$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F0C26620F6D911EEAAB0053FC4F9AE02.roa File: F0C26620F6D911EEAAB0053FC4F9AE02.roa (raw, json) Hash identifier: an1FF8RPuLSJD05cUWnFF26NHAe4J7isO9Psejck58c= Subject key identifier: 84:62:8E:3C:F9:3D:05:AF:5F:08:B5:AD:CE:07:70:5D:2B:B7:26:D5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 462E Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F0C26620F6D911EEAAB0053FC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:25 +0000 ROA not before: Thu 05 Sep 2024 03:35:25 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151917 IP address blocks: 2401:8f20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17966 (0x462e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:25 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d926fd-bd49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9d:a9:49:89:2d:87:66:c2:e4:a0:8a:ea:dc: fa:9f:ba:a6:94:0b:64:56:93:39:cd:31:33:b4:ac: 5a:b2:d2:fd:d2:6d:f5:23:e1:aa:01:f0:a0:52:f0: 33:bf:98:6f:44:d3:98:6a:23:b3:e6:80:c8:b5:db: 4c:7b:72:03:a8:99:ea:63:a3:24:44:21:b6:fd:e0: ae:f5:39:34:27:f7:26:4f:fc:90:40:1d:ab:48:bb: fd:c9:a8:1d:a1:6b:ca:15:83:76:1e:b6:3a:89:8d: 23:ba:51:cd:57:18:cb:68:4b:de:cc:ff:74:03:e2: 4f:aa:53:97:89:5d:2f:e8:e1:61:0e:b4:2a:7f:f6: 10:64:3e:86:f0:c7:ba:3f:7b:b9:3d:2d:fa:90:2c: e2:2e:aa:32:80:94:f9:26:82:0b:85:ca:2a:fb:ca: 60:0a:64:0d:71:ab:d0:ab:ba:89:1e:c0:1b:68:a1: 58:05:43:34:a7:33:1a:0b:e1:d9:eb:ac:54:f1:ee: b5:41:87:4e:56:cb:d7:aa:da:4a:82:ee:5b:23:a6: d6:0c:86:83:0f:b6:c8:44:12:63:0e:9e:f2:98:79: be:b8:6a:91:cd:e6:12:23:05:fb:67:19:a6:63:45: 3f:eb:52:04:0f:42:3b:d1:6b:4c:e5:96:18:58:38: 93:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:62:8E:3C:F9:3D:05:AF:5F:08:B5:AD:CE:07:70:5D:2B:B7:26:D5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F0C26620F6D911EEAAB0053FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:8f20::/48 Signature Algorithm: sha256WithRSAEncryption a5:fc:7b:e2:04:0b:e9:db:f5:56:4a:0d:bb:33:77:3d:7b:8f: 34:0a:8a:b3:fc:c9:35:b0:e7:3a:d9:3c:04:9d:00:41:22:95: c4:73:c8:d0:99:95:0c:8e:5c:70:f8:e5:ac:31:f1:fe:2c:14: ed:d5:83:f3:df:ce:d3:df:77:ae:bb:9d:67:62:6b:6c:64:df: d8:4b:f9:08:b3:2d:a9:71:25:46:6c:73:c3:b6:55:4b:7f:14: 3d:2d:c2:e6:25:8f:ef:69:01:95:f0:4f:d6:2b:4c:bc:87:86: 04:1a:42:43:8a:17:da:fc:5d:df:3b:93:3f:27:77:7b:b1:2b: 0a:31:f2:f2:8a:f2:cc:84:26:ce:44:de:c6:2f:b8:ba:58:71: 31:1f:d5:84:cd:78:64:cf:55:38:d7:c5:7e:f2:0a:8c:0c:19: 58:37:11:fb:29:32:62:40:0a:dd:ba:3f:f4:ca:b9:4c:4c:4e: d0:a3:ab:c1:62:ea:73:e1:9b:9e:4a:ff:e1:66:cc:87:e2:b7: 8c:56:ea:84:26:e1:d9:b0:c7:73:2e:56:f0:53:46:2e:25:1c: 45:8d:74:ab:33:b2:64:d0:0d:57:19:42:65:27:d6:9c:00:26: 60:f4:87:02:20:6a:37:57:86:ec:cd:54:11:5f:e8:40:e6:ed: 52:52:22:6e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICRi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTI1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjZmZC1iZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZ2pSYkth2bC5KCK6tz6n7qmlAtkVpM5zTEztKxastL90m31I+GqAfCgUvAz v5hvRNOYaiOz5oDItdtMe3IDqJnqY6MkRCG2/eCu9Tk0J/cmT/yQQB2rSLv9yagd oWvKFYN2HrY6iY0julHNVxjLaEvezP90A+JPqlOXiV0v6OFhDrQqf/YQZD6G8Me6 P3u5PS36kCziLqoygJT5JoILhcoq+8pgCmQNcavQq7qJHsAbaKFYBUM0pzMaC+HZ 66xU8e61QYdOVsvXqtpKgu5bI6bWDIaDD7bIRBJjDp7ymHm+uGqRzeYSIwX7Zxmm Y0U/61IED0I70WtM5ZYYWDiTMQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIRijjz5 PQWvXwi1rc4HcF0rtybVMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRjBDMjY2MjBG NkQ5MTFFRUFBQjAwNTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAY8gAAAwDQYJKoZIhvcNAQELBQADggEBAKX8e+IEC+nb 9VZKDbszdz17jzQKirP8yTWw5zrZPASdAEEilcRzyNCZlQyOXHD45awx8f4sFO3V g/PfztPfd667nWdia2xk39hL+QizLalxJUZsc8O2VUt/FD0twuYlj+9pAZXwT9Yr TLyHhgQaQkOKF9r8Xd87kz8nd3uxKwox8vKK8syEJs5E3sYvuLpYcTEf1YTNeGTP VTjXxX7yCowMGVg3EfspMmJACt26P/TKuUxMTtCjq8Fi6nPhm55K/+FmzIfit4xW 6oQm4dmwx3MuVvBTRi4lHEWNdKszsmTQDVcZQmUn1pwAJmD0hwIgajdXhuzNVBFf 6EDm7VJSIm4= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org