$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D3FFD0E0592111EF9A271B30C4F9AE02.roa File: D3FFD0E0592111EF9A271B30C4F9AE02.roa (raw, json) Hash identifier: GDP5TWbwe28N8yGLD4fm7zWl6SK2/R0lqGxe2q7S5FI= Subject key identifier: 3D:12:76:E5:60:D9:2E:7C:44:7B:0E:1C:22:EA:54:46:01:28:F2:5B Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4634 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D3FFD0E0592111EF9A271B30C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:30 +0000 ROA not before: Thu 05 Sep 2024 03:35:30 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152966 IP address blocks: 2001:df4:21c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17972 (0x4634) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:30 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92702-f832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ba:3d:b0:f0:9d:e7:0b:6b:bc:e5:85:c3:9c: 34:dc:3e:c0:8c:e3:8d:5e:0e:51:6c:61:b1:7c:15: 0d:62:e4:cf:68:90:c4:be:41:9f:f2:7c:c4:4b:83: aa:ae:44:38:f8:91:dc:9f:22:2d:43:22:a1:19:0f: 27:b9:bc:02:bc:c5:34:13:5f:9f:f3:69:69:f2:b3: 8d:f0:71:51:62:64:06:98:87:c0:f5:58:34:ed:a5: 6e:dd:8a:44:3d:dd:8f:97:da:c2:bc:eb:dd:53:86: 3a:71:f1:11:d6:53:cf:71:91:11:9a:91:06:da:ad: 19:ce:4f:41:25:68:d8:7a:f4:40:c1:86:65:ab:61: a7:61:86:41:87:9a:03:4f:f4:b9:a5:12:2c:08:62: 94:d7:20:c3:10:95:dd:1f:c6:81:90:35:89:98:85: 05:dd:4c:91:aa:73:86:91:83:65:89:a8:69:05:1d: 07:b8:40:4e:9a:29:1f:ce:b7:49:3d:89:db:ec:c8: 80:22:28:9f:93:5b:28:c5:1f:5f:23:de:30:8d:24: 67:a7:49:2e:d7:cd:5b:9a:98:c2:98:39:25:e2:ba: 0e:7f:9d:a2:ed:94:a7:d1:e3:b7:6f:5a:05:9b:8c: ff:8a:62:05:9a:17:2b:5f:7b:32:19:1d:da:58:1d: dc:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:12:76:E5:60:D9:2E:7C:44:7B:0E:1C:22:EA:54:46:01:28:F2:5B X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D3FFD0E0592111EF9A271B30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:21c0::/48 Signature Algorithm: sha256WithRSAEncryption 95:67:47:95:fe:c0:b7:27:e8:ca:d2:10:63:c8:30:2a:77:a3: 5c:85:d2:b2:1f:47:16:d9:14:c5:56:d1:5c:af:c0:de:02:3f: c6:74:91:85:50:77:70:7d:e3:a0:0d:9a:98:33:c7:34:41:ec: de:7f:1d:88:db:37:a6:e8:75:31:f2:42:28:4f:8a:f1:5a:2f: 9e:70:e8:32:c5:61:03:82:ae:88:25:98:96:6b:7c:8a:13:be: 1f:e3:aa:0d:bd:e1:ec:c6:e7:db:6c:01:13:e7:de:72:69:62: 7a:d9:2d:f5:e8:a1:83:ab:52:e3:7b:c8:41:7a:98:47:1e:32: 3e:4f:86:6e:01:62:4e:3b:64:2d:37:c0:59:5e:5a:95:9d:e2: ac:b8:60:4c:01:63:21:71:ff:be:c4:0b:db:78:1b:6b:fe:90: 88:ee:2e:37:d4:b6:2b:e4:2d:c7:40:6f:26:3d:f3:4b:21:c7: 8a:b0:29:ac:31:1d:69:bd:d3:bc:1c:24:1c:0c:44:8e:c7:6b: b8:4b:8e:68:6e:99:61:e9:63:6c:3e:9d:f5:6d:9e:93:4d:cd: f2:c9:7a:79:66:80:81:f1:dc:17:fc:63:cb:73:a4:8a:87:a3: f1:c5:9a:22:3e:b0:08:48:1e:c7:72:99:fa:12:9a:88:0e:68: 85:fc:ce:27 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICRjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTMwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcwMi1mODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLo9sPCd5wtrvOWFw5w03D7AjOONXg5RbGGxfBUNYuTPaJDEvkGf8nzES4Oq rkQ4+JHcnyItQyKhGQ8nubwCvMU0E1+f82lp8rON8HFRYmQGmIfA9Vg07aVu3YpE Pd2Pl9rCvOvdU4Y6cfER1lPPcZERmpEG2q0Zzk9BJWjYevRAwYZlq2GnYYZBh5oD T/S5pRIsCGKU1yDDEJXdH8aBkDWJmIUF3UyRqnOGkYNliahpBR0HuEBOmikfzrdJ PYnb7MiAIiifk1soxR9fI94wjSRnp0ku181bmpjCmDkl4roOf52i7ZSn0eO3b1oF m4z/imIFmhcrX3syGR3aWB3cawIDAQABo4ICmDCCApQwHQYDVR0OBBYEFD0SduVg 2S58RHsOHCLqVEYBKPJbMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRDNGRkQwRTA1 OTIxMTFFRjlBMjcxQjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30IcAwDQYJKoZIhvcNAQELBQADggEBAJVnR5X+wLcn 6MrSEGPIMCp3o1yF0rIfRxbZFMVW0VyvwN4CP8Z0kYVQd3B946ANmpgzxzRB7N5/ HYjbN6bodTHyQihPivFaL55w6DLFYQOCroglmJZrfIoTvh/jqg294ezG59tsARPn 3nJpYnrZLfXooYOrUuN7yEF6mEceMj5Phm4BYk47ZC03wFleWpWd4qy4YEwBYyFx /77EC9t4G2v+kIjuLjfUtivkLcdAbyY980shx4qwKawxHWm907wcJBwMRI7Ha7hL jmhumWHpY2w+nfVtnpNNzfLJenlmgIHx3Bf8Y8tzpIqHo/HFmiI+sAhIHsdymfoS mogOaIX8zic= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:02 2024 by rpki-client on console-ams.rpki-client.org