$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/BACC498C9EFC11EC856FCB09C4F9AE02.roa File: BACC498C9EFC11EC856FCB09C4F9AE02.roa (raw, json) Hash identifier: HS8PGK9JvgH2bBKy4nxxFbr2M5XBFdQnBUnj4pS0EeA= Subject key identifier: 3F:48:94:63:BB:E1:CC:FF:A7:05:5A:30:44:F0:C7:A5:19:58:43:22 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0993 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/BACC498C9EFC11EC856FCB09C4F9AE02.roa Signing time: Tue 26 Mar 2024 21:10:22 +0000 ROA not before: Tue 26 Mar 2024 21:10:21 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 3938 IP address blocks: 2001:218:4000:9::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2451 (0x993) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 21:10:21 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660339bd-ff9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8e:57:fb:67:83:a9:0d:30:7f:b7:42:df:14: e5:0b:6c:22:52:4f:77:2b:7a:74:df:9d:11:59:4f: 4e:bf:e5:2c:7b:01:0c:41:6a:71:df:95:48:4e:62: 85:92:43:ed:7b:d5:ff:e4:18:53:9c:76:28:c1:9a: 3c:7b:af:eb:90:1d:26:c1:4d:9f:af:2a:99:14:98: 31:ac:db:a0:7e:b2:8e:8c:1b:06:09:b1:fc:90:bb: 52:b6:ba:d7:c0:6f:12:d0:37:45:c6:86:ca:53:60: 18:62:df:92:63:f1:cd:b4:d7:45:3d:82:b1:4d:fe: 5b:44:68:50:8e:04:fe:c6:34:b2:ad:45:71:79:ca: 11:56:b7:fe:cb:1f:1f:c7:6c:43:c9:a6:a7:37:d8: f3:c3:ed:c5:8b:b0:cd:ad:2c:77:7a:23:90:a3:5e: 77:e0:20:50:2c:f6:ed:69:1e:a0:13:ab:ed:8b:7d: 29:28:a3:67:09:1f:ab:09:aa:8a:d3:dd:9a:eb:91: e0:3c:7f:54:ea:c1:d9:64:e1:cc:13:e2:12:f5:9b: d3:73:6f:48:a1:61:f2:87:e5:36:10:2d:a2:9a:6b: 04:cb:8f:49:b1:7f:ce:74:c4:10:6d:58:a9:14:02: 0b:90:3f:f0:ef:46:ac:22:ce:1b:09:f5:07:fe:6c: 41:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:48:94:63:BB:E1:CC:FF:A7:05:5A:30:44:F0:C7:A5:19:58:43:22 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/BACC498C9EFC11EC856FCB09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:218:4000:9::/64 Signature Algorithm: sha256WithRSAEncryption 21:70:f9:69:dd:b5:2c:56:e5:3b:b7:15:88:67:92:8e:ba:8e: 07:f5:f4:3f:39:fa:a0:a0:c8:97:9c:9f:ec:a8:d1:3a:e6:06: a6:9b:0f:65:4d:ac:33:33:dc:62:88:ee:05:bd:f7:45:f0:45: 15:eb:d1:83:31:3b:b7:ea:4c:29:95:7d:2a:c2:35:93:11:3c: cc:b6:6c:75:f1:bd:d4:89:46:ff:69:fe:fb:08:5b:cf:37:f7: 17:65:cd:60:04:87:c4:11:03:e4:51:e8:f8:5c:1a:ed:f4:35: 99:f4:37:40:73:67:ef:dc:56:ca:f6:a2:b8:55:3c:b4:3b:b2: 6d:97:3f:fb:60:6b:18:8c:73:2e:92:cf:cd:5d:63:b0:60:f0: bb:0e:d5:95:9f:08:1e:e0:67:90:80:f9:21:09:f6:38:9f:7b: 0a:02:04:eb:5a:ab:76:65:b0:b8:26:e0:72:15:f2:d0:54:95: 52:96:47:48:7d:13:a2:4b:56:68:24:23:fb:5d:91:3c:3a:44: 31:a2:cb:0f:1c:1a:bf:28:58:96:f4:15:bb:dc:ca:c9:e4:93: d2:0c:2d:2c:d6:73:b8:2d:94:dc:7a:e5:c5:c2:93:b7:2a:73: 12:8d:d2:78:eb:12:00:4c:97:6f:ff:36:70:77:a0:f8:36:1b: df:7d:1f:45 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICCZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjQwMzI2MjExMDIxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzMzliZC1mZjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6o5X+2eDqQ0wf7dC3xTlC2wiUk93K3p0350RWU9Ov+UsewEMQWpx35VITmKF kkPte9X/5BhTnHYowZo8e6/rkB0mwU2fryqZFJgxrNugfrKOjBsGCbH8kLtStrrX wG8S0DdFxobKU2AYYt+SY/HNtNdFPYKxTf5bRGhQjgT+xjSyrUVxecoRVrf+yx8f x2xDyaanN9jzw+3Fi7DNrSx3eiOQo1534CBQLPbtaR6gE6vti30pKKNnCR+rCaqK 092a65HgPH9U6sHZZOHME+IS9ZvTc29IoWHyh+U2EC2immsEy49JsX/OdMQQbVip FAILkD/w70asIs4bCfUH/mxBzQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFD9IlGO7 4cz/pwVaMETwx6UZWEMiMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvQkFDQzQ5OEM5 RUZDMTFFQzg1NkZDQjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgACMAsDCQAgAQIYQAAACTANBgkqhkiG9w0BAQsFAAOCAQEAIXD5ad21 LFblO7cViGeSjrqOB/X0Pzn6oKDIl5yf7KjROuYGppsPZU2sMzPcYojuBb33RfBF FevRgzE7t+pMKZV9KsI1kxE8zLZsdfG91IlG/2n++whbzzf3F2XNYASHxBED5FHo +Fwa7fQ1mfQ3QHNn79xWyvaiuFU8tDuybZc/+2BrGIxzLpLPzV1jsGDwuw7VlZ8I HuBnkID5IQn2OJ97CgIE61qrdmWwuCbgchXy0FSVUpZHSH0ToktWaCQj+12RPDpE MaLLDxwavyhYlvQVu9zKyeST0gwtLNZzuC2U3HrlxcKTtypzEo3SeOsSAEyXb/82 cHeg+DYb330fRQ== -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:58 2024 by rpki-client on console-ams.rpki-client.org