$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/2AD29284D22A11E8B6E99987C4F9AE02.roa File: 2AD29284D22A11E8B6E99987C4F9AE02.roa (raw, json) Hash identifier: 3q5R1J4djCmGk92jrHGge8u1JnUcb5OYOxif13zqZng= Subject key identifier: 9E:03:CC:C3:F2:A9:2B:30:85:FB:A8:B2:9E:74:EE:63:5C:B1:16:AE Certificate issuer: /CN=A91B6006/serialNumber=12F92E6C72E6CA25C075055B48FE37B65AB6E052 Certificate serial: 125A Authority key identifier: 12:F9:2E:6C:72:E6:CA:25:C0:75:05:5B:48:FE:37:B6:5A:B6:E0:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/2AD29284D22A11E8B6E99987C4F9AE02.roa Signing time: Tue 24 Sep 2024 17:25:29 +0000 ROA not before: Tue 24 Sep 2024 17:25:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 395403 IP address blocks: 2402:cf80:1001::/48 maxlen: 48 2402:cf80:1002::/48 maxlen: 48 2402:cf80:6259::/48 maxlen: 48 2402:cf80:7ffe::/48 maxlen: 48 2402:cf80:7fff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.crl rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4698 (0x125a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6006/serialNumber=12F92E6C72E6CA25C075055B48FE37B65AB6E052 Validity Not Before: Sep 24 17:25:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66f2f609-ecc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6b:46:f8:c1:42:9a:88:ab:cd:14:da:59:4c: fb:16:55:44:f7:f2:98:c6:18:ca:39:f8:c7:fa:f4: 38:15:5e:63:57:15:05:3a:53:d6:e3:f7:48:56:ec: 9a:14:3b:62:76:12:bb:6a:c9:bb:87:b4:ca:41:bd: 8a:75:17:e8:2e:d6:a8:c2:38:59:c5:99:4b:4a:04: 35:20:e7:20:cf:83:3b:45:6e:04:7a:14:3f:1f:92: 39:62:9d:42:4d:a7:6d:72:fb:da:f2:b5:2f:ab:21: f5:fc:f4:0a:fb:ba:cf:e0:cf:fa:d3:b5:d5:1a:d4: 5c:26:10:99:c6:22:46:8d:74:e3:69:5a:7d:fa:d0: 77:77:4b:a5:7d:0c:a5:6d:2a:4f:50:f7:cf:d8:f5: bf:57:0f:95:fe:cd:7b:70:f8:53:6b:3e:59:b8:64: 0d:76:d4:62:3b:11:48:2c:08:70:1e:93:cc:24:51: 37:00:4b:24:9b:79:fb:60:6d:e9:cb:ec:12:33:f0: a3:a4:1b:62:5d:dd:35:b2:de:80:d0:d7:bf:42:0e: d6:54:ba:08:b3:8e:8f:c8:e1:40:3e:3a:11:ae:30: 2e:4f:9d:22:68:0d:c5:e5:d0:ab:1a:b1:ea:51:c4: 63:e2:dc:db:b8:71:ac:dd:83:54:8d:9e:ed:9b:6d: bf:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:03:CC:C3:F2:A9:2B:30:85:FB:A8:B2:9E:74:EE:63:5C:B1:16:AE X509v3 Authority Key Identifier: keyid:12:F9:2E:6C:72:E6:CA:25:C0:75:05:5B:48:FE:37:B6:5A:B6:E0:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/2AD29284D22A11E8B6E99987C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:cf80:1001::-2402:cf80:1002:ffff:ffff:ffff:ffff:ffff 2402:cf80:6259::/48 2402:cf80:7ffe::/47 Signature Algorithm: sha256WithRSAEncryption ac:ce:b6:da:0f:f1:f5:08:38:31:c8:69:7b:24:63:98:51:6a: 2a:77:cc:a9:2e:b4:c5:3e:83:83:1c:7b:f7:d0:21:2c:86:44: 50:72:7e:4f:1c:a7:84:9b:e8:9d:d3:16:f1:82:17:0f:89:be: ad:c7:17:c8:ce:c0:ce:d6:6e:f9:ed:77:46:66:3b:84:33:29: 7b:72:6a:c5:19:a6:af:a4:03:4d:71:d3:3b:5a:61:fd:35:32: 05:f6:13:82:6d:6d:32:97:a8:67:9d:5a:f8:04:79:8a:64:ec: f9:64:59:cb:44:3a:42:7c:28:de:64:60:16:d6:69:3f:2e:fa: a1:38:db:f1:56:51:30:4a:bd:5d:1a:95:85:07:a5:6c:a4:08: 2c:7d:e6:fe:d1:ef:41:ea:5b:ad:86:70:0e:88:18:21:c1:ca: 67:4c:ab:a0:ea:aa:4a:4d:81:d3:97:ff:ac:38:45:9c:02:62: 5b:22:92:04:24:87:92:3c:d6:90:5c:87:ce:ac:07:ed:60:2b: ce:da:93:c1:45:5f:cc:2d:33:98:3e:aa:ec:e1:61:95:46:6f: 79:ab:0a:a1:a3:78:cb:0b:b9:ff:0a:c9:1a:55:53:31:2d:22: f0:d6:d8:54:9d:17:26:b7:20:9a:7d:52:88:7a:a8:4f:63:73: 3d:21:60:51 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICElowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYwMDYxMTAvBgNVBAUTKDEyRjkyRTZDNzJFNkNBMjVDMDc1MDU1QjQ4RkUzN0I2 NUFCNkUwNTIwHhcNMjQwOTI0MTcyNTI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZjYwOS1lY2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGtG+MFCmoirzRTaWUz7FlVE9/KYxhjKOfjH+vQ4FV5jVxUFOlPW4/dIVuya FDtidhK7asm7h7TKQb2KdRfoLtaowjhZxZlLSgQ1IOcgz4M7RW4EehQ/H5I5Yp1C Tadtcvva8rUvqyH1/PQK+7rP4M/607XVGtRcJhCZxiJGjXTjaVp9+tB3d0ulfQyl bSpPUPfP2PW/Vw+V/s17cPhTaz5ZuGQNdtRiOxFILAhwHpPMJFE3AEskm3n7YG3p y+wSM/CjpBtiXd01st6A0Ne/Qg7WVLoIs46PyOFAPjoRrjAuT50iaA3F5dCrGrHq UcRj4tzbuHGs3YNUjZ7tm22/ZwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFJ4DzMPy qSswhfuosp507mNcsRauMB8GA1UdIwQYMBaAFBL5Lmxy5solwHUFW0j+N7ZatuBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjAwNi9FNEZERTQ2QUMz RTgxMUU4QUM3NkVCMTZDNEY5QUUwMi9Fdmt1YkhMbXlpWEFkUVZiU1A0M3RscTI0 RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V2a3ViSExteWlYQWRRVmJTUDQzdGxxMjRGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYwMDYvRTRGREU0NkFDM0U4MTFFOEFDNzZFQjE2QzRGOUFFMDIvMkFEMjkyODRE MjJBMTFFOEI2RTk5OTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgACMCYwEgMHACQCz4AQAQMHACQCz4AQAgMHACQCz4BiWQMHASQCz4B/ /jANBgkqhkiG9w0BAQsFAAOCAQEArM622g/x9Qg4MchpeyRjmFFqKnfMqS60xT6D gxx799AhLIZEUHJ+TxynhJvondMW8YIXD4m+rccXyM7AztZu+e13RmY7hDMpe3Jq xRmmr6QDTXHTO1ph/TUyBfYTgm1tMpeoZ51a+AR5imTs+WRZy0Q6Qnwo3mRgFtZp Py76oTjb8VZRMEq9XRqVhQelbKQILH3m/tHvQepbrYZwDogYIcHKZ0yroOqqSk2B 05f/rDhFnAJiWyKSBCSHkjzWkFyHzqwH7WArztqTwUVfzC0zmD6q7OFhlUZveasK oaN4ywu5/wrJGlVTMS0i8NbYVJ0XJrcgmn1SiHqoT2NzPSFgUQ== -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:55 2024 by rpki-client on console-ams.rpki-client.org