$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/0D5C00AC38E311EF99F62432C4F9AE02.roa File: 0D5C00AC38E311EF99F62432C4F9AE02.roa (raw, json) Hash identifier: 4S6LysWP6aXNqohWmOPlianyKt6L8nm45R0gNLc/r00= Subject key identifier: 3F:FE:81:C6:1C:E0:E1:B3:EE:A3:F2:37:1B:31:D8:A6:3C:71:EC:80 Certificate issuer: /CN=A91D0B40/serialNumber=BC0593C47DACF6C7A77A41E07DEB9A061631A484 Certificate serial: 03 Authority key identifier: BC:05:93:C4:7D:AC:F6:C7:A7:7A:41:E0:7D:EB:9A:06:16:31:A4:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/0D5C00AC38E311EF99F62432C4F9AE02.roa Signing time: Wed 03 Jul 2024 02:22:10 +0000 ROA not before: Wed 03 Jul 2024 02:22:10 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152905 IP address blocks: 2401:86a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.crl rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B40/serialNumber=BC0593C47DACF6C7A77A41E07DEB9A061631A484 Validity Not Before: Jul 3 02:22:10 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6684b5d2-28c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:87:8e:08:ee:26:90:7e:48:72:d3:22:db:9c: d9:c2:db:51:c4:6c:89:d6:53:79:4e:d9:90:c0:a0: 5b:7f:c7:95:7e:9d:99:3c:b9:26:25:57:51:f5:dd: 96:c6:41:fb:b4:f3:db:25:6a:81:85:62:32:5b:8b: c5:5e:68:e9:cf:92:e8:3d:4c:6f:bf:09:78:66:2f: c3:8e:8c:5e:c1:ac:dd:29:e1:ec:e2:93:f3:9d:b4: 97:fe:94:20:b8:f6:58:22:4e:70:45:33:d8:27:43: 3d:62:8d:49:df:b2:65:2e:6e:b0:01:54:8d:76:d6: 1e:d1:31:ff:d2:e5:df:8a:6b:c7:ba:e5:42:8d:b0: df:ab:78:d0:ae:d0:87:84:b1:a5:12:df:da:46:a1: 17:37:f8:4d:72:c6:fa:ac:79:a3:da:8e:c7:c8:12: c4:5f:c0:85:c9:8d:f2:06:46:3f:7e:50:e1:06:cf: b5:21:7f:37:ab:92:e7:83:77:9d:a3:de:e2:be:c7: 53:bb:23:bb:1e:90:a9:b5:6c:60:80:39:14:2a:09: ae:fb:08:36:fb:d3:21:01:54:bb:ed:33:d1:44:ff: 65:e1:c4:b0:b9:f4:91:e9:83:d9:03:14:8c:71:59: 11:e9:f3:6d:d9:58:7c:97:ec:4a:2b:49:95:97:23: e6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:FE:81:C6:1C:E0:E1:B3:EE:A3:F2:37:1B:31:D8:A6:3C:71:EC:80 X509v3 Authority Key Identifier: keyid:BC:05:93:C4:7D:AC:F6:C7:A7:7A:41:E0:7D:EB:9A:06:16:31:A4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/0D5C00AC38E311EF99F62432C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:86a0::/32 Signature Algorithm: sha256WithRSAEncryption 19:2c:b2:14:1c:aa:7f:61:9b:d4:b2:e4:ec:bc:39:a4:19:4e: c5:ef:e6:06:46:ce:36:12:0d:84:2c:26:2e:d1:11:27:05:b0: 1c:0f:6b:99:1f:e4:ef:25:82:86:33:eb:a8:ff:0f:37:a4:04: 6f:23:d7:07:60:b2:43:55:29:3c:83:ae:b8:15:6d:7a:dc:83: 6a:f4:e7:e2:e4:8e:83:65:2e:6e:52:db:dd:cf:2a:7d:46:03: 17:07:36:5d:7b:06:e3:6f:aa:08:10:c5:57:e9:37:ed:fe:d9: 55:9d:da:9a:9a:7d:cd:1f:a2:92:20:9a:d4:d9:a7:8e:54:b5: 16:9a:16:7b:2a:5a:f0:86:cd:24:7b:e9:e4:fd:c2:86:a4:a9: 8c:38:a3:c3:8f:98:93:bf:ce:73:07:67:d4:68:a5:fa:15:db: 63:05:e0:f4:dd:07:3a:20:e0:48:98:57:83:95:4c:26:ed:05: e7:ee:74:ea:b2:16:a7:7b:d9:ea:88:75:23:2e:97:a2:48:30: 7b:5b:a6:a6:14:43:cc:20:8f:52:58:b6:36:fb:b6:3b:35:0f: f3:fd:50:d8:d9:66:72:82:d8:c4:4d:7c:39:72:03:42:57:c6: ba:6e:33:b1:26:1d:da:ec:01:0c:7b:b6:5a:5a:f0:28:23:8a: 84:4c:68:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEI0MDExMC8GA1UEBRMoQkMwNTkzQzQ3REFDRjZDN0E3N0E0MUUwN0RFQjlBMDYx NjMxQTQ4NDAeFw0yNDA3MDMwMjIyMTBaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODRiNWQyLTI4YzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjh44I7iaQfkhy0yLbnNnC21HEbInWU3lO2ZDAoFt/x5V+nZk8uSYlV1H13ZbG Qfu089slaoGFYjJbi8VeaOnPkug9TG+/CXhmL8OOjF7BrN0p4ezik/OdtJf+lCC4 9lgiTnBFM9gnQz1ijUnfsmUubrABVI121h7RMf/S5d+Ka8e65UKNsN+reNCu0IeE saUS39pGoRc3+E1yxvqseaPajsfIEsRfwIXJjfIGRj9+UOEGz7UhfzerkueDd52j 3uK+x1O7I7sekKm1bGCAORQqCa77CDb70yEBVLvtM9FE/2XhxLC59JHpg9kDFIxx WRHp823ZWHyX7EorSZWXI+ZTAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUP/6Bxhzg 4bPuo/I3GzHYpjxx7IAwHwYDVR0jBBgwFoAUvAWTxH2s9senekHgfeuaBhYxpIQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjQwLzI4NDBDOEE2MzhF MDExRUY5NEI4NEQ3RkM0RjlBRTAyL3ZBV1R4SDJzOXNlbmVrSGdmZXVhQmhZeHBJ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkFXVHhIMnM5c2VuZWtIZ2ZldWFCaFl4cElRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEI0MC8yODQwQzhBNjM4RTAxMUVGOTRCODREN0ZDNEY5QUUwMi8wRDVDMDBBQzM4 RTMxMUVGOTlGNjI0MzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBhqAwDQYJKoZIhvcNAQELBQADggEBABksshQcqn9hm9Sy 5Oy8OaQZTsXv5gZGzjYSDYQsJi7REScFsBwPa5kf5O8lgoYz66j/DzekBG8j1wdg skNVKTyDrrgVbXrcg2r05+LkjoNlLm5S293PKn1GAxcHNl17BuNvqggQxVfpN+3+ 2VWd2pqafc0fopIgmtTZp45UtRaaFnsqWvCGzSR76eT9woakqYw4o8OPmJO/znMH Z9RopfoV22MF4PTdBzog4EiYV4OVTCbtBefudOqyFqd72eqIdSMul6JIMHtbpqYU Q8wgj1JYtjb7tjs1D/P9UNjZZnKC2MRNfDlyA0JXxrpuM7EmHdrsAQx7tlpa8Cgj ioRMaAc= -----END CERTIFICATE-----Generated at Tue Sep 17 07:38:40 2024 by rpki-client on console-fra.rpki-client.org