$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/99A8B15A699D11EFA9CA5639C4F9AE02.roa File: 99A8B15A699D11EFA9CA5639C4F9AE02.roa (raw, json) Hash identifier: LIW12tfsEoC0emHLE5ihgS4cQUuUQB7lvioaEZutg8g= Subject key identifier: BD:23:D5:B7:52:53:FE:CF:7A:BA:BF:CD:08:E8:0D:3F:F4:A2:38:97 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4638 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/99A8B15A699D11EFA9CA5639C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:33 +0000 ROA not before: Thu 05 Sep 2024 03:35:33 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152983 IP address blocks: 2001:df4:3040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17976 (0x4638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:33 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92705-fac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:90:f4:52:20:56:15:0b:f1:f7:f0:bf:63:41: d7:2d:7e:c9:dd:b8:cc:48:2a:2b:34:61:08:f1:00: 97:0f:28:c2:67:3b:de:aa:c4:01:46:f2:2a:41:aa: 96:1b:00:6a:7b:70:82:7e:dc:89:e2:49:4d:c5:82: 5c:dc:96:b0:90:67:95:07:a1:06:95:f2:5e:a2:4e: a7:9a:71:6d:34:78:a3:fc:93:c2:f1:9a:49:09:42: 53:ee:f9:47:f6:bc:ea:27:ad:39:90:0e:61:53:c9: a2:98:4d:d1:3b:d5:92:8e:2e:83:8a:80:23:2b:8e: 72:88:25:4e:e9:3a:3e:42:d9:6e:61:61:17:d1:81: c3:b2:48:c7:72:17:1b:e6:09:d0:67:6a:c8:01:19: 0f:fa:35:70:81:40:35:3a:fe:0e:f1:b7:97:a3:5d: 38:a2:b8:93:e9:2b:da:3c:6a:e3:46:4b:75:96:7d: be:3f:51:97:be:61:fc:f9:a4:71:19:ab:aa:93:5c: dc:a0:db:01:a6:7d:95:fc:3b:a9:14:1f:a3:ee:f0: 10:c3:b5:9c:12:ce:55:da:24:d3:30:aa:f5:ed:a2: 35:2a:1b:f1:14:6b:2c:79:56:24:68:c9:4a:5f:d7: 09:50:88:0c:5d:f1:2d:94:e8:be:74:ca:97:7b:b8: 6e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:23:D5:B7:52:53:FE:CF:7A:BA:BF:CD:08:E8:0D:3F:F4:A2:38:97 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/99A8B15A699D11EFA9CA5639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:3040::/48 Signature Algorithm: sha256WithRSAEncryption 93:96:82:93:0e:11:7f:7d:49:98:cf:64:2e:03:a3:a7:0b:16: 7d:6f:06:46:eb:cb:76:1a:56:07:92:4b:2c:ef:5d:69:59:d8: 05:97:c2:6f:b7:e2:1c:da:01:38:79:d2:f3:8e:96:32:19:af: 37:7f:5b:34:7d:0d:20:1e:b3:82:14:be:bd:56:79:bf:d8:81: e3:8c:75:54:66:9c:91:c7:ea:fa:fa:5b:be:9f:6c:c5:d9:9f: 25:f7:ba:f7:6a:6f:1c:f9:1a:35:ba:c2:72:9b:32:4a:0c:6d: 65:02:e1:65:19:27:c9:67:ee:43:78:41:4b:d7:b9:53:00:67: f7:54:16:fa:16:0b:90:5d:98:bb:1d:50:9f:ad:c4:42:2c:71: ad:fe:cc:2a:88:58:36:1a:0a:0d:e4:ad:27:f7:a8:1a:3a:3c: 7f:d6:56:2e:e8:83:fb:02:69:eb:06:0b:52:5b:a3:ca:e3:13: 21:2a:4b:74:0c:78:02:a2:6a:90:00:85:4b:d5:9a:85:eb:8e: 1d:f4:43:fd:74:df:97:59:f0:89:b2:3b:30:f8:5d:7a:da:a7: 31:8d:a5:8a:17:b2:3d:a2:97:00:1f:31:3e:32:2f:c7:c5:60: 99:62:69:62:90:37:d0:b1:01:99:16:e9:11:c2:e8:13:1a:8e: 80:14:26:b5 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICRjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTMzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcwNS1mYWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpD0UiBWFQvx9/C/Y0HXLX7J3bjMSCorNGEI8QCXDyjCZzveqsQBRvIqQaqW GwBqe3CCftyJ4klNxYJc3JawkGeVB6EGlfJeok6nmnFtNHij/JPC8ZpJCUJT7vlH 9rzqJ605kA5hU8mimE3RO9WSji6DioAjK45yiCVO6To+QtluYWEX0YHDskjHchcb 5gnQZ2rIARkP+jVwgUA1Ov4O8beXo104oriT6SvaPGrjRkt1ln2+P1GXvmH8+aRx Gauqk1zcoNsBpn2V/DupFB+j7vAQw7WcEs5V2iTTMKr17aI1KhvxFGsseVYkaMlK X9cJUIgMXfEtlOi+dMqXe7huDQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFL0j1bdS U/7Perq/zQjoDT/0ojiXMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTlBOEIxNUE2 OTlEMTFFRkE5Q0E1NjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30MEAwDQYJKoZIhvcNAQELBQADggEBAJOWgpMOEX99 SZjPZC4Do6cLFn1vBkbry3YaVgeSSyzvXWlZ2AWXwm+34hzaATh50vOOljIZrzd/ WzR9DSAes4IUvr1Web/YgeOMdVRmnJHH6vr6W76fbMXZnyX3uvdqbxz5GjW6wnKb MkoMbWUC4WUZJ8ln7kN4QUvXuVMAZ/dUFvoWC5BdmLsdUJ+txEIsca3+zCqIWDYa Cg3krSf3qBo6PH/WVi7og/sCaesGC1Jbo8rjEyEqS3QMeAKiapAAhUvVmoXrjh30 Q/1035dZ8ImyOzD4XXrapzGNpYoXsj2ilwAfMT4yL8fFYJliaWKQN9CxAZkW6RHC 6BMajoAUJrU= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org