$ rpki-client -vvf rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/D1C40E28183411EF99FD8776C4F9AE02.roa File: D1C40E28183411EF99FD8776C4F9AE02.roa (raw, json) Hash identifier: chBs/iSmoBtAd9EtvA3mnCGyh8XU8yYYJZGBD7EHNow= Subject key identifier: D1:20:6D:F0:69:85:D1:0D:CE:DD:88:30:6B:DD:91:7F:7D:7D:5A:57 Certificate issuer: /CN=A91D604E/serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73 Certificate serial: 0C03 Authority key identifier: E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/D1C40E28183411EF99FD8776C4F9AE02.roa Signing time: Sun 30 Jun 2024 19:40:08 +0000 ROA not before: Sun 30 Jun 2024 19:40:08 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135517 IP address blocks: 2400:f8c0::/32 maxlen: 36 2400:f8c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:12:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3075 (0xc03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D604E/serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73 Validity Not Before: Jun 30 19:40:08 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6681b497-e430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:94:e3:b4:bd:80:c6:da:ff:0f:bf:af:4b:ed: db:60:b2:44:2e:a5:57:a0:e1:9d:e8:6c:cd:ae:6f: 7c:d2:67:56:27:5e:f1:b2:31:c4:88:6e:99:2e:67: 82:5f:99:d1:23:99:0b:cb:5c:7b:76:fd:c6:18:c2: 9f:c5:f8:92:44:54:bf:1e:84:00:50:64:8b:c1:32: 28:57:cf:40:02:73:c0:aa:7f:ee:34:03:4f:52:cd: 51:a2:80:17:87:f9:f2:03:cd:f6:04:04:61:82:1f: 2d:af:4b:13:30:1a:6e:6f:2b:e4:47:c0:fb:b8:4f: 73:99:11:73:00:73:cc:ac:69:65:3e:73:2b:98:1f: 27:e1:40:c5:41:51:53:b3:b4:62:43:e3:d9:41:fe: 40:7a:f2:58:a4:d8:49:65:cf:83:92:2c:ce:40:ac: d5:58:6c:29:5d:f3:a7:2e:89:da:00:c5:90:6d:01: 5b:e9:59:06:a5:e8:9d:13:94:da:e5:c3:1f:e8:d1: 84:b5:41:a3:81:7b:23:a5:51:1b:d8:11:31:46:b9: 07:fd:61:cc:4e:d7:d5:98:02:fd:f3:aa:ce:25:1e: d7:41:d5:01:c7:a7:83:05:1f:c0:7d:c3:5d:d0:fa: 8e:3e:cd:4e:26:1b:50:38:a1:92:bb:4e:4b:76:44: ca:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:20:6D:F0:69:85:D1:0D:CE:DD:88:30:6B:DD:91:7F:7D:7D:5A:57 X509v3 Authority Key Identifier: keyid:E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/D1C40E28183411EF99FD8776C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:f8c0::/32 Signature Algorithm: sha256WithRSAEncryption 3a:ef:46:9a:7e:4c:cf:09:00:b2:c3:8d:61:99:95:de:ff:42: af:f9:de:24:c3:21:7a:62:ac:66:4e:26:52:72:86:90:ed:9f: e2:27:ad:18:b8:7e:81:9e:c7:34:4e:17:d1:02:6c:ef:80:99: 05:01:42:96:39:d7:74:5b:a4:93:c1:4e:86:07:b4:2b:14:1c: 53:03:4a:8a:7f:09:1a:9a:25:06:09:80:49:dd:25:98:f1:ee: c0:5a:ae:7c:65:a2:2d:5c:ab:c8:ff:9e:85:0c:cc:52:24:c2: 2d:4a:ed:29:67:b6:2b:8c:aa:7c:50:ff:a4:34:1a:93:7e:2b: 42:19:ab:6a:3b:90:c8:5d:36:95:c4:dc:f6:cb:b1:5a:47:f6: 45:f0:88:b1:9d:95:61:86:48:84:6f:6d:f4:7c:7b:26:65:4c: 22:66:5d:0f:a2:8c:54:dc:d3:19:33:15:66:d9:67:65:67:20: 64:ae:52:2b:be:7b:11:81:a5:87:63:42:50:03:a6:12:9e:2d: 80:b6:99:73:f8:dc:dd:c7:6e:fc:a0:7e:74:f4:93:7e:09:07: 2d:60:a7:53:cf:dc:e3:2c:5b:fa:44:0a:1f:75:08:c7:f8:5e: eb:b5:5a:24:c6:a5:8a:7f:38:80:69:d7:28:2b:5f:50:10:85: b6:8a:aa:1d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwNEUxMTAvBgNVBAUTKEU0RENFQzU5NUExQkI2NzM4OTcyMjM2NTZBQzYzOUI5 NTM1MkRENzMwHhcNMjQwNjMwMTk0MDA4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgxYjQ5Ny1lNDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZTjtL2Axtr/D7+vS+3bYLJELqVXoOGd6GzNrm980mdWJ17xsjHEiG6ZLmeC X5nRI5kLy1x7dv3GGMKfxfiSRFS/HoQAUGSLwTIoV89AAnPAqn/uNANPUs1RooAX h/nyA832BARhgh8tr0sTMBpubyvkR8D7uE9zmRFzAHPMrGllPnMrmB8n4UDFQVFT s7RiQ+PZQf5AevJYpNhJZc+DkizOQKzVWGwpXfOnLonaAMWQbQFb6VkGpeidE5Ta 5cMf6NGEtUGjgXsjpVEb2BExRrkH/WHMTtfVmAL986rOJR7XQdUBx6eDBR/AfcNd 0PqOPs1OJhtQOKGSu05LdkTK1wIDAQABo4ICljCCApIwHQYDVR0OBBYEFNEgbfBp hdENzt2IMGvdkX99fVpXMB8GA1UdIwQYMBaAFOTc7FlaG7ZziXIjZWrGOblTUt1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjA0RS85MUI1QzBDMEY0 RUQxMUU5OENCRkEwMTNDNEY5QUUwMi81TnpzV1ZvYnRuT0pjaU5sYXNZNXVWTlMz WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOenNXVm9idG5PSmNpTmxhc1k1dVZOUzNYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYwNEUvOTFCNUMwQzBGNEVEMTFFOThDQkZBMDEzQzRGOUFFMDIvRDFDNDBFMjgx ODM0MTFFRjk5RkQ4Nzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAPjAMA0GCSqGSIb3DQEBCwUAA4IBAQA670aafkzPCQCy w41hmZXe/0Kv+d4kwyF6YqxmTiZScoaQ7Z/iJ60YuH6Bnsc0ThfRAmzvgJkFAUKW Odd0W6STwU6GB7QrFBxTA0qKfwkamiUGCYBJ3SWY8e7AWq58ZaItXKvI/56FDMxS JMItSu0pZ7YrjKp8UP+kNBqTfitCGatqO5DIXTaVxNz2y7FaR/ZF8IixnZVhhkiE b230fHsmZUwiZl0PooxU3NMZMxVm2WdlZyBkrlIrvnsRgaWHY0JQA6YSni2Atplz +Nzdx278oH509JN+CQctYKdTz9zjLFv6RAofdQjH+F7rtVokxqWKfziAadcoK19Q EIW2iqod -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:18 2024 by rpki-client on console-ams.rpki-client.org