$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/FBE34DB8538011EFB6264579C4F9AE02.roa File: FBE34DB8538011EFB6264579C4F9AE02.roa (raw, json) Hash identifier: qvUP6d81IdrzZbKdEjVG1snn+Y2Byr8jMGRCFKnK8TM= Subject key identifier: 5A:75:30:48:F2:4A:D1:CD:D9:40:C5:EE:6F:6E:A7:34:7C:AA:7E:A7 Certificate issuer: /CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Certificate serial: F2 Authority key identifier: 61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/FBE34DB8538011EFB6264579C4F9AE02.roa Signing time: Fri 25 Oct 2024 04:18:42 +0000 ROA not before: Fri 25 Oct 2024 04:18:42 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 396982 IP address blocks: 2401:fa00:8000::/34 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D92 Validity Not Before: Oct 25 04:18:42 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671b1c22-b58a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:eb:ab:54:7d:af:c7:c0:31:00:b4:bb:a4:c0: e4:ce:47:a8:24:55:23:e1:74:4c:53:a3:51:11:18: 1b:57:c6:df:d8:00:e0:11:4f:43:27:a6:ae:3e:1b: 8d:bf:86:e7:7e:72:b8:b0:a1:98:26:43:40:e3:79: 61:6c:15:75:79:03:7a:6a:db:79:dd:82:84:3f:96: b3:ee:14:08:7f:8e:dd:3b:1b:2f:22:d0:06:94:c8: 00:a0:7d:77:8d:9b:8b:42:72:8e:77:bb:0c:02:07: a9:a7:9a:36:59:72:00:d1:ee:75:c8:4b:29:7b:c4: 8a:f5:d4:01:16:93:6c:46:9b:93:75:af:b3:dc:a7: 7e:66:03:8b:66:56:60:8f:5b:d2:ea:f9:bb:00:49: eb:ef:71:cc:98:83:77:fa:de:a9:ec:59:d3:39:c5: 2c:13:78:ed:e4:54:08:ca:b0:5f:63:f1:38:b3:61: dd:a8:03:28:2c:e9:9a:76:f1:9b:ce:8f:d0:bb:d9: eb:62:13:b9:01:77:93:2f:8f:64:0a:d9:f7:d7:80: e4:b3:f2:1d:e8:e7:bf:67:54:64:da:74:98:88:d9: af:59:81:f0:4f:e5:db:49:b2:dd:90:a9:6c:15:2a: 20:b1:d4:ee:2d:2c:7b:26:12:3a:85:03:87:6b:5a: f7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:75:30:48:F2:4A:D1:CD:D9:40:C5:EE:6F:6E:A7:34:7C:AA:7E:A7 X509v3 Authority Key Identifier: keyid:61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/FBE34DB8538011EFB6264579C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:fa00:8000::/34 Signature Algorithm: sha256WithRSAEncryption 93:32:f1:2a:56:03:d6:25:2c:b1:90:8c:8d:18:66:d3:d2:4b: 24:c3:d2:0c:ba:f3:a7:3c:6f:64:c8:c9:d0:38:72:72:18:5f: 1f:75:e9:85:81:0e:b1:9c:22:63:90:98:cc:fe:3b:5c:2e:47: d9:27:ca:4d:4e:f8:c4:4d:0b:0e:83:4a:82:db:6b:a4:76:60: 98:0f:3f:e5:f0:2b:5c:70:e0:f8:7a:30:64:a5:5f:9c:ba:66: 69:48:e7:c5:cc:a9:5f:3b:37:ed:8e:84:5e:2d:6f:fe:3d:df: 3a:24:b6:f0:00:07:be:60:2e:29:47:92:49:4c:b2:04:34:23: d0:3b:bc:23:04:1f:83:04:2e:3c:0e:02:63:53:6b:dc:c9:3d: 88:b3:36:c6:e2:d5:73:5f:2b:3b:35:30:dc:de:17:25:a8:cf: ef:db:9e:8b:95:de:ae:5a:6d:87:ad:f4:d5:30:b8:7f:c3:49: f3:a1:92:f0:66:97:f2:c7:63:6b:20:6c:1f:e7:d7:a0:dd:93: 05:d0:f1:9a:58:29:38:ca:44:19:85:cc:0c:23:8b:ab:7a:52: 0e:bd:14:ca:07:2d:f9:42:47:d1:aa:98:29:f1:df:67:c8:bf: 36:71:54:95:44:7c:c4:93:1d:43:ba:a1:9c:72:86:fa:8c:dd: 00:a1:00:fc -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEOTIxMTAvBgNVBAUTKDYxMTE4MDdFODI4QUM0Rjk4NDI2OTNEMzg2MTE5NTJE RjAzRDcyNDcwHhcNMjQxMDI1MDQxODQyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFiMWMyMi1iNThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOurVH2vx8AxALS7pMDkzkeoJFUj4XRMU6NRERgbV8bf2ADgEU9DJ6auPhuN v4bnfnK4sKGYJkNA43lhbBV1eQN6att53YKEP5az7hQIf47dOxsvItAGlMgAoH13 jZuLQnKOd7sMAgepp5o2WXIA0e51yEspe8SK9dQBFpNsRpuTda+z3Kd+ZgOLZlZg j1vS6vm7AEnr73HMmIN3+t6p7FnTOcUsE3jt5FQIyrBfY/E4s2HdqAMoLOmadvGb zo/Qu9nrYhO5AXeTL49kCtn314Dks/Id6Oe/Z1Rk2nSYiNmvWYHwT+XbSbLdkKls FSogsdTuLSx7JhI6hQOHa1r3iwIDAQABo4IClzCCApMwHQYDVR0OBBYEFFp1MEjy StHN2UDF7m9upzR8qn6nMB8GA1UdIwQYMBaAFGERgH6CisT5hCaT04YRlS3wPXJH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ5Mi8zNTc3OThCMDQw MkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQbUVKcFBUaGhHVkxmQTlj a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSR0Fmb0tLeFBtRUpwUFRoaEdWTGZBOWNrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEOTIvMzU3Nzk4QjA0MDJBMTFFRUE3MTYxODcyQzRGOUFFMDIvRkJFMzREQjg1 MzgwMTFFRkI2MjY0NTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgYkAfoAgDANBgkqhkiG9w0BAQsFAAOCAQEAkzLxKlYD1iUs sZCMjRhm09JLJMPSDLrzpzxvZMjJ0DhychhfH3XphYEOsZwiY5CYzP47XC5H2SfK TU74xE0LDoNKgttrpHZgmA8/5fArXHDg+HowZKVfnLpmaUjnxcypXzs37Y6EXi1v /j3fOiS28AAHvmAuKUeSSUyyBDQj0Du8IwQfgwQuPA4CY1Nr3Mk9iLM2xuLVc18r OzUw3N4XJajP79uei5Xerlpth6301TC4f8NJ86GS8GaX8sdjayBsH+fXoN2TBdDx mlgpOMpEGYXMDCOLq3pSDr0Uygct+UJH0aqYKfHfZ8i/NnFUlUR8xJMdQ7qhnHKG +ozdAKEA/A== -----END CERTIFICATE-----Generated at Sun Feb 16 15:41:03 2025 by rpki-client