$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/48A5FCA4A0A211EF81FA6876C4F9AE02.roa File: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (raw, json) Hash identifier: qoLr9a7iksL0671YOYMx4/5JujCNxl4357DegF9sWEQ= Subject key identifier: 45:8E:1A:B0:92:E4:38:EA:B2:FC:24:4E:44:80:D8:D6:21:1F:AF:5C Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: 02 Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/48A5FCA4A0A211EF81FA6876C4F9AE02.roa Signing time: Tue 12 Nov 2024 03:00:34 +0000 ROA not before: Tue 12 Nov 2024 03:00:34 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135426 IP address blocks: 2401:bd60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: Nov 12 03:00:34 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6732c4d1-3def Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:e2:4b:41:b6:c3:bd:3f:72:86:ca:2f:c8: 88:48:7c:d4:c8:c3:e4:64:11:74:e6:16:94:a4:92: b2:95:fe:f9:95:6e:96:70:1c:1b:95:f5:db:b8:4e: 65:e9:95:82:fc:51:07:2c:b9:cd:9a:f2:6b:69:cb: 9a:f3:e7:61:d1:22:4d:9f:ac:c1:2e:cc:af:61:eb: 8b:c2:26:98:38:3b:b1:b2:c7:61:f5:dc:b8:dd:cb: 13:61:96:12:01:ad:16:0c:05:3f:57:98:b0:fb:59: 1a:53:40:4e:e1:db:54:17:78:21:4d:1b:87:1c:f6: 2b:c4:81:9f:64:aa:d7:28:69:01:c7:63:59:a3:76: 06:d8:4a:76:da:27:e9:90:4f:b8:90:4d:14:2b:47: 15:bc:e4:87:58:85:ce:db:15:ff:34:9d:33:6f:32: f3:22:ed:ae:4c:3d:d2:ac:e1:aa:3c:8c:98:10:5e: a9:70:a7:5b:0f:27:ad:6b:3b:9f:09:49:b7:e3:85: fc:a1:c7:9b:a1:6b:37:b1:33:b6:72:a3:b8:24:c6: 35:b6:27:d5:15:0d:ca:d8:bb:8b:3c:c9:18:fd:db: 80:87:b5:95:95:08:2c:cd:d1:77:be:0a:0e:8c:93: b7:8b:ed:fc:26:ef:97:21:96:90:98:70:89:39:a2: c4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:8E:1A:B0:92:E4:38:EA:B2:FC:24:4E:44:80:D8:D6:21:1F:AF:5C X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/48A5FCA4A0A211EF81FA6876C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:bd60::/32 Signature Algorithm: sha256WithRSAEncryption 20:67:74:1f:71:d1:6b:2d:7e:81:2a:dc:61:4e:83:ab:3b:7f: 08:b0:3c:dc:8d:d2:06:60:e3:35:6f:53:1e:5b:54:a0:da:7f: 6c:d5:2a:9f:e4:62:1c:15:2e:33:31:9d:a1:8a:32:e4:45:96: 14:e6:d2:c5:66:4a:7b:59:32:e8:b7:b4:72:c4:a0:82:52:64: 22:02:3e:85:8d:7d:6d:22:e6:10:96:f3:fb:0e:6e:f4:51:b8: 98:cb:27:43:09:8a:7e:2d:10:c6:fb:cd:74:83:64:fc:7f:c3: 88:86:02:cb:b6:4b:ba:7a:14:f9:5c:c3:66:b7:ca:64:60:2c: 21:7d:48:3f:72:99:9c:81:5d:33:e2:06:b2:10:de:d2:77:85: 77:17:de:10:c5:eb:d3:07:1b:fd:ad:2a:fc:8f:12:79:15:9a: bf:96:28:73:ac:02:00:5e:a0:10:aa:5d:73:8c:41:d8:ba:25: 76:05:2b:96:c4:71:21:ec:a9:1a:1d:5c:17:cb:be:37:f4:c0: cf:7a:a5:98:d7:24:f2:f3:e4:e3:3f:e2:52:95:ef:9c:0e:e0: 25:23:ff:f9:04:35:17:49:2a:46:5a:e9:4a:31:2c:b7:c7:9c: f5:57:94:be:2e:92:b6:a2:69:97:5f:6d:83:b2:db:43:5a:33: bb:5a:22:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QTk0MTExMC8GA1UEBRMoNzMxN0Q3NzdCREFBNjMzM0NEOTZBODEwNEI5NERFMEZB NDc1MjExMzAeFw0yNDExMTIwMzAwMzRaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzJjNGQxLTNkZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/P+JLQbbDvT9yhsovyIhIfNTIw+RkEXTmFpSkkrKV/vmVbpZwHBuV9du4TmXp lYL8UQcsuc2a8mtpy5rz52HRIk2frMEuzK9h64vCJpg4O7Gyx2H13LjdyxNhlhIB rRYMBT9XmLD7WRpTQE7h21QXeCFNG4cc9ivEgZ9kqtcoaQHHY1mjdgbYSnbaJ+mQ T7iQTRQrRxW85IdYhc7bFf80nTNvMvMi7a5MPdKs4ao8jJgQXqlwp1sPJ61rO58J Sbfjhfyhx5uhazexM7Zyo7gkxjW2J9UVDcrYu4s8yRj924CHtZWVCCzN0Xe+Cg6M k7eL7fwm75chlpCYcIk5osTRAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQURY4asJLk OOqy/CRORIDY1iEfr1wwHwYDVR0jBBgwFoAUcxfXd72qYzPNlqgQS5TeD6R1IRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBOTQxLzlCM0QyNTQ4QTBB MDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlS TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3hmWGQ3MnFZelBObHFnUVM1VGVENlIxSVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTk0MS85QjNEMjU0OEEwQTAxMUVGOTA1MjMyNUZDNEY5QUUwMi80OEE1RkNBNEEw QTIxMUVGODFGQTY4NzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBvWAwDQYJKoZIhvcNAQELBQADggEBACBndB9x0WstfoEq 3GFOg6s7fwiwPNyN0gZg4zVvUx5bVKDaf2zVKp/kYhwVLjMxnaGKMuRFlhTm0sVm SntZMui3tHLEoIJSZCICPoWNfW0i5hCW8/sObvRRuJjLJ0MJin4tEMb7zXSDZPx/ w4iGAsu2S7p6FPlcw2a3ymRgLCF9SD9ymZyBXTPiBrIQ3tJ3hXcX3hDF69MHG/2t KvyPEnkVmr+WKHOsAgBeoBCqXXOMQdi6JXYFK5bEcSHsqRodXBfLvjf0wM96pZjX JPLz5OM/4lKV75wO4CUj//kENRdJKkZa6UoxLLfHnPVXlL4ukraiaZdfbYOy20Na M7taIno= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:54 2024 by rpki-client on console-fra.rpki-client.org