$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/863670328FD011EEB6FFC636C4F9AE02.roa File: 863670328FD011EEB6FFC636C4F9AE02.roa (raw, json) Hash identifier: LXbUGEX0BzxPJTGdu8cpn4olWR+ALKon9w0YiyjSIgs= Subject key identifier: 86:6F:72:E5:1D:BA:91:3E:6A:00:85:08:97:4C:F3:EB:41:FB:C0:3B Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 081D Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/863670328FD011EEB6FFC636C4F9AE02.roa Signing time: Tue 02 Apr 2024 22:31:06 +0000 ROA not before: Tue 02 Apr 2024 22:31:06 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 398791 IP address blocks: 2407:1c00:6200::/40 maxlen: 40 2407:1c00:6300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2077 (0x81d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Apr 2 22:31:06 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660c872a-e0ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:15:7a:dd:e2:06:13:f5:3e:60:b0:cf:b7:ec: 35:8a:b9:88:44:27:67:a9:64:4d:06:02:0a:7c:d4: 67:5e:0a:ae:af:03:a9:54:d8:43:60:18:26:cd:35: 26:68:86:66:a5:55:20:f6:fd:85:47:0b:fa:5e:b2: ba:65:fd:2b:e7:7f:fd:b1:ff:7e:d9:bb:b2:92:03: a9:5c:3a:8e:be:cb:e7:90:da:20:18:b5:62:ac:e8: 57:fb:12:64:3b:5a:49:6f:4d:30:6e:56:48:01:a6: d2:0d:c0:99:72:f6:0b:5e:c6:b0:7d:2e:6b:2f:74: 68:41:d5:df:5d:26:61:de:a5:5e:0f:5c:e1:ef:a8: ad:7f:86:6d:32:d3:38:b8:68:27:10:bc:26:be:c7: 7e:e0:bc:a5:05:b1:d8:d1:43:5a:62:88:40:53:8d: da:03:78:3f:49:ed:d5:cd:3f:86:5f:01:25:d3:62: b8:e6:43:4b:64:78:9c:91:7f:7b:7b:7e:a6:4c:23: 97:11:35:1b:da:0c:1d:7d:07:00:df:28:53:57:2a: e5:23:08:60:a1:d1:60:9d:4a:b0:4c:81:1f:f9:18: da:73:02:23:0b:fd:9c:4d:83:fd:21:b0:97:ec:a3: 70:07:32:60:fd:f0:3c:32:55:3c:ea:e4:42:db:e0: 5f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:6F:72:E5:1D:BA:91:3E:6A:00:85:08:97:4C:F3:EB:41:FB:C0:3B X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/863670328FD011EEB6FFC636C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:1c00:6200::/39 Signature Algorithm: sha256WithRSAEncryption 70:a1:35:54:95:e9:67:43:55:9c:ac:24:b4:7f:9f:4f:9c:dc: cd:14:41:ee:a2:a9:a7:0a:87:0a:4e:c6:4f:c0:ff:c4:ee:c5: 77:6d:32:57:e3:10:c8:00:5e:24:1a:d3:98:aa:00:6a:83:80: e4:f3:b2:34:6b:55:ec:ab:95:26:44:2b:7b:b9:15:80:bd:30: 10:0a:f8:29:27:31:6f:dc:b1:53:b5:ff:50:83:ac:ab:93:58: c4:8b:5a:3d:8f:af:2b:cc:36:2b:7f:4d:1a:14:f0:e1:75:a2: 72:03:07:00:de:4b:61:95:89:69:58:a8:53:99:96:a5:0d:d7: 67:4b:23:28:59:46:4d:29:e5:25:cb:b2:11:e9:5a:9b:ce:8a: 3f:57:83:70:b1:12:b1:f4:c8:b7:94:02:d4:14:b0:07:d5:6e: 33:b3:33:00:4b:62:b1:b1:2b:fb:98:bc:53:bb:17:18:4e:b6: be:2e:61:20:9b:7a:db:41:93:64:23:1f:d3:69:c7:76:4e:4a: 96:5d:8a:c3:43:fa:ad:89:7b:2e:65:14:df:b2:af:d9:70:d2: b0:55:c6:69:2f:12:cb:23:38:13:0a:dd:1b:46:94:85:e9:1a: 85:b3:7a:2e:4d:00:9c:2e:db:7d:51:52:1a:22:40:eb:ac:d5: de:a1:d2:c9 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICCB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjQwNDAyMjIzMTA2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjODcyYS1lMGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRV63eIGE/U+YLDPt+w1irmIRCdnqWRNBgIKfNRnXgqurwOpVNhDYBgmzTUm aIZmpVUg9v2FRwv6XrK6Zf0r53/9sf9+2buykgOpXDqOvsvnkNogGLVirOhX+xJk O1pJb00wblZIAabSDcCZcvYLXsawfS5rL3RoQdXfXSZh3qVeD1zh76itf4ZtMtM4 uGgnELwmvsd+4LylBbHY0UNaYohAU43aA3g/Se3VzT+GXwEl02K45kNLZHickX97 e36mTCOXETUb2gwdfQcA3yhTVyrlIwhgodFgnUqwTIEf+RjacwIjC/2cTYP9IbCX 7KNwBzJg/fA8MlU86uRC2+BfSQIDAQABo4IClzCCApMwHQYDVR0OBBYEFIZvcuUd upE+agCFCJdM8+tB+8A7MB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvODYzNjcwMzI4 RkQwMTFFRUI2RkZDNjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgEkBxwAYjANBgkqhkiG9w0BAQsFAAOCAQEAcKE1VJXpZ0NV nKwktH+fT5zczRRB7qKppwqHCk7GT8D/xO7Fd20yV+MQyABeJBrTmKoAaoOA5POy NGtV7KuVJkQre7kVgL0wEAr4KScxb9yxU7X/UIOsq5NYxItaPY+vK8w2K39NGhTw 4XWicgMHAN5LYZWJaVioU5mWpQ3XZ0sjKFlGTSnlJcuyEelam86KP1eDcLESsfTI t5QC1BSwB9VuM7MzAEtisbEr+5i8U7sXGE62vi5hIJt620GTZCMf02nHdk5Kll2K w0P6rYl7LmUU37Kv2XDSsFXGaS8SyyM4EwrdG0aUhekahbN6Lk0AnC7bfVFSGiJA 66zV3qHSyQ== -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:16 2024 by rpki-client on console-fra.rpki-client.org