$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/5A51D464F5FA11EC9B35372AC4F9AE02.roa File: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (raw, json) Hash identifier: nqhvH+f7wHKT8bjIs6vVLkOc7U1WY+z2Ysz9HVOAovM= Subject key identifier: BA:DC:C6:1D:0C:0A:34:41:30:7B:E4:56:FC:E8:73:61:C7:C2:D2:35 Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 06A7 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/5A51D464F5FA11EC9B35372AC4F9AE02.roa Signing time: Mon 16 Sep 2024 22:01:01 +0000 ROA not before: Mon 16 Sep 2024 22:01:01 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 142300 IP address blocks: 2406:f480:0:80::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1703 (0x6a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Sep 16 22:01:01 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e8aa9d-6a38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:69:97:a2:53:95:52:ee:54:2d:42:87:e6:c7: 40:30:2b:91:11:be:e4:30:ea:e1:eb:11:80:d6:89: 1f:a3:b0:e7:ae:7e:d3:89:61:f5:f3:6e:0a:d3:73: 74:9c:79:8f:28:cf:d3:98:94:31:ef:c8:5c:d6:c5: b9:7c:c1:f0:b0:44:ec:ba:2d:ca:7b:9e:a0:ef:c9: 99:62:51:79:20:a6:24:7c:4c:aa:2a:5f:31:59:0a: 10:0c:06:dd:28:f4:e5:8b:b9:94:80:36:5e:30:5d: 86:49:31:c5:1b:8d:0a:ff:ac:17:a1:be:8e:67:67: 8f:9d:12:86:cc:e7:94:0a:93:5a:f7:26:f3:d1:0d: 61:50:62:00:07:f4:84:6b:4e:11:16:73:06:c2:2f: 15:b7:a1:09:98:12:0f:1f:73:b8:1f:74:5d:65:6b: 36:0b:57:20:a8:aa:58:29:0d:50:70:e8:eb:08:6d: 6c:81:f7:b1:75:aa:4a:1c:b9:96:8f:a8:75:c0:1d: 09:75:ee:b2:8d:ad:73:08:c8:55:36:e2:e5:f5:8e: 0f:6c:a2:ba:22:84:63:be:7a:51:31:60:d6:1b:c1: 08:6b:7e:70:90:72:db:73:4e:66:26:93:c3:8a:07: d7:73:5f:e7:8a:19:1b:b5:d0:0d:7f:d0:0a:9d:d9: a0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:DC:C6:1D:0C:0A:34:41:30:7B:E4:56:FC:E8:73:61:C7:C2:D2:35 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/5A51D464F5FA11EC9B35372AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:f480:0:80::/64 Signature Algorithm: sha256WithRSAEncryption 26:5c:73:87:94:f0:b6:32:31:14:9a:ef:c8:8a:ee:42:6a:f5: a5:24:e2:91:75:eb:51:bb:19:2c:05:ae:5f:ea:63:bf:74:b0: 14:c7:8e:c6:36:47:9c:32:c6:ad:e8:75:92:4a:f7:be:65:88: 55:4f:e2:2c:0e:50:3c:b0:69:b9:a6:f8:a5:2b:39:be:35:62: df:57:41:79:7d:a7:0e:8f:84:42:90:ca:a4:ee:c2:6b:f7:4a: a4:cb:d1:28:63:75:f6:92:d4:71:95:06:71:1d:ad:79:2a:e1: b4:48:6f:b6:69:b7:4a:f0:37:f2:fc:dc:4a:2d:3f:ca:58:d9: 65:c7:9e:89:f0:51:71:d0:5d:e9:1b:fc:b9:6a:5f:5e:f2:c0: 96:f5:53:6f:db:6b:96:48:8d:ca:51:d4:c3:35:72:34:a1:10: ec:ab:ab:c7:fd:96:79:83:2f:9a:67:0d:66:f3:48:22:10:e6: c6:b1:0d:00:9e:3c:66:f6:83:88:81:d0:35:44:73:24:b9:ef: af:d6:5f:f2:71:0b:17:d7:ee:74:24:1c:9d:fb:f9:78:4c:be: c0:12:bf:ad:41:c5:3a:c1:a6:18:28:76:af:c6:e1:a2:de:11: 56:1e:74:4e:b3:02:74:7a:9e:5f:fb:22:0a:dc:5e:84:ab:18: 8b:d4:b9:0f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICBqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjQwOTE2MjIwMTAxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4YWE5ZC02YTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2mXolOVUu5ULUKH5sdAMCuREb7kMOrh6xGA1okfo7Dnrn7TiWH1824K03N0 nHmPKM/TmJQx78hc1sW5fMHwsETsui3Ke56g78mZYlF5IKYkfEyqKl8xWQoQDAbd KPTli7mUgDZeMF2GSTHFG40K/6wXob6OZ2ePnRKGzOeUCpNa9ybz0Q1hUGIAB/SE a04RFnMGwi8Vt6EJmBIPH3O4H3RdZWs2C1cgqKpYKQ1QcOjrCG1sgfexdapKHLmW j6h1wB0Jde6yja1zCMhVNuLl9Y4PbKK6IoRjvnpRMWDWG8EIa35wkHLbc05mJpPD igfXc1/nihkbtdANf9AKndmgGwIDAQABo4ICmjCCApYwHQYDVR0OBBYEFLrcxh0M CjRBMHvkVvzoc2HHwtI1MB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1NEMvNTFBOUVBQ0M0MTYwMTFFQjkwODc0NDUwQzRGOUFFMDIvNUE1MUQ0NjRG NUZBMTFFQzlCMzUzNzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgACMAsDCQAkBvSAAAAAgDANBgkqhkiG9w0BAQsFAAOCAQEAJlxzh5Tw tjIxFJrvyIruQmr1pSTikXXrUbsZLAWuX+pjv3SwFMeOxjZHnDLGreh1kkr3vmWI VU/iLA5QPLBpuab4pSs5vjVi31dBeX2nDo+EQpDKpO7Ca/dKpMvRKGN19pLUcZUG cR2teSrhtEhvtmm3SvA38vzcSi0/yljZZceeifBRcdBd6Rv8uWpfXvLAlvVTb9tr lkiNylHUwzVyNKEQ7Kurx/2WeYMvmmcNZvNIIhDmxrENAJ48ZvaDiIHQNURzJLnv r9Zf8nELF9fudCQcnfv5eEy+wBK/rUHFOsGmGCh2r8bhot4RVh50TrMCdHqeX/si CtxehKsYi9S5Dw== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org