$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/ECC41AD2748A11ED80EF3436C4F9AE02.roa File: ECC41AD2748A11ED80EF3436C4F9AE02.roa (raw, json) Hash identifier: sg221W/egXu0ZEIvG5/3NuaO+9JdsATAt/T48V/WxaU= Subject key identifier: CD:28:74:09:85:DB:16:9E:9F:01:8C:1A:70:5D:DA:DC:A9:5D:6C:F2 Certificate issuer: /CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Certificate serial: 04EB Authority key identifier: 56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/ECC41AD2748A11ED80EF3436C4F9AE02.roa Signing time: Sun 27 Oct 2024 00:36:15 +0000 ROA not before: Sun 27 Oct 2024 00:36:15 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 0 IP address blocks: 2400:5200:402::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1259 (0x4eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Validity Not Before: Oct 27 00:36:15 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671d8aff-a564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bf:23:c3:a9:71:37:4c:52:87:24:31:28:16: 51:ae:bd:46:4d:8c:85:a8:a6:db:9a:30:33:02:be: fe:de:b4:83:c3:37:74:75:97:60:7b:cb:b3:82:1e: fd:ef:5e:20:4d:23:cd:b2:9c:e5:54:6a:9d:1c:94: e9:14:41:6d:53:8f:bf:9b:79:ae:4a:67:82:f4:d4: 3c:ee:2c:01:07:86:6a:68:0c:51:3a:b3:6e:bf:ae: f0:f4:c0:2a:9a:1d:d8:27:5c:aa:9b:12:0e:cb:88: c3:ee:0c:43:fc:9b:14:ee:d2:bc:15:70:cc:9c:6a: 41:4f:36:df:d0:a5:80:e7:80:17:83:5b:2d:26:64: 0a:f4:8c:cd:3d:c6:18:47:80:a4:37:f2:b0:16:7d: 89:ac:d8:e3:e0:74:6d:cc:d0:87:f0:c2:ab:a1:5d: 04:1c:77:d2:24:bf:99:e8:18:2e:f2:5c:dd:05:ae: ec:2c:06:f5:f8:f0:20:09:f4:89:c8:f4:c2:95:c4: 87:0b:e0:b3:3d:a2:8b:25:5c:91:12:ea:2b:93:4b: 6b:f0:d7:78:97:46:8c:45:14:71:cd:d5:2b:80:ff: 45:d5:31:32:a1:4c:ba:85:52:0f:3a:24:dd:8e:a5: 27:18:c4:7e:b8:84:c4:e1:5a:db:a4:0e:0f:39:61: 0b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:28:74:09:85:DB:16:9E:9F:01:8C:1A:70:5D:DA:DC:A9:5D:6C:F2 X509v3 Authority Key Identifier: keyid:56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/ECC41AD2748A11ED80EF3436C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:5200:402::/48 Signature Algorithm: sha256WithRSAEncryption 0f:06:70:31:d6:1f:0c:2b:cf:84:c1:f1:e0:0f:b9:4b:c6:57: 21:f0:20:2e:9b:31:8a:06:c5:09:0a:72:86:f4:2e:d7:41:2e: 51:8b:96:93:f4:c8:f3:0b:01:02:19:e4:c4:9e:bb:ff:43:b5: ec:33:65:53:17:83:1c:a0:0b:b6:b1:6a:f0:1b:1a:49:a8:09: 4d:ce:2d:48:8f:1c:d5:6f:a3:9d:5d:b5:f9:dd:f2:2a:69:db: 0a:ff:dd:28:bb:91:d3:0a:af:fd:82:bd:24:78:a6:89:52:77: 7b:82:af:fe:1d:07:fb:6f:63:af:8b:3c:fd:38:52:1d:b7:79: bb:b0:6c:ad:b7:86:b5:28:8e:e1:f4:f8:b1:a4:f5:1b:78:a9: dc:3d:46:93:5c:b2:af:28:47:4d:a8:b2:66:cf:06:95:7f:cf: 1a:1b:53:d8:68:d5:db:0b:96:0b:07:2e:a4:4a:ea:1b:dd:31: c3:9e:61:47:45:5b:4b:30:53:5b:c5:3a:43:c0:a1:d8:70:ee: cf:99:b7:71:aa:11:22:49:08:ca:a1:09:50:1d:ed:17:73:a4: 0e:df:ef:57:4a:f7:27:e8:5b:27:97:52:b5:60:2d:bd:af:d7: 78:5e:8b:f2:0d:b4:4c:4e:2a:da:ae:88:80:ed:a8:28:1d:63: 6c:36:7c:eb -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDU2Qjk4M0U0NkJDQkExMTVGRjIyNjVGRTQ5MTkwOUM3 RDc0MTQ3RjMwHhcNMjQxMDI3MDAzNjE1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFkOGFmZi1hNTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsL8jw6lxN0xShyQxKBZRrr1GTYyFqKbbmjAzAr7+3rSDwzd0dZdge8uzgh79 714gTSPNspzlVGqdHJTpFEFtU4+/m3muSmeC9NQ87iwBB4ZqaAxROrNuv67w9MAq mh3YJ1yqmxIOy4jD7gxD/JsU7tK8FXDMnGpBTzbf0KWA54AXg1stJmQK9IzNPcYY R4CkN/KwFn2JrNjj4HRtzNCH8MKroV0EHHfSJL+Z6Bgu8lzdBa7sLAb1+PAgCfSJ yPTClcSHC+CzPaKLJVyREuork0tr8Nd4l0aMRRRxzdUrgP9F1TEyoUy6hVIPOiTd jqUnGMR+uITE4VrbpA4POWEL/wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFM0odAmF 2xaenwGMGnBd2typXWzyMB8GA1UdIwQYMBaAFFa5g+Rry6EV/yJl/kkZCcfXQUfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ERTdEMkY5NDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9Wcm1ENUd2TG9SWF9JbVgtU1JrSng5ZEJS X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZybUQ1R3ZMb1JYX0ltWC1TUmtKeDlkQlJfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QzOUQvREU3RDJGOTQ0RTc2MTFFQ0E1NzIwQjc5QzRGOUFFMDIvRUNDNDFBRDI3 NDhBMTFFRDgwRUYzNDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAFIABAIwDQYJKoZIhvcNAQELBQADggEBAA8GcDHWHwwr z4TB8eAPuUvGVyHwIC6bMYoGxQkKcob0LtdBLlGLlpP0yPMLAQIZ5MSeu/9Dtewz ZVMXgxygC7axavAbGkmoCU3OLUiPHNVvo51dtfnd8ipp2wr/3Si7kdMKr/2CvSR4 polSd3uCr/4dB/tvY6+LPP04Uh23ebuwbK23hrUojuH0+LGk9Rt4qdw9RpNcsq8o R02osmbPBpV/zxobU9ho1dsLlgsHLqRK6hvdMcOeYUdFW0swU1vFOkPAodhw7s+Z t3GqESJJCMqhCVAd7RdzpA7f71dK9yfoWyeXUrVgLb2v13hei/INtExOKtquiIDt qCgdY2w2fOs= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:58 2024 by rpki-client on console-fra.rpki-client.org