$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB435/F5E627245ECE11EF8854CA5EC4F9AE02/ACF3D2085ED011EFA4FAB861C4F9AE02.roa File: ACF3D2085ED011EFA4FAB861C4F9AE02.roa (raw, json) Hash identifier: g+wT6Ez1r4BofdZFTdTULjIDgwJ9CgK12xlHp/5Bj2s= Subject key identifier: 95:5F:ED:1A:6B:F8:AB:C5:82:48:E7:85:D4:AF:F7:2A:D5:01:94:E8 Certificate issuer: /CN=A91CB435/serialNumber=66D9D817F86C82DB3DF3A1C4D970F2AA85CAAD7E Certificate serial: 02 Authority key identifier: 66:D9:D8:17:F8:6C:82:DB:3D:F3:A1:C4:D9:70:F2:AA:85:CA:AD:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZtnYF_hsgts986HE2XDyqoXKrX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB435/F5E627245ECE11EF8854CA5EC4F9AE02/ACF3D2085ED011EFA4FAB861C4F9AE02.roa Signing time: Tue 20 Aug 2024 08:46:22 +0000 ROA not before: Tue 20 Aug 2024 08:46:22 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 3758 IP address blocks: 2401:be20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB435/F5E627245ECE11EF8854CA5EC4F9AE02/ZtnYF_hsgts986HE2XDyqoXKrX4.crl rsync://rpki.apnic.net/member_repository/A91CB435/F5E627245ECE11EF8854CA5EC4F9AE02/ZtnYF_hsgts986HE2XDyqoXKrX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZtnYF_hsgts986HE2XDyqoXKrX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB435/serialNumber=66D9D817F86C82DB3DF3A1C4D970F2AA85CAAD7E Validity Not Before: Aug 20 08:46:22 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66c457de-b178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:42:21:93:1b:ee:8f:af:15:51:d0:c1:8e:86: 34:42:1f:8b:18:70:e6:9d:60:4d:17:0f:f0:ec:ad: 20:23:f3:73:0f:f7:f4:c1:c2:ed:43:67:d9:d6:04: be:2f:50:bd:78:1e:1e:9b:ea:a0:83:b9:4a:1a:20: 90:a4:67:37:2c:3e:c8:82:3e:da:fc:ad:94:3d:7e: 64:7a:4b:b3:33:8e:30:f0:3c:02:2e:13:50:e3:fe: d4:1b:52:4a:f2:10:c8:cc:c5:03:0b:56:89:6f:5c: d6:57:d1:e8:a2:8f:8e:d3:dc:88:0e:ae:3a:4a:00: c3:16:ab:d1:f7:38:0e:c8:1f:7e:34:68:bc:97:ca: d8:aa:91:fd:9a:e3:10:1c:2f:47:0c:13:39:d3:0a: fa:60:84:6d:ef:a3:6a:52:4d:9d:b4:99:02:d4:9b: 17:63:00:7e:0a:6f:fe:a7:b2:23:d2:08:98:1f:e3: 7a:f6:77:38:50:78:ce:39:53:ba:c8:bb:28:d0:49: 7a:0a:0a:eb:e6:62:cb:6b:9d:25:56:0a:b8:32:e6: 3b:02:d5:9e:fc:93:ac:41:e2:89:8d:c8:23:2b:45: 44:0c:e6:5f:41:b8:83:04:fc:d4:55:c3:3d:36:cc: 1b:92:87:88:6b:36:90:07:0d:37:df:94:96:c2:20: e9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:5F:ED:1A:6B:F8:AB:C5:82:48:E7:85:D4:AF:F7:2A:D5:01:94:E8 X509v3 Authority Key Identifier: keyid:66:D9:D8:17:F8:6C:82:DB:3D:F3:A1:C4:D9:70:F2:AA:85:CA:AD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB435/F5E627245ECE11EF8854CA5EC4F9AE02/ZtnYF_hsgts986HE2XDyqoXKrX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZtnYF_hsgts986HE2XDyqoXKrX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB435/F5E627245ECE11EF8854CA5EC4F9AE02/ACF3D2085ED011EFA4FAB861C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:be20::/32 Signature Algorithm: sha256WithRSAEncryption 26:ee:31:8d:69:39:4d:db:98:aa:37:3a:e4:53:07:c8:61:47: ca:95:ec:f4:90:8e:cf:f7:46:ad:2e:6a:14:af:5a:e1:d4:1c: f1:31:4f:e0:bb:24:ca:a0:8e:97:b4:28:99:f2:1b:5c:86:83: 85:cd:ca:4e:94:f8:e5:df:7d:2c:58:8a:88:ed:9c:9b:cf:55: d9:15:95:4e:1c:e1:f3:32:7a:8e:81:9e:fa:22:cb:c1:a8:56: 25:a6:d9:36:70:ee:1a:2f:78:87:51:27:3c:bb:86:84:d8:90: 9c:18:de:8b:08:7b:18:16:c5:00:36:e1:68:52:db:a6:6f:3b: a3:2b:50:e3:17:df:fb:58:0a:52:06:9b:08:79:93:97:40:9f: b6:b4:bc:e3:ec:45:c2:e6:fd:79:da:1f:4a:85:c2:57:13:0e: 05:2b:4f:0a:da:92:07:ae:19:f7:75:00:ee:4f:c1:22:0b:6e: 44:bb:71:1a:96:2d:53:6e:f2:ec:2d:27:c3:c1:94:f6:64:f5: cf:15:cd:e0:5b:44:6f:0e:15:29:ed:bb:60:9f:d3:b5:e3:68: 27:5a:30:d2:5f:c2:7d:5a:4e:f9:0a:a2:fd:1c:1b:9c:05:fc: e8:90:ee:7d:ac:b0:53:4f:a7:29:d6:9c:f9:5d:87:eb:42:50: 40:73:ff:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjQzNTExMC8GA1UEBRMoNjZEOUQ4MTdGODZDODJEQjNERjNBMUM0RDk3MEYyQUE4 NUNBQUQ3RTAeFw0yNDA4MjAwODQ2MjJaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YzQ1N2RlLWIxNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD6QiGTG+6PrxVR0MGOhjRCH4sYcOadYE0XD/DsrSAj83MP9/TBwu1DZ9nWBL4v UL14Hh6b6qCDuUoaIJCkZzcsPsiCPtr8rZQ9fmR6S7MzjjDwPAIuE1Dj/tQbUkry EMjMxQMLVolvXNZX0eiij47T3IgOrjpKAMMWq9H3OA7IH340aLyXytiqkf2a4xAc L0cMEznTCvpghG3vo2pSTZ20mQLUmxdjAH4Kb/6nsiPSCJgf43r2dzhQeM45U7rI uyjQSXoKCuvmYstrnSVWCrgy5jsC1Z78k6xB4omNyCMrRUQM5l9BuIME/NRVwz02 zBuSh4hrNpAHDTfflJbCIOmRAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUlV/tGmv4 q8WCSOeF1K/3KtUBlOgwHwYDVR0jBBgwFoAUZtnYF/hsgts986HE2XDyqoXKrX4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCNDM1L0Y1RTYyNzI0NUVD RTExRUY4ODU0Q0E1RUM0RjlBRTAyL1p0bllGX2hzZ3RzOTg2SEUyWER5cW9YS3JY NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnRuWUZfaHNndHM5ODZIRTJYRHlxb1hLclg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjQzNS9GNUU2MjcyNDVFQ0UxMUVGODg1NENBNUVDNEY5QUUwMi9BQ0YzRDIwODVF RDAxMUVGQTRGQUI4NjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBviAwDQYJKoZIhvcNAQELBQADggEBACbuMY1pOU3bmKo3 OuRTB8hhR8qV7PSQjs/3Rq0uahSvWuHUHPExT+C7JMqgjpe0KJnyG1yGg4XNyk6U +OXffSxYiojtnJvPVdkVlU4c4fMyeo6Bnvoiy8GoViWm2TZw7hoveIdRJzy7hoTY kJwY3osIexgWxQA24WhS26ZvO6MrUOMX3/tYClIGmwh5k5dAn7a0vOPsRcLm/Xna H0qFwlcTDgUrTwrakgeuGfd1AO5PwSILbkS7cRqWLVNu8uwtJ8PBlPZk9c8VzeBb RG8OFSntu2Cf07XjaCdaMNJfwn1aTvkKov0cG5wF/OiQ7n2ssFNPpynWnPldh+tC UEBz/0c= -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:52 2024 by rpki-client on console-fra.rpki-client.org