$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/566FED7071AB11EFB45D987FC4F9AE02.roa File: 566FED7071AB11EFB45D987FC4F9AE02.roa (raw, json) Hash identifier: onR2uI3t7B5rdKMQ9B0hDc8jZVQnbHydJm9JIeuRrL8= Subject key identifier: 93:07:97:6E:0D:9A:79:ED:00:8B:89:F7:CA:68:F4:2B:96:B6:8C:A5 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 06 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/566FED7071AB11EFB45D987FC4F9AE02.roa Signing time: Fri 13 Sep 2024 08:36:58 +0000 ROA not before: Fri 13 Sep 2024 08:36:58 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137546 IP address blocks: 2001:3c8:e10e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 13 08:36:58 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e3f9a9-7a79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:dc:c7:cb:b2:3a:df:5a:75:b0:89:f8:87:3f: 89:b2:4d:d2:6a:ec:97:e9:1b:cd:f7:e4:60:d2:2d: 53:67:7b:ca:ea:f0:7c:4f:69:4e:d8:c9:0c:57:e4: f1:46:fd:cf:5d:68:06:ff:1a:c9:29:e6:03:f1:80: b8:11:29:c8:9e:df:a8:68:80:be:3a:62:c2:9b:15: c9:34:0b:b9:f4:07:43:c2:ee:6d:bf:e1:56:1f:65: 2e:49:b5:16:20:b4:e8:75:2b:e6:e8:7b:23:6f:f7: 68:2d:b1:2c:15:73:97:a4:cf:70:f4:0d:35:a4:a1: bc:7e:e6:99:d6:44:28:88:89:17:11:19:3d:85:86: 3e:e1:56:48:6c:82:ef:0b:4a:d6:1a:83:c0:20:09: 15:65:b6:ab:4c:53:cd:d1:3f:69:0d:e5:b1:0e:ae: c9:2c:7e:f0:66:be:b9:ec:6f:e7:8d:d7:d3:2a:96: ca:9a:bd:5a:21:0c:21:a4:5d:c4:0f:d9:e5:09:b5: 19:23:56:6a:ad:45:d1:72:62:fb:2e:d0:ba:62:9a: c5:c1:7e:34:03:f8:ef:22:1c:b8:3c:e0:e7:57:af: 59:6c:0f:33:5c:47:f2:d9:89:a9:a6:6a:9a:0e:8e: 98:3b:32:ac:ac:c3:26:f6:aa:fb:2e:04:a4:0f:c6: 53:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:07:97:6E:0D:9A:79:ED:00:8B:89:F7:CA:68:F4:2B:96:B6:8C:A5 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/566FED7071AB11EFB45D987FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:3c8:e10e::/48 Signature Algorithm: sha256WithRSAEncryption ae:83:a2:ac:0c:32:1f:9e:6c:b7:7a:ce:3f:30:3c:b0:56:2f: 04:a9:55:bf:f3:ca:11:c5:2c:3d:41:dd:a3:65:06:7d:ea:9b: 40:2f:65:a4:0c:ca:dc:89:82:37:5e:dc:ca:b5:5c:c9:60:14: fc:09:80:70:63:49:b3:af:59:40:fa:f1:ee:73:dd:f0:e7:a8: c5:43:54:93:f3:ff:f9:8c:60:44:93:85:98:1e:0c:c5:36:10: 85:0a:55:35:3e:62:05:e5:08:4f:6c:6e:95:8d:de:3f:44:35: 59:5c:68:d3:cf:0f:13:37:40:c5:6b:42:09:17:32:7a:0e:38: c3:37:78:0d:28:7c:cd:cd:59:0a:cc:2f:e2:67:8b:e8:87:b2: ea:43:42:ff:2c:c7:d1:be:85:82:e0:65:c1:43:f8:41:3a:9f: 9d:69:59:9f:c3:9a:2a:7f:37:d2:d0:21:48:2a:fe:1a:3f:55: 67:b7:76:3a:c9:61:45:60:56:c3:9b:05:be:2f:2d:36:71:4f: 5f:c2:be:70:fa:75:2c:60:00:eb:9c:1a:ce:3e:f0:ce:ea:d5: 9b:72:e3:76:b8:b7:19:1d:ff:9c:6e:4b:f2:f0:55:e5:2b:37: bc:3e:7b:37:35:94:bd:57:0b:4c:be:1f:17:77:3e:64:66:f6: 26:a9:d5:7b -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUVCMjExMC8GA1UEBRMoOUI5OEZCN0Q0Njg5ODNBMkMxNDc3MjczMzI0OEVGRkEz NDYyRTEyNjAeFw0yNDA5MTMwODM2NThaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTNmOWE5LTdhNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDe3MfLsjrfWnWwifiHP4myTdJq7JfpG8335GDSLVNne8rq8HxPaU7YyQxX5PFG /c9daAb/Gskp5gPxgLgRKcie36hogL46YsKbFck0C7n0B0PC7m2/4VYfZS5JtRYg tOh1K+boeyNv92gtsSwVc5ekz3D0DTWkobx+5pnWRCiIiRcRGT2Fhj7hVkhsgu8L StYag8AgCRVltqtMU83RP2kN5bEOrsksfvBmvrnsb+eN19MqlsqavVohDCGkXcQP 2eUJtRkjVmqtRdFyYvsu0LpimsXBfjQD+O8iHLg84OdXr1lsDzNcR/LZiammapoO jpg7Mqyswyb2qvsuBKQPxlMnAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUkweXbg2a ee0Ai4n3ymj0K5a2jKUwHwYDVR0jBBgwFoAUm5j7fUaJg6LBR3JzMkjv+jRi4SYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRUIyLzM5NTIxMDBFNkU4 MzExRUZBQjcyNjE4MEM0RjlBRTAyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVqN2ZVYUpnNkxCUjNKek1ranYtalJpNFNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVCMi8zOTUyMTAwRTZFODMxMUVGQUI3MjYxODBDNEY5QUUwMi81NjZGRUQ3MDcx QUIxMUVGQjQ1RDk4N0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABA8jhDjANBgkqhkiG9w0BAQsFAAOCAQEAroOirAwyH55s t3rOPzA8sFYvBKlVv/PKEcUsPUHdo2UGfeqbQC9lpAzK3ImCN17cyrVcyWAU/AmA cGNJs69ZQPrx7nPd8OeoxUNUk/P/+YxgRJOFmB4MxTYQhQpVNT5iBeUIT2xulY3e P0Q1WVxo088PEzdAxWtCCRcyeg44wzd4DSh8zc1ZCswv4meL6Iey6kNC/yzH0b6F guBlwUP4QTqfnWlZn8OaKn830tAhSCr+Gj9VZ7d2OslhRWBWw5sFvi8tNnFPX8K+ cPp1LGAA65wazj7wzurVm3Ljdri3GR3/nG5L8vBV5Ss3vD57NzWUvVcLTL4fF3c+ ZGb2JqnVew== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org