$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/1BC8D5FCE2B211EE946C6541C4F9AE02.roa File: 1BC8D5FCE2B211EE946C6541C4F9AE02.roa (raw, json) Hash identifier: pb1KwX0pLwie7CfOH9Gyxrh7Hyrg9MAEQqr69on+vGU= Subject key identifier: B2:AB:62:06:1F:31:6F:A9:13:A6:C6:25:6F:07:C2:26:15:FD:D0:6E Certificate issuer: /CN=A91C779D/serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Certificate serial: 02 Authority key identifier: 91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/1BC8D5FCE2B211EE946C6541C4F9AE02.roa Signing time: Fri 15 Mar 2024 09:55:09 +0000 ROA not before: Fri 15 Mar 2024 09:55:09 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152337 IP address blocks: 2001:df3:62c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D/serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Validity Not Before: Mar 15 09:55:09 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f41afd-854c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2c:1c:f2:41:cb:59:25:90:80:5e:35:10:85: 06:dc:7a:79:62:53:e2:45:1d:01:f1:d6:c5:7b:4d: 79:3a:7e:d9:96:1e:de:c7:b0:95:88:a5:96:08:05: 55:3f:fe:67:8b:92:dc:8d:2f:6a:43:3a:5f:35:c1: 1d:b6:e7:ef:55:ad:3f:ed:15:a7:e7:67:83:87:00: fa:b3:96:5d:30:04:76:f7:f5:46:90:81:07:19:94: ee:83:24:6d:15:a7:24:4b:d9:7f:09:1c:46:dc:48: 41:fe:98:5d:51:1b:62:fc:51:f1:8b:4e:fc:05:54: bc:e7:08:36:57:5a:c9:7c:96:b5:cc:7a:e1:c3:3e: e8:97:ce:78:6e:0b:34:b4:1f:d7:a9:fd:a2:f3:53: 34:c6:3f:50:1e:aa:1f:1b:e2:6e:be:fd:85:7a:ee: 54:38:67:d6:d1:0a:1d:f0:6f:eb:7c:82:65:2a:2c: 85:f6:6a:cf:3c:60:6c:47:72:6c:4b:93:2f:d8:e0: b7:75:a9:6d:34:21:9e:ac:76:97:3e:f8:f0:ff:45: c4:37:2f:4b:74:69:3a:79:81:3a:20:76:a3:fa:94: 02:b8:85:7d:e1:9c:21:0a:9b:02:55:05:72:de:85: d4:a4:ff:e9:36:40:ab:50:e2:6a:66:54:3c:b0:de: be:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:AB:62:06:1F:31:6F:A9:13:A6:C6:25:6F:07:C2:26:15:FD:D0:6E X509v3 Authority Key Identifier: keyid:91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/1BC8D5FCE2B211EE946C6541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:62c0::/48 Signature Algorithm: sha256WithRSAEncryption 76:f7:d6:43:a2:b3:03:2e:85:94:8f:34:28:78:35:e0:c7:82: 35:0d:56:dd:93:4d:e0:1b:60:c9:1b:20:e7:71:c9:09:8a:ba: 10:83:9d:0f:25:6a:3a:5c:94:6c:f2:43:7e:a8:51:ed:15:d7: a6:b5:73:68:de:bb:93:7c:12:3a:72:7e:bf:7d:e1:d9:ac:ac: a2:66:60:ea:46:dc:e6:04:30:ec:ef:64:92:bc:aa:ed:bf:b3: 6a:29:18:64:9e:d5:e8:24:3e:10:4b:6c:95:19:65:6d:8e:9b: 80:85:6c:6c:09:d6:06:a7:cc:54:a7:8b:bb:25:8e:62:53:28: 6d:11:a0:a3:db:cd:30:ff:e4:77:68:2c:eb:15:72:f1:68:a2: 11:bb:17:39:5d:0d:8b:a5:4f:36:fd:f9:61:48:6e:3b:70:c3: f7:2a:fa:f6:b3:98:9a:2d:eb:e9:48:3e:1a:56:bf:99:77:4a: 47:08:4f:f1:fe:89:95:d3:2c:3f:f2:22:42:a0:c6:8d:28:aa: e7:76:8b:6d:f3:e1:a4:64:7d:3b:b6:4e:39:3e:bf:1f:1b:67: 1e:b9:5a:19:be:a5:89:b9:55:48:30:0d:85:eb:b2:5b:28:2a: 84:d9:15:03:03:75:83:bb:8f:71:95:a2:2a:6e:e8:9d:bb:39: c1:c0:39:0f -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Nzc5RDExMC8GA1UEBRMoOTEyRkI1RjczNTFDRjk4RkI5Njc0NTFGRUVEQUY0OUYx NDhFMUEzQTAeFw0yNDAzMTUwOTU1MDlaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjQxYWZkLTg1NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSLBzyQctZJZCAXjUQhQbcenliU+JFHQHx1sV7TXk6ftmWHt7HsJWIpZYIBVU/ /meLktyNL2pDOl81wR225+9VrT/tFafnZ4OHAPqzll0wBHb39UaQgQcZlO6DJG0V pyRL2X8JHEbcSEH+mF1RG2L8UfGLTvwFVLznCDZXWsl8lrXMeuHDPuiXznhuCzS0 H9ep/aLzUzTGP1Aeqh8b4m6+/YV67lQ4Z9bRCh3wb+t8gmUqLIX2as88YGxHcmxL ky/Y4Ld1qW00IZ6sdpc++PD/RcQ3L0t0aTp5gTogdqP6lAK4hX3hnCEKmwJVBXLe hdSk/+k2QKtQ4mpmVDyw3r5jAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUsqtiBh8x b6kTpsYlbwfCJhX90G4wHwYDVR0jBBgwFoAUkS+19zUc+Y+5Z0Uf7tr0nxSOGjow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3NzlELzRGRDU5NDI0RTJB RTExRUU4NkYzM0MxRUM0RjlBRTAyL2tTLTE5elVjLVktNVowVWY3dHIwbnhTT0dq by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1MtMTl6VWMtWS01WjBVZjd0cjBueFNPR2pvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80RkQ1OTQyNEUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi8xQkM4RDVGQ0Uy QjIxMUVFOTQ2QzY1NDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfNiwDANBgkqhkiG9w0BAQsFAAOCAQEAdvfWQ6KzAy6F lI80KHg14MeCNQ1W3ZNN4BtgyRsg53HJCYq6EIOdDyVqOlyUbPJDfqhR7RXXprVz aN67k3wSOnJ+v33h2aysomZg6kbc5gQw7O9kkryq7b+zaikYZJ7V6CQ+EEtslRll bY6bgIVsbAnWBqfMVKeLuyWOYlMobRGgo9vNMP/kd2gs6xVy8WiiEbsXOV0Ni6VP Nv35YUhuO3DD9yr69rOYmi3r6Ug+Gla/mXdKRwhP8f6JldMsP/IiQqDGjSiq53aL bfPhpGR9O7ZOOT6/HxtnHrlaGb6liblVSDANheuyWygqhNkVAwN1g7uPcZWiKm7o nbs5wcA5Dw== -----END CERTIFICATE-----Generated at Mon Nov 25 06:04:15 2024 by rpki-client on console-ams.rpki-client.org