$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/C9848396CD1711ED898C311FC4F9AE02.roa File: C9848396CD1711ED898C311FC4F9AE02.roa (raw, json) Hash identifier: qiiCfqFkoE73eTUuEAWAlpV2z6GCWd7ckeeiGxi5A4g= Subject key identifier: BD:69:65:DB:43:2D:E0:E5:85:BE:0D:7C:FC:52:76:E1:C2:E7:3F:0C Certificate issuer: /CN=A91D1136/serialNumber=B7B73E89B621081609CD689AB0AEF7FAF148926C Certificate serial: 25B3 Authority key identifier: B7:B7:3E:89:B6:21:08:16:09:CD:68:9A:B0:AE:F7:FA:F1:48:92:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/C9848396CD1711ED898C311FC4F9AE02.roa Signing time: Tue 24 Sep 2024 15:53:05 +0000 ROA not before: Tue 24 Sep 2024 15:53:05 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 24429 IP address blocks: 2404:8d02:28c8::/48 maxlen: 48 2404:8d02:4881::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.crl rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9651 (0x25b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1136 Validity Not Before: Sep 24 15:53:05 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2e061-244b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:89:b1:55:73:5f:86:bc:f6:6b:76:36:52:a8: b8:a5:b3:2b:44:a3:6f:12:cc:fd:b9:2b:12:7f:79: eb:72:61:8d:1e:33:e1:30:94:2d:60:de:ae:d5:56: fe:34:c3:ff:81:04:ef:39:d6:73:eb:2e:36:0e:be: 4c:dd:9b:a6:39:1b:3f:74:d8:99:de:f3:65:12:e4: 90:bf:b6:4f:5f:0a:87:e1:a8:c7:8f:34:1f:12:f8: 8e:52:19:36:f1:f1:a2:22:2f:97:87:21:bf:17:36: 4e:37:b5:69:d6:71:d4:92:02:3a:2e:7d:1f:25:96: 78:11:4f:bb:e4:d5:a2:a6:2f:29:48:a8:8f:c0:46: 80:12:5e:eb:3e:61:5d:84:35:f9:a4:eb:d9:99:e1: f4:1f:a8:1a:96:bb:60:9d:b3:fe:78:fd:1e:b6:82: 60:d2:f8:17:3f:2f:60:8a:c7:94:e9:5b:7c:c3:f8: 43:a6:3b:32:6a:9b:aa:10:ea:c1:7c:31:5a:0c:92: 24:cd:c5:8a:04:12:a7:c7:cb:c5:f0:86:85:a9:71: 78:85:88:9d:bc:e1:eb:ff:7c:a2:36:1a:3d:f2:ef: 61:59:3d:03:74:43:86:9c:41:ca:dd:35:94:f0:fe: c2:ac:ef:71:01:0b:c9:4f:85:9f:41:bd:71:b2:08: c8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:69:65:DB:43:2D:E0:E5:85:BE:0D:7C:FC:52:76:E1:C2:E7:3F:0C X509v3 Authority Key Identifier: keyid:B7:B7:3E:89:B6:21:08:16:09:CD:68:9A:B0:AE:F7:FA:F1:48:92:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/C9848396CD1711ED898C311FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:8d02:28c8::/48 2404:8d02:4881::/48 Signature Algorithm: sha256WithRSAEncryption aa:da:81:8c:28:b0:af:ed:c7:f1:0d:54:4a:bf:96:5c:53:8c: 0d:c6:aa:46:af:52:29:1e:27:99:11:6b:c5:9c:03:fe:6b:f0: 86:fc:9f:4d:99:46:8d:b2:60:b3:ba:ba:6d:09:e5:21:cd:8b: fc:09:88:82:42:a1:df:b4:b7:aa:37:92:3a:01:72:a0:b6:04: 9b:a5:6b:76:fc:2a:04:e9:64:bf:61:a1:5f:b6:08:11:49:68: 06:09:21:0e:ce:5e:78:1d:37:16:f6:8e:3b:9f:2c:34:bc:ec: 50:11:fe:75:d0:5c:0b:f3:99:82:16:48:1b:bf:d1:4b:f9:39: f7:06:62:16:ca:cf:b9:e9:5a:2d:f3:5f:b4:be:21:0c:63:63: 05:da:4c:95:20:be:a9:d2:84:d6:9e:49:27:5a:86:c6:63:23: 94:b1:ba:af:40:4f:eb:0d:d0:73:dc:e9:1e:64:2b:9e:25:48: f9:0d:2b:8f:ca:78:63:3f:2f:82:2b:be:30:76:f2:66:8a:61: 34:b2:15:ac:d4:88:98:42:d9:c7:4c:96:db:30:79:e9:76:b7: 39:3f:ab:83:14:11:d6:a5:cd:73:c1:d0:52:23:ee:d5:38:7a: 98:dd:f5:8b:ae:ff:70:ea:a6:3c:c3:50:b3:ef:55:e2:5c:f5: 9e:62:ab:7a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICJbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMzYxMTAvBgNVBAUTKEI3QjczRTg5QjYyMTA4MTYwOUNENjg5QUIwQUVGN0ZB RjE0ODkyNkMwHhcNMjQwOTI0MTU1MzA1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZTA2MS0yNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4mxVXNfhrz2a3Y2Uqi4pbMrRKNvEsz9uSsSf3nrcmGNHjPhMJQtYN6u1Vb+ NMP/gQTvOdZz6y42Dr5M3ZumORs/dNiZ3vNlEuSQv7ZPXwqH4ajHjzQfEviOUhk2 8fGiIi+XhyG/FzZON7Vp1nHUkgI6Ln0fJZZ4EU+75NWipi8pSKiPwEaAEl7rPmFd hDX5pOvZmeH0H6galrtgnbP+eP0etoJg0vgXPy9giseU6Vt8w/hDpjsyapuqEOrB fDFaDJIkzcWKBBKnx8vF8IaFqXF4hYidvOHr/3yiNho98u9hWT0DdEOGnEHK3TWU 8P7CrO9xAQvJT4WfQb1xsgjIKwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFL1pZdtD LeDlhb4NfPxSduHC5z8MMB8GA1UdIwQYMBaAFLe3Pom2IQgWCc1omrCu9/rxSJJs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEzNi9DRjMyODFDODIx NUIxMUU1QTdCRjg5MEVDNEY5QUUwMi90N2MtaWJZaENCWUp6V2lhc0s3My12Rklr bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q3Yy1pYlloQ0JZSnpXaWFzSzczLXZGSWttdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDExMzYvQ0YzMjgxQzgyMTVCMTFFNUE3QkY4OTBFQzRGOUFFMDIvQzk4NDgzOTZD RDE3MTFFRDg5OEMzMTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBI0CKMgDBwAkBI0CSIEwDQYJKoZIhvcNAQELBQADggEB AKragYwosK/tx/ENVEq/llxTjA3GqkavUikeJ5kRa8WcA/5r8Ib8n02ZRo2yYLO6 um0J5SHNi/wJiIJCod+0t6o3kjoBcqC2BJula3b8KgTpZL9hoV+2CBFJaAYJIQ7O XngdNxb2jjufLDS87FAR/nXQXAvzmYIWSBu/0Uv5OfcGYhbKz7npWi3zX7S+IQxj YwXaTJUgvqnShNaeSSdahsZjI5Sxuq9AT+sN0HPc6R5kK54lSPkNK4/KeGM/L4Ir vjB28maKYTSyFazUiJhC2cdMltsweel2tzk/q4MUEdalzXPB0FIj7tU4epjd9Yuu /3DqpjzDULPvVeJc9Z5iq3o= -----END CERTIFICATE-----Generated at Sun Feb 16 22:17:35 2025 by rpki-client