$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/25FFA3768BB711EF9C572630C4F9AE02.roa File: 25FFA3768BB711EF9C572630C4F9AE02.roa (raw, json) Hash identifier: PO3QH99TaEGXLczk5CFqhAB0Ach8mXnS87Xb+Nz/Uzg= Subject key identifier: 47:76:E3:4F:52:9F:17:F3:50:E1:6A:1B:8D:74:53:36:9D:90:77:F7 Certificate issuer: /CN=A91B7709/serialNumber=FBA26E3CD7E08199B3A18F16366A757F04CDF054 Certificate serial: 02 Authority key identifier: FB:A2:6E:3C:D7:E0:81:99:B3:A1:8F:16:36:6A:75:7F:04:CD:F0:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-6JuPNfggZmzoY8WNmp1fwTN8FQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/25FFA3768BB711EF9C572630C4F9AE02.roa Signing time: Wed 16 Oct 2024 12:07:00 +0000 ROA not before: Wed 16 Oct 2024 12:07:00 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153367 IP address blocks: 2001:df4:6bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.crl rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-6JuPNfggZmzoY8WNmp1fwTN8FQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7709/serialNumber=FBA26E3CD7E08199B3A18F16366A757F04CDF054 Validity Not Before: Oct 16 12:07:00 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=670fac64-cf3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2e:97:d0:4e:97:54:48:34:dc:01:d6:99:37: 6e:d6:40:20:a0:7a:ec:d3:3a:24:02:9e:eb:c8:50: de:b4:19:b7:d1:2c:34:c0:e7:42:3d:e3:9b:ea:73: 73:8e:21:25:2d:d2:a8:61:1e:dd:b9:a5:73:5b:31: c6:d1:0c:de:ee:f9:b4:3b:e9:b3:bf:9a:2d:5c:a5: a9:94:eb:d1:b5:c7:f9:66:d6:15:60:00:41:d8:c2: e2:58:18:55:25:66:48:eb:4b:1a:60:7f:5e:7e:45: a5:cb:3e:35:ef:de:08:ff:6a:ba:3c:c8:5d:67:87: 07:1b:f4:cb:9d:00:9e:87:9c:75:66:fd:91:c5:a2: 36:31:28:18:31:a9:32:ee:a0:bc:01:7c:d2:ee:04: 2a:95:d8:05:17:fb:1e:88:a4:2c:fb:ec:fa:fc:6e: fe:91:28:29:84:71:55:63:17:61:8a:2b:50:4d:7b: 54:79:a6:b0:f3:8a:ba:c7:80:ea:69:c5:d6:e6:a9: 57:d5:0d:78:71:08:05:ae:b0:ec:9e:83:f2:ac:24: 07:13:2e:6f:25:d8:71:ae:0e:f4:c9:0d:ca:6f:e2: 90:4e:d5:ad:a6:ce:85:b5:76:d6:a2:03:13:19:36: a9:84:cb:81:70:2b:ad:2e:a5:0d:11:63:0b:70:b9: 41:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:76:E3:4F:52:9F:17:F3:50:E1:6A:1B:8D:74:53:36:9D:90:77:F7 X509v3 Authority Key Identifier: keyid:FB:A2:6E:3C:D7:E0:81:99:B3:A1:8F:16:36:6A:75:7F:04:CD:F0:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-6JuPNfggZmzoY8WNmp1fwTN8FQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/25FFA3768BB711EF9C572630C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:6bc0::/48 Signature Algorithm: sha256WithRSAEncryption 09:09:5e:6d:ed:d7:22:a1:c1:29:33:a2:0d:94:ca:b3:28:65: 95:93:0e:f2:9d:de:3f:87:d1:80:97:70:7a:4f:d1:90:9d:25: 1d:f5:c9:ba:5a:54:98:68:16:1e:0e:28:21:a2:4b:11:7f:e4: 78:4f:2d:62:9f:09:a1:1a:71:ad:50:1d:e9:d5:14:2a:6a:bd: 62:36:16:63:10:da:58:ba:d0:98:7a:f1:98:77:38:67:4a:fe: ca:55:1f:ba:45:63:07:de:eb:67:09:01:cb:93:84:ea:55:f8: 92:5f:90:09:30:b0:dd:b4:10:87:a0:8e:a7:fd:63:b2:76:2f: af:94:26:df:b4:8a:cf:83:51:ec:59:3a:17:bb:89:5d:bd:1a: e9:7c:59:bd:5a:25:f5:17:88:f6:39:2a:f6:ed:da:2b:43:8d: a9:e1:d5:3b:78:2a:e6:44:f0:45:e8:02:5b:98:7b:89:ef:fb: d3:ee:e3:03:2b:f5:78:0f:64:bd:ef:0d:62:26:ee:79:e3:52: 0a:50:11:cd:4b:30:5f:b4:7d:c4:ab:e4:84:d7:28:2a:4c:08: bf:d0:6b:e0:1a:69:82:da:88:dd:98:b4:aa:91:09:12:03:65: 4b:1b:74:37:46:88:34:08:72:b3:79:42:90:cb:5b:23:b7:6e: d9:9a:5b:17 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzcwOTExMC8GA1UEBRMoRkJBMjZFM0NEN0UwODE5OUIzQTE4RjE2MzY2QTc1N0Yw NENERjA1NDAeFw0yNDEwMTYxMjA3MDBaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MGZhYzY0LWNmM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5LpfQTpdUSDTcAdaZN27WQCCgeuzTOiQCnuvIUN60GbfRLDTA50I945vqc3OO ISUt0qhhHt25pXNbMcbRDN7u+bQ76bO/mi1cpamU69G1x/lm1hVgAEHYwuJYGFUl ZkjrSxpgf15+RaXLPjXv3gj/aro8yF1nhwcb9MudAJ6HnHVm/ZHFojYxKBgxqTLu oLwBfNLuBCqV2AUX+x6IpCz77Pr8bv6RKCmEcVVjF2GKK1BNe1R5prDzirrHgOpp xdbmqVfVDXhxCAWusOyeg/KsJAcTLm8l2HGuDvTJDcpv4pBO1a2mzoW1dtaiAxMZ NqmEy4FwK60upQ0RYwtwuUF3AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUR3bjT1Kf F/NQ4WobjXRTNp2Qd/cwHwYDVR0jBBgwFoAU+6JuPNfggZmzoY8WNmp1fwTN8FQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3NzA5LzgxNjIzQTRBOEJC NjExRUY5OThCQUM3MkM0RjlBRTAyLy02SnVQTmZnZ1ptem9ZOFdObXAxZndUTjhG US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTZKdVBOZmdnWm16b1k4V05tcDFmd1ROOEZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzcwOS84MTYyM0E0QThCQjYxMUVGOTk4QkFDNzJDNEY5QUUwMi8yNUZGQTM3NjhC QjcxMUVGOUM1NzI2MzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfRrwDANBgkqhkiG9w0BAQsFAAOCAQEACQlebe3XIqHB KTOiDZTKsyhllZMO8p3eP4fRgJdwek/RkJ0lHfXJulpUmGgWHg4oIaJLEX/keE8t Yp8JoRpxrVAd6dUUKmq9YjYWYxDaWLrQmHrxmHc4Z0r+ylUfukVjB97rZwkBy5OE 6lX4kl+QCTCw3bQQh6COp/1jsnYvr5Qm37SKz4NR7Fk6F7uJXb0a6XxZvVol9ReI 9jkq9u3aK0ONqeHVO3gq5kTwRegCW5h7ie/70+7jAyv1eA9kve8NYibueeNSClAR zUswX7R9xKvkhNcoKkwIv9Br4BppgtqI3Zi0qpEJEgNlSxt0N0aINAhys3lCkMtb I7du2ZpbFw== -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:02 2024 by rpki-client on console-ams.rpki-client.org