$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BE0921408A0611EFB684B439C4F9AE02.roa File: BE0921408A0611EFB684B439C4F9AE02.roa (raw, json) Hash identifier: 9sOHwUhAe6HYWHCQ5LAv9SD3sn9hbM8ov5KeE1E/Gmo= Subject key identifier: F8:DC:C2:25:D8:3F:A2:B4:82:C9:BE:CB:91:C4:F0:51:BA:23:57:B8 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 475B Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BE0921408A0611EFB684B439C4F9AE02.roa Signing time: Mon 14 Oct 2024 08:31:44 +0000 ROA not before: Mon 14 Oct 2024 08:31:44 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153004 IP address blocks: 2001:df4:5840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18267 (0x475b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Oct 14 08:31:44 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=670cd6ef-d6be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f0:2d:66:81:93:61:37:63:3b:b9:2e:0b:c6: 97:c5:d5:29:33:87:e8:bd:12:d8:31:ac:c8:f3:22: 93:3b:05:ea:14:18:4c:cf:1f:38:8d:ab:67:1a:10: 1e:2e:c8:9f:66:c7:bd:9f:07:73:94:8d:96:1b:5c: fc:26:78:dc:f2:0d:1a:9d:9f:2e:42:8e:64:92:4e: aa:c4:81:35:7a:58:06:cf:84:a7:b9:24:9b:55:82: 7f:65:d1:3c:75:07:cd:93:4d:64:1d:27:19:48:36: a4:ca:6f:f2:bc:f7:51:1a:54:7a:e5:ef:bc:27:ca: 6d:0d:ae:14:d6:c0:d4:c0:30:59:74:b2:10:7b:18: 82:ab:b2:87:fe:b4:be:45:0f:07:b6:d5:1d:eb:49: c4:6e:68:72:5c:29:e2:76:3a:00:4d:6b:f0:86:21: 0e:a6:10:6d:a9:2a:52:47:a4:ef:50:8c:34:ce:b1: b8:18:b1:43:5e:90:79:34:18:98:0d:57:87:69:77: 17:51:98:06:89:3d:57:c8:08:99:54:4b:09:f0:90: bc:9b:db:b2:ae:0e:7f:10:12:3c:fc:24:f5:6a:3c: ac:a2:91:76:c7:01:c1:d6:f8:98:af:dd:53:75:ae: 2b:47:b5:07:2d:a9:93:04:7a:af:ec:a9:f0:32:ea: bc:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:DC:C2:25:D8:3F:A2:B4:82:C9:BE:CB:91:C4:F0:51:BA:23:57:B8 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BE0921408A0611EFB684B439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:5840::/48 Signature Algorithm: sha256WithRSAEncryption 50:0c:23:c2:e3:f5:e0:96:68:c7:d9:1b:a7:c0:6a:82:52:7c: e9:27:98:93:0c:59:13:9e:ca:a1:9d:56:9e:ab:6e:8f:22:f7: 34:d5:59:5e:27:9a:3f:29:c5:08:a3:c3:6f:01:3c:51:e5:2a: 1f:84:1b:1a:ba:e3:15:f2:9b:25:54:d2:8c:42:50:fa:a8:13: 14:c6:a4:75:98:c6:19:87:38:ea:b8:d7:a2:c8:56:fe:7f:2a: 65:ad:57:85:71:16:7b:23:1c:d2:67:85:7d:1d:ac:96:ca:d6: c6:1a:fe:aa:87:ec:02:24:82:c7:14:2c:99:bc:fc:02:62:1a: 1c:6d:40:15:ef:ec:99:fc:db:b6:7b:b2:4f:26:b8:14:d2:d7: 26:db:fc:85:17:9c:87:dc:b2:7a:a0:2c:c7:95:67:85:16:a5: 98:fb:4e:91:55:51:a3:1f:a1:15:2a:e0:fd:17:d0:90:b4:06: 5c:8a:af:16:90:4f:5a:79:5c:38:db:a4:96:a5:74:79:5f:09: c8:77:6b:9b:33:83:ad:b4:b0:64:2e:11:56:ef:03:3c:a6:80: a0:67:9b:f4:5e:e2:8b:8f:f2:6c:d7:10:4d:fe:e6:e1:6b:04: f6:65:90:f8:00:02:79:3f:b9:d5:39:35:fd:9c:b9:c1:34:d8: c2:a9:41:76 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICR1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQxMDE0MDgzMTQ0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBjZDZlZi1kNmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vAtZoGTYTdjO7kuC8aXxdUpM4fovRLYMazI8yKTOwXqFBhMzx84jatnGhAe LsifZse9nwdzlI2WG1z8Jnjc8g0anZ8uQo5kkk6qxIE1elgGz4SnuSSbVYJ/ZdE8 dQfNk01kHScZSDakym/yvPdRGlR65e+8J8ptDa4U1sDUwDBZdLIQexiCq7KH/rS+ RQ8HttUd60nEbmhyXCnidjoATWvwhiEOphBtqSpSR6TvUIw0zrG4GLFDXpB5NBiY DVeHaXcXUZgGiT1XyAiZVEsJ8JC8m9uyrg5/EBI8/CT1ajysopF2xwHB1viYr91T da4rR7UHLamTBHqv7KnwMuq8gQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPjcwiXY P6K0gsm+y5HE8FG6I1e4MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkUwOTIxNDA4 QTA2MTFFRkI2ODRCNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30WEAwDQYJKoZIhvcNAQELBQADggEBAFAMI8Lj9eCW aMfZG6fAaoJSfOknmJMMWROeyqGdVp6rbo8i9zTVWV4nmj8pxQijw28BPFHlKh+E Gxq64xXymyVU0oxCUPqoExTGpHWYxhmHOOq416LIVv5/KmWtV4VxFnsjHNJnhX0d rJbK1sYa/qqH7AIkgscULJm8/AJiGhxtQBXv7Jn827Z7sk8muBTS1ybb/IUXnIfc snqgLMeVZ4UWpZj7TpFVUaMfoRUq4P0X0JC0BlyKrxaQT1p5XDjbpJaldHlfCch3 a5szg620sGQuEVbvAzymgKBnm/Re4ouP8mzXEE3+5uFrBPZlkPgAAnk/udU5Nf2c ucE02MKpQXY= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org