$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa File: 3F9CDA68179911EDB9008D18C4F9AE02.roa (raw, json) Hash identifier: uQ87OwRIbPff2rIgxwDqjjJe9H/t71HNB3Wpu5Q8ifI= Subject key identifier: DF:12:F1:5B:98:AB:CE:18:D8:96:B2:5F:32:6C:D4:2A:C2:F7:8C:5F Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 0597 Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa Signing time: Wed 29 May 2024 01:06:22 +0000 ROA not before: Wed 29 May 2024 01:06:22 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 24390 IP address blocks: 2001:dd8::/48 maxlen: 48 2402:2940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1431 (0x597) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: May 29 01:06:22 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66567f8d-d1d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5a:1f:b0:06:35:b5:5e:9e:66:c1:14:d8:85: be:95:29:ef:31:82:6b:bb:1d:83:a6:fa:4b:24:8e: 91:19:4a:0f:84:97:e0:92:a2:ba:7a:bb:c1:26:8d: 55:87:d3:6d:0f:dc:9c:55:8d:df:dd:bb:7b:9e:39: a4:8f:5c:f3:6f:ca:8a:27:d0:82:05:86:ed:83:0c: f7:91:0b:88:ff:06:a6:64:45:09:5f:43:2a:07:3c: 3b:51:b2:aa:b6:67:ea:fa:0e:c7:54:25:f1:70:6c: dc:0a:cc:21:94:42:10:18:53:a5:f0:74:1d:7c:eb: 77:ad:21:6d:32:66:7b:1f:35:20:f7:fa:16:b9:dd: e0:a1:28:4d:be:35:dd:28:99:07:0c:87:1a:8d:ff: 26:a8:18:b9:ba:3f:5a:1a:c5:a8:24:d6:08:0e:e6: c7:3e:08:1d:bf:4d:43:07:15:00:fd:03:43:00:eb: 60:bb:72:d0:0a:8a:90:40:62:f3:17:77:1e:f1:22: 46:ed:be:f0:76:56:27:69:f5:78:3a:53:4e:aa:2c: 68:c8:ea:71:3d:cd:bd:29:0c:7a:67:9c:52:ac:2b: a6:58:6e:9c:42:d4:89:3c:49:37:9c:31:32:3d:46: 81:12:b5:9c:4b:5c:db:d1:53:46:ae:2a:52:1d:70: c3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:12:F1:5B:98:AB:CE:18:D8:96:B2:5F:32:6C:D4:2A:C2:F7:8C:5F X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dd8::/48 2402:2940::/32 Signature Algorithm: sha256WithRSAEncryption bc:ca:ad:0c:5d:cb:83:fc:50:6a:6a:bf:d0:fe:0f:93:57:13: 7c:ca:84:2d:68:b5:f6:6a:d9:ee:41:54:26:be:4f:20:01:a0: 9a:04:6f:7b:d7:b0:8f:c5:65:09:90:25:f3:b6:02:6a:c8:27: 91:41:d3:7c:e3:5c:3c:3f:5b:a1:8d:7a:f7:9d:39:9e:db:74: 0b:84:52:6b:2e:63:17:08:e6:30:03:19:06:82:ef:01:2f:9c: 8d:00:78:26:10:5a:9a:48:db:cf:75:f7:c9:b1:84:bf:3a:04: 8f:cd:10:32:ed:69:e0:e6:02:7c:7a:a6:71:3e:b0:ee:fd:6f: a3:01:0e:fc:69:e1:b7:08:50:23:84:7f:f7:5a:c8:ed:c4:89: a9:55:0c:0d:6e:0c:8c:13:d5:89:d6:ad:79:21:2f:4f:29:66: 12:4e:00:5c:62:29:4b:93:1f:4b:9f:83:0c:49:e1:39:4f:5c: 7f:7d:14:81:4b:61:eb:52:d7:ab:cf:ee:68:fb:99:a8:f9:16: 7d:01:28:38:35:4e:60:4c:58:26:2e:9d:03:bd:2d:f8:86:ab: ec:1b:35:63:0f:a2:2e:41:b4:2d:07:51:fa:32:f4:f5:bf:e7: 60:f4:55:c8:a8:9b:c7:86:d7:fb:ba:48:d9:fe:75:5d:4b:9d: 4f:b0:15:d0 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgICBZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjQwNTI5MDEwNjIyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2N2Y4ZC1kMWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlofsAY1tV6eZsEU2IW+lSnvMYJrux2DpvpLJI6RGUoPhJfgkqK6ervBJo1V h9NtD9ycVY3f3bt7njmkj1zzb8qKJ9CCBYbtgwz3kQuI/wamZEUJX0MqBzw7UbKq tmfq+g7HVCXxcGzcCswhlEIQGFOl8HQdfOt3rSFtMmZ7HzUg9/oWud3goShNvjXd KJkHDIcajf8mqBi5uj9aGsWoJNYIDubHPggdv01DBxUA/QNDAOtgu3LQCoqQQGLz F3ce8SJG7b7wdlYnafV4OlNOqixoyOpxPc29KQx6Z5xSrCumWG6cQtSJPEk3nDEy PUaBErWcS1zb0VNGripSHXDDgwIDAQABo4ICnzCCApswHQYDVR0OBBYEFN8S8VuY q84Y2JayXzJs1CrC94xfMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlCMEQvQTI4RUNCQzA4QUI2MTFFQjgyMzdENDE0QzRGOUFFMDIvM0Y5Q0RBNjgx Nzk5MTFFREI5MDA4RDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKQYIKwYBBQUHAQcBAf8E GjAYMBYEAgACMBADBwAgAQ3YAAADBQAkAilAMA0GCSqGSIb3DQEBCwUAA4IBAQC8 yq0MXcuD/FBqar/Q/g+TVxN8yoQtaLX2atnuQVQmvk8gAaCaBG9717CPxWUJkCXz tgJqyCeRQdN841w8P1uhjXr3nTme23QLhFJrLmMXCOYwAxkGgu8BL5yNAHgmEFqa SNvPdffJsYS/OgSPzRAy7Wng5gJ8eqZxPrDu/W+jAQ78aeG3CFAjhH/3WsjtxImp VQwNbgyME9WJ1q15IS9PKWYSTgBcYilLkx9Ln4MMSeE5T1x/fRSBS2HrUterz+5o +5mo+RZ9ASg4NU5gTFgmLp0DvS34hqvsGzVjD6IuQbQtB1H6MvT1v+dg9FXIqJvH htf7ukjZ/nVdS51PsBXQ -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:58 2024 by rpki-client on console-ams.rpki-client.org