$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8B083190C9DC11EE8B24C55EC4F9AE02.roa File: 8B083190C9DC11EE8B24C55EC4F9AE02.roa (raw, json) Hash identifier: kxN3E1UjFrRW2qS6VXZ4546hiWA0TPCQ1evX0olnexQ= Subject key identifier: DA:5C:00:EA:81:63:06:1C:30:B0:18:1D:D0:86:F3:DA:F0:23:3B:5F Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 098F Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8B083190C9DC11EE8B24C55EC4F9AE02.roa Signing time: Tue 26 Mar 2024 21:10:18 +0000 ROA not before: Tue 26 Mar 2024 21:10:18 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 18259 IP address blocks: 2001:218:2200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2447 (0x98f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 21:10:18 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660339ba-d116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0c:d3:50:9d:77:71:34:b6:4e:bc:93:cd:b1: 4e:eb:59:4c:16:b1:f6:69:f2:6b:bb:bd:6a:4c:39: 06:9b:63:94:ef:df:55:88:5d:9c:e2:a9:b2:87:31: 2d:67:6f:c8:42:c8:5f:f0:32:2b:61:0b:98:b5:7f: f6:52:d3:bd:c0:7f:45:86:7e:ea:04:31:4e:dc:7c: 50:24:88:c5:75:2f:cc:20:03:e2:5d:2b:b1:50:23: 94:0d:7d:80:22:2a:3b:a4:5e:53:d9:0b:9e:1d:12: 7d:36:cf:a1:ef:ed:25:ed:2d:c2:bb:15:87:d9:9a: 0a:ce:72:ce:17:93:f5:aa:22:00:44:e6:c4:e1:34: 9e:a9:8b:23:08:db:3a:6d:dc:42:bd:56:9a:76:b5: 3f:66:cb:ed:40:59:c8:90:47:86:fa:72:d3:75:65: 57:31:ec:af:d1:59:ad:31:c9:1b:ce:63:dc:ee:6d: 66:23:17:4d:53:e0:0b:09:04:ec:85:a5:c0:e9:f6: 97:b1:ae:75:2b:a4:ce:e5:cd:0d:df:3b:8a:12:81: bc:3f:89:52:fa:63:8d:2c:b3:05:b7:ed:89:a6:c6: 7e:6b:85:50:d7:2b:a2:50:5a:c7:66:a2:4c:29:81: cd:ae:f2:5b:0d:40:73:58:e6:ed:22:3f:45:99:33: 0b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:5C:00:EA:81:63:06:1C:30:B0:18:1D:D0:86:F3:DA:F0:23:3B:5F X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8B083190C9DC11EE8B24C55EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:218:2200::/40 Signature Algorithm: sha256WithRSAEncryption 6f:68:cb:49:f7:27:62:23:c5:c0:04:41:99:bf:e3:3d:5e:c9: 28:ce:17:d8:93:c9:d0:c0:08:94:47:b0:fa:50:ae:fc:b4:65: 54:83:41:39:7d:1b:0e:20:6b:4d:94:38:24:cb:07:f6:3c:41: 2b:4a:b0:7d:40:7b:c0:b7:9e:7e:b8:0f:59:8e:a5:23:a4:dd: 04:a4:cb:bc:c6:df:6e:c8:e6:60:0f:d6:7d:f4:cd:d1:63:82: dc:fa:55:ab:d0:00:fd:9c:c3:63:39:da:7e:ce:f5:d6:69:b9: 8f:3e:0b:44:c8:1f:21:b2:3e:35:64:08:e4:ad:6e:1f:aa:75: aa:4a:4a:ad:80:30:00:5d:fd:3a:83:e2:30:a8:45:47:49:a5: a0:50:29:ba:a6:cd:48:59:b3:01:88:c1:9e:4e:cc:3d:c9:41: fd:cc:91:10:dc:23:0e:12:d7:56:ec:f2:00:02:80:94:4e:56: 4f:26:ed:2e:be:e5:7a:42:f5:c4:aa:5d:6c:37:29:a5:2f:36: a2:74:7e:a3:ee:33:51:20:4b:cc:24:89:9e:65:98:63:4f:54: e9:ba:71:55:69:f9:58:ef:2a:9f:0d:bb:07:ad:fc:86:66:52: 58:af:7a:c2:8f:b0:24:8a:3b:7b:28:d7:9f:47:83:e1:14:6c: 15:b5:36:d4 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICCY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjQwMzI2MjExMDE4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzMzliYS1kMTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAzTUJ13cTS2TryTzbFO61lMFrH2afJru71qTDkGm2OU799ViF2c4qmyhzEt Z2/IQshf8DIrYQuYtX/2UtO9wH9Fhn7qBDFO3HxQJIjFdS/MIAPiXSuxUCOUDX2A Iio7pF5T2QueHRJ9Ns+h7+0l7S3CuxWH2ZoKznLOF5P1qiIARObE4TSeqYsjCNs6 bdxCvVaadrU/ZsvtQFnIkEeG+nLTdWVXMeyv0VmtMckbzmPc7m1mIxdNU+ALCQTs haXA6faXsa51K6TO5c0N3zuKEoG8P4lS+mONLLMFt+2JpsZ+a4VQ1yuiUFrHZqJM KYHNrvJbDUBzWObtIj9FmTMLywIDAQABo4IClzCCApMwHQYDVR0OBBYEFNpcAOqB YwYcMLAYHdCG89rwIztfMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvOEIwODMxOTBD OURDMTFFRThCMjRDNTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAgAQIYIjANBgkqhkiG9w0BAQsFAAOCAQEAb2jLSfcnYiPF wARBmb/jPV7JKM4X2JPJ0MAIlEew+lCu/LRlVINBOX0bDiBrTZQ4JMsH9jxBK0qw fUB7wLeefrgPWY6lI6TdBKTLvMbfbsjmYA/WffTN0WOC3PpVq9AA/ZzDYznafs71 1mm5jz4LRMgfIbI+NWQI5K1uH6p1qkpKrYAwAF39OoPiMKhFR0mloFApuqbNSFmz AYjBnk7MPclB/cyRENwjDhLXVuzyAAKAlE5WTybtLr7lekL1xKpdbDcppS82onR+ o+4zUSBLzCSJnmWYY09U6bpxVWn5WO8qnw27B638hmZSWK96wo+wJIo7eyjXn0eD 4RRsFbU21A== -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:45 2024 by rpki-client on console-fra.rpki-client.org