$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/2AB990CAF0A911ED80D2CB35C4F9AE02.roa File: 2AB990CAF0A911ED80D2CB35C4F9AE02.roa (raw, json) Hash identifier: h0OHHfyqua5aHyvIAMrPgr0AnTnOs5NGoLfx1yUR4Yw= Subject key identifier: A8:09:AA:88:F5:B4:94:5A:1A:0C:95:07:C2:FD:D8:F0:E0:34:3E:CB Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: 90 Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/2AB990CAF0A911ED80D2CB35C4F9AE02.roa Signing time: Sat 03 Feb 2024 05:57:35 +0000 ROA not before: Sat 03 Feb 2024 05:57:35 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135391 IP address blocks: 2404:2480::/32 maxlen: 32 2404:2480::/33 maxlen: 35 2404:2480::/34 maxlen: 40 2404:2480:4000::/35 maxlen: 40 2404:2480:6000::/36 maxlen: 40 2404:2480:8000::/33 maxlen: 33 2404:2480:8000::/34 maxlen: 34 2404:2480:8000::/35 maxlen: 36 2404:2480:8000::/36 maxlen: 40 2404:2480:9000::/37 maxlen: 37 2404:2480:9000::/38 maxlen: 39 2404:2480:9000::/39 maxlen: 40 2404:2480:9200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: Feb 3 05:57:35 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65bdd5cf-292d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:15:51:33:33:02:9d:e9:f6:e9:f5:f9:58:86: 9a:4a:e6:2c:43:4b:cf:76:06:c5:07:6a:f3:25:60: 85:d9:2d:94:50:ad:2f:c5:36:53:ed:3f:66:7e:9a: 5a:05:95:70:35:7a:dc:2d:7b:1a:e4:f5:18:30:da: ab:5f:9b:9a:cb:76:8c:af:9e:b8:36:5f:df:1a:91: 84:69:3a:c5:c6:97:bf:ea:6f:0c:21:94:1a:24:96: 0b:df:cd:61:c5:4d:59:02:12:2c:35:2f:ce:89:c7: 47:5d:c8:02:19:cc:0d:cb:e4:a0:18:aa:65:79:82: 37:c7:cc:08:d2:91:a9:44:e4:a2:1b:f8:a6:83:bb: d4:66:11:23:4d:43:77:6d:10:8d:23:d8:07:f6:10: e1:af:fd:c8:13:bf:0e:9b:e7:b9:dc:14:cb:19:6c: 26:20:b2:3a:a2:fe:e2:55:0c:19:cf:2c:e4:58:1b: f0:48:c1:be:b4:b2:69:ea:29:19:e4:c1:2f:86:c1: 76:5d:e1:62:5d:00:9f:42:50:82:bd:61:3c:fd:ac: 24:26:38:9e:a6:b2:bb:59:67:4c:02:48:31:9c:41: 51:ad:b3:ee:68:8f:e1:16:ec:1a:83:d4:5d:a9:51: 57:1a:c1:57:5c:36:a9:b8:0c:74:e3:97:b9:9e:ab: b8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:09:AA:88:F5:B4:94:5A:1A:0C:95:07:C2:FD:D8:F0:E0:34:3E:CB X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/2AB990CAF0A911ED80D2CB35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:2480::/32 Signature Algorithm: sha256WithRSAEncryption 5b:22:f3:c6:44:0a:83:8c:17:04:59:e0:e4:04:02:76:4e:37: c9:8a:2b:02:11:8b:97:1d:c3:5b:30:1d:f7:a7:35:c2:bc:d7: 3a:73:3b:de:2c:c4:db:27:f5:b2:88:32:64:14:44:44:97:08: c3:75:de:c0:33:c2:40:ef:79:ec:8c:89:40:ac:e1:ce:44:ed: 88:17:24:75:33:fe:b5:7a:77:67:e7:e5:b5:81:38:f7:fa:2a: 9f:7a:b4:e7:d9:29:e8:f1:2f:34:9f:4c:d3:1e:9d:64:9d:2f: c8:8d:d2:9c:aa:5d:02:42:70:95:27:3f:3f:e3:f6:25:3a:c4: 2c:c2:ed:f0:1b:f1:5e:56:a4:dc:9a:65:4b:7d:1b:4f:40:92: 80:30:e0:95:ab:3f:f2:90:4d:6d:a6:0f:44:9c:d5:b4:f6:02: 94:e2:bd:e0:58:80:a1:5d:4b:9e:48:a4:79:52:e9:e8:24:25: ea:24:41:f3:59:f1:42:0c:d2:b7:17:44:80:0f:e9:dd:01:8e: 87:b9:4f:92:58:7c:e6:26:40:8c:aa:5f:c1:5c:df:d8:0a:7b: b0:24:48:05:7e:7d:95:25:53:96:57:4d:6c:bf:2a:da:8f:9c: 93:16:98:de:87:a4:13:b5:44:d7:f5:66:3a:0c:71:85:13:12: 0a:2d:db:53 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjQwMjAzMDU1NzM1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkZDVjZi0yOTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4hVRMzMCnen26fX5WIaaSuYsQ0vPdgbFB2rzJWCF2S2UUK0vxTZT7T9mfppa BZVwNXrcLXsa5PUYMNqrX5uay3aMr564Nl/fGpGEaTrFxpe/6m8MIZQaJJYL381h xU1ZAhIsNS/OicdHXcgCGcwNy+SgGKpleYI3x8wI0pGpROSiG/img7vUZhEjTUN3 bRCNI9gH9hDhr/3IE78Om+e53BTLGWwmILI6ov7iVQwZzyzkWBvwSMG+tLJp6ikZ 5MEvhsF2XeFiXQCfQlCCvWE8/awkJjieprK7WWdMAkgxnEFRrbPuaI/hFuwag9Rd qVFXGsFXXDapuAx045e5nqu44wIDAQABo4ICljCCApIwHQYDVR0OBBYEFKgJqoj1 tJRaGgyVB8L92PDgND7LMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0MxRTkvQkJDRDVEMkNFRkNDMTFFREIyOUJCMDZDQzRGOUFFMDIvMkFCOTkwQ0FG MEE5MTFFRDgwRDJDQjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBCSAMA0GCSqGSIb3DQEBCwUAA4IBAQBbIvPGRAqDjBcE WeDkBAJ2TjfJiisCEYuXHcNbMB33pzXCvNc6czveLMTbJ/WyiDJkFERElwjDdd7A M8JA73nsjIlArOHORO2IFyR1M/61endn5+W1gTj3+iqferTn2Sno8S80n0zTHp1k nS/IjdKcql0CQnCVJz8/4/YlOsQswu3wG/FeVqTcmmVLfRtPQJKAMOCVqz/ykE1t pg9EnNW09gKU4r3gWIChXUueSKR5UunoJCXqJEHzWfFCDNK3F0SAD+ndAY6HuU+S WHzmJkCMql/BXN/YCnuwJEgFfn2VJVOWV01svyraj5yTFpjeh6QTtUTX9WY6DHGF ExIKLdtT -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:57 2024 by rpki-client on console-fra.rpki-client.org