$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/4D189DD4728311EFA9CECE43C4F9AE02.roa File: 4D189DD4728311EFA9CECE43C4F9AE02.roa (raw, json) Hash identifier: P4IIy61smLYU2tRECRiNr+Llnp12HyUuxQYTt0cXgxo= Subject key identifier: 10:9F:54:0C:08:AF:08:6E:31:29:9C:66:DB:88:9F:18:9A:02:13:35 Certificate issuer: /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Certificate serial: 21 Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/4D189DD4728311EFA9CECE43C4F9AE02.roa Signing time: Sat 14 Sep 2024 10:22:54 +0000 ROA not before: Sat 14 Sep 2024 10:22:54 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152317 IP address blocks: 2401:b760::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Validity Not Before: Sep 14 10:22:54 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66e563fd-5b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:16:62:d5:19:d8:32:23:11:18:1a:b7:c7:33: 0d:d4:4d:30:7a:a3:2b:38:fd:6b:7e:70:8b:b5:b8: be:54:59:5e:c5:12:39:6e:5f:84:ea:3f:2d:b0:a1: 33:cb:2b:35:74:c2:f1:2a:13:c5:1c:76:64:17:72: 66:7b:ed:17:90:53:a1:a0:fb:dc:46:99:77:28:b8: e6:f0:15:c5:ca:1c:90:e8:9a:32:87:a3:88:f0:52: 93:79:e1:12:54:53:a2:d9:d8:d4:25:36:04:ab:e4: 1f:70:80:e3:db:6f:e4:aa:8e:c0:8e:c1:f9:dd:a1: 52:b2:cf:21:a6:44:37:6a:3b:68:47:77:20:f6:a8: db:52:e4:98:7c:d8:e6:17:a7:4a:3b:fb:69:c0:08: 0e:ad:13:77:a5:79:af:bb:23:4d:4d:65:e7:68:9f: ff:d4:ed:36:86:87:98:51:94:8a:8c:ef:57:3b:83: 4d:08:9b:b2:44:e3:88:a6:c1:ef:bd:d1:15:3c:f6: 1c:f6:f8:36:17:76:b4:fe:d6:3b:32:fa:e3:c3:87: 84:9c:9a:fb:88:c6:e3:57:d1:62:1e:7a:92:63:14: f4:dd:c2:a8:b4:e0:d2:35:74:42:63:75:6b:d2:2d: 9e:3d:dc:5d:04:e0:94:fb:e7:3a:9d:30:ff:1b:91: 12:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:9F:54:0C:08:AF:08:6E:31:29:9C:66:DB:88:9F:18:9A:02:13:35 X509v3 Authority Key Identifier: keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/4D189DD4728311EFA9CECE43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b760::/32 Signature Algorithm: sha256WithRSAEncryption 6a:c4:e7:2c:49:5a:69:cc:8b:f0:86:28:4e:d2:76:a2:80:ad: 1f:2a:16:83:fd:67:dd:67:a1:51:ec:14:9d:0d:c5:4a:c1:3b: 4a:e6:10:35:e0:34:bc:b2:5c:85:e2:cc:50:93:c7:91:36:f6: af:43:76:29:0c:79:93:f8:30:d8:24:11:f6:71:f6:58:c1:55: d6:7b:13:10:5c:7f:1a:a7:b5:45:b0:67:f2:35:c8:31:4c:f5: 21:a8:9a:58:2b:45:2d:a3:1c:54:7c:dd:d8:94:1d:59:4e:49: 12:de:bf:86:63:2d:82:9d:a3:2e:de:b9:53:f4:78:2b:82:de: fe:d8:30:ca:85:1a:a4:b0:b2:5e:07:88:32:7d:3f:53:45:8d: 8e:26:b6:c0:31:9c:05:fe:d3:02:a5:89:e7:d4:42:00:26:ee: f8:35:77:0e:ed:49:64:38:48:95:f3:48:fe:e3:b8:4a:e8:06: 87:99:ea:35:52:c3:4b:b4:f7:c7:c4:7f:90:d5:88:94:3f:a0: 33:50:bf:bb:26:04:ad:7c:26:6d:90:b2:93:22:b6:69:b3:c9: 77:14:8d:f3:33:c2:7a:e9:c9:ee:e1:b5:41:23:65:d4:40:c5: ce:56:8a:64:3c:22:87:14:23:e2:31:8a:97:a0:9f:af:0f:fb: c5:a4:76:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUU4NTExMC8GA1UEBRMoQkJFODAzRkI3NTdFMEM0N0QzMjA0NTQ1MjE4N0I3NEFF MjcxMTFGMDAeFw0yNDA5MTQxMDIyNTRaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTU2M2ZkLTViNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlFmLVGdgyIxEYGrfHMw3UTTB6oys4/Wt+cIu1uL5UWV7FEjluX4TqPy2woTPL KzV0wvEqE8UcdmQXcmZ77ReQU6Gg+9xGmXcouObwFcXKHJDomjKHo4jwUpN54RJU U6LZ2NQlNgSr5B9wgOPbb+SqjsCOwfndoVKyzyGmRDdqO2hHdyD2qNtS5Jh82OYX p0o7+2nACA6tE3elea+7I01NZedon//U7TaGh5hRlIqM71c7g00Im7JE44imwe+9 0RU89hz2+DYXdrT+1jsy+uPDh4ScmvuIxuNX0WIeepJjFPTdwqi04NI1dEJjdWvS LZ493F0E4JT75zqdMP8bkRJJAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUEJ9UDAiv CG4xKZxm24ifGJoCEzUwHwYDVR0jBBgwFoAUu+gD+3V+DEfTIEVFIYe3SuJxEfAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRTg1LzA1QTdDRTY4NDVB RTExRUZCNDM1RUI2RkM0RjlBRTAyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVm QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdS1nRC0zVi1ERWZUSUVWRklZZTNTdUp4RWZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS8wNUE3Q0U2ODQ1QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi80RDE4OURENDcy ODMxMUVGQTlDRUNFNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBt2AwDQYJKoZIhvcNAQELBQADggEBAGrE5yxJWmnMi/CG KE7SdqKArR8qFoP9Z91noVHsFJ0NxUrBO0rmEDXgNLyyXIXizFCTx5E29q9DdikM eZP4MNgkEfZx9ljBVdZ7ExBcfxqntUWwZ/I1yDFM9SGomlgrRS2jHFR83diUHVlO SRLev4ZjLYKdoy7euVP0eCuC3v7YMMqFGqSwsl4HiDJ9P1NFjY4mtsAxnAX+0wKl iefUQgAm7vg1dw7tSWQ4SJXzSP7juEroBoeZ6jVSw0u098fEf5DViJQ/oDNQv7sm BK18Jm2QspMitmmzyXcUjfMzwnrpye7htUEjZdRAxc5WimQ8IocUI+Ixipegn68P +8WkdrU= -----END CERTIFICATE-----Generated at Tue Sep 17 07:38:40 2024 by rpki-client on console-fra.rpki-client.org