$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/944B4FC0717B11EF8588F70CC4F9AE02.roa File: 944B4FC0717B11EF8588F70CC4F9AE02.roa (raw, json) Hash identifier: qQa6vyEJjbBc2w/+sGgu52UgYQxCQqXvTvhhJTFkJdE= Subject key identifier: 46:8F:A7:77:10:C6:F5:A7:9C:4A:37:99:11:23:A4:F6:84:52:8D:2E Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 46BE Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/944B4FC0717B11EF8588F70CC4F9AE02.roa Signing time: Fri 13 Sep 2024 02:55:06 +0000 ROA not before: Fri 13 Sep 2024 02:55:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152959 IP address blocks: 2001:df4:1b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18110 (0x46be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 13 02:55:06 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e3a989-0ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c5:5a:fe:60:2c:ce:13:08:6c:3c:2d:b2:45: e4:39:58:30:8d:b4:79:b1:97:a1:ad:2f:d8:f1:41: d2:62:d5:d4:c8:29:8f:93:f3:fe:66:37:ab:83:15: 15:33:0f:15:3b:03:99:4b:17:1b:78:7e:fe:d0:03: 86:27:b6:de:ec:79:37:80:1f:90:62:c3:3a:55:4e: 17:b5:0c:4f:67:4b:de:b7:11:a2:31:53:0d:79:e4: 05:ba:6d:7b:42:f7:3e:bf:1c:b0:5f:cc:89:89:1e: 6b:dc:1d:90:b6:c8:7c:9d:80:b5:f1:61:63:df:07: 47:cb:dc:9a:d8:ca:20:1d:21:03:4b:e8:f9:34:07: c6:9e:9a:76:78:ed:72:f0:4c:08:bf:9e:71:5c:59: 54:2a:d2:60:db:b0:07:e5:a5:fd:3f:6b:4d:91:06: cb:38:9d:e5:0c:b5:41:f9:19:d7:df:b4:45:88:cc: 15:63:0b:0c:2f:85:bd:cb:bd:45:f1:af:b3:04:2c: 92:33:e0:65:3a:5a:05:72:91:3a:37:b9:e9:9b:b2: ac:8e:41:00:20:81:7f:9b:41:fb:c6:e0:79:90:7c: 31:32:d0:08:83:1b:1b:73:0c:b3:1e:4f:82:05:08: a6:b5:f1:21:22:8b:f3:4c:12:67:de:88:05:1b:0e: 6f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:8F:A7:77:10:C6:F5:A7:9C:4A:37:99:11:23:A4:F6:84:52:8D:2E X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/944B4FC0717B11EF8588F70CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:1b40::/48 Signature Algorithm: sha256WithRSAEncryption 4d:2f:b4:58:d4:c7:7c:7f:33:de:aa:2c:59:26:dd:84:a0:89: 19:40:43:e8:55:15:03:b0:e9:78:3b:be:90:4b:07:4c:b2:ba: 09:57:ff:4a:90:97:b4:28:5c:1f:ab:9c:e4:7f:bd:dd:bb:5a: 02:d0:b8:99:8d:db:c7:66:c4:12:be:86:60:d1:e5:27:dc:9d: 43:d2:55:18:39:e5:b7:b9:c9:75:92:67:03:be:f4:0f:02:07: a0:1e:3f:ca:48:1a:1e:f8:6a:1e:6a:c4:5a:6c:c1:f9:17:08: e7:46:3c:2f:f1:5b:55:aa:a3:84:b0:b4:7e:48:60:1b:39:30: c5:97:c4:01:32:76:b9:22:82:07:f6:d2:dc:60:fb:8b:2d:9c: 23:ad:af:84:de:6c:99:82:ab:50:b0:4f:1e:bd:bf:58:3b:a2: 16:c9:b4:2f:57:f6:59:ca:1a:4a:4a:ce:51:31:14:a6:51:da: 90:09:fc:7f:91:c6:a5:90:cb:98:21:4b:c6:4e:b1:11:7f:5b: a1:ae:ac:99:ff:b8:5b:1f:c3:34:96:64:c1:e6:43:d1:89:c7: 7a:8a:18:17:c8:b8:11:ea:43:9d:2f:61:0d:49:b3:e4:fa:33: bd:92:b6:03:b7:29:f7:45:15:5f:69:e6:8d:26:2e:07:12:a3: a3:cc:7d:fa -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICRr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTEzMDI1NTA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzYTk4OS0wZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8Va/mAszhMIbDwtskXkOVgwjbR5sZehrS/Y8UHSYtXUyCmPk/P+ZjergxUV Mw8VOwOZSxcbeH7+0AOGJ7be7Hk3gB+QYsM6VU4XtQxPZ0vetxGiMVMNeeQFum17 Qvc+vxywX8yJiR5r3B2Qtsh8nYC18WFj3wdHy9ya2MogHSEDS+j5NAfGnpp2eO1y 8EwIv55xXFlUKtJg27AH5aX9P2tNkQbLOJ3lDLVB+RnX37RFiMwVYwsML4W9y71F 8a+zBCySM+BlOloFcpE6N7npm7KsjkEAIIF/m0H7xuB5kHwxMtAIgxsbcwyzHk+C BQimtfEhIovzTBJn3ogFGw5vdwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEaPp3cQ xvWnnEo3mREjpPaEUo0uMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTQ0QjRGQzA3 MTdCMTFFRjg1ODhGNzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30G0AwDQYJKoZIhvcNAQELBQADggEBAE0vtFjUx3x/ M96qLFkm3YSgiRlAQ+hVFQOw6Xg7vpBLB0yyuglX/0qQl7QoXB+rnOR/vd27WgLQ uJmN28dmxBK+hmDR5SfcnUPSVRg55be5yXWSZwO+9A8CB6AeP8pIGh74ah5qxFps wfkXCOdGPC/xW1Wqo4SwtH5IYBs5MMWXxAEydrkiggf20txg+4stnCOtr4TebJmC q1CwTx69v1g7ohbJtC9X9lnKGkpKzlExFKZR2pAJ/H+RxqWQy5ghS8ZOsRF/W6Gu rJn/uFsfwzSWZMHmQ9GJx3qKGBfIuBHqQ50vYQ1Js+T6M72StgO3KfdFFV9p5o0m LgcSo6PMffo= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:01 2024 by rpki-client on console-ams.rpki-client.org