$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/1FD9809A92A911EFBE53776BC4F9AE02.roa File: 1FD9809A92A911EFBE53776BC4F9AE02.roa (raw, json) Hash identifier: cDCnZ6S5cO6eBk1U2D1sq10sR7mDNYW0+AjbicEv2TY= Subject key identifier: 71:E9:3F:58:B2:58:EB:69:28:2E:59:4C:DF:36:6D:71:C4:5B:74:74 Certificate issuer: /CN=A91B3B4C/serialNumber=B63DFD686CE0A90076E4F5FF428685F63FB08EDD Certificate serial: 0F Authority key identifier: B6:3D:FD:68:6C:E0:A9:00:76:E4:F5:FF:42:86:85:F6:3F:B0:8E:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tj39aGzgqQB25PX_QoaF9j-wjt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/1FD9809A92A911EFBE53776BC4F9AE02.roa Signing time: Fri 25 Oct 2024 08:14:15 +0000 ROA not before: Fri 25 Oct 2024 08:14:15 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 153344 IP address blocks: 2400:9e20:caf0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/tj39aGzgqQB25PX_QoaF9j-wjt0.crl rsync://rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/tj39aGzgqQB25PX_QoaF9j-wjt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tj39aGzgqQB25PX_QoaF9j-wjt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3B4C/serialNumber=B63DFD686CE0A90076E4F5FF428685F63FB08EDD Validity Not Before: Oct 25 08:14:15 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671b5357-fc02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2b:07:c4:76:f0:2b:75:ec:50:60:f6:75:8e: d8:60:3f:30:ba:08:11:6d:cc:0e:81:6a:24:7b:d9: 4c:13:91:a0:7e:c4:f2:4b:f9:93:86:a8:7a:39:02: df:19:35:c5:17:f6:bd:8a:3e:e3:d7:fe:a7:15:d9: 5d:98:36:a2:ee:c9:5d:20:a2:a5:48:83:08:bf:ea: 22:c3:7f:7c:35:86:97:ab:76:cb:9a:e6:0b:c2:ec: 0d:7d:a7:33:7f:74:e5:63:bf:41:86:ea:81:f6:1f: 99:b4:01:a3:8c:4a:21:c7:e8:bd:1c:5e:40:42:dd: fc:d3:06:eb:c2:cc:4e:d4:9e:bf:95:88:e5:30:26: 6a:b5:2f:94:85:a1:fd:26:ac:2e:79:96:9e:d1:38: 57:f3:ce:b5:35:c2:63:49:6e:ca:9c:66:9f:21:39: 38:a5:9e:fb:c9:40:9f:f2:3d:69:9b:98:37:b1:73: 43:58:96:b5:49:fa:00:08:c3:36:36:28:c0:96:11: 5e:dc:29:14:ae:5b:2d:aa:aa:ad:c9:8c:c0:56:d4: 70:8f:32:d1:ed:3b:17:68:fd:7f:68:26:35:fa:a8: cc:27:16:9a:22:cb:71:0f:27:c2:ea:31:ea:fd:a1: e2:68:ce:15:0e:6d:b5:6b:69:2a:ad:b8:e2:3e:69: d2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E9:3F:58:B2:58:EB:69:28:2E:59:4C:DF:36:6D:71:C4:5B:74:74 X509v3 Authority Key Identifier: keyid:B6:3D:FD:68:6C:E0:A9:00:76:E4:F5:FF:42:86:85:F6:3F:B0:8E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/tj39aGzgqQB25PX_QoaF9j-wjt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tj39aGzgqQB25PX_QoaF9j-wjt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/1FD9809A92A911EFBE53776BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:9e20:caf0::/44 Signature Algorithm: sha256WithRSAEncryption 4c:6d:6f:57:f4:cb:c1:b9:04:48:41:6d:9d:c0:a6:7d:c4:e3: 0f:a7:fb:d4:f2:9f:ac:37:9c:60:97:5d:ea:88:ec:25:d9:b4: b0:f7:b5:cb:0a:22:1b:83:d5:24:08:69:4a:15:d7:d3:bc:9c: 1c:8b:32:4a:87:96:91:dd:1c:44:f3:60:34:26:fa:1e:6b:d8: 99:97:ac:ea:30:6d:35:8d:97:a0:d6:10:54:56:05:22:30:e9: 38:bc:65:e6:11:95:b1:8c:fd:f6:ac:c5:ac:f3:36:df:cc:ea: 09:70:28:b2:51:2f:1e:8b:dc:62:42:22:1f:73:3f:1d:95:59: cb:bb:88:2d:9f:5a:c8:40:17:7e:b8:53:f3:02:f6:22:43:e9: dc:08:75:ef:4b:3b:81:35:c2:8e:c6:99:fb:b8:c6:aa:03:3c: b0:a2:8c:d5:4e:35:1e:c8:86:8f:b3:9e:8d:03:e1:7f:e8:46: a5:ca:88:a7:76:63:51:37:54:2b:87:12:59:6e:4d:a2:ed:7d: 45:a5:ea:3a:7f:87:30:aa:44:b1:ec:43:31:d4:5e:9f:20:bb: 96:2a:01:c5:57:a8:4e:f9:82:52:e5:fd:f6:8b:90:a4:70:60: ce:64:32:f2:65:89:22:ea:9a:80:b3:ca:71:1b:79:d0:33:72: 81:b1:90:bc -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC M0I0QzExMC8GA1UEBRMoQjYzREZENjg2Q0UwQTkwMDc2RTRGNUZGNDI4Njg1RjYz RkIwOEVERDAeFw0yNDEwMjUwODE0MTVaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWI1MzU3LWZjMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8KwfEdvArdexQYPZ1jthgPzC6CBFtzA6BaiR72UwTkaB+xPJL+ZOGqHo5At8Z NcUX9r2KPuPX/qcV2V2YNqLuyV0goqVIgwi/6iLDf3w1hperdsua5gvC7A19pzN/ dOVjv0GG6oH2H5m0AaOMSiHH6L0cXkBC3fzTBuvCzE7Unr+ViOUwJmq1L5SFof0m rC55lp7ROFfzzrU1wmNJbsqcZp8hOTilnvvJQJ/yPWmbmDexc0NYlrVJ+gAIwzY2 KMCWEV7cKRSuWy2qqq3JjMBW1HCPMtHtOxdo/X9oJjX6qMwnFpoiy3EPJ8LqMer9 oeJozhUObbVraSqtuOI+adJrAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUcek/WLJY 62koLllM3zZtccRbdHQwHwYDVR0jBBgwFoAUtj39aGzgqQB25PX/QoaF9j+wjt0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzQjRDL0RDOURFMjhFOEM1 MDExRUZBMDY3QzgxNUM0RjlBRTAyL3RqMzlhR3pncVFCMjVQWF9Rb2FGOWotd2p0 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGozOWFHemdxUUIyNVBYX1FvYUY5ai13anQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0I0Qy9EQzlERTI4RThDNTAxMUVGQTA2N0M4MTVDNEY5QUUwMi8xRkQ5ODA5QTky QTkxMUVGQkU1Mzc3NkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHBCQAniDK8DANBgkqhkiG9w0BAQsFAAOCAQEATG1vV/TLwbkE SEFtncCmfcTjD6f71PKfrDecYJdd6ojsJdm0sPe1ywoiG4PVJAhpShXX07ycHIsy SoeWkd0cRPNgNCb6HmvYmZes6jBtNY2XoNYQVFYFIjDpOLxl5hGVsYz99qzFrPM2 38zqCXAoslEvHovcYkIiH3M/HZVZy7uILZ9ayEAXfrhT8wL2IkPp3Ah170s7gTXC jsaZ+7jGqgM8sKKM1U41HsiGj7OejQPhf+hGpcqIp3ZjUTdUK4cSWW5Nou19RaXq On+HMKpEsexDMdRenyC7lioBxVeoTvmCUuX99ouQpHBgzmQy8mWJIuqagLPKcRt5 0DNygbGQvA== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:48 2024 by rpki-client on console-fra.rpki-client.org