$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4C798C5AD5DD11EEA5B1C711C4F9AE02.roa File: 4C798C5AD5DD11EEA5B1C711C4F9AE02.roa (raw, json) Hash identifier: plzQ9RKkqXntAuDKJVzv/zPtJNdUEYF+YoPSopaX7Gw= Subject key identifier: C8:A1:DD:0D:A9:8F:62:FC:36:E6:C6:C7:B3:CB:FF:50:B8:6A:D2:BA Certificate issuer: /CN=A91DC068/serialNumber=AA36DEAA0B488D743D3096A374D3CEC3034E69DA Certificate serial: 06 Authority key identifier: AA:36:DE:AA:0B:48:8D:74:3D:30:96:A3:74:D3:CE:C3:03:4E:69:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4C798C5AD5DD11EEA5B1C711C4F9AE02.roa Signing time: Wed 28 Feb 2024 02:01:34 +0000 ROA not before: Wed 28 Feb 2024 02:01:34 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 134245 IP address blocks: 2001:df3:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.crl rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068/serialNumber=AA36DEAA0B488D743D3096A374D3CEC3034E69DA Validity Not Before: Feb 28 02:01:34 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65de93fe-9ce5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:48:c5:8e:0c:0b:a7:6d:53:9f:8a:0f:9c:78: fc:b0:5f:e7:92:04:8e:70:5a:3c:1e:2d:19:2e:06: ad:7e:9e:63:d7:e8:c1:f8:14:80:66:07:d4:9d:7e: 45:7f:ee:e8:ba:93:76:66:c2:b8:22:5e:7e:d8:06: de:2b:12:52:a6:ef:bc:1e:70:97:64:c5:15:80:60: 77:05:51:3e:79:6a:65:2d:d5:67:35:90:89:a3:08: 81:d3:88:10:9a:43:b7:b3:e3:68:cc:cd:b2:8b:1e: 3f:f1:02:df:25:52:89:ea:e7:58:58:4b:73:78:9c: 04:fb:5f:f9:47:20:96:84:11:6a:b4:25:65:1a:6a: 18:a9:36:29:00:ee:2e:60:dc:1c:c8:d6:0f:bc:1a: 10:be:a3:ff:43:51:3d:99:33:e6:a7:8b:e3:fc:60: 3b:cf:04:06:c2:d6:7b:67:8b:b1:27:c6:af:81:42: 7e:88:80:57:5c:20:43:50:6d:5b:33:69:34:fa:e4: 96:88:c0:6d:ba:a6:b7:ad:ae:71:cc:63:d2:c3:02: 96:34:89:0b:7e:61:1b:29:bd:38:7f:25:d0:be:00: 06:58:00:e5:b4:cc:b2:bd:71:f3:d8:c2:69:e3:53: 0a:54:9a:81:ec:00:c6:c6:ad:c6:9e:5d:6e:0e:f2: dc:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A1:DD:0D:A9:8F:62:FC:36:E6:C6:C7:B3:CB:FF:50:B8:6A:D2:BA X509v3 Authority Key Identifier: keyid:AA:36:DE:AA:0B:48:8D:74:3D:30:96:A3:74:D3:CE:C3:03:4E:69:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4C798C5AD5DD11EEA5B1C711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 33:b8:a1:e3:7f:59:40:ce:e4:92:d9:ad:d7:4d:d3:4f:e0:98: 2f:97:8a:48:b0:ec:55:4c:f8:2b:73:33:7b:fe:62:51:f2:50: 0b:42:0b:bc:08:ca:09:07:d5:88:68:9c:06:1f:72:96:42:c3: 85:d7:75:0f:a2:43:5d:a0:33:e0:45:3d:eb:84:93:e7:c1:b0: 52:b6:ac:52:d0:f1:52:dc:67:c4:b6:f2:91:5c:13:8b:20:8d: 76:4d:92:66:d6:72:28:68:6f:aa:4a:a1:f0:c7:de:7a:8a:a4: bf:bb:bf:8a:d7:de:d6:72:25:72:6a:ef:53:6b:a4:48:be:ab: d0:07:f6:53:ec:6b:45:9c:9f:0d:3e:93:91:ef:79:ab:8b:48: 31:92:d7:9f:16:64:e1:6d:48:bd:01:8c:a4:1b:76:14:b0:07: cd:a4:5e:f4:5c:ae:ac:25:8f:cb:a5:c2:f9:84:0f:b3:45:73: db:e5:4d:e3:0a:ec:a4:99:98:da:6d:33:ae:e8:41:40:55:c8: 2f:6d:0b:52:60:a3:f0:20:e3:d4:36:0f:37:60:24:b0:82:67: 82:c3:97:de:87:aa:25:ab:1c:fc:eb:02:47:05:34:bc:c4:a6: cc:53:3b:48:4c:dc:40:a1:eb:11:08:41:ec:e6:51:8b:74:d4: 3b:b9:ff:52 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzA2ODExMC8GA1UEBRMoQUEzNkRFQUEwQjQ4OEQ3NDNEMzA5NkEzNzREM0NFQzMw MzRFNjlEQTAeFw0yNDAyMjgwMjAxMzRaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZGU5M2ZlLTljZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuSMWODAunbVOfig+cePywX+eSBI5wWjweLRkuBq1+nmPX6MH4FIBmB9SdfkV/ 7ui6k3ZmwrgiXn7YBt4rElKm77wecJdkxRWAYHcFUT55amUt1Wc1kImjCIHTiBCa Q7ez42jMzbKLHj/xAt8lUonq51hYS3N4nAT7X/lHIJaEEWq0JWUaahipNikA7i5g 3BzI1g+8GhC+o/9DUT2ZM+ani+P8YDvPBAbC1ntni7Enxq+BQn6IgFdcIENQbVsz aTT65JaIwG26pretrnHMY9LDApY0iQt+YRspvTh/JdC+AAZYAOW0zLK9cfPYwmnj UwpUmoHsAMbGrcaeXW4O8txnAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUyKHdDamP Yvw25sbHs8v/ULhq0rowHwYDVR0jBBgwFoAUqjbeqgtIjXQ9MJajdNPOwwNOadow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDMDY4Lzc4MUU3REM0RDUx NjExRUVCMzVFNkE2MEM0RjlBRTAyL3FqYmVxZ3RJalhROU1KYWpkTlBPd3dOT2Fk by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWpiZXFndElqWFE5TUphamROUE93d05PYWRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzA2OC83ODFFN0RDNEQ1MTYxMUVFQjM1RTZBNjBDNEY5QUUwMi80Qzc5OEM1QUQ1 REQxMUVFQTVCMUM3MTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfOAwDANBgkqhkiG9w0BAQsFAAOCAQEAM7ih439ZQM7k ktmt103TT+CYL5eKSLDsVUz4K3Mze/5iUfJQC0ILvAjKCQfViGicBh9ylkLDhdd1 D6JDXaAz4EU964ST58GwUrasUtDxUtxnxLbykVwTiyCNdk2SZtZyKGhvqkqh8Mfe eoqkv7u/itfe1nIlcmrvU2ukSL6r0Af2U+xrRZyfDT6Tke95q4tIMZLXnxZk4W1I vQGMpBt2FLAHzaRe9FyurCWPy6XC+YQPs0Vz2+VN4wrspJmY2m0zruhBQFXIL20L UmCj8CDj1DYPN2AksIJngsOX3oeqJasc/OsCRwU0vMSmzFM7SEzcQKHrEQhB7OZR i3TUO7n/Ug== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:18 2024 by rpki-client on console-ams.rpki-client.org