$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/711115241AD911EA97EF1C30C4F9AE02.roa File: 711115241AD911EA97EF1C30C4F9AE02.roa (raw, json) Hash identifier: d0pBZZ4RvHYAFaiTNU/2gKYjejf//tWF0XMSJbZsqXg= Subject key identifier: 08:37:D9:75:AF:5B:35:F0:5B:25:C7:AB:B7:C2:30:3A:D9:0C:A8:8B Certificate issuer: /CN=A91C4003/serialNumber=038A86F362B2557F94BE772EE0C5FD31845FE263 Certificate serial: 0B54 Authority key identifier: 03:8A:86:F3:62:B2:55:7F:94:BE:77:2E:E0:C5:FD:31:84:5F:E2:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4qG82KyVX-Uvncu4MX9MYRf4mM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/711115241AD911EA97EF1C30C4F9AE02.roa Signing time: Fri 02 Aug 2024 19:58:30 +0000 ROA not before: Fri 02 Aug 2024 19:58:30 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 131270 IP address blocks: 2403:4f80::/32 maxlen: 32 2404:2080::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/A4qG82KyVX-Uvncu4MX9MYRf4mM.crl rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/A4qG82KyVX-Uvncu4MX9MYRf4mM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4qG82KyVX-Uvncu4MX9MYRf4mM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2900 (0xb54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4003/serialNumber=038A86F362B2557F94BE772EE0C5FD31845FE263 Validity Not Before: Aug 2 19:58:30 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ad3a66-33c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:06:fc:59:22:73:64:0b:94:35:40:4a:eb:1a: 6b:1b:b7:06:da:97:f9:fc:93:03:dd:60:ff:3b:4f: 74:7c:6d:91:15:fe:8d:92:f3:f5:f8:84:5f:33:68: 31:12:90:aa:b2:22:61:4b:a5:75:9d:53:89:c8:ad: 5d:30:4b:0a:38:5e:fc:d9:8b:c5:85:5e:c1:ed:d3: a1:41:39:6b:0f:31:46:15:b0:af:1b:9c:93:40:fa: dd:06:9f:7c:3c:ae:b3:ec:e0:5c:f4:7a:0f:26:cd: 76:4b:1f:b3:1c:ab:7b:a8:01:df:ac:2b:11:73:59: 96:96:33:98:cb:78:be:93:29:86:5d:e5:e2:4a:c8: 9d:86:a3:ab:11:07:1c:49:b5:ef:41:e3:58:19:34: bc:32:32:3e:a4:8e:cf:82:9e:94:15:d4:a3:94:62: 9b:7a:5f:97:69:6f:87:32:3c:cf:36:60:fc:a0:26: 81:4b:7a:f3:28:ee:b8:b2:4f:d3:fe:10:4d:02:98: 9a:15:a7:6c:f2:c7:65:5f:e0:b1:d1:7a:e4:97:01: ee:73:77:56:90:d8:70:20:87:de:b3:18:1d:71:46: 19:6f:f1:03:cf:e6:9c:27:d7:8c:57:6c:00:61:09: 33:ab:d6:ff:8b:d5:f5:ca:cd:1f:5f:44:de:81:8b: 74:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:37:D9:75:AF:5B:35:F0:5B:25:C7:AB:B7:C2:30:3A:D9:0C:A8:8B X509v3 Authority Key Identifier: keyid:03:8A:86:F3:62:B2:55:7F:94:BE:77:2E:E0:C5:FD:31:84:5F:E2:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/A4qG82KyVX-Uvncu4MX9MYRf4mM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4qG82KyVX-Uvncu4MX9MYRf4mM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/711115241AD911EA97EF1C30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:4f80::/32 2404:2080::/32 Signature Algorithm: sha256WithRSAEncryption 2a:fa:40:8a:eb:7b:05:0d:48:55:34:20:b5:05:f2:60:76:bc: bd:6f:07:23:4f:4c:9e:1e:16:86:2f:70:3c:3c:8e:a1:2d:f7: 11:6f:4a:d9:fa:28:7f:4f:f5:25:6d:f3:0e:bc:55:54:b1:0c: 33:96:d6:9d:46:ff:c5:a1:41:60:fe:84:46:e1:bf:42:44:10: 55:e2:75:83:f8:ec:cb:df:f6:2d:5b:b7:0c:6e:cb:ba:4a:de: d2:85:55:b4:81:6a:f3:67:d9:7c:f3:86:f0:06:d0:17:b8:9d: b4:90:e3:89:97:8f:da:d1:f5:f7:51:42:4b:37:ba:0a:f8:a0: d1:83:04:3b:e4:89:fc:3e:23:9b:db:ed:cb:3f:fe:f3:76:0b: 96:89:55:22:af:5f:ed:39:dc:78:81:6b:19:37:93:f8:c6:a9: 8b:63:6d:44:6e:69:ff:8e:dc:b1:f2:e1:11:40:73:91:63:16: 51:dd:ac:1d:16:02:ff:50:bb:f5:a3:bb:e4:8a:4e:19:e5:08: 92:92:25:7b:5a:60:19:78:c9:f0:9d:42:77:78:d8:6a:0a:9f: 81:52:2b:cf:81:61:84:ba:9f:9c:b4:4e:62:b0:f6:a5:09:60: f9:f6:79:ec:6d:4b:e1:d1:57:23:aa:ef:a2:a8:b1:7c:92:32: db:5d:59:48 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICC1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwMDMxMTAvBgNVBAUTKDAzOEE4NkYzNjJCMjU1N0Y5NEJFNzcyRUUwQzVGRDMx ODQ1RkUyNjMwHhcNMjQwODAyMTk1ODMwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkM2E2Ni0zM2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ab8WSJzZAuUNUBK6xprG7cG2pf5/JMD3WD/O090fG2RFf6NkvP1+IRfM2gx EpCqsiJhS6V1nVOJyK1dMEsKOF782YvFhV7B7dOhQTlrDzFGFbCvG5yTQPrdBp98 PK6z7OBc9HoPJs12Sx+zHKt7qAHfrCsRc1mWljOYy3i+kymGXeXiSsidhqOrEQcc SbXvQeNYGTS8MjI+pI7Pgp6UFdSjlGKbel+XaW+HMjzPNmD8oCaBS3rzKO64sk/T /hBNApiaFads8sdlX+Cx0XrklwHuc3dWkNhwIIfesxgdcUYZb/EDz+acJ9eMV2wA YQkzq9b/i9X1ys0fX0TegYt0RwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFAg32XWv WzXwWyXHq7fCMDrZDKiLMB8GA1UdIwQYMBaAFAOKhvNislV/lL53LuDF/TGEX+Jj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDAwMy9COEU4QUQ3MjFB RDgxMUVBODJFNzRCMkZDNEY5QUUwMi9BNHFHODJLeVZYLVV2bmN1NE1YOU1ZUmY0 bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0cUc4Mkt5VlgtVXZuY3U0TVg5TVlSZjRtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQwMDMvQjhFOEFENzIxQUQ4MTFFQTgyRTc0QjJGQzRGOUFFMDIvNzExMTE1MjQx QUQ5MTFFQTk3RUYxQzMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgACMA4DBQAkA0+AAwUAJAQggDANBgkqhkiG9w0BAQsFAAOCAQEAKvpA iut7BQ1IVTQgtQXyYHa8vW8HI09Mnh4Whi9wPDyOoS33EW9K2foof0/1JW3zDrxV VLEMM5bWnUb/xaFBYP6ERuG/QkQQVeJ1g/jsy9/2LVu3DG7Lukre0oVVtIFq82fZ fPOG8AbQF7idtJDjiZeP2tH191FCSze6Cvig0YMEO+SJ/D4jm9vtyz/+83YLlolV Iq9f7TnceIFrGTeT+Mapi2NtRG5p/47csfLhEUBzkWMWUd2sHRYC/1C79aO75IpO GeUIkpIle1pgGXjJ8J1Cd3jYagqfgVIrz4FhhLqfnLROYrD2pQlg+fZ57G1L4dFX I6rvoqixfJIy211ZSA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org