$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/8A06894A8C8211EF85B3A572C4F9AE02.roa File: 8A06894A8C8211EF85B3A572C4F9AE02.roa (raw, json) Hash identifier: k/RSQ+loZKSU/mNG3N6cRjY0FiE79Ik7PHvn92DtyVg= Subject key identifier: F5:F3:61:5C:51:BE:AC:21:8E:2A:99:7B:0D:42:65:63:B0:21:76:EF Certificate issuer: /CN=A91DBF0C/serialNumber=1548F1095F1E0F9B784B1B7FDD8F0E759C842DFE Certificate serial: 03 Authority key identifier: 15:48:F1:09:5F:1E:0F:9B:78:4B:1B:7F:DD:8F:0E:75:9C:84:2D:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/8A06894A8C8211EF85B3A572C4F9AE02.roa Signing time: Thu 17 Oct 2024 12:22:56 +0000 ROA not before: Thu 17 Oct 2024 12:22:56 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 45177 IP address blocks: 2401:c060:1000::/44 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.crl rsync://rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0C/serialNumber=1548F1095F1E0F9B784B1B7FDD8F0E759C842DFE Validity Not Before: Oct 17 12:22:56 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671101a0-4c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1c:92:af:3a:2a:cd:bd:87:b8:ed:e1:e3:f3: a2:eb:4f:87:50:d1:58:ab:4e:e5:cd:fe:7c:15:e9: 20:84:56:14:1f:6b:1d:8c:f8:d0:c5:dc:ee:6a:c3: c1:f1:3c:8a:46:1e:ac:e5:ff:65:81:ff:71:5f:4e: 90:08:09:3d:28:29:46:ec:89:ea:a0:b0:4a:b5:fb: cf:e9:e0:b2:a5:68:1f:13:68:c2:00:ee:35:e2:3a: 43:39:21:5b:45:a9:1b:50:01:09:ca:47:da:04:32: 92:4c:cd:fa:94:2e:48:30:40:7b:d3:70:ac:30:a6: 61:2c:0f:81:68:e1:d3:9c:d8:ae:03:3e:b1:4c:d4: 51:ac:1d:86:17:9b:a4:19:f4:cb:bc:99:9b:b0:ea: af:50:2a:e4:80:f3:7f:b7:f1:f0:fa:fb:e0:65:c4: 91:f5:5b:d7:c0:5f:01:a9:2e:15:66:75:25:ea:54: 54:1f:1d:80:1a:56:51:94:e7:a8:ed:14:d4:cd:3b: 5b:47:42:d7:5f:21:72:df:7d:50:10:05:ac:cb:ad: 03:08:3d:42:cd:52:79:7c:5e:a4:8a:48:6f:c1:40: a0:58:18:e0:2a:bd:9a:74:d5:7b:26:37:3a:a8:b5: b1:c3:40:2c:96:e4:4e:6c:4e:bc:49:2e:b2:e6:a3: f3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F3:61:5C:51:BE:AC:21:8E:2A:99:7B:0D:42:65:63:B0:21:76:EF X509v3 Authority Key Identifier: keyid:15:48:F1:09:5F:1E:0F:9B:78:4B:1B:7F:DD:8F:0E:75:9C:84:2D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FUjxCV8eD5t4Sxt_3Y8OdZyELf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/4A0FFA968C5B11EFA706757FC4F9AE02/8A06894A8C8211EF85B3A572C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:c060:1000::/44 Signature Algorithm: sha256WithRSAEncryption 16:36:87:11:41:36:92:fa:45:e7:a9:e8:51:3b:0a:97:25:06: a0:32:dd:23:69:60:4f:4e:af:3e:4c:44:86:7a:be:c3:61:7e: 2d:73:08:b3:4e:ce:6b:b9:6a:b6:56:f4:cb:2e:86:e8:3b:1f: 8b:25:41:9e:38:f1:eb:dc:99:8f:18:c1:3c:9a:89:96:b2:62: d1:5f:d4:fb:de:be:d8:a2:8e:3b:e6:4a:e4:8d:c6:3f:fc:07: fc:b5:2a:3f:c5:a0:44:7c:88:e4:4b:d5:00:dd:99:5e:33:33: 40:38:13:13:30:1d:d4:10:32:b5:f1:de:96:d8:7f:fe:eb:7a: d5:8b:24:86:91:bb:e1:61:f3:82:f6:b5:74:a9:ce:c7:08:38: 94:2e:76:c7:9b:fa:49:3e:91:69:4e:97:96:8c:b7:ee:39:70: 50:1e:bc:f4:49:dd:7f:92:19:47:3a:22:ae:42:7c:e4:52:2a: 8f:b7:94:87:0c:d9:cb:6d:a5:a0:da:a1:bc:d8:38:50:20:a9: 1d:dc:ae:3a:73:ba:37:18:0d:0b:ce:2f:e8:56:35:7b:9e:ae: 78:2f:fd:61:36:a4:24:bd:8b:20:30:79:6a:24:02:ef:5a:96: 66:e5:c3:61:a5:c4:d8:51:54:4b:9c:e6:3f:65:48:5e:08:ff: 83:ad:83:38 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkYwQzExMC8GA1UEBRMoMTU0OEYxMDk1RjFFMEY5Qjc4NEIxQjdGREQ4RjBFNzU5 Qzg0MkRGRTAeFw0yNDEwMTcxMjIyNTZaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTEwMWEwLTRjNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDHJKvOirNvYe47eHj86LrT4dQ0VirTuXN/nwV6SCEVhQfax2M+NDF3O5qw8Hx PIpGHqzl/2WB/3FfTpAICT0oKUbsieqgsEq1+8/p4LKlaB8TaMIA7jXiOkM5IVtF qRtQAQnKR9oEMpJMzfqULkgwQHvTcKwwpmEsD4Fo4dOc2K4DPrFM1FGsHYYXm6QZ 9Mu8mZuw6q9QKuSA83+38fD6++BlxJH1W9fAXwGpLhVmdSXqVFQfHYAaVlGU56jt FNTNO1tHQtdfIXLffVAQBazLrQMIPULNUnl8XqSKSG/BQKBYGOAqvZp01XsmNzqo tbHDQCyW5E5sTrxJLrLmo/M9AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU9fNhXFG+ rCGOKpl7DUJlY7Ahdu8wHwYDVR0jBBgwFoAUFUjxCV8eD5t4Sxt/3Y8OdZyELf4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCRjBDLzRBMEZGQTk2OEM1 QjExRUZBNzA2NzU3RkM0RjlBRTAyL0ZVanhDVjhlRDV0NFN4dF8zWThPZFp5RUxm NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlVqeENWOGVENXQ0U3h0XzNZOE9kWnlFTGY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwQy80QTBGRkE5NjhDNUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi84QTA2ODk0QThD ODIxMUVGODVCM0E1NzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHBCQBwGAQADANBgkqhkiG9w0BAQsFAAOCAQEAFjaHEUE2kvpF 56noUTsKlyUGoDLdI2lgT06vPkxEhnq+w2F+LXMIs07Oa7lqtlb0yy6G6DsfiyVB njjx69yZjxjBPJqJlrJi0V/U+96+2KKOO+ZK5I3GP/wH/LUqP8WgRHyI5EvVAN2Z XjMzQDgTEzAd1BAytfHelth//ut61YskhpG74WHzgva1dKnOxwg4lC52x5v6ST6R aU6Xloy37jlwUB689Endf5IZRzoirkJ85FIqj7eUhwzZy22loNqhvNg4UCCpHdyu OnO6NxgNC84v6FY1e56ueC/9YTakJL2LIDB5aiQC71qWZuXDYaXE2FFUS5zmP2VI Xgj/g62DOA== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org