$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/71DD0A968C8311EF81E2B476C4F9AE02.roa File: 71DD0A968C8311EF81E2B476C4F9AE02.roa (raw, json) Hash identifier: TXrkjJIwjX6s25tb57BHkFJUDyJD9PmCVoOhgLQta9Y= Subject key identifier: EF:39:0C:48:8E:65:C1:00:49:A7:51:5F:D7:F9:87:35:42:2C:AA:27 Certificate issuer: /CN=A91DBF0C/serialNumber=1548F1095F1E0F9B784B1B7FDD8F0E759C842DFE Certificate serial: 05 Authority key identifier: 15:48:F1:09:5F:1E:0F:9B:78:4B:1B:7F:DD:8F:0E:75:9C:84:2D:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/71DD0A968C8311EF81E2B476C4F9AE02.roa Signing time: Thu 17 Oct 2024 12:29:25 +0000 ROA not before: Thu 17 Oct 2024 12:29:25 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153312 IP address blocks: 2401:c060::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.crl rsync://rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0C/serialNumber=1548F1095F1E0F9B784B1B7FDD8F0E759C842DFE Validity Not Before: Oct 17 12:29:25 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67110325-65d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:64:3f:1b:03:79:e5:33:c9:ad:6c:0b:20:79: 05:d7:6d:48:3d:ee:83:d3:5e:2e:f7:58:30:4d:21: 61:af:4a:bd:2d:e2:f9:79:44:d3:16:f7:cb:84:ee: ae:56:23:d2:bd:9f:a6:26:dd:66:48:12:a8:5f:fc: c8:39:8f:d2:90:31:2b:f8:d1:75:0a:a1:08:79:76: 7c:01:f0:0f:89:6e:04:67:59:a3:7b:5c:31:4c:8c: a4:bc:99:22:45:1b:20:ba:0b:16:7e:66:f8:7d:16: d1:8b:94:22:57:e2:b8:94:cb:3b:b3:2c:ef:07:c4: ed:55:4f:3c:f0:1e:b3:b2:40:e6:e2:1f:fa:46:b8: 3b:af:34:48:b9:2e:76:40:69:67:ad:bf:0f:ce:82: 02:03:27:45:dd:ac:e4:0a:fd:37:28:87:55:c3:71: 01:d1:09:9c:92:33:4c:a8:a8:0b:d3:50:9c:43:01: 34:aa:dd:42:79:27:33:b5:ba:35:d7:68:b1:71:a7: fc:b0:40:75:57:2f:c8:7b:7a:79:fb:c3:61:fb:b0: fb:dc:53:08:d9:4d:5a:fc:d5:c2:de:c1:01:85:1d: fc:31:0e:eb:53:27:87:4b:ab:7b:b4:8d:92:8a:0b: ba:a3:76:8a:a6:9b:d6:73:b9:b1:65:72:59:c0:6f: 60:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:39:0C:48:8E:65:C1:00:49:A7:51:5F:D7:F9:87:35:42:2C:AA:27 X509v3 Authority Key Identifier: keyid:15:48:F1:09:5F:1E:0F:9B:78:4B:1B:7F:DD:8F:0E:75:9C:84:2D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/71DD0A968C8311EF81E2B476C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:c060::/32 Signature Algorithm: sha256WithRSAEncryption 06:58:42:ca:fd:ee:0e:21:8a:59:18:45:ea:73:f7:59:55:bd: e1:e2:4c:e3:5a:96:8b:ea:f4:f0:88:3e:08:e1:dd:17:0c:a9: a1:aa:f2:67:fe:d5:89:ad:33:19:b2:87:ba:cf:34:47:dd:f2: 3e:4e:61:79:ac:75:22:d6:1b:d3:57:95:83:02:dc:2d:fb:a9: 97:98:dd:3a:c3:50:f2:90:ce:ac:55:a1:7e:95:e4:f5:25:da: 5f:22:06:a4:7d:37:f4:8f:17:ea:40:43:9a:87:3b:78:23:10: a1:13:39:0d:c1:a9:a0:99:53:d4:89:18:19:4d:a7:2b:a1:d2: c1:15:5a:87:fa:40:5e:52:5f:af:d7:05:55:eb:5b:ea:dd:71: 3c:6f:83:bb:f8:29:5a:dd:c1:24:12:fa:69:4e:9b:b0:27:c6: 09:37:fa:c3:61:d3:b3:2a:2b:37:0d:4f:83:c0:b7:53:f1:89: 32:12:3e:57:15:6d:4a:52:cb:de:2c:4f:13:c5:b4:7f:d7:ac: ee:2e:22:bb:fb:7a:a1:e9:cc:91:2f:d0:84:4a:a2:a5:d6:1d: 84:84:fd:b0:1f:66:c1:d8:a6:eb:06:93:36:a7:48:05:8f:ed: 65:d1:58:45:35:08:1e:ae:1a:94:3a:16:5d:3e:de:11:1f:fe: 4c:1e:12:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkYwQzExMC8GA1UEBRMoMTU0OEYxMDk1RjFFMEY5Qjc4NEIxQjdGREQ4RjBFNzU5 Qzg0MkRGRTAeFw0yNDEwMTcxMjI5MjVaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTEwMzI1LTY1ZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMZD8bA3nlM8mtbAsgeQXXbUg97oPTXi73WDBNIWGvSr0t4vl5RNMW98uE7q5W I9K9n6Ym3WZIEqhf/Mg5j9KQMSv40XUKoQh5dnwB8A+JbgRnWaN7XDFMjKS8mSJF GyC6CxZ+Zvh9FtGLlCJX4riUyzuzLO8HxO1VTzzwHrOyQObiH/pGuDuvNEi5LnZA aWetvw/OggIDJ0XdrOQK/Tcoh1XDcQHRCZySM0yoqAvTUJxDATSq3UJ5JzO1ujXX aLFxp/ywQHVXL8h7enn7w2H7sPvcUwjZTVr81cLewQGFHfwxDutTJ4dLq3u0jZKK C7qjdoqmm9ZzubFlclnAb2AZAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQU7zkMSI5l wQBJp1Ff1/mHNUIsqicwHwYDVR0jBBgwFoAUFUjxCV8eD5t4Sxt/3Y8OdZyELf4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCRjBDLzRBMEZGQTk2OEM1 QjExRUZBNzA2NzU3RkM0RjlBRTAyL0ZVanhDVjhlRDV0NFN4dF8zWThPZFp5RUxm NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlVqeENWOGVENXQ0U3h0XzNZOE9kWnlFTGY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwQy80QTBGRkE5NjhDNUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi83MUREMEE5NjhD ODMxMUVGODFFMkI0NzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBwGAwDQYJKoZIhvcNAQELBQADggEBAAZYQsr97g4hilkY Repz91lVveHiTONalovq9PCIPgjh3RcMqaGq8mf+1YmtMxmyh7rPNEfd8j5OYXms dSLWG9NXlYMC3C37qZeY3TrDUPKQzqxVoX6V5PUl2l8iBqR9N/SPF+pAQ5qHO3gj EKETOQ3BqaCZU9SJGBlNpyuh0sEVWof6QF5SX6/XBVXrW+rdcTxvg7v4KVrdwSQS +mlOm7Anxgk3+sNh07MqKzcNT4PAt1PxiTISPlcVbUpSy94sTxPFtH/XrO4uIrv7 eqHpzJEv0IRKoqXWHYSE/bAfZsHYpusGkzanSAWP7WXRWEU1CB6uGpQ6Fl0+3hEf /kweEtc= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org