$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/5500DE161CB711EF865A8A66C4F9AE02.roa File: 5500DE161CB711EF865A8A66C4F9AE02.roa (raw, json) Hash identifier: bE9TZ3KFMkEX5C4mzL3f6K6AeBT6EY6Mdwh7TN4CO1U= Subject key identifier: 00:A3:53:93:23:38:5F:89:3A:BA:04:C9:68:CE:1A:BF:DD:06:54:30 Certificate issuer: /CN=A91CEAE0/serialNumber=843247C0AC181FC36666A443721AF21D9DA650DA Certificate serial: 08 Authority key identifier: 84:32:47:C0:AC:18:1F:C3:66:66:A4:43:72:1A:F2:1D:9D:A6:50:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/5500DE161CB711EF865A8A66C4F9AE02.roa Signing time: Tue 28 May 2024 05:58:40 +0000 ROA not before: Tue 28 May 2024 05:58:40 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 216178 IP address blocks: 2001:df3:d9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0/serialNumber=843247C0AC181FC36666A443721AF21D9DA650DA Validity Not Before: May 28 05:58:40 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66557290-0086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1c:50:10:52:44:ef:78:d1:3d:7e:9b:e4:1c: 69:3e:e0:86:74:f3:fd:29:c5:ac:dd:0e:00:9e:df: 1d:03:fc:30:30:2e:7e:e6:74:1d:2f:70:bf:98:ed: 29:85:89:c0:18:3d:09:5e:b5:bc:b5:82:14:62:0d: f8:38:fd:ac:18:c9:2f:7c:89:7f:a2:e2:f8:e7:62: 17:dc:4e:00:24:b1:1f:bd:fe:d2:da:be:04:04:ca: 24:a2:0e:f1:ce:a3:4d:5b:5e:2f:d5:45:f1:98:ad: e8:d7:8b:e3:b2:dd:16:b3:92:3b:5c:d5:a8:b0:51: 45:94:57:a1:fb:f5:ba:9d:0d:2a:3e:43:c2:89:1e: dd:e4:66:0e:f3:ba:53:1f:2b:d3:c2:fd:8d:a6:db: c8:a2:dd:87:8d:32:38:d6:aa:48:61:38:4d:fc:91: e5:43:d2:89:66:3b:bd:c0:cf:9d:8a:da:d4:3b:05: 9f:71:9b:5f:4b:f3:23:81:c2:44:4b:74:d0:b0:3e: a5:ed:e2:c9:58:bd:54:83:fb:52:e6:71:33:f4:98: 8d:0d:8b:86:96:2f:6c:dd:74:d7:81:1e:6b:2f:8f: f1:c5:8a:e7:60:d5:51:92:d6:27:d9:29:91:b4:b9: 8f:c0:d2:ec:4e:74:d7:a9:9d:bd:65:10:d3:95:eb: 7c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A3:53:93:23:38:5F:89:3A:BA:04:C9:68:CE:1A:BF:DD:06:54:30 X509v3 Authority Key Identifier: keyid:84:32:47:C0:AC:18:1F:C3:66:66:A4:43:72:1A:F2:1D:9D:A6:50:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/5500DE161CB711EF865A8A66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:d9c0::/48 Signature Algorithm: sha256WithRSAEncryption 59:fb:ac:7e:e4:6f:d2:5e:b3:51:ce:c1:0c:0a:b7:38:f0:43: 3c:fb:67:c4:2f:4b:45:dc:2c:48:3b:ba:a4:14:3a:a7:ea:be: 99:a6:93:5b:9f:66:d6:77:74:d6:6c:a6:b2:b2:93:ce:48:f1: 01:92:22:a6:2e:cf:f7:fc:9b:31:51:8d:cf:08:87:10:b1:82: a8:94:71:52:6c:5b:41:fc:d2:86:06:99:34:8e:03:32:10:ed: 24:00:df:0a:f8:51:22:49:84:e0:57:eb:aa:39:05:ac:c6:94: e2:4d:e2:b8:3f:0a:88:a4:b6:9a:c5:bd:f5:cd:0b:8b:81:97: b9:33:06:82:31:f8:23:42:fa:ad:ba:77:2d:d5:49:1c:b4:76: fe:fa:46:49:03:96:ad:3c:0c:13:33:27:3f:61:8e:47:da:8e: 02:5f:a2:b0:59:67:ad:9a:52:4c:ca:3d:77:31:d7:05:02:92: 73:2a:09:83:b1:a5:0b:66:19:b3:49:65:97:17:77:15:ea:ab: 85:14:0f:55:3e:36:a9:cb:9b:ce:21:55:47:c0:3f:e5:84:99: de:9a:ea:b8:d6:c5:97:f9:b3:be:58:f8:23:4c:14:3b:4d:e8: bd:0a:32:fd:1b:46:03:66:17:91:76:ad:79:53:a7:7a:8e:7b: 31:9a:9d:2e -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUFFMDExMC8GA1UEBRMoODQzMjQ3QzBBQzE4MUZDMzY2NjZBNDQzNzIxQUYyMUQ5 REE2NTBEQTAeFw0yNDA1MjgwNTU4NDBaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTU3MjkwLTAwODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOHFAQUkTveNE9fpvkHGk+4IZ08/0pxazdDgCe3x0D/DAwLn7mdB0vcL+Y7SmF icAYPQletby1ghRiDfg4/awYyS98iX+i4vjnYhfcTgAksR+9/tLavgQEyiSiDvHO o01bXi/VRfGYrejXi+Oy3Razkjtc1aiwUUWUV6H79bqdDSo+Q8KJHt3kZg7zulMf K9PC/Y2m28ii3YeNMjjWqkhhOE38keVD0olmO73Az52K2tQ7BZ9xm19L8yOBwkRL dNCwPqXt4slYvVSD+1LmcTP0mI0Ni4aWL2zddNeBHmsvj/HFiudg1VGS1ifZKZG0 uY/A0uxOdNepnb1lENOV63yLAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUAKNTkyM4 X4k6ugTJaM4av90GVDAwHwYDVR0jBBgwFoAUhDJHwKwYH8NmZqRDchryHZ2mUNow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFQUUwL0JDNTIxQTU0MTkw QTExRUZBOTBFQzkyOUM0RjlBRTAyL2hESkh3S3dZSDhObVpxUkRjaHJ5SFoybVVO by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaERKSHdLd1lIOE5tWnFSRGNocnlIWjJtVU5vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9CQzUyMUE1NDE5MEExMUVGQTkwRUM5MjlDNEY5QUUwMi81NTAwREUxNjFD QjcxMUVGODY1QThBNjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfPZwDANBgkqhkiG9w0BAQsFAAOCAQEAWfusfuRv0l6z Uc7BDAq3OPBDPPtnxC9LRdwsSDu6pBQ6p+q+maaTW59m1nd01mymsrKTzkjxAZIi pi7P9/ybMVGNzwiHELGCqJRxUmxbQfzShgaZNI4DMhDtJADfCvhRIkmE4FfrqjkF rMaU4k3iuD8KiKS2msW99c0Li4GXuTMGgjH4I0L6rbp3LdVJHLR2/vpGSQOWrTwM EzMnP2GOR9qOAl+isFlnrZpSTMo9dzHXBQKScyoJg7GlC2YZs0lllxd3FeqrhRQP VT42qcubziFVR8A/5YSZ3prquNbFl/mzvlj4I0wUO03ovQoy/RtGA2YXkXateVOn eo57MZqdLg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org