$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8B8856F4C9DC11EE8B24C55EC4F9AE02.roa File: 8B8856F4C9DC11EE8B24C55EC4F9AE02.roa (raw, json) Hash identifier: maL4uN20qdAsWEHHKCBH0I+qShISlNfAhA2p73xkGTY= Subject key identifier: B8:C6:C8:8C:DB:69:EF:18:9A:BB:98:7A:F3:56:A2:48:51:56:43:29 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0990 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8B8856F4C9DC11EE8B24C55EC4F9AE02.roa Signing time: Tue 26 Mar 2024 21:10:19 +0000 ROA not before: Tue 26 Mar 2024 21:10:19 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 20940 IP address blocks: 2001:218:3004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2448 (0x990) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 21:10:19 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660339bb-69fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7a:42:b7:76:9a:ae:04:f9:67:b2:f3:01:bb: 55:03:06:71:29:78:f8:62:af:fd:46:81:eb:90:8a: 80:35:40:53:33:69:03:d9:85:72:49:23:f6:60:cd: c1:d3:03:90:c1:70:c3:5c:c0:a2:47:c4:16:e4:a8: 1a:3c:e8:13:62:bc:93:5e:2c:13:d2:17:39:c1:35: 24:72:2f:90:4e:8f:9b:b2:6d:38:13:fe:22:03:e1: 55:4a:91:0d:f1:92:b3:d8:f9:21:7e:6d:c1:d2:8b: 73:7c:5d:7a:7e:b3:03:ce:05:43:18:37:c3:ab:c5: 70:a2:c1:69:f9:11:7b:f8:24:c9:e3:ac:04:68:db: 07:2c:30:91:d8:ed:f8:7a:16:c3:dc:15:f1:b4:d8: 47:96:fc:06:51:d6:37:2a:b2:03:aa:e3:e7:0e:d4: 86:5f:18:fa:90:99:d0:65:a6:bb:f8:98:55:ad:f0: 4c:8a:15:e7:48:0c:0c:1c:35:fb:22:9f:90:26:cd: f8:92:0b:7d:58:60:61:40:cd:f8:71:8c:80:b0:b8: 38:bc:b5:2c:03:10:4e:a4:e9:d4:cf:99:32:96:8f: 5b:21:de:67:a8:cc:fe:f4:44:49:73:72:e1:7c:f6: 03:d0:3c:3a:a0:57:ca:6c:bf:9e:7e:eb:fe:7b:d2: f7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C6:C8:8C:DB:69:EF:18:9A:BB:98:7A:F3:56:A2:48:51:56:43:29 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8B8856F4C9DC11EE8B24C55EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:218:3004::/48 Signature Algorithm: sha256WithRSAEncryption 18:3f:8b:92:52:48:3e:98:72:11:c4:d6:be:db:9f:8a:da:7e: c1:db:17:12:6b:69:36:4a:7a:68:11:50:af:37:c5:f6:12:c6: ff:3a:54:03:a5:9d:2c:7a:12:f8:2d:8a:8a:10:be:1b:9d:07: c6:16:07:c6:8f:19:53:e5:0b:d9:48:1c:7a:53:40:39:14:f6: 68:30:a5:fb:48:2f:39:02:56:fb:7b:2e:08:05:d0:da:79:10: 20:ca:a1:3a:1b:b0:cb:fc:e8:4f:8f:11:b8:bc:56:c1:c1:fc: 43:5b:25:a5:83:33:01:fa:49:cd:cf:95:11:e0:ae:3c:92:44: 46:11:51:e2:4b:55:23:aa:23:bc:34:b8:de:98:d2:99:94:be: 33:df:8f:3e:4b:8b:78:2a:27:a2:57:07:b6:07:78:a6:6d:ef: 36:d2:19:34:19:0f:36:5b:79:c9:2f:60:c5:d8:f8:d9:9b:83: 81:b7:1f:8b:af:04:27:ca:bb:26:f4:a1:a7:0b:ba:ee:17:90: 13:9d:39:c5:5f:17:12:f3:91:81:f0:35:f9:1c:a6:8b:ee:b8: 26:b1:93:17:41:8c:db:5f:e1:6e:11:a1:b8:ec:80:1b:e5:8a: 5e:30:5d:6d:26:87:19:58:31:94:8d:20:5a:87:43:2f:f3:a7: 37:79:85:c7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjQwMzI2MjExMDE5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzMzliYi02OWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73pCt3aargT5Z7LzAbtVAwZxKXj4Yq/9RoHrkIqANUBTM2kD2YVySSP2YM3B 0wOQwXDDXMCiR8QW5KgaPOgTYryTXiwT0hc5wTUkci+QTo+bsm04E/4iA+FVSpEN 8ZKz2Pkhfm3B0otzfF16frMDzgVDGDfDq8VwosFp+RF7+CTJ46wEaNsHLDCR2O34 ehbD3BXxtNhHlvwGUdY3KrIDquPnDtSGXxj6kJnQZaa7+JhVrfBMihXnSAwMHDX7 Ip+QJs34kgt9WGBhQM34cYyAsLg4vLUsAxBOpOnUz5kylo9bId5nqMz+9ERJc3Lh fPYD0Dw6oFfKbL+efuv+e9L3bQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLjGyIzb ae8YmruYevNWokhRVkMpMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvOEI4ODU2RjRD OURDMTFFRThCMjRDNTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQIYMAQwDQYJKoZIhvcNAQELBQADggEBABg/i5JSSD6Y chHE1r7bn4rafsHbFxJraTZKemgRUK83xfYSxv86VAOlnSx6EvgtiooQvhudB8YW B8aPGVPlC9lIHHpTQDkU9mgwpftILzkCVvt7LggF0Np5ECDKoTobsMv86E+PEbi8 VsHB/ENbJaWDMwH6Sc3PlRHgrjySREYRUeJLVSOqI7w0uN6Y0pmUvjPfjz5Li3gq J6JXB7YHeKZt7zbSGTQZDzZbeckvYMXY+Nmbg4G3H4uvBCfKuyb0oacLuu4XkBOd OcVfFxLzkYHwNfkcpovuuCaxkxdBjNtf4W4RobjsgBvlil4wXW0mhxlYMZSNIFqH Qy/zpzd5hcc= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:45 2024 by rpki-client on console-fra.rpki-client.org