$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/C39DD1EAB2AE11EDBF6E4032C4F9AE02.roa File: C39DD1EAB2AE11EDBF6E4032C4F9AE02.roa (raw, json) Hash identifier: HF1+RDAS1FlFEU58BjvwPd+WQDRYReOKZwjB4KX5zdY= Subject key identifier: 81:1A:C4:EA:00:23:20:97:DB:25:F1:65:0B:30:EE:77:32:62:27:46 Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 105A Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/C39DD1EAB2AE11EDBF6E4032C4F9AE02.roa Signing time: Thu 28 Mar 2024 18:26:14 +0000 ROA not before: Thu 28 Mar 2024 18:26:14 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 199974 IP address blocks: 2404:7ac0:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4186 (0x105a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Validity Not Before: Mar 28 18:26:14 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605b646-b160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a4:7f:9d:c8:a9:6c:97:7a:b4:ea:ce:1d:41: 02:38:c2:a8:5a:b0:a2:b8:93:25:77:46:f3:1d:da: ba:19:87:08:a5:80:75:47:ae:69:0f:3e:26:ec:18: d9:e0:70:35:a8:43:a9:cb:98:09:92:d0:ac:14:60: 63:8a:ca:4d:e8:0c:fb:fd:4c:4e:60:23:2d:f0:43: 67:b1:04:9c:9d:95:8f:eb:fa:69:cb:c8:3b:ac:5c: 32:51:1e:80:f5:cc:53:43:df:95:3f:99:14:9d:f9: 22:cf:7d:56:61:3d:96:b8:67:a7:96:54:d7:1e:33: ae:e0:32:c0:e1:b4:aa:bd:e0:a1:35:ec:c0:8b:45: ce:b2:e4:18:ae:5c:b7:1c:40:3b:79:53:f2:83:91: 43:c5:ff:2f:e2:a3:e5:02:da:d1:b8:d7:ea:41:63: a1:66:b8:72:a0:33:bb:b9:24:73:43:a5:5a:7b:df: 65:be:2c:79:3f:95:62:54:0d:b6:e5:4f:35:40:75: 35:3d:e8:a2:5b:fd:06:f4:47:27:6e:69:ff:4e:f5: 3c:0a:b4:e2:63:ce:25:7a:fe:91:2b:61:df:63:16: fb:5e:e4:b5:e8:10:88:c4:b9:2a:48:ec:81:ac:ae: 83:ad:4b:05:b0:da:aa:3e:29:7b:5c:3b:67:51:57: d2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1A:C4:EA:00:23:20:97:DB:25:F1:65:0B:30:EE:77:32:62:27:46 X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/C39DD1EAB2AE11EDBF6E4032C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:7ac0:2000::/40 Signature Algorithm: sha256WithRSAEncryption ba:50:2f:3e:fb:37:1d:7e:ad:fa:87:4c:02:fa:09:93:57:48: 57:1d:a8:39:7a:08:47:29:fa:1d:03:cd:36:5c:b7:9d:33:04: 6d:17:c7:29:84:7d:e3:16:f3:ed:da:27:97:63:84:2e:f4:5f: 22:3d:3c:61:45:5a:47:5c:10:0d:36:89:8a:6a:8b:c3:3e:92: 58:21:0d:ee:88:42:6b:02:d7:d4:a0:d8:51:99:a4:b4:82:b2: d9:bf:da:0a:2d:4c:79:9e:0d:ff:cb:17:43:db:4a:e4:09:67: b7:cb:a0:c6:dd:46:5f:ca:d9:ae:2f:c4:19:ce:ac:8b:74:c0: 2d:10:3c:8f:1d:05:60:af:20:e8:d5:8f:57:38:3d:26:75:40: 42:e3:a1:95:02:85:0f:c2:97:05:28:8e:be:14:05:8b:cf:43: 1d:74:f0:df:c2:a6:b4:9f:62:99:11:c8:c6:e4:72:88:55:62: da:40:5f:9f:32:74:f2:06:5e:89:86:07:ea:13:d8:e8:b3:c9: 2e:79:e7:4b:dc:3e:35:f4:e7:4f:40:b0:6f:15:82:62:a1:d6: ba:ba:97:fb:e4:fb:85:0d:86:59:2d:2f:ec:b4:cc:a4:93:25: 9d:80:ee:80:d1:df:a0:91:35:78:5d:6c:e9:a4:30:e4:58:b7: fe:e5:f5:4d -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICEFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjQwMzI4MTgyNjE0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1YjY0Ni1iMTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraR/ncipbJd6tOrOHUECOMKoWrCiuJMld0bzHdq6GYcIpYB1R65pDz4m7BjZ 4HA1qEOpy5gJktCsFGBjispN6Az7/UxOYCMt8ENnsQScnZWP6/ppy8g7rFwyUR6A 9cxTQ9+VP5kUnfkiz31WYT2WuGenllTXHjOu4DLA4bSqveChNezAi0XOsuQYrly3 HEA7eVPyg5FDxf8v4qPlAtrRuNfqQWOhZrhyoDO7uSRzQ6Vae99lvix5P5ViVA22 5U81QHU1PeiiW/0G9Ecnbmn/TvU8CrTiY84lev6RK2HfYxb7XuS16BCIxLkqSOyB rK6DrUsFsNqqPil7XDtnUVfSBQIDAQABo4IClzCCApMwHQYDVR0OBBYEFIEaxOoA IyCX2yXxZQsw7ncyYidGMB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvQzM5REQxRUFC MkFFMTFFREJGNkU0MDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkBHrAIDANBgkqhkiG9w0BAQsFAAOCAQEAulAvPvs3HX6t +odMAvoJk1dIVx2oOXoIRyn6HQPNNly3nTMEbRfHKYR94xbz7donl2OELvRfIj08 YUVaR1wQDTaJimqLwz6SWCEN7ohCawLX1KDYUZmktIKy2b/aCi1MeZ4N/8sXQ9tK 5Alnt8ugxt1GX8rZri/EGc6si3TALRA8jx0FYK8g6NWPVzg9JnVAQuOhlQKFD8KX BSiOvhQFi89DHXTw38KmtJ9imRHIxuRyiFVi2kBfnzJ08gZeiYYH6hPY6LPJLnnn S9w+NfTnT0CwbxWCYqHWurqX++T7hQ2GWS0v7LTMpJMlnYDugNHfoJE1eF1s6aQw 5Fi3/uX1TQ== -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:07 2024 by rpki-client on console-ams.rpki-client.org