$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/4CC50DB2BB7811EE9416DD42C4F9AE02.roa File: 4CC50DB2BB7811EE9416DD42C4F9AE02.roa (raw, json) Hash identifier: 6tdKeRRJNQp3+06ZA3uoftMwACFXYVeU4vtZzC1cRtQ= Subject key identifier: 0E:9E:41:4A:59:4A:6D:44:F6:F7:18:73:80:FF:5D:BF:0D:56:DC:7F Certificate issuer: /CN=A91CDB75/serialNumber=7BE98C7AAAD87C9F259296301643A3610A7B5188 Certificate serial: 02 Authority key identifier: 7B:E9:8C:7A:AA:D8:7C:9F:25:92:96:30:16:43:A3:61:0A:7B:51:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/4CC50DB2BB7811EE9416DD42C4F9AE02.roa Signing time: Thu 25 Jan 2024 11:53:05 +0000 ROA not before: Thu 25 Jan 2024 11:53:05 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152446 IP address blocks: 2001:df3:66c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.crl rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDB75/serialNumber=7BE98C7AAAD87C9F259296301643A3610A7B5188 Validity Not Before: Jan 25 11:53:05 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65b24ba1-9d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6a:cb:cc:d1:6f:5d:42:3f:b5:aa:2b:10:69: 6c:98:97:a4:40:35:96:85:99:b5:df:e3:3b:1c:30: aa:e6:d1:cd:6e:53:6c:b8:e1:09:68:8f:3a:51:4c: a0:0d:ae:8e:42:35:45:28:1a:72:b3:ec:b4:17:cf: ba:7d:76:90:97:6b:58:55:27:48:78:66:30:f4:8b: 57:b5:70:11:19:e7:57:45:8c:48:db:8d:9f:a1:8b: 2e:f4:78:7b:d9:a1:69:82:8c:55:a3:af:cf:7d:ef: 6e:b9:a1:30:65:c3:11:96:81:b6:f4:c4:4c:9c:3f: 0d:16:e3:c6:9a:14:7a:3b:e0:41:85:28:00:36:ed: 76:48:34:fe:8a:51:02:09:d9:c8:36:88:72:fa:5b: 06:69:7a:34:ca:e6:fe:a8:77:60:0e:ef:5b:ad:ab: 1f:9a:de:0e:21:56:1d:fd:be:c3:69:8e:ab:ad:67: 5d:92:9c:7c:b5:da:2f:19:45:0f:a2:17:43:78:54: 10:aa:59:12:de:76:d6:dc:d6:cb:97:65:12:1f:54: 8e:02:3b:7c:eb:23:7a:5e:cd:3d:7a:8e:cd:a1:78: 4e:81:fe:9f:42:fb:11:4c:48:fc:b4:9b:6d:0e:cf: 20:bd:94:5f:2e:38:97:ff:7a:8f:8b:6a:d8:cf:b4: 7d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:9E:41:4A:59:4A:6D:44:F6:F7:18:73:80:FF:5D:BF:0D:56:DC:7F X509v3 Authority Key Identifier: keyid:7B:E9:8C:7A:AA:D8:7C:9F:25:92:96:30:16:43:A3:61:0A:7B:51:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/4CC50DB2BB7811EE9416DD42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:66c0::/48 Signature Algorithm: sha256WithRSAEncryption 1e:80:e9:51:d8:3c:26:b0:b7:51:8f:46:b7:7d:72:c7:c4:e8: ea:ad:ae:f4:e0:42:b2:6c:fa:5d:ee:9c:2f:9b:c1:23:a4:11: 82:3f:e3:72:8e:0e:6a:ab:46:a2:68:a0:62:fc:bd:df:71:61: 00:77:37:40:7e:aa:12:61:8d:1c:cd:a9:3a:34:f2:d4:30:44: 2d:78:a6:a8:45:e9:5e:1d:f8:6c:a0:08:a6:ef:50:b5:22:c4: 0e:38:b7:47:b9:f1:fb:4c:40:86:5b:2c:f9:67:94:aa:af:b2: 70:b7:c2:e2:81:d3:df:b9:36:c8:02:1d:6d:bd:e7:cd:4b:37: ad:11:88:32:4a:1c:e4:8d:cd:8e:92:71:10:c0:e1:02:90:7f: 61:80:7b:18:6f:20:f6:7b:86:cc:12:db:fd:05:78:06:dd:be: be:7b:03:83:34:89:b1:82:b2:99:aa:39:67:7d:96:cc:b3:c9: 75:76:c6:25:c1:6a:ef:84:35:32:4e:46:33:2c:45:af:59:fa: 3d:58:fd:41:c9:6d:1d:78:cb:b2:5e:b7:10:50:89:5c:6c:5a: 79:ec:4e:aa:7a:55:64:17:f0:7c:35:36:ed:d4:10:2c:6f:56: 81:24:fd:78:0b:3a:7c:20:fb:1b:db:51:10:1f:13:a8:86:14: f5:7e:b1:06 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD REI3NTExMC8GA1UEBRMoN0JFOThDN0FBQUQ4N0M5RjI1OTI5NjMwMTY0M0EzNjEw QTdCNTE4ODAeFw0yNDAxMjUxMTUzMDVaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjI0YmExLTlkMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQasvM0W9dQj+1qisQaWyYl6RANZaFmbXf4zscMKrm0c1uU2y44QlojzpRTKAN ro5CNUUoGnKz7LQXz7p9dpCXa1hVJ0h4ZjD0i1e1cBEZ51dFjEjbjZ+hiy70eHvZ oWmCjFWjr8997265oTBlwxGWgbb0xEycPw0W48aaFHo74EGFKAA27XZINP6KUQIJ 2cg2iHL6WwZpejTK5v6od2AO71utqx+a3g4hVh39vsNpjqutZ12SnHy12i8ZRQ+i F0N4VBCqWRLedtbc1suXZRIfVI4CO3zrI3pezT16js2heE6B/p9C+xFMSPy0m20O zyC9lF8uOJf/eo+LatjPtH1fAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUDp5BSllK bUT29xhzgP9dvw1W3H8wHwYDVR0jBBgwFoAUe+mMeqrYfJ8lkpYwFkOjYQp7UYgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEQjc1L0U2NTE5QTE0QkI3 NzExRUVBQUQ3QjI0MUM0RjlBRTAyL2UtbU1lcXJZZko4bGtwWXdGa09qWVFwN1VZ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZS1tTWVxcllmSjhsa3BZd0ZrT2pZUXA3VVlnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REI3NS9FNjUxOUExNEJCNzcxMUVFQUFEN0IyNDFDNEY5QUUwMi80Q0M1MERCMkJC NzgxMUVFOTQxNkRENDJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfNmwDANBgkqhkiG9w0BAQsFAAOCAQEAHoDpUdg8JrC3 UY9Gt31yx8To6q2u9OBCsmz6Xe6cL5vBI6QRgj/jco4OaqtGomigYvy933FhAHc3 QH6qEmGNHM2pOjTy1DBELXimqEXpXh34bKAIpu9QtSLEDji3R7nx+0xAhlss+WeU qq+ycLfC4oHT37k2yAIdbb3nzUs3rRGIMkoc5I3NjpJxEMDhApB/YYB7GG8g9nuG zBLb/QV4Bt2+vnsDgzSJsYKymao5Z32WzLPJdXbGJcFq74Q1Mk5GMyxFr1n6PVj9 QcltHXjLsl63EFCJXGxaeexOqnpVZBfwfDU27dQQLG9WgST9eAs6fCD7G9tREB8T qIYU9X6xBg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org