$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/6CF3FF44901111EF922BFC29C4F9AE02.roa File: 6CF3FF44901111EF922BFC29C4F9AE02.roa (raw, json) Hash identifier: kYva9N1B9q6x51z8ic6e8oPHZgI7EM6Un1P8CXMlwJE= Subject key identifier: A3:33:4C:17:C3:D9:9D:54:D1:09:93:21:EA:A2:18:C7:C7:E4:6D:0A Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: 02 Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/6CF3FF44901111EF922BFC29C4F9AE02.roa Signing time: Tue 22 Oct 2024 01:03:19 +0000 ROA not before: Tue 22 Oct 2024 01:03:19 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150146 IP address blocks: 2001:df1:d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Oct 22 01:03:19 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6716f9d7-83b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:73:f1:3b:3d:1e:11:57:2e:37:9d:5c:00:e8: fb:3d:e2:6d:e8:3d:ee:31:8e:fc:6c:de:17:c3:71: f1:75:f0:bf:53:3b:7d:97:7d:e9:68:ea:e4:d1:a4: 23:e8:0c:b6:2a:b2:01:7a:3d:50:ff:bd:1e:f3:05: ed:62:15:3a:06:d2:00:c6:7e:8b:11:36:b0:a8:86: 6a:cb:e0:76:c5:39:0f:65:4a:d5:f0:25:c8:63:9a: ff:ab:9a:d0:a8:19:95:b6:aa:3b:3f:fa:79:51:7f: ed:9d:7c:db:2a:80:0b:1f:3c:9a:1e:0d:e5:ad:32: ca:8a:6d:25:5c:af:39:6b:5f:63:99:39:6a:b3:03: 4c:1e:8e:bd:c0:94:b4:29:43:c7:8d:81:aa:a7:b9: bb:2a:b0:38:42:52:91:6f:f9:1d:98:f3:fb:bc:db: e5:61:f0:5b:0d:28:ad:a2:ef:d1:78:8b:41:02:d9: d5:00:bf:5c:4c:5c:39:fb:7c:03:a5:a9:ff:9b:07: b1:ea:ab:2a:5a:b4:2e:b8:32:96:4a:7e:80:9d:b5: ff:51:e1:6c:e6:82:fa:ff:30:d3:b5:13:e9:7a:04: 41:80:5b:59:37:3c:76:dc:f3:fd:24:57:f8:a0:43: cb:7b:2c:d7:d6:0a:79:08:ea:33:6c:ea:b9:6d:76: c1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:33:4C:17:C3:D9:9D:54:D1:09:93:21:EA:A2:18:C7:C7:E4:6D:0A X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/6CF3FF44901111EF922BFC29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:d40::/48 Signature Algorithm: sha256WithRSAEncryption 8a:92:9c:45:fd:3f:ea:be:98:55:df:90:37:85:53:15:62:8e: 9f:9c:f7:17:83:b9:8b:1d:e7:f6:81:dd:8d:b1:53:63:23:5d: ef:9c:fe:fe:4c:cf:74:ac:74:30:f6:22:80:bc:32:dc:c5:f1: 20:dd:84:fb:aa:ed:6d:8e:6f:57:62:cd:5e:ec:83:15:2e:fe: 4d:45:6f:5b:82:d2:a4:a1:f6:df:c4:9d:7f:bd:9c:51:71:f8: fc:df:28:f2:39:cd:ea:32:4c:c0:6b:dc:94:99:b3:4b:dc:84: 00:9d:bb:f9:e2:9e:fb:8b:64:8b:62:bf:fc:cd:7b:68:b2:d6: d0:be:2a:b6:1f:d9:8b:5a:ba:77:0c:7e:ad:b2:fe:83:ed:20: b6:bd:ca:ed:9b:ef:16:07:1c:ae:8c:a5:34:0d:3e:09:cc:03: 5d:80:3d:31:56:ab:6f:18:ce:54:a4:26:bc:61:7b:91:ab:00: 84:eb:62:81:8b:d7:cb:53:29:33:30:2c:f0:b9:44:b9:ef:97: 83:57:b4:d5:3a:53:41:c7:a4:58:72:a3:db:98:3a:23:bc:bd: 2d:2e:75:05:4d:fd:bd:83:18:db:fa:bc:ba:df:80:75:f1:57: d8:44:6b:cd:4d:3a:05:e9:c4:0a:51:1a:36:0e:72:57:2c:f5: 4a:f2:a2:27 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUEzQjExMC8GA1UEBRMoREZDNTI4Q0YwMDA2RTM0MTRBRkI3RkU4NkQxRkRFQUY2 NDhCNUM5RDAeFw0yNDEwMjIwMTAzMTlaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTZmOWQ3LTgzYjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGc/E7PR4RVy43nVwA6Ps94m3oPe4xjvxs3hfDcfF18L9TO32Xfelo6uTRpCPo DLYqsgF6PVD/vR7zBe1iFToG0gDGfosRNrCohmrL4HbFOQ9lStXwJchjmv+rmtCo GZW2qjs/+nlRf+2dfNsqgAsfPJoeDeWtMsqKbSVcrzlrX2OZOWqzA0wejr3AlLQp Q8eNgaqnubsqsDhCUpFv+R2Y8/u82+Vh8FsNKK2i79F4i0EC2dUAv1xMXDn7fAOl qf+bB7HqqypatC64MpZKfoCdtf9R4Wzmgvr/MNO1E+l6BEGAW1k3PHbc8/0kV/ig Q8t7LNfWCnkI6jNs6rltdsFJAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUozNMF8PZ nVTRCZMh6qIYx8fkbQowHwYDVR0jBBgwFoAU38UozwAG40FK+3/obR/er2SLXJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxQTNCLzIyNzAxOURBOTAx MTExRUY5Qjg1Qzk2QUM0RjlBRTAyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhK MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzhVb3p3QUc0MEZLLTNfb2JSX2VyMlNMWEowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEzQi8yMjcwMTlEQTkwMTExMUVGOUI4NUM5NkFDNEY5QUUwMi82Q0YzRkY0NDkw MTExMUVGOTIyQkZDMjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfENQDANBgkqhkiG9w0BAQsFAAOCAQEAipKcRf0/6r6Y Vd+QN4VTFWKOn5z3F4O5ix3n9oHdjbFTYyNd75z+/kzPdKx0MPYigLwy3MXxIN2E +6rtbY5vV2LNXuyDFS7+TUVvW4LSpKH238Sdf72cUXH4/N8o8jnN6jJMwGvclJmz S9yEAJ27+eKe+4tki2K//M17aLLW0L4qth/Zi1q6dwx+rbL+g+0gtr3K7ZvvFgcc roylNA0+CcwDXYA9MVarbxjOVKQmvGF7kasAhOtigYvXy1MpMzAs8LlEue+Xg1e0 1TpTQcekWHKj25g6I7y9LS51BU39vYMY2/q8ut+AdfFX2ERrzU06BenEClEaNg5y Vyz1SvKiJw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org