$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/BE402F16707F11EDBD17DD28C4F9AE02.roa File: BE402F16707F11EDBD17DD28C4F9AE02.roa (raw, json) Hash identifier: OnnEcT/kT/2u+quSNu4e6UQE5EuukB+yT7k1rnta/B8= Subject key identifier: E0:66:C5:4D:00:AA:B5:87:B9:C9:3F:A9:6D:F0:F3:C1:B0:00:45:F7 Certificate issuer: /CN=A91D1136/serialNumber=B7B73E89B621081609CD689AB0AEF7FAF148926C Certificate serial: 25B4 Authority key identifier: B7:B7:3E:89:B6:21:08:16:09:CD:68:9A:B0:AE:F7:FA:F1:48:92:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/BE402F16707F11EDBD17DD28C4F9AE02.roa Signing time: Tue 24 Sep 2024 15:53:06 +0000 ROA not before: Tue 24 Sep 2024 15:53:06 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 396986 IP address blocks: 2404:8d04:2643::/48 maxlen: 48 2404:8d04:4642::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.crl rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9652 (0x25b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1136/serialNumber=B7B73E89B621081609CD689AB0AEF7FAF148926C Validity Not Before: Sep 24 15:53:06 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2e062-fdcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d7:96:a2:5f:f6:55:95:af:4a:7d:a6:2c:dc: 1f:c0:de:33:02:d1:04:c0:1f:49:3b:53:1f:47:e9: 7e:0e:11:45:8e:63:78:40:9d:5a:9b:ba:d3:c4:e6: 2a:11:67:e5:2c:30:b3:97:d2:3e:0e:8c:75:b3:a0: 24:98:97:9c:f4:a3:a2:9a:1b:8c:d3:65:35:ab:49: f2:ef:b4:3c:47:28:4f:84:f8:37:4c:8b:7a:54:e3: 34:35:15:88:dc:0c:8c:62:35:48:be:86:41:fe:c8: 7d:e6:d0:14:de:87:a4:9e:71:c6:1a:ad:cd:7a:99: 2e:b1:91:ea:96:97:b8:ea:30:3a:14:c3:d7:9a:9a: f7:9b:2a:ae:3d:8d:a5:e0:7d:c5:92:fa:20:56:e3: cc:0c:9c:b7:77:07:7c:46:e3:ee:aa:77:8d:bc:6c: c1:79:ad:52:e4:cb:80:d7:71:5f:7a:9c:87:d3:38: 6f:f0:b5:d2:f8:14:5d:4b:df:0f:21:da:53:f2:87: af:f4:89:29:6f:9a:b5:2b:0b:17:97:70:29:d4:b5: 59:15:47:c8:7e:da:00:b7:65:0e:0b:18:95:ea:af: 91:ae:ed:d0:d6:90:63:9e:6c:2b:42:e3:4f:f2:d4: a8:2f:61:cf:50:4e:93:fd:94:48:cd:68:31:c2:09: 2a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:66:C5:4D:00:AA:B5:87:B9:C9:3F:A9:6D:F0:F3:C1:B0:00:45:F7 X509v3 Authority Key Identifier: keyid:B7:B7:3E:89:B6:21:08:16:09:CD:68:9A:B0:AE:F7:FA:F1:48:92:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/BE402F16707F11EDBD17DD28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:8d04:2643::/48 2404:8d04:4642::/48 Signature Algorithm: sha256WithRSAEncryption 13:77:30:d9:86:8b:88:5a:be:cc:77:3b:5a:aa:53:6a:65:85: 62:c4:78:f4:d7:cd:16:a4:8c:0a:f1:a8:f2:a3:12:9c:1f:66: 42:18:76:91:bf:78:8a:02:0b:b8:cf:d8:08:23:31:58:56:bb: 5e:27:96:6f:a6:c9:ef:1b:95:2d:71:53:b7:92:f4:40:49:64: db:7b:bb:79:fb:67:73:14:c7:f6:49:68:8a:d9:05:13:b9:e2: 83:a8:2b:d1:86:1f:95:fe:30:f5:13:40:20:d0:2c:73:79:db: fe:b4:8b:2d:ea:da:f8:77:9a:04:2b:81:26:d8:3d:b4:35:37: 70:20:7b:44:a0:26:41:09:19:08:c4:f0:59:fc:06:8f:d7:4b: f4:fb:00:27:ba:69:67:75:46:32:ca:a7:c5:b8:6e:a7:a4:60: 9c:5d:56:86:10:52:10:9b:35:32:dc:c1:3e:6a:a1:f3:1a:3b: 28:db:81:f9:13:d6:8b:38:b6:e9:52:59:61:8a:f7:fd:15:52: 7f:12:f3:ac:9d:5b:e2:95:00:0b:7c:74:f6:8e:58:db:23:c3: 29:e6:3a:44:77:a3:91:cb:74:7b:63:80:59:bc:b6:fa:86:8e: d7:15:32:79:b4:84:27:59:0d:a4:98:30:52:e3:62:71:e4:57: d6:0e:41:fa -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICJbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMzYxMTAvBgNVBAUTKEI3QjczRTg5QjYyMTA4MTYwOUNENjg5QUIwQUVGN0ZB RjE0ODkyNkMwHhcNMjQwOTI0MTU1MzA2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZTA2Mi1mZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NeWol/2VZWvSn2mLNwfwN4zAtEEwB9JO1MfR+l+DhFFjmN4QJ1am7rTxOYq EWflLDCzl9I+Dox1s6AkmJec9KOimhuM02U1q0ny77Q8RyhPhPg3TIt6VOM0NRWI 3AyMYjVIvoZB/sh95tAU3oeknnHGGq3NepkusZHqlpe46jA6FMPXmpr3myquPY2l 4H3FkvogVuPMDJy3dwd8RuPuqneNvGzBea1S5MuA13FfepyH0zhv8LXS+BRdS98P IdpT8oev9Ikpb5q1KwsXl3Ap1LVZFUfIftoAt2UOCxiV6q+Rru3Q1pBjnmwrQuNP 8tSoL2HPUE6T/ZRIzWgxwgkqGQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOBmxU0A qrWHuck/qW3w88GwAEX3MB8GA1UdIwQYMBaAFLe3Pom2IQgWCc1omrCu9/rxSJJs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEzNi9DRjMyODFDODIx NUIxMUU1QTdCRjg5MEVDNEY5QUUwMi90N2MtaWJZaENCWUp6V2lhc0s3My12Rklr bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q3Yy1pYlloQ0JZSnpXaWFzSzczLXZGSWttdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDExMzYvQ0YzMjgxQzgyMTVCMTFFNUE3QkY4OTBFQzRGOUFFMDIvQkU0MDJGMTY3 MDdGMTFFREJEMTdERDI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBI0EJkMDBwAkBI0ERkIwDQYJKoZIhvcNAQELBQADggEB ABN3MNmGi4havsx3O1qqU2plhWLEePTXzRakjArxqPKjEpwfZkIYdpG/eIoCC7jP 2AgjMVhWu14nlm+mye8blS1xU7eS9EBJZNt7u3n7Z3MUx/ZJaIrZBRO54oOoK9GG H5X+MPUTQCDQLHN52/60iy3q2vh3mgQrgSbYPbQ1N3Age0SgJkEJGQjE8Fn8Bo/X S/T7ACe6aWd1RjLKp8W4bqekYJxdVoYQUhCbNTLcwT5qofMaOyjbgfkT1os4tulS WWGK9/0VUn8S86ydW+KVAAt8dPaOWNsjwynmOkR3o5HLdHtjgFm8tvqGjtcVMnm0 hCdZDaSYMFLjYnHkV9YOQfo= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:57 2024 by rpki-client on console-ams.rpki-client.org