2:78:88:80:d0: fc:67:60:32:c3:ad:9c:aa:af:cb:ba:59:14:a0:dd: f4:84:90:20:a9:76:fa:63:64:f2:0b:f2:cf:c1:d6: a1:67:07:db:bc:4c:7e:86:9f:f4:25:f7:da:d4:39: d0:42:fd:f9:ec:47:be:be:15:5f:3c:04:11:22:42: e5:3c:e9:f9:36:b5:41:e6:9a:d4:ed:83:df:e9:78: 5e:fc:22:39:7f:d9:c7:5c:22:47:d0:a5:35:b1:73: 99:d4:13:22:33:b4:ad:94:74:32:c3:83:a4:37:81: b3:a7:ff:15:78:e6:e2:53:4e:70:09:18:58:67:8a: 1b:87:c5:dd:ca:47:82:a3:9a:cc:74:6f:8f:76:02: db:9c:2f:dc:86:6f:f6:51:98:cb:22:18:d9:4d:79: f3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F9:6D:24:77:28:E7:34:74:B6:82:CA:73:F7:AC:23:E2:19:D1:B6 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/87221D64592111EF8909412FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:1f40::/48 Signature Algorithm: sha256WithRSAEncryption be:cb:f6:56:d3:10:4d:1c:94:dc:14:22:92:1e:80:ab:1a:83: e0:b5:3d:ad:df:1b:7b:36:af:ef:5d:2a:1c:7d:ff:8e:3c:e8: 45:b6:f8:96:e6:69:1c:c8:b0:d5:13:ba:b8:93:94:23:56:2d: e8:08:12:b7:1a:02:39:59:42:a6:ea:11:af:c4:df:9c:27:b9: 29:50:1f:c0:d8:7e:19:e1:a3:d2:f7:4d:a5:d2:14:4a:a3:21: 7c:63:6b:4a:95:0f:77:fe:19:bf:13:d3:63:34:a2:cd:c1:9c: 30:c3:0c:dd:23:2b:fc:e0:b3:6f:ad:92:49:5f:a0:25:5d:9a: 9a:d8:7f:f3:7a:58:b5:2b:7f:a4:1b:52:4e:01:08:ca:82:de: 94:9e:cc:c1:23:93:0b:b2:38:b5:8d:49:96:43:8f:61:d6:b4: 08:da:5c:b4:f4:23:ed:39:de:9f:e0:b5:5c:26:c8:14:a1:e6: a2:86:12:89:b9:8d:1c:6a:cb:65:80:fe:e1:19:6c:40:23:d6: 7c:c1:53:0e:c4:13:76:d3:d6:63:83:10:a1:7b:8a:a7:83:7d: 5c:d6:0d:eb:e4:45:0c:ae:43:90:23:7d:68:77:cc:e3:e9:84: 6f:d8:ec:bc:c3:88:90:c2:bc:e3:95:0f:35:f5:4f:04:4d:09: 66:0e:54:25 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICRjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcwMS1hZDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzephjL7gjGh77C6Ews441uqhyWrgeY+iUL5lRYFB0VGMWFoecF3YR4r4hsI2 n4zCYnaBdxcmdgwVIRNu4vK5b+yWGALLJJK0VgRrSm41ASiyPAbWqEa239Tx3jWB rR4TDwuWoniIgND8Z2Ayw62cqq/LulkUoN30hJAgqXb6Y2TyC/LPwdahZwfbvEx+ hp/0Jffa1DnQQv357Ee+vhVfPAQRIkLlPOn5NrVB5prU7YPf6Xhe/CI5f9nHXCJH 0KU1sXOZ1BMiM7StlHQyw4OkN4Gzp/8VeObiU05wCRhYZ4obh8XdykeCo5rMdG+P dgLbnC/chm/2UZjLIhjZTXnzGQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBT5bSR3 KOc0dLaCynP3rCPiGdG2MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvODcyMjFENjQ1 OTIxMTFFRjg5MDk0MTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30H0AwDQYJKoZIhvcNAQELBQADggEBAL7L9lbTEE0c lNwUIpIegKsag+C1Pa3fG3s2r+9dKhx9/4486EW2+JbmaRzIsNUTuriTlCNWLegI ErcaAjlZQqbqEa/E35wnuSlQH8DYfhnho9L3TaXSFEqjIXxja0qVD3f+Gb8T02M0 os3BnDDDDN0jK/zgs2+tkklfoCVdmprYf/N6WLUrf6QbUk4BCMqC3pSezMEjkwuy OLWNSZZDj2HWtAjaXLT0I+053p/gtVwmyBSh5qKGEom5jRxqy2WA/uEZbEAj1nzB Uw7EE3bT1mODEKF7iqeDfVzWDevkRQyuQ5AjfWh3zOPphG/Y7LzDiJDCvOOVDzX1 TwRNCWYOVCU= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org