$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/A06AB21E6E8811EF95434073C4F9AE02.roa File: A06AB21E6E8811EF95434073C4F9AE02.roa (raw, json) Hash identifier: vppFtWXOaW/ZHVpNFmtwJ9lUk75Frb5HKq6ZQsHZOpc= Subject key identifier: 44:70:D8:2A:E7:E7:E5:AC:FC:AE:B7:0B:26:E5:A1:B8:A1:73:DF:B6 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: 02 Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/A06AB21E6E8811EF95434073C4F9AE02.roa Signing time: Mon 09 Sep 2024 08:50:56 +0000 ROA not before: Mon 09 Sep 2024 08:50:56 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 214441 IP address blocks: 2001:df4:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Sep 9 08:50:56 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66deb6f0-9fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:dc:c7:04:26:de:0f:61:ba:d5:b0:de:49:97: a1:af:ea:49:6d:91:ad:38:77:ae:85:87:b8:79:04: d7:d5:a5:ae:fd:82:7b:43:2f:4a:68:5a:97:f2:4d: b8:35:3a:dd:fb:93:ea:57:72:fd:7a:ad:10:a4:72: a2:5b:53:4f:55:66:af:76:ce:64:02:0f:ea:b0:b3: ee:fb:8a:5c:02:5b:db:06:78:97:54:8d:3f:6c:51: f2:1f:cb:43:52:f5:19:bc:bb:82:2c:2c:b8:04:55: 6d:8d:00:2a:0a:7f:b3:22:56:6c:fc:51:a3:92:8d: 89:7f:da:da:67:c0:39:3b:a1:64:9b:e0:55:7e:20: d0:07:29:ed:1e:7f:b6:78:8b:51:38:d7:db:15:da: d3:ec:a9:06:20:a1:7b:f8:59:13:fe:df:7e:bd:0d: 76:81:c5:ae:49:28:14:fb:87:b9:8d:27:da:3a:42: e8:3c:87:01:4e:3e:4b:47:b4:36:98:ad:c2:1c:c1: 28:a4:3f:ea:f7:cd:59:ea:66:ec:da:81:e4:a7:7e: 49:4f:a6:0e:d0:01:43:cc:87:16:24:61:2a:ef:09: 41:21:85:01:89:00:bc:1b:93:86:99:b9:fd:b3:b5: 03:a5:d0:98:25:93:9f:11:85:4a:a5:02:06:12:11: d5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:70:D8:2A:E7:E7:E5:AC:FC:AE:B7:0B:26:E5:A1:B8:A1:73:DF:B6 X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/A06AB21E6E8811EF95434073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 1e:33:09:6b:a7:46:92:f7:ef:8f:67:13:f5:11:70:76:59:6c: 0a:32:8d:c9:5e:1f:f2:98:12:47:c4:c4:bd:eb:ee:b1:69:24: 0c:83:26:02:3a:58:ea:91:3f:55:b6:3d:a8:6a:c2:64:e9:83: e8:eb:84:8b:06:1e:51:40:29:fc:f7:8d:8b:5d:89:76:f6:09: 16:fa:b5:58:02:97:60:c6:10:55:85:a0:f6:0e:dd:11:47:f8: 5d:40:cd:c3:d6:03:68:64:62:3b:16:65:f6:6f:05:71:a6:f9: 7d:2a:7f:3a:6a:3e:18:50:87:56:4f:a0:ff:84:a8:9f:70:32: f9:b0:fd:38:86:ec:f7:30:a4:87:2d:d9:3e:6f:af:2d:eb:6e: 21:ad:b3:99:c7:fd:d2:93:c7:4b:68:db:44:c8:3a:7c:d1:68: b5:07:66:b6:4f:2b:8c:a2:45:58:cd:6c:97:f2:aa:af:9e:fa: 9f:9d:93:52:6c:eb:f3:7e:68:df:7c:b8:d9:33:15:d1:e5:a1: 76:bc:8d:df:fb:c3:b1:9b:ca:1d:e1:78:4f:a5:59:0a:69:e1: 15:57:cf:f3:28:1c:f4:4a:46:39:bf:00:fb:18:33:66:55:4a: 5b:da:ce:6b:21:97:2f:5a:80:7e:cd:1f:f9:38:86:87:a9:8c: 19:8e:04:bf -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUFCOTExMC8GA1UEBRMoMzgxN0NGRTAwQTVGMUFDQzM2M0I0NzJGNEY2OURBODNC RUI1NjYxMzAeFw0yNDA5MDkwODUwNTZaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGViNmYwLTlmZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv3McEJt4PYbrVsN5Jl6Gv6kltka04d66Fh7h5BNfVpa79gntDL0poWpfyTbg1 Ot37k+pXcv16rRCkcqJbU09VZq92zmQCD+qws+77ilwCW9sGeJdUjT9sUfIfy0NS 9Rm8u4IsLLgEVW2NACoKf7MiVmz8UaOSjYl/2tpnwDk7oWSb4FV+INAHKe0ef7Z4 i1E419sV2tPsqQYgoXv4WRP+3369DXaBxa5JKBT7h7mNJ9o6Qug8hwFOPktHtDaY rcIcwSikP+r3zVnqZuzageSnfklPpg7QAUPMhxYkYSrvCUEhhQGJALwbk4aZuf2z tQOl0Jglk58RhUqlAgYSEdXZAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQURHDYKufn 5az8rrcLJuWhuKFz37YwHwYDVR0jBBgwFoAUOBfP4ApfGsw2O0cvT2nag761ZhMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QUI5L0QxMThDMEJDNkU4 NDExRUZBM0NEOTgzRkM0RjlBRTAyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpo TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0JmUDRBcGZHc3cyTzBjdlQybmFnNzYxWmhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9BMDZBQjIxRTZF ODgxMUVGOTU0MzQwNzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfRAwDANBgkqhkiG9w0BAQsFAAOCAQEAHjMJa6dGkvfv j2cT9RFwdllsCjKNyV4f8pgSR8TEvevusWkkDIMmAjpY6pE/VbY9qGrCZOmD6OuE iwYeUUAp/PeNi12JdvYJFvq1WAKXYMYQVYWg9g7dEUf4XUDNw9YDaGRiOxZl9m8F cab5fSp/Omo+GFCHVk+g/4Son3Ay+bD9OIbs9zCkhy3ZPm+vLetuIa2zmcf90pPH S2jbRMg6fNFotQdmtk8rjKJFWM1sl/Kqr576n52TUmzr835o33y42TMV0eWhdryN 3/vDsZvKHeF4T6VZCmnhFVfP8ygc9EpGOb8A+xgzZlVKW9rOayGXL1qAfs0f+TiG h6mMGY4Evw== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:49 2024 by rpki-client on console-fra.rpki-client.org