$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/42C6F6041E6F11EF898C1E38C4F9AE02.roa File: 42C6F6041E6F11EF898C1E38C4F9AE02.roa (raw, json) Hash identifier: Nwxndbe8HVB4N9vkz2u0yYwDfuyP9L4g9kHPKAHCIos= Subject key identifier: AF:8C:6D:F1:41:8A:46:2F:51:33:4D:89:EB:2D:04:8A:F2:FB:1A:54 Certificate issuer: /CN=A91C31B7/serialNumber=A81D155CA404AE4145781AF05EB53A1219E2E065 Certificate serial: 03 Authority key identifier: A8:1D:15:5C:A4:04:AE:41:45:78:1A:F0:5E:B5:3A:12:19:E2:E0:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0VXKQErkFFeBrwXrU6Ehni4GU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/42C6F6041E6F11EF898C1E38C4F9AE02.roa Signing time: Thu 30 May 2024 10:27:48 +0000 ROA not before: Thu 30 May 2024 10:27:48 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152886 IP address blocks: 2001:df3:dbc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/qB0VXKQErkFFeBrwXrU6Ehni4GU.crl rsync://rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/qB0VXKQErkFFeBrwXrU6Ehni4GU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0VXKQErkFFeBrwXrU6Ehni4GU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7/serialNumber=A81D155CA404AE4145781AF05EB53A1219E2E065 Validity Not Before: May 30 10:27:48 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665854a4-518e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:27:1e:4d:76:6d:9d:38:2c:98:d8:49:83:f2: 6a:b6:a1:0a:58:63:a6:a2:d8:b8:94:8f:f6:d3:3f: fc:98:35:27:ed:3c:c9:62:2d:96:b0:48:d8:b8:37: d6:13:0f:9c:a7:e4:81:dd:25:b0:b0:fc:5a:dc:23: 7f:54:b8:8a:9d:aa:30:83:02:77:40:fb:47:34:15: 6c:c0:a2:99:08:36:96:4c:e0:ac:45:f9:e2:2c:16: 7f:01:fb:b6:7c:5f:f6:75:ad:28:c7:02:5e:e9:6b: f3:e0:1b:1f:7c:4f:8f:aa:dc:f9:12:4c:ea:1f:c0: 72:b4:f8:04:64:c1:f9:03:ce:e1:70:51:bb:f3:c9: 8c:55:e8:fa:3c:ca:0b:c0:d7:2b:48:8f:db:32:af: 62:d8:dc:b2:06:4f:68:8c:16:f6:1c:0c:ca:13:0a: ce:84:5a:37:d7:1f:91:a5:cb:1a:1d:ff:11:37:f8: ea:f5:74:a9:d1:9c:89:07:c3:4b:fa:ef:b7:87:26: 49:fc:c2:a2:f3:35:f6:1d:4f:4e:49:a2:45:40:08: 1d:1c:44:10:77:4c:33:ab:3a:d6:a4:3b:32:82:af: cf:b6:48:72:d9:2c:67:f0:b6:0a:58:22:53:f1:2f: ed:2a:37:9d:f2:62:1a:46:54:e4:0f:8e:4f:b7:37: a2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:8C:6D:F1:41:8A:46:2F:51:33:4D:89:EB:2D:04:8A:F2:FB:1A:54 X509v3 Authority Key Identifier: keyid:A8:1D:15:5C:A4:04:AE:41:45:78:1A:F0:5E:B5:3A:12:19:E2:E0:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/qB0VXKQErkFFeBrwXrU6Ehni4GU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0VXKQErkFFeBrwXrU6Ehni4GU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/42C6F6041E6F11EF898C1E38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:dbc0::/48 Signature Algorithm: sha256WithRSAEncryption 24:aa:49:5f:2b:ae:b0:5f:8b:29:e9:9e:2e:4f:80:8c:1b:6e: 74:9d:3c:d5:69:c1:ab:e6:f6:f3:73:f8:f8:3c:7b:ab:67:02: 9d:c6:7f:5a:f5:1a:46:fb:55:2b:c0:6a:33:05:c1:a4:dc:74: df:26:6a:3e:c9:b5:e4:67:8c:05:28:00:54:ae:82:e1:73:92: e2:0d:f8:6b:bf:a9:84:59:97:22:07:41:76:ec:1e:ec:b5:37: 2e:03:d2:13:f5:29:5d:6f:a3:11:56:55:64:27:f2:55:8d:c7: 86:40:52:96:f0:25:cc:3b:c6:6b:3c:df:1b:03:c0:ae:48:60: 28:7d:a4:39:0e:81:6f:36:b4:8b:33:4a:28:21:9c:5d:cc:00: 55:2f:bc:8f:4d:08:69:cc:5a:ad:97:bd:00:75:3d:2b:f8:f3: cc:b3:12:f7:05:57:d2:2e:a3:4f:1a:de:49:f5:bd:d2:9b:48: a0:ee:2f:a7:66:79:11:6b:cb:30:67:d6:a6:bf:dd:29:6d:4a: 00:a3:42:38:3f:96:56:12:c9:65:af:6b:ca:15:d0:20:ee:93: ad:b2:c0:78:f6:cb:2e:db:3a:7a:15:18:21:31:e4:13:4c:02: 0a:02:f2:83:9c:9f:ae:70:95:a8:ad:33:05:1a:c9:b0:8e:eb: d5:6e:f2:a8 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzFCNzExMC8GA1UEBRMoQTgxRDE1NUNBNDA0QUU0MTQ1NzgxQUYwNUVCNTNBMTIx OUUyRTA2NTAeFw0yNDA1MzAxMDI3NDhaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTg1NGE0LTUxOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkJx5Ndm2dOCyY2EmD8mq2oQpYY6ai2LiUj/bTP/yYNSftPMliLZawSNi4N9YT D5yn5IHdJbCw/FrcI39UuIqdqjCDAndA+0c0FWzAopkINpZM4KxF+eIsFn8B+7Z8 X/Z1rSjHAl7pa/PgGx98T4+q3PkSTOofwHK0+ARkwfkDzuFwUbvzyYxV6Po8ygvA 1ytIj9syr2LY3LIGT2iMFvYcDMoTCs6EWjfXH5Glyxod/xE3+Or1dKnRnIkHw0v6 77eHJkn8wqLzNfYdT05JokVACB0cRBB3TDOrOtakOzKCr8+2SHLZLGfwtgpYIlPx L+0qN53yYhpGVOQPjk+3N6I1AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUr4xt8UGK Ri9RM02J6y0EivL7GlQwHwYDVR0jBBgwFoAUqB0VXKQErkFFeBrwXrU6Ehni4GUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzMUI3L0ZDQzMzNENDMUU2 QjExRUZBQzBFOTE0RUM0RjlBRTAyL3FCMFZYS1FFcmtGRmVCcndYclU2RWhuaTRH VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcUIwVlhLUUVya0ZGZUJyd1hyVTZFaG5pNEdVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzFCNy9GQ0MzMzRDQzFFNkIxMUVGQUMwRTkxNEVDNEY5QUUwMi80MkM2RjYwNDFF NkYxMUVGODk4QzFFMzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfPbwDANBgkqhkiG9w0BAQsFAAOCAQEAJKpJXyuusF+L KemeLk+AjBtudJ081WnBq+b283P4+Dx7q2cCncZ/WvUaRvtVK8BqMwXBpNx03yZq Psm15GeMBSgAVK6C4XOS4g34a7+phFmXIgdBduwe7LU3LgPSE/UpXW+jEVZVZCfy VY3HhkBSlvAlzDvGazzfGwPArkhgKH2kOQ6Bbza0izNKKCGcXcwAVS+8j00Iacxa rZe9AHU9K/jzzLMS9wVX0i6jTxreSfW90ptIoO4vp2Z5EWvLMGfWpr/dKW1KAKNC OD+WVhLJZa9ryhXQIO6TrbLAePbLLts6ehUYITHkE0wCCgLyg5yfrnCVqK0zBRrJ sI7r1W7yqA== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:49 2024 by rpki-client on console-fra.rpki-client.org