$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/3D04EA589D9211EF8083B245C4F9AE02.roa File: 3D04EA589D9211EF8083B245C4F9AE02.roa (raw, json) Hash identifier: G7IWl5XTyAgfWE48sRsXaPS6r+SeXaYM6TeXGgT/8zE= Subject key identifier: 11:0D:5B:C2:6B:8D:C3:B6:A6:C7:C0:A6:D5:C5:0A:DE:AC:11:57:52 Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: 06 Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/3D04EA589D9211EF8083B245C4F9AE02.roa Signing time: Fri 08 Nov 2024 05:28:08 +0000 ROA not before: Fri 08 Nov 2024 05:28:08 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153167 IP address blocks: 2401:b3a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: Nov 8 05:28:08 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=672da168-259c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e5:71:8b:d0:86:6f:80:61:d5:57:80:da:45: 54:a8:95:2f:03:36:66:7c:0d:43:5c:a2:b7:88:03: a6:51:d6:f2:97:7d:c2:8c:d9:6a:88:da:22:45:5c: a7:06:79:74:94:c3:2c:a0:4b:83:d4:cd:e7:4a:9d: 7c:ab:02:41:f0:1d:92:8d:a1:04:0b:62:33:aa:bc: fe:4d:31:cb:1f:f2:41:0e:36:e2:67:e2:a6:46:4e: 95:52:6c:fa:0a:e0:7c:17:be:fc:8b:fc:af:ac:fc: 90:ac:f0:34:a7:22:d1:c3:22:c7:57:b2:09:a7:6f: 0c:ea:f9:92:a6:38:42:c7:1c:3e:11:89:dc:30:e0: da:50:0f:e1:c7:53:a9:04:70:a8:38:b5:18:ca:bd: b9:ca:64:9c:83:b6:88:14:1d:54:cb:00:10:d6:92: e9:7e:2c:c6:f6:26:90:21:40:4e:12:76:76:38:9a: 43:b4:bb:bc:b4:f8:bc:29:d7:61:05:12:7e:69:60: cc:15:8b:7f:29:4e:f9:4f:ae:be:37:8b:74:6b:59: 9b:47:b4:77:f1:25:f2:20:bd:cf:35:a4:a6:8f:ff: 7c:aa:20:72:1e:64:11:8c:b7:ff:9d:4c:c1:c0:e5: 56:b0:cc:c0:bd:c2:61:e2:48:d9:05:f1:07:4d:47: 49:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0D:5B:C2:6B:8D:C3:B6:A6:C7:C0:A6:D5:C5:0A:DE:AC:11:57:52 X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/3D04EA589D9211EF8083B245C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b3a0::/32 Signature Algorithm: sha256WithRSAEncryption 41:f7:3e:52:d3:4e:5b:7f:0a:e2:29:c9:1a:b0:bb:74:25:61: b1:67:57:31:2a:d3:7c:e9:62:d0:bd:e8:91:a6:08:bf:06:db: 43:aa:8d:b7:ea:b9:0b:78:d5:cb:c6:c5:14:41:e8:a5:e0:a8: 71:ab:ea:c2:db:4d:6a:66:aa:7f:7e:e7:73:b0:a6:bc:1b:5a: 2b:a9:e4:61:ca:4d:70:7d:67:77:cb:21:74:48:f4:ce:c5:81: 14:52:9c:96:1f:cf:84:49:8e:2c:e6:7c:c6:1e:20:73:08:b9: 54:29:b3:a2:af:07:62:38:77:45:ee:02:e7:a1:49:e5:f0:58: a6:17:2c:dc:ce:a0:1a:38:e6:92:cf:ef:a7:aa:17:bc:8a:a9: 60:f2:08:8b:77:12:41:8e:2c:e2:60:d3:f1:c2:7f:79:69:3a: c1:cb:f2:31:48:f0:6d:fb:3e:00:b1:2a:51:93:34:02:b6:f5: b5:4a:5f:e5:3c:65:4f:a4:c2:ef:b4:01:8f:ec:7e:de:a1:71: 10:45:c3:c6:1a:16:ca:43:e7:56:66:06:22:4e:c4:42:a5:14: 58:0b:44:36:78:77:93:d4:37:3d:a2:d9:b9:de:04:d8:47:48: 31:46:0e:69:20:d7:99:5d:20:b7:07:55:ec:f1:85:eb:96:1e: 08:e6:32:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTAyNTExMC8GA1UEBRMoNUYwMDRENTdFQjM2RjQyNjcyRTY2RjMwMDVGNjQ2OUI2 Mjg5MTcxQjAeFw0yNDExMDgwNTI4MDhaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MmRhMTY4LTI1OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCT5XGL0IZvgGHVV4DaRVSolS8DNmZ8DUNcoreIA6ZR1vKXfcKM2WqI2iJFXKcG eXSUwyygS4PUzedKnXyrAkHwHZKNoQQLYjOqvP5NMcsf8kEONuJn4qZGTpVSbPoK 4HwXvvyL/K+s/JCs8DSnItHDIsdXsgmnbwzq+ZKmOELHHD4Ridww4NpQD+HHU6kE cKg4tRjKvbnKZJyDtogUHVTLABDWkul+LMb2JpAhQE4SdnY4mkO0u7y0+Lwp12EF En5pYMwVi38pTvlPrr43i3RrWZtHtHfxJfIgvc81pKaP/3yqIHIeZBGMt/+dTMHA 5VawzMC9wmHiSNkF8QdNR0n7AgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUEQ1bwmuN w7amx8Cm1cUK3qwRV1IwHwYDVR0jBBgwFoAUXwBNV+s29CZy5m8wBfZGm2KJFxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxMDI1Lzk1NkY2NjJDOUQ4 NDExRUY4MTdFMTQyMEM0RjlBRTAyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHdCTlYtczI5Q1p5NW04d0JmWkdtMktKRnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS85NTZGNjYyQzlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi8zRDA0RUE1ODlE OTIxMUVGODA4M0IyNDVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBs6AwDQYJKoZIhvcNAQELBQADggEBAEH3PlLTTlt/CuIp yRqwu3QlYbFnVzEq03zpYtC96JGmCL8G20OqjbfquQt41cvGxRRB6KXgqHGr6sLb TWpmqn9+53OwprwbWiup5GHKTXB9Z3fLIXRI9M7FgRRSnJYfz4RJjizmfMYeIHMI uVQps6KvB2I4d0XuAuehSeXwWKYXLNzOoBo45pLP76eqF7yKqWDyCIt3EkGOLOJg 0/HCf3lpOsHL8jFI8G37PgCxKlGTNAK29bVKX+U8ZU+kwu+0AY/sft6hcRBFw8Ya FspD51ZmBiJOxEKlFFgLRDZ4d5PUNz2i2bneBNhHSDFGDmkg15ldILcHVezxheuW HgjmMgg= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org