$ rpki-client -vvf rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8AAF803A1C8A11EABAA73A62C4F9AE02.roa File: 8AAF803A1C8A11EABAA73A62C4F9AE02.roa (raw, json) Hash identifier: aCDVqL+/mM6LYQbOqfYbo7QgHkUrD6MbyKhMbVWHThI= Subject key identifier: F0:41:AA:A4:94:8B:02:B9:E0:9A:54:C9:B7:0B:04:CF:67:4C:BC:21 Certificate issuer: /CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Certificate serial: 0B45 Authority key identifier: 16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8AAF803A1C8A11EABAA73A62C4F9AE02.roa Signing time: Fri 30 Aug 2024 19:57:53 +0000 ROA not before: Fri 30 Aug 2024 19:57:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131270 IP address blocks: 2403:4e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2885 (0xb45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Validity Not Before: Aug 30 19:57:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d22441-df15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:93:9e:37:11:cb:af:03:fa:57:94:77:29:e2: 12:57:b2:98:93:aa:6a:fc:e1:99:29:10:04:95:db: f4:6a:b7:93:f1:97:64:08:07:2d:f3:dc:8e:6b:c2: 63:eb:7b:af:48:0b:16:6f:93:20:0e:ce:3e:2d:b2: 2d:52:c1:19:c9:61:93:17:da:ef:8f:74:30:99:26: 12:10:10:5d:b4:1a:fe:5d:98:93:8b:8e:3c:79:6f: 5a:d2:df:40:11:6c:56:fb:2b:fc:af:f7:24:6f:6a: 48:b0:d4:cf:bf:3b:83:01:ff:b0:37:e9:82:4b:db: 1f:ef:e2:a6:b3:fd:9e:d6:36:17:00:62:e0:60:9e: 03:b4:e3:78:36:5f:da:e4:89:7a:81:74:f1:da:62: 5e:cc:6f:f9:0a:32:b7:8d:52:6f:7c:cd:a1:94:1d: 18:96:6d:e7:aa:9a:20:aa:8b:ec:f0:d9:bb:81:e3: 9d:3d:eb:37:03:2f:05:be:95:1c:0a:d7:30:a6:b7: ed:59:b3:a7:02:df:78:0b:f7:af:2f:5d:42:3f:03: 28:e0:f9:a9:6c:eb:70:b8:1f:ba:11:ae:e8:75:64: ed:36:f5:fe:5c:96:42:fc:a9:64:92:61:4e:7a:92: 25:6f:54:d9:b0:6c:29:db:ed:d3:0d:ec:a7:53:80: 97:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:41:AA:A4:94:8B:02:B9:E0:9A:54:C9:B7:0B:04:CF:67:4C:BC:21 X509v3 Authority Key Identifier: keyid:16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8AAF803A1C8A11EABAA73A62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:4e80::/32 Signature Algorithm: sha256WithRSAEncryption b4:76:8d:e7:84:07:5c:95:07:aa:25:a1:21:0d:e7:24:cf:0a: 35:75:fc:0c:fa:98:5e:b9:17:3b:33:8c:17:1c:88:e4:bc:be: 7c:12:ad:9e:e3:99:c4:8b:eb:a9:11:79:ea:c7:37:2f:8f:0b: c0:44:b2:2c:26:60:2d:d1:f1:4c:3d:88:99:23:80:6d:dc:71: a0:5c:44:93:36:fa:3a:a1:1b:4f:3d:e2:2e:6b:01:e4:4e:0e: 8d:6d:d0:fd:ef:2a:5d:1b:5f:87:b6:c1:dc:67:43:4e:17:0f: ec:d8:6b:b0:a6:24:26:e0:52:73:d2:fe:7e:d9:83:81:63:42: 34:b4:0d:61:64:1c:f9:f8:ff:6f:70:26:b4:8b:85:5d:5f:94: a7:d0:b3:84:4c:c1:8c:f2:b2:42:58:7d:d8:52:40:65:f5:d6: 38:a9:b2:8a:d6:b8:52:d9:14:9e:4e:7a:ad:ac:a5:e8:f6:f3: 8c:2c:55:c2:1d:19:4f:9a:67:74:32:61:87:bb:d6:12:9d:51: 35:ae:e5:9b:c1:8a:81:82:02:6c:4a:df:ff:d5:29:ee:42:36: 7d:f7:6d:f1:6f:6d:83:89:80:04:4a:8b:b5:1b:d1:51:d2:6f: e2:45:64:7a:fd:06:69:1d:de:80:fc:79:0c:db:56:08:79:e5: db:a4:92:45 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICC0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NUYxMTAvBgNVBAUTKDE2MUUwMjJBRTg5NzUxMTJFRTc1ODlENDlCMzE2NjBD QTkwQTA0MTAwHhcNMjQwODMwMTk1NzUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyMjQ0MS1kZjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZOeNxHLrwP6V5R3KeISV7KYk6pq/OGZKRAEldv0areT8ZdkCAct89yOa8Jj 63uvSAsWb5MgDs4+LbItUsEZyWGTF9rvj3QwmSYSEBBdtBr+XZiTi448eW9a0t9A EWxW+yv8r/ckb2pIsNTPvzuDAf+wN+mCS9sf7+Kms/2e1jYXAGLgYJ4DtON4Nl/a 5Il6gXTx2mJezG/5CjK3jVJvfM2hlB0Ylm3nqpogqovs8Nm7geOdPes3Ay8FvpUc CtcwprftWbOnAt94C/evL11CPwMo4PmpbOtwuB+6Ea7odWTtNvX+XJZC/KlkkmFO epIlb1TZsGwp2+3TDeynU4CXJQIDAQABo4ICljCCApIwHQYDVR0OBBYEFPBBqqSU iwK54JpUybcLBM9nTLwhMB8GA1UdIwQYMBaAFBYeAirol1ES7nWJ1JsxZgypCgQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY1Ri9CRjk2NkU0QTFD ODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVSTHVkWW5VbXpGbURLa0tC QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoNENLdWlYVVJMdWRZblVtekZtREtrS0JCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2NUYvQkY5NjZFNEExQzg5MTFFQUE5Qjk1NzYxQzRGOUFFMDIvOEFBRjgwM0Ex QzhBMTFFQUJBQTczQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA06AMA0GCSqGSIb3DQEBCwUAA4IBAQC0do3nhAdclQeq JaEhDeckzwo1dfwM+pheuRc7M4wXHIjkvL58Eq2e45nEi+upEXnqxzcvjwvARLIs JmAt0fFMPYiZI4Bt3HGgXESTNvo6oRtPPeIuawHkTg6NbdD97ypdG1+HtsHcZ0NO Fw/s2GuwpiQm4FJz0v5+2YOBY0I0tA1hZBz5+P9vcCa0i4VdX5Sn0LOETMGM8rJC WH3YUkBl9dY4qbKK1rhS2RSeTnqtrKXo9vOMLFXCHRlPmmd0MmGHu9YSnVE1ruWb wYqBggJsSt//1SnuQjZ9923xb22DiYAESou1G9FR0m/iRWR6/QZpHd6A/HkM21YI eeXbpJJF -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org