$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/4F976DF837D011EF8945471AC4F9AE02/7152252C37D111EF99A8011CC4F9AE02.roa File: 7152252C37D111EF99A8011CC4F9AE02.roa (raw, json) Hash identifier: qyHVBU6r1vopcSbtOHBuL6JaUanY0OBKOoUk8MRDDbM= Subject key identifier: BD:CD:CB:57:94:E6:9E:7E:BE:84:F8:86:CC:1C:4C:7B:41:A8:87:6D Certificate issuer: /CN=A91B7948/serialNumber=AC930B625D839C568DA8199E38FF9DB7E37833BD Certificate serial: 02 Authority key identifier: AC:93:0B:62:5D:83:9C:56:8D:A8:19:9E:38:FF:9D:B7:E3:78:33:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJMLYl2DnFaNqBmeOP-dt-N4M70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/4F976DF837D011EF8945471AC4F9AE02/7152252C37D111EF99A8011CC4F9AE02.roa Signing time: Mon 01 Jul 2024 17:43:36 +0000 ROA not before: Mon 01 Jul 2024 17:43:36 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 153045 IP address blocks: 2001:df4:140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/4F976DF837D011EF8945471AC4F9AE02/rJMLYl2DnFaNqBmeOP-dt-N4M70.crl rsync://rpki.apnic.net/member_repository/A91B7948/4F976DF837D011EF8945471AC4F9AE02/rJMLYl2DnFaNqBmeOP-dt-N4M70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJMLYl2DnFaNqBmeOP-dt-N4M70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948/serialNumber=AC930B625D839C568DA8199E38FF9DB7E37833BD Validity Not Before: Jul 1 17:43:36 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6682eac8-d1b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:81:5b:e6:3d:88:2d:3f:ee:73:bc:23:a8:90: 40:d7:0e:d5:d0:4b:9b:5f:1c:f8:a2:48:dc:10:bf: 3a:8b:ba:97:91:4d:e1:e1:e1:ea:1f:6b:ab:1b:a0: b8:6b:e9:d2:ae:2f:aa:f8:a7:e2:b2:98:69:7c:ca: 03:34:32:3a:d7:28:12:d8:c1:1e:f8:b9:fe:34:01: b2:2e:6f:5b:8f:cc:7b:6b:19:d8:4c:14:9e:14:05: a6:a2:32:a5:30:51:6e:23:8b:3f:3a:54:4d:b0:d2: 40:1e:0a:23:a5:b0:05:63:19:72:8c:17:7b:75:26: 2f:b0:8b:49:1c:58:57:ce:15:56:26:a7:ef:90:66: df:2d:46:9c:a4:fa:d8:e1:1a:15:85:ea:ba:14:41: 18:c0:93:d6:69:aa:e1:a3:d2:3c:73:d2:2c:4b:4a: 4e:1b:5b:71:a8:3d:01:b4:c3:26:db:a3:33:d8:d2: ee:5b:6d:3f:57:04:7f:79:bd:0f:55:a0:a3:86:02: 7a:f8:86:77:f8:43:4b:85:c3:c4:92:b8:7a:1d:a2: 3a:33:86:fb:4b:af:6e:2e:21:27:27:6c:95:b4:4c: 80:1e:7a:bd:61:e3:ca:b3:aa:14:03:0a:70:b9:a2: 96:98:fd:a8:22:1c:05:cd:ba:23:f1:b5:ca:5a:38: f0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CD:CB:57:94:E6:9E:7E:BE:84:F8:86:CC:1C:4C:7B:41:A8:87:6D X509v3 Authority Key Identifier: keyid:AC:93:0B:62:5D:83:9C:56:8D:A8:19:9E:38:FF:9D:B7:E3:78:33:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/4F976DF837D011EF8945471AC4F9AE02/rJMLYl2DnFaNqBmeOP-dt-N4M70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJMLYl2DnFaNqBmeOP-dt-N4M70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/4F976DF837D011EF8945471AC4F9AE02/7152252C37D111EF99A8011CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:140::/48 Signature Algorithm: sha256WithRSAEncryption 73:66:62:a8:61:12:b6:d4:cf:ef:0d:88:90:87:41:2a:f3:00: 2c:3e:b3:2a:72:a5:69:69:fb:23:6b:32:bb:42:09:6a:16:a4: 27:c4:cd:81:de:43:a7:d2:3a:f3:b1:fa:13:29:c8:b3:1c:fd: da:bc:e2:55:85:ab:4f:bc:64:4f:96:5a:c8:3b:61:7e:55:fc: af:ee:ec:bf:1f:96:d3:68:44:97:8e:dd:18:ea:0a:e1:5c:ac: f4:f7:b6:51:58:11:03:1c:96:f0:b7:47:65:1e:fe:25:0d:81: d6:10:67:c1:fd:aa:c7:e3:35:cf:11:ae:e7:f5:46:08:29:0e: f5:33:47:80:fe:81:ff:8a:f5:d8:36:60:a8:2e:4f:e6:a2:39: c3:08:33:d4:d0:e8:8c:ee:63:0d:a5:3a:20:6d:9e:04:a6:c1: 9b:f0:41:9c:0f:d6:ac:c3:1b:52:4c:e8:20:53:28:12:7e:85: f3:43:da:cc:87:f1:a2:b2:39:96:82:28:12:51:f5:c4:bb:70: f0:3f:fa:46:eb:cc:bb:0e:ab:d7:f6:31:d4:ed:a2:4b:18:18: 3f:94:b2:6d:23:7b:53:b4:ed:ee:93:bd:77:bb:c3:37:5d:35: 9d:a3:bb:1f:96:38:9b:4f:26:eb:d4:d5:f1:bd:8f:8c:b5:ef: b5:05:e3:4e -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Nzk0ODExMC8GA1UEBRMoQUM5MzBCNjI1RDgzOUM1NjhEQTgxOTlFMzhGRjlEQjdF Mzc4MzNCRDAeFw0yNDA3MDExNzQzMzZaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODJlYWM4LWQxYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvgVvmPYgtP+5zvCOokEDXDtXQS5tfHPiiSNwQvzqLupeRTeHh4eofa6sboLhr 6dKuL6r4p+KymGl8ygM0MjrXKBLYwR74uf40AbIub1uPzHtrGdhMFJ4UBaaiMqUw UW4jiz86VE2w0kAeCiOlsAVjGXKMF3t1Ji+wi0kcWFfOFVYmp++QZt8tRpyk+tjh GhWF6roUQRjAk9ZpquGj0jxz0ixLSk4bW3GoPQG0wybbozPY0u5bbT9XBH95vQ9V oKOGAnr4hnf4Q0uFw8SSuHodojozhvtLr24uIScnbJW0TIAeer1h48qzqhQDCnC5 opaY/agiHAXNuiPxtcpaOPA1AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUvc3LV5Tm nn6+hPiGzBxMe0Goh20wHwYDVR0jBBgwFoAUrJMLYl2DnFaNqBmeOP+dt+N4M70w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3OTQ4LzRGOTc2REY4MzdE MDExRUY4OTQ1NDcxQUM0RjlBRTAyL3JKTUxZbDJEbkZhTnFCbWVPUC1kdC1ONE03 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckpNTFlsMkRuRmFOcUJtZU9QLWR0LU40TTcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80Rjk3NkRGODM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi83MTUyMjUyQzM3 RDExMUVGOTlBODAxMUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQBQDANBgkqhkiG9w0BAQsFAAOCAQEAc2ZiqGESttTP 7w2IkIdBKvMALD6zKnKlaWn7I2syu0IJahakJ8TNgd5Dp9I687H6EynIsxz92rzi VYWrT7xkT5ZayDthflX8r+7svx+W02hEl47dGOoK4Vys9Pe2UVgRAxyW8LdHZR7+ JQ2B1hBnwf2qx+M1zxGu5/VGCCkO9TNHgP6B/4r12DZgqC5P5qI5wwgz1NDojO5j DaU6IG2eBKbBm/BBnA/WrMMbUkzoIFMoEn6F80PazIfxorI5loIoElH1xLtw8D/6 RuvMuw6r1/Yx1O2iSxgYP5SybSN7U7Tt7pO9d7vDN101naO7H5Y4m08m69TV8b2P jLXvtQXjTg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:49 2024 by rpki-client on console-fra.rpki-client.org