$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/4E7F3B4C955B11EFACD8F26CC4F9AE02.roa File: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (raw, json) Hash identifier: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8= Subject key identifier: A5:A8:C3:11:15:86:8A:DF:D2:E9:CB:1D:C2:68:CA:CA:91:19:43:3C Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 02 Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/4E7F3B4C955B11EFACD8F26CC4F9AE02.roa Signing time: Mon 28 Oct 2024 18:34:46 +0000 ROA not before: Mon 28 Oct 2024 18:34:46 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153378 IP address blocks: 2001:df4:8340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Oct 28 18:34:46 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=671fd946-df0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:63:8a:f8:6c:3c:4d:03:88:96:9b:58:34:2a: b7:f0:50:62:c9:df:29:88:ba:60:af:78:b9:7d:4e: a0:0c:24:ee:18:bb:04:81:52:9a:54:00:c3:a4:e0: a2:79:e3:8a:68:7d:2e:a0:aa:cd:a7:66:ef:f2:5d: 6a:f4:a5:8c:b5:8d:22:cf:91:bf:49:09:b9:77:4f: 93:ff:bc:f2:1c:9b:3b:c6:78:47:65:f4:b9:ba:6e: 45:2b:8d:7e:4b:56:f7:2f:ae:66:d9:54:e2:bb:0a: cc:6c:bc:63:ee:1f:e6:10:3c:2e:63:3e:a4:72:e8: f1:7d:0b:42:c2:9f:a3:73:6c:0a:7e:1c:43:e8:ab: 57:ef:23:a4:4c:04:6d:e8:74:81:4e:d2:64:6d:af: 0c:d1:3b:1c:4b:9c:00:b0:1f:e0:50:4a:0f:53:23: fe:47:69:a3:9a:44:cb:c9:17:2a:17:fa:61:62:0c: 1e:27:6a:e0:43:10:3b:72:d0:e9:d5:6e:56:00:72: 93:57:72:c1:4e:e6:4c:e4:7a:5a:b1:e7:67:80:62: 51:84:8a:fc:af:1a:45:39:18:6b:e3:d2:1a:cc:5c: 85:d0:c8:07:92:16:62:aa:5b:42:95:2c:e7:35:e8: df:c3:fd:5d:a4:8e:53:37:92:90:6b:a3:ab:91:f6: b6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:A8:C3:11:15:86:8A:DF:D2:E9:CB:1D:C2:68:CA:CA:91:19:43:3C X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/4E7F3B4C955B11EFACD8F26CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:8340::/48 Signature Algorithm: sha256WithRSAEncryption 3a:35:f2:37:a7:3c:cf:05:97:d8:ce:4c:89:b5:25:f0:a3:29: 53:42:94:6a:b9:fd:af:2b:e5:d7:11:e7:85:54:eb:8c:73:10: 81:ac:ca:f8:e2:d2:da:d7:b7:79:ad:d3:51:70:14:26:a8:68: ac:a0:e6:63:3b:ee:8a:34:4a:94:5e:47:fe:b6:36:b2:e9:39: 46:f6:83:f2:a9:41:21:7f:89:55:4f:02:87:51:6c:96:4c:04: 61:06:8b:76:61:0a:39:14:fd:48:60:64:e3:08:70:c8:12:18: ea:a9:b4:3c:9e:8b:67:50:c6:08:5a:a6:28:fc:a8:ab:47:db: d6:25:39:f2:75:9f:8e:b6:6c:08:62:33:06:b8:58:5a:59:b3: b6:0f:cb:50:26:d3:9a:c7:64:03:0f:7a:85:d2:e0:22:96:ed: c8:78:90:bf:b5:9d:f7:33:8c:3d:50:6d:2b:49:a6:df:3a:8a: 3b:fb:92:21:9e:6f:fe:38:9f:3f:43:38:33:68:97:27:c3:95: 05:0c:28:b9:f8:ca:e7:24:aa:e5:7e:00:79:7f:19:e3:91:bd: 49:9b:06:8c:f7:a2:b1:6f:34:95:87:12:a1:ec:02:b7:61:63: d9:5b:3f:cb:9a:43:54:e0:81:c5:fd:50:6f:9f:bb:e1:8b:41: 19:6f:2a:45 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoMUU2NTZEREVDN0U5OEQyNEExODZGRkRCNkY1OTc3MTBB QUZGMkE4RDAeFw0yNDEwMjgxODM0NDZaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWZkOTQ2LWRmMGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1Y4r4bDxNA4iWm1g0KrfwUGLJ3ymIumCveLl9TqAMJO4YuwSBUppUAMOk4KJ5 44pofS6gqs2nZu/yXWr0pYy1jSLPkb9JCbl3T5P/vPIcmzvGeEdl9Lm6bkUrjX5L VvcvrmbZVOK7CsxsvGPuH+YQPC5jPqRy6PF9C0LCn6NzbAp+HEPoq1fvI6RMBG3o dIFO0mRtrwzROxxLnACwH+BQSg9TI/5HaaOaRMvJFyoX+mFiDB4nauBDEDty0OnV blYAcpNXcsFO5kzkelqx52eAYlGEivyvGkU5GGvj0hrMXIXQyAeSFmKqW0KVLOc1 6N/D/V2kjlM3kpBro6uR9rYnAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUpajDERWG it/S6csdwmjKypEZQzwwHwYDVR0jBBgwFoAUHmVt3sfpjSShhv/bb1l3EKr/Ko0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzM1Qzc2QzdFOTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tv MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSG1WdDNzZnBqU1NoaHZfYmIxbDNFS3JfS28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi80RTdGM0I0Qzk1 NUIxMUVGQUNEOEYyNkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfSDQDANBgkqhkiG9w0BAQsFAAOCAQEAOjXyN6c8zwWX 2M5MibUl8KMpU0KUarn9ryvl1xHnhVTrjHMQgazK+OLS2te3ea3TUXAUJqhorKDm YzvuijRKlF5H/rY2suk5RvaD8qlBIX+JVU8Ch1FslkwEYQaLdmEKORT9SGBk4whw yBIY6qm0PJ6LZ1DGCFqmKPyoq0fb1iU58nWfjrZsCGIzBrhYWlmztg/LUCbTmsdk Aw96hdLgIpbtyHiQv7Wd9zOMPVBtK0mm3zqKO/uSIZ5v/jifP0M4M2iXJ8OVBQwo ufjK5ySq5X4AeX8Z45G9SZsGjPeisW80lYcSoewCt2Fj2Vs/y5pDVOCBxf1Qb5+7 4YtBGW8qRQ== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org