$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/6E6485328C6211E9A888A528C4F9AE02.roa File: 6E6485328C6211E9A888A528C4F9AE02.roa (raw, json) Hash identifier: QIvHx1lGnmXU4nP1voDiDEApQWHWZM1DlOchOnP3WOw= Subject key identifier: C2:4C:C1:A2:4F:85:B5:98:A9:61:D5:03:1A:11:CD:13:8D:29:B8:87 Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 1058 Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/6E6485328C6211E9A888A528C4F9AE02.roa Signing time: Thu 28 Mar 2024 18:26:13 +0000 ROA not before: Thu 28 Mar 2024 18:26:13 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 139216 IP address blocks: 2404:7ac0:607::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4184 (0x1058) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Validity Not Before: Mar 28 18:26:13 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605b644-b8ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6c:15:7b:22:17:fe:86:43:aa:29:61:aa:bd: 11:79:89:d9:4f:89:2a:8e:a9:7a:95:76:d2:c3:03: a1:45:14:b7:04:aa:b2:e4:7b:26:16:c1:a7:58:0c: 57:d8:05:f7:14:a7:d3:d8:8c:be:5a:2d:cf:2e:bd: 9f:43:61:f0:61:ed:6b:8f:e1:51:d7:f6:d9:a0:91: fe:16:0a:37:4b:e6:11:fe:6a:33:46:ee:21:f2:6e: 36:03:eb:85:c9:40:35:11:77:34:b4:7b:b9:16:96: 6e:ca:20:3f:9b:93:1f:07:4c:b2:22:2f:4c:f7:19: 13:1d:35:82:d8:4a:8a:20:bb:e3:c7:01:3a:2a:3c: 10:ab:97:0e:b9:42:e8:3a:45:a0:ac:ce:b2:15:db: c7:71:43:6d:63:f2:7c:2e:62:0f:72:f4:86:45:03: d0:71:d9:17:9e:01:c8:21:27:77:74:f0:cb:05:32: cd:3e:82:78:7e:bf:ff:9e:d8:83:d1:f9:76:3c:e6: a4:66:8f:d7:39:73:75:20:16:4c:c9:39:c9:9f:08: 36:8f:d6:de:76:d7:08:ef:c3:a7:ee:fc:22:0b:09: 61:d2:5c:b7:72:82:86:74:8d:e6:29:bd:4d:0a:c8: 4f:92:86:a1:ff:12:f3:1e:f5:26:4f:83:c8:ec:ef: 5d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4C:C1:A2:4F:85:B5:98:A9:61:D5:03:1A:11:CD:13:8D:29:B8:87 X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/6E6485328C6211E9A888A528C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:7ac0:607::/48 Signature Algorithm: sha256WithRSAEncryption b0:15:b0:60:a9:6f:13:0c:74:0c:4a:95:4d:76:d7:61:bf:9b: 87:2e:2f:42:6f:65:bf:13:c8:21:2f:d3:4b:a1:eb:d4:ab:b7: d1:1d:d0:1f:2f:b6:9b:6f:af:6a:cd:48:0d:16:3c:4e:18:bb: 3d:e7:74:41:17:14:f5:61:b4:58:2f:b5:4b:87:89:61:0e:ff: 1d:7e:cf:26:25:ed:d7:34:cb:74:18:e2:1b:94:aa:05:6f:06: fe:be:d6:7f:56:05:57:27:b6:f3:63:2c:9d:4b:1e:17:74:df: 6a:b9:5a:e6:be:2f:f6:de:a9:f6:ac:a1:f9:17:71:86:e3:10: 78:a7:79:16:df:bf:75:36:28:12:72:42:b2:69:aa:38:cf:d0: 02:01:ec:fa:e6:f1:ff:be:9b:27:55:e4:b7:62:2d:ef:1e:47: 45:e1:e1:10:76:6d:c5:9c:6a:07:d7:43:45:13:8a:3c:12:26: b9:1e:0e:c0:f1:d0:b5:af:98:0e:c8:c2:83:3e:3d:d3:00:06: 34:54:17:64:f9:5b:7a:d2:c8:14:ef:e1:94:8e:f2:2e:6d:e5: 06:b7:72:75:dc:f7:61:fd:46:d1:e1:8f:89:64:1a:03:f1:0d: e5:89:18:da:e5:b8:52:25:95:00:41:cc:6a:68:37:97:ce:5d: 11:ca:ea:59 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjQwMzI4MTgyNjEzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1YjY0NC1iOGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2wVeyIX/oZDqilhqr0ReYnZT4kqjql6lXbSwwOhRRS3BKqy5HsmFsGnWAxX 2AX3FKfT2Iy+Wi3PLr2fQ2HwYe1rj+FR1/bZoJH+Fgo3S+YR/mozRu4h8m42A+uF yUA1EXc0tHu5FpZuyiA/m5MfB0yyIi9M9xkTHTWC2EqKILvjxwE6KjwQq5cOuULo OkWgrM6yFdvHcUNtY/J8LmIPcvSGRQPQcdkXngHIISd3dPDLBTLNPoJ4fr//ntiD 0fl2POakZo/XOXN1IBZMyTnJnwg2j9bedtcI78On7vwiCwlh0ly3coKGdI3mKb1N CshPkoah/xLzHvUmT4PI7O9dnQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMJMwaJP hbWYqWHVAxoRzRONKbiHMB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvNkU2NDg1MzI4 QzYyMTFFOUE4ODhBNTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBHrABgcwDQYJKoZIhvcNAQELBQADggEBALAVsGCpbxMM dAxKlU1212G/m4cuL0JvZb8TyCEv00uh69Srt9Ed0B8vtptvr2rNSA0WPE4Yuz3n dEEXFPVhtFgvtUuHiWEO/x1+zyYl7dc0y3QY4huUqgVvBv6+1n9WBVcntvNjLJ1L Hhd032q5Wua+L/beqfasofkXcYbjEHineRbfv3U2KBJyQrJpqjjP0AIB7Prm8f++ mydV5LdiLe8eR0Xh4RB2bcWcagfXQ0UTijwSJrkeDsDx0LWvmA7IwoM+PdMABjRU F2T5W3rSyBTv4ZSO8i5t5Qa3cnXc92H9RtHhj4lkGgPxDeWJGNrluFIllQBBzGpo N5fOXRHK6lk= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:05 2024 by rpki-client on console-fra.rpki-client.org