$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/9305EF46716511EFAA44E47BC4F9AE02.roa File: 9305EF46716511EFAA44E47BC4F9AE02.roa (raw, json) Hash identifier: xtz9Y7G/yiLqt3GEDOo767zpSDB3Z7BKoYv47Z3yFfc= Subject key identifier: 19:5A:9F:66:55:85:E1:48:AD:51:A0:99:AC:78:F9:94:82:01:47:A6 Certificate issuer: /CN=A91B3558/serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A Certificate serial: 0FDD Authority key identifier: C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/9305EF46716511EFAA44E47BC4F9AE02.roa Signing time: Fri 13 Sep 2024 00:17:34 +0000 ROA not before: Fri 13 Sep 2024 00:17:34 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 2402:2a80:100::/40 maxlen: 48 2402:2a80:200::/40 maxlen: 48 2402:2a80:300::/40 maxlen: 48 2402:2a80:400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4061 (0xfdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3558 Validity Not Before: Sep 13 00:17:34 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66e3849e-873d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ee:8f:7d:2a:77:f2:75:85:c1:98:4d:1b:27: 27:2a:eb:cd:88:fd:01:22:08:71:8d:1c:e3:07:db: d0:df:61:b7:bd:7a:e4:53:aa:c6:db:69:a9:52:a2: 79:fd:85:a1:89:bc:5e:0a:06:fc:aa:44:2b:7d:d7: 27:f6:38:6c:a4:06:ec:0e:8c:3d:a6:0e:31:6c:c3: 73:c5:75:fd:2f:f3:42:2e:77:b5:ed:83:06:22:5f: 3c:f0:18:d9:d5:06:7a:c6:30:f9:29:b2:6c:ac:fd: c5:b2:2c:8e:ef:ce:5d:fc:53:45:d3:6f:21:39:6e: 75:69:a2:9e:7e:c8:31:f6:09:6b:6e:52:99:67:f5: 88:5f:79:32:c5:bf:b1:1b:ce:fe:c0:48:45:24:8e: 3c:92:bd:00:1f:96:f3:e2:56:aa:cf:8b:ab:3a:df: f2:bc:62:2a:a9:0e:f1:e1:9f:cb:fe:28:19:90:10: 4d:73:fb:bf:0a:cc:83:eb:25:67:3c:7c:d5:43:44: 57:b9:c3:e3:ce:d1:f3:8f:88:94:d3:84:05:28:cb: 23:49:be:5a:a7:67:68:f5:3b:66:ce:f2:ad:ab:9c: 91:d3:8b:93:b0:34:d1:59:10:46:e0:b6:56:bd:25: 8e:9e:73:8b:e4:a4:e4:6f:4a:f6:b6:99:09:1f:d9: 4b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:5A:9F:66:55:85:E1:48:AD:51:A0:99:AC:78:F9:94:82:01:47:A6 X509v3 Authority Key Identifier: keyid:C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/9305EF46716511EFAA44E47BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:2a80:100::-2402:2a80:4ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3b:27:c0:25:f7:1a:5d:95:6b:30:44:5e:de:2a:3a:64:56:97: 39:cd:7a:df:a2:ed:1e:4a:b0:98:c5:63:d3:88:2a:79:3a:77: 56:da:c8:fd:44:0e:57:47:5d:31:b8:8b:c7:f9:99:dd:ab:12: 06:66:ec:eb:00:00:73:b5:6f:bf:34:de:5b:09:c2:f3:eb:74: 06:00:18:e1:43:f1:65:fd:1d:a4:37:24:b7:2e:63:d6:de:ff: 1c:7d:8b:9c:db:5b:c7:13:d2:46:3b:fa:a1:91:27:32:98:cc: cc:33:6f:76:41:4a:d0:17:7e:49:f1:f1:9a:26:b4:cd:fb:33: 80:8d:46:5f:49:03:9c:b1:f2:f6:eb:c1:58:7e:d6:96:0c:d2: 12:06:d8:ba:a7:15:42:9f:18:01:05:8c:38:78:66:13:d5:75: 02:56:9c:58:f4:0c:0b:eb:86:93:02:10:d0:e0:89:c8:cf:92: d4:7d:d9:bc:4f:4c:fe:b5:e7:6d:e0:3a:a3:10:83:8b:28:11: b5:ee:7d:ec:83:b2:ca:cc:18:57:0c:24:13:e7:7c:30:c4:7f: ed:6a:42:ba:3c:14:74:1d:b2:56:3a:c5:a8:8a:3d:e9:9c:06: ea:1f:9a:6e:95:6c:7e:4b:79:7e:9d:cb:3b:47:48:b6:d1:fc: 65:be:54:42 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICD90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1NTgxMTAvBgNVBAUTKEM4OTA5MjU0RjY5NjY2RDU4NUUzMTBBQ0Q4REZGMkIx RkI5QTVGMkEwHhcNMjQwOTEzMDAxNzM0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzODQ5ZS04NzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoe6PfSp38nWFwZhNGycnKuvNiP0BIghxjRzjB9vQ32G3vXrkU6rG22mpUqJ5 /YWhibxeCgb8qkQrfdcn9jhspAbsDow9pg4xbMNzxXX9L/NCLne17YMGIl888BjZ 1QZ6xjD5KbJsrP3FsiyO785d/FNF028hOW51aaKefsgx9glrblKZZ/WIX3kyxb+x G87+wEhFJI48kr0AH5bz4laqz4urOt/yvGIqqQ7x4Z/L/igZkBBNc/u/CsyD6yVn PHzVQ0RXucPjztHzj4iU04QFKMsjSb5ap2do9TtmzvKtq5yR04uTsDTRWRBG4LZW vSWOnnOL5KTkb0r2tpkJH9lLcQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBlan2ZV heFIrVGgmax4+ZSCAUemMB8GA1UdIwQYMBaAFMiQklT2lmbVheMQrNjf8rH7ml8q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzU1OC8wRjIxMjE0RTM5 MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0V0Y0eENzMk5feXNmdWFY eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lKQ1NWUGFXWnRXRjR4Q3MyTl95c2Z1YVh5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjM1NTgvMEYyMTIxNEUzOTA1MTFFOTlBMzMwMjMzQzRGOUFFMDIvOTMwNUVGNDY3 MTY1MTFFRkFBNDRFNDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIwEAMGACQCKoABAwYAJAIqgAQwDQYJKoZIhvcNAQELBQADggEB ADsnwCX3Gl2VazBEXt4qOmRWlznNet+i7R5KsJjFY9OIKnk6d1bayP1EDldHXTG4 i8f5md2rEgZm7OsAAHO1b7803lsJwvPrdAYAGOFD8WX9HaQ3JLcuY9be/xx9i5zb W8cT0kY7+qGRJzKYzMwzb3ZBStAXfknx8ZomtM37M4CNRl9JA5yx8vbrwVh+1pYM 0hIG2LqnFUKfGAEFjDh4ZhPVdQJWnFj0DAvrhpMCENDgicjPktR92bxPTP61523g OqMQg4soEbXufeyDssrMGFcMJBPnfDDEf+1qQro8FHQdslY6xaiKPemcBuofmm6V bH5LeX6dyztHSLbR/GW+VEI= -----END CERTIFICATE-----Generated at Sun Feb 16 15:49:00 2025 by rpki-client