$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/FE6C73289C9A11ED8123147BC4F9AE02.roa File: FE6C73289C9A11ED8123147BC4F9AE02.roa (raw, json) Hash identifier: c/YMEhJjfVpB3i5Wjtv4VGg1Y4E70AtSKzhUUpN9Sak= Subject key identifier: A0:C0:77:A2:25:09:48:24:CB:3A:F8:C2:D7:E2:3D:A1:AC:98:65:F4 Certificate issuer: /CN=A91A91D2/serialNumber=21FC815FCB1CEAD770BD6C903694745F71CA7195 Certificate serial: 08D1 Authority key identifier: 21:FC:81:5F:CB:1C:EA:D7:70:BD:6C:90:36:94:74:5F:71:CA:71:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/FE6C73289C9A11ED8123147BC4F9AE02.roa Signing time: Thu 20 Jun 2024 21:33:42 +0000 ROA not before: Thu 20 Jun 2024 21:33:42 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135098 IP address blocks: 2001:df3:a180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/IfyBX8sc6tdwvWyQNpR0X3HKcZU.crl rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/IfyBX8sc6tdwvWyQNpR0X3HKcZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2257 (0x8d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91D2/serialNumber=21FC815FCB1CEAD770BD6C903694745F71CA7195 Validity Not Before: Jun 20 21:33:42 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6674a036-08ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:19:9a:80:97:d5:00:33:c2:f3:dc:c8:0c:41: 91:41:5d:84:41:b8:6a:08:1e:a6:4e:35:5a:f1:ed: 73:e9:62:b4:07:3d:4f:48:bd:e5:44:10:e7:0b:37: 71:9c:71:8f:81:52:92:25:28:41:54:20:7b:1e:7b: 67:b8:0a:4c:e5:e8:0d:09:4d:2c:45:dd:0a:95:dc: fc:17:6f:d9:8d:33:7e:83:b3:f3:dc:9d:28:5b:15: ac:38:e0:a2:49:2a:76:26:d8:8e:e8:87:ef:3f:3d: 0e:a4:81:39:7d:e6:2a:51:60:d5:db:48:2e:c1:42: 00:5c:dc:a5:a7:71:3c:55:c9:4e:53:65:30:e9:43: e6:b6:09:d4:79:70:5d:c6:79:42:6e:64:23:b2:5d: 19:91:ee:1c:e7:13:ed:a0:20:3b:93:4a:1c:54:5d: 2c:f1:66:d4:18:6c:4f:51:11:09:29:4d:cc:10:98: 9f:cf:7e:b7:3a:84:27:e5:b3:83:c5:f0:31:76:c6: 0e:60:78:59:f1:03:3c:17:24:2d:3d:3b:47:c9:11: 4b:43:4d:2d:00:88:67:8f:db:c5:12:41:b7:78:7f: 82:4d:91:8c:64:2c:b9:74:d5:20:67:1f:4e:8e:75: d5:4b:c5:e3:e3:a0:e1:b3:50:dc:39:14:b6:c0:c1: 2e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C0:77:A2:25:09:48:24:CB:3A:F8:C2:D7:E2:3D:A1:AC:98:65:F4 X509v3 Authority Key Identifier: keyid:21:FC:81:5F:CB:1C:EA:D7:70:BD:6C:90:36:94:74:5F:71:CA:71:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/IfyBX8sc6tdwvWyQNpR0X3HKcZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/FE6C73289C9A11ED8123147BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:a180::/48 Signature Algorithm: sha256WithRSAEncryption d3:49:b4:b5:f2:93:ea:49:48:da:01:5b:91:81:90:d6:a3:f1: 33:2f:c7:ed:0f:56:a0:4b:4c:01:af:97:12:ca:80:ec:07:c9: 63:51:e1:2f:f3:01:5a:d8:32:34:19:be:15:fe:33:7d:a8:de: 7c:89:06:5a:41:87:7f:ac:e7:dd:b9:0a:ff:f0:ac:ab:06:ab: 7e:5b:5d:26:e1:c0:6d:41:46:b0:e3:2e:55:ff:ab:83:90:11: 90:16:bc:7c:90:32:4e:73:1d:15:9d:e3:2a:be:85:02:f1:23: 41:9e:43:52:6d:e1:42:ee:a9:ea:7e:35:d8:ca:c0:5b:09:29: 69:16:34:b7:c8:76:3a:35:d9:2b:7f:a1:33:6a:04:16:23:b9: 92:c1:2f:07:52:e1:5d:57:34:af:36:30:33:87:2f:f6:41:ae: 47:5e:f0:38:2d:b6:58:ef:ac:69:f6:b8:54:41:17:03:1f:6c: 3c:8e:3d:c1:0b:e7:ca:14:a6:19:4f:99:de:ac:2e:fa:d9:ed: d5:b3:1e:29:9c:ad:ce:a0:a5:e5:5b:50:1d:2c:44:c2:b7:ab: fd:2a:fc:6d:be:ec:6c:53:52:88:d7:67:b0:09:00:d8:45:26: b3:44:29:0a:8e:15:06:fc:89:b7:c7:de:5f:bd:b3:34:e0:cb: d4:08:3b:d7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxRDIxMTAvBgNVBAUTKDIxRkM4MTVGQ0IxQ0VBRDc3MEJENkM5MDM2OTQ3NDVG NzFDQTcxOTUwHhcNMjQwNjIwMjEzMzQyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc0YTAzNi0wOGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhmagJfVADPC89zIDEGRQV2EQbhqCB6mTjVa8e1z6WK0Bz1PSL3lRBDnCzdx nHGPgVKSJShBVCB7HntnuApM5egNCU0sRd0Kldz8F2/ZjTN+g7Pz3J0oWxWsOOCi SSp2JtiO6IfvPz0OpIE5feYqUWDV20guwUIAXNylp3E8VclOU2Uw6UPmtgnUeXBd xnlCbmQjsl0Zke4c5xPtoCA7k0ocVF0s8WbUGGxPUREJKU3MEJifz363OoQn5bOD xfAxdsYOYHhZ8QM8FyQtPTtHyRFLQ00tAIhnj9vFEkG3eH+CTZGMZCy5dNUgZx9O jnXVS8Xj46Dhs1DcORS2wMEuhQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKDAd6Il CUgkyzr4wtfiPaGsmGX0MB8GA1UdIwQYMBaAFCH8gV/LHOrXcL1skDaUdF9xynGV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFEMi84QzE0RTk0NDkx RDExMUVBQTUzM0E5NzhDNEY5QUUwMi9JZnlCWDhzYzZ0ZHd2V3lRTnBSMFgzSEtj WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmeUJYOHNjNnRkd3ZXeVFOcFIwWDNIS2NaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkxRDIvOEMxNEU5NDQ5MUQxMTFFQUE1MzNBOTc4QzRGOUFFMDIvRkU2QzczMjg5 QzlBMTFFRDgxMjMxNDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zoYAwDQYJKoZIhvcNAQELBQADggEBANNJtLXyk+pJ SNoBW5GBkNaj8TMvx+0PVqBLTAGvlxLKgOwHyWNR4S/zAVrYMjQZvhX+M32o3nyJ BlpBh3+s5925Cv/wrKsGq35bXSbhwG1BRrDjLlX/q4OQEZAWvHyQMk5zHRWd4yq+ hQLxI0GeQ1Jt4ULuqep+NdjKwFsJKWkWNLfIdjo12St/oTNqBBYjuZLBLwdS4V1X NK82MDOHL/ZBrkde8DgttljvrGn2uFRBFwMfbDyOPcEL58oUphlPmd6sLvrZ7dWz Himcrc6gpeVbUB0sRMK3q/0q/G2+7GxTUojXZ7AJANhFJrNEKQqOFQb8ibfH3l+9 szTgy9QIO9c= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:31 2024 by rpki-client on console-fra.rpki-client.org