$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/C778D8FA402A11EEAC7DEF72C4F9AE02.roa File: C778D8FA402A11EEAC7DEF72C4F9AE02.roa (raw, json) Hash identifier: g09v6jk8fn3awL6foCEfKGlvvvO5I0PHpOGz6LziEuA= Subject key identifier: 85:56:30:B4:91:EE:16:98:1B:94:04:AB:D8:81:20:A5:71:12:6E:9F Certificate issuer: /CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Certificate serial: F3 Authority key identifier: 61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/C778D8FA402A11EEAC7DEF72C4F9AE02.roa Signing time: Fri 25 Oct 2024 04:18:43 +0000 ROA not before: Fri 25 Oct 2024 04:18:43 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45566 IP address blocks: 2401:fa00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Validity Not Before: Oct 25 04:18:43 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671b1c23-d00b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:88:5a:a1:7b:75:0e:f9:38:61:2c:b4:29:c1: 8d:52:b2:dd:67:c8:7a:4f:f7:59:7a:00:98:33:4e: db:d1:4e:39:de:23:51:9c:94:b9:6d:7e:e5:dc:2b: e0:4c:ff:b4:5e:0d:d9:82:18:8f:ff:2f:bc:3e:85: 4b:01:e1:92:94:ae:a3:0c:df:55:0a:ea:c4:04:21: 5b:c7:63:00:69:13:41:5e:34:0a:f8:5b:b0:c6:a9: 5b:1a:00:ff:ae:fd:6d:37:c8:84:1f:00:13:9b:2a: 10:ab:34:57:13:e6:49:4a:cd:5d:25:dc:8f:41:20: dc:52:60:41:9e:3a:01:d2:31:b0:74:c8:aa:44:61: b0:0b:89:f0:5a:86:40:aa:86:e4:6a:0c:9c:52:a7: a8:1c:df:aa:f7:07:83:70:eb:27:5d:e0:76:99:36: b9:f3:42:2a:75:d0:cb:7d:71:d4:c9:30:02:b7:0f: 69:a4:9d:8a:5f:06:d9:c4:15:78:f7:18:eb:e0:27: d0:7a:00:cb:83:ec:cf:b9:ae:b1:ee:73:33:90:0d: 41:78:d1:7a:a9:52:a3:87:94:38:68:26:cd:5c:2f: b7:19:c6:c6:59:5d:5e:af:03:d7:0b:d3:a1:34:ec: 81:35:23:89:c6:2b:9a:a4:ff:95:08:b2:19:7a:65: c5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:56:30:B4:91:EE:16:98:1B:94:04:AB:D8:81:20:A5:71:12:6E:9F X509v3 Authority Key Identifier: keyid:61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/C778D8FA402A11EEAC7DEF72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:fa00::/32 Signature Algorithm: sha256WithRSAEncryption 6f:97:f6:67:61:50:91:0c:ff:fd:f6:ac:39:bd:0d:e4:d9:47: 72:7f:28:61:b5:f0:4a:d1:54:8b:d7:81:c4:92:b1:8c:f5:16: a5:13:d0:b4:c3:99:ae:69:0c:50:cd:4e:4a:c5:1b:ca:80:92: db:c5:38:75:f8:5d:8d:fc:ba:51:68:76:e0:58:dd:35:24:43: 3c:96:32:dd:be:7c:34:be:93:2e:a0:8f:e5:42:b7:48:97:49: 50:4e:7e:bd:8d:4c:80:02:7d:e7:13:67:17:1d:08:e7:c4:92: 98:d4:1b:aa:70:8d:50:17:ff:6c:11:47:cc:e9:39:41:9d:42: 1f:54:86:f6:26:6a:96:40:18:d1:d0:3f:15:9c:a8:5f:66:1c: ed:6d:b8:04:37:f3:5d:49:64:26:e5:5e:f6:ce:b6:09:0e:57: 58:af:0a:dd:72:48:7b:f9:76:d4:bd:ae:bc:56:bd:62:83:09: 3f:a3:e1:7a:71:18:a8:2d:6e:11:ed:82:45:67:d4:26:e3:9f: d7:06:39:fe:ff:ff:da:b0:c4:98:2f:dd:89:e2:a7:93:02:e0: 51:6b:e5:13:84:69:8a:c5:4c:ab:6f:b2:d8:38:c2:95:e1:a5: 6f:08:b6:c0:e9:21:15:df:19:dd:f1:a0:97:4b:70:80:c4:62: c6:9b:a7:03 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEOTIxMTAvBgNVBAUTKDYxMTE4MDdFODI4QUM0Rjk4NDI2OTNEMzg2MTE5NTJE RjAzRDcyNDcwHhcNMjQxMDI1MDQxODQzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFiMWMyMy1kMDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4haoXt1Dvk4YSy0KcGNUrLdZ8h6T/dZegCYM07b0U453iNRnJS5bX7l3Cvg TP+0Xg3ZghiP/y+8PoVLAeGSlK6jDN9VCurEBCFbx2MAaRNBXjQK+FuwxqlbGgD/ rv1tN8iEHwATmyoQqzRXE+ZJSs1dJdyPQSDcUmBBnjoB0jGwdMiqRGGwC4nwWoZA qobkagycUqeoHN+q9weDcOsnXeB2mTa580IqddDLfXHUyTACtw9ppJ2KXwbZxBV4 9xjr4CfQegDLg+zPua6x7nMzkA1BeNF6qVKjh5Q4aCbNXC+3GcbGWV1erwPXC9Oh NOyBNSOJxiuapP+VCLIZemXFpQIDAQABo4ICljCCApIwHQYDVR0OBBYEFIVWMLSR 7haYG5QEq9iBIKVxEm6fMB8GA1UdIwQYMBaAFGERgH6CisT5hCaT04YRlS3wPXJH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ5Mi8zNTc3OThCMDQw MkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQbUVKcFBUaGhHVkxmQTlj a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSR0Fmb0tLeFBtRUpwUFRoaEdWTGZBOWNrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEOTIvMzU3Nzk4QjA0MDJBMTFFRUE3MTYxODcyQzRGOUFFMDIvQzc3OEQ4RkE0 MDJBMTFFRUFDN0RFRjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAfoAMA0GCSqGSIb3DQEBCwUAA4IBAQBvl/ZnYVCRDP/9 9qw5vQ3k2UdyfyhhtfBK0VSL14HEkrGM9RalE9C0w5muaQxQzU5KxRvKgJLbxTh1 +F2N/LpRaHbgWN01JEM8ljLdvnw0vpMuoI/lQrdIl0lQTn69jUyAAn3nE2cXHQjn xJKY1BuqcI1QF/9sEUfM6TlBnUIfVIb2JmqWQBjR0D8VnKhfZhztbbgEN/NdSWQm 5V72zrYJDldYrwrdckh7+XbUva68Vr1igwk/o+F6cRioLW4R7YJFZ9Qm45/XBjn+ ///asMSYL92J4qeTAuBRa+UThGmKxUyrb7LYOMKV4aVvCLbA6SEV3xnd8aCXS3CA xGLGm6cD -----END CERTIFICATE-----Generated at Mon Nov 25 04:43:58 2024 by rpki-client on console-ams.rpki-client.org