$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa File: 4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa (raw, json) Hash identifier: XO1DlFSQ5Y0Zmkfs51mq8oCy55AogtMN5LSdsP8sXrY= Subject key identifier: F7:AA:FC:B8:E0:AD:FA:3B:4F:F2:01:E5:0D:29:33:DA:23:59:98:59 Certificate issuer: /CN=A91DC068/serialNumber=AA36DEAA0B488D743D3096A374D3CEC3034E69DA Certificate serial: 07 Authority key identifier: AA:36:DE:AA:0B:48:8D:74:3D:30:96:A3:74:D3:CE:C3:03:4E:69:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa Signing time: Wed 28 Feb 2024 02:01:35 +0000 ROA not before: Wed 28 Feb 2024 02:01:35 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152590 IP address blocks: 2001:df3:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.crl rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068/serialNumber=AA36DEAA0B488D743D3096A374D3CEC3034E69DA Validity Not Before: Feb 28 02:01:35 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65de93ff-a538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:06:43:da:c6:87:98:07:9f:0d:4c:c7:26:7f: d8:1b:92:3c:6e:76:3d:c5:d7:6c:7f:3e:a3:42:60: 57:df:8b:0e:a0:37:c0:0b:c2:66:71:f6:e8:2d:2a: 72:44:db:39:15:b5:d3:b2:4a:e8:82:f8:db:8b:a1: b7:72:7d:ea:40:c1:4f:47:1c:1c:da:6c:f9:72:89: 73:a3:63:93:51:e6:82:82:2f:ef:64:f2:b2:95:dd: da:b2:49:ae:ed:7e:20:65:a0:a7:e4:6a:2b:b2:3a: c7:c4:3e:2f:89:fe:53:cd:e7:15:31:cb:e2:0c:aa: 96:58:b5:06:dc:44:c5:aa:74:d8:e2:09:3d:dc:c4: 7f:71:fd:65:1b:ae:79:a5:6d:7e:ef:95:e9:71:e8: fb:25:a1:7c:41:ef:b3:32:e6:31:b0:d0:4f:30:0d: b7:f8:9c:66:3a:40:de:3f:48:ac:1a:1f:4c:9f:7f: 44:ae:fe:3c:79:6b:b9:92:9a:d2:88:87:07:06:4f: 08:51:c4:55:17:95:89:06:37:07:2f:f4:2d:8d:72: 11:2d:72:df:3d:b6:40:d8:98:46:64:b6:97:25:81: 37:0a:58:a8:db:b4:0a:79:07:52:52:c8:7e:58:ee: 87:2c:20:01:aa:46:d4:93:46:95:b7:ce:83:87:10: 98:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:AA:FC:B8:E0:AD:FA:3B:4F:F2:01:E5:0D:29:33:DA:23:59:98:59 X509v3 Authority Key Identifier: keyid:AA:36:DE:AA:0B:48:8D:74:3D:30:96:A3:74:D3:CE:C3:03:4E:69:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 65:51:74:d2:fb:98:03:68:34:51:1c:fd:79:a0:0c:90:e7:45: 9b:4b:9b:4d:e0:1e:97:f2:26:74:29:8e:98:34:5c:43:9e:56: 5c:c7:18:50:e4:f5:17:36:d6:73:27:a6:d3:83:e2:4e:c8:9e: 87:aa:93:09:4d:b3:38:4d:6a:54:09:6f:5b:56:ad:ba:37:12: a3:3d:5d:fb:40:77:cb:e9:c5:03:d9:a0:18:b7:1a:7e:98:47: 77:26:bb:7e:47:39:1e:81:87:5c:4b:3f:1a:7a:a9:ce:90:f9: 0a:9b:fd:cc:5c:62:38:e6:fb:d8:71:46:71:b9:a4:9e:22:bd: 4d:01:46:de:6e:01:34:c7:7e:c5:a4:d2:78:d7:74:dd:9c:93: 0e:e8:ab:71:bf:50:67:03:06:4a:b6:fe:42:24:19:f8:d5:ae: 3e:d0:07:ff:53:dd:d8:3e:20:4f:23:ee:80:d4:3b:b5:10:aa: 72:df:01:d0:b8:1f:bc:bc:d8:38:32:8c:fc:e1:80:c2:4e:8c: b3:8d:62:43:14:25:16:6e:ed:f3:1a:9c:10:0b:46:b6:23:67: dd:7a:0a:8b:8c:ed:d2:ba:db:81:ff:55:80:22:9d:05:b1:1e: 62:6d:f9:f0:c4:fc:86:d8:cd:34:af:b1:d0:25:97:31:5c:a7: 12:91:2c:cd -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzA2ODExMC8GA1UEBRMoQUEzNkRFQUEwQjQ4OEQ3NDNEMzA5NkEzNzREM0NFQzMw MzRFNjlEQTAeFw0yNDAyMjgwMjAxMzVaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZGU5M2ZmLWE1MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1BkPaxoeYB58NTMcmf9gbkjxudj3F12x/PqNCYFffiw6gN8ALwmZx9ugtKnJE 2zkVtdOySuiC+NuLobdyfepAwU9HHBzabPlyiXOjY5NR5oKCL+9k8rKV3dqySa7t fiBloKfkaiuyOsfEPi+J/lPN5xUxy+IMqpZYtQbcRMWqdNjiCT3cxH9x/WUbrnml bX7vlelx6PsloXxB77My5jGw0E8wDbf4nGY6QN4/SKwaH0yff0Su/jx5a7mSmtKI hwcGTwhRxFUXlYkGNwcv9C2NchEtct89tkDYmEZktpclgTcKWKjbtAp5B1JSyH5Y 7ocsIAGqRtSTRpW3zoOHEJhPAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU96r8uOCt +jtP8gHlDSkz2iNZmFkwHwYDVR0jBBgwFoAUqjbeqgtIjXQ9MJajdNPOwwNOadow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDMDY4Lzc4MUU3REM0RDUx NjExRUVCMzVFNkE2MEM0RjlBRTAyL3FqYmVxZ3RJalhROU1KYWpkTlBPd3dOT2Fk by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWpiZXFndElqWFE5TUphamROUE93d05PYWRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzA2OC83ODFFN0RDNEQ1MTYxMUVFQjM1RTZBNjBDNEY5QUUwMi80Q0ZGRjBBNkQ1 REQxMUVFQTVCMUM3MTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfOAwDANBgkqhkiG9w0BAQsFAAOCAQEAZVF00vuYA2g0 URz9eaAMkOdFm0ubTeAel/ImdCmOmDRcQ55WXMcYUOT1FzbWcyem04PiTsieh6qT CU2zOE1qVAlvW1atujcSoz1d+0B3y+nFA9mgGLcafphHdya7fkc5HoGHXEs/Gnqp zpD5Cpv9zFxiOOb72HFGcbmkniK9TQFG3m4BNMd+xaTSeNd03ZyTDuircb9QZwMG Srb+QiQZ+NWuPtAH/1Pd2D4gTyPugNQ7tRCqct8B0LgfvLzYODKM/OGAwk6Ms41i QxQlFm7t8xqcEAtGtiNn3XoKi4zt0rrbgf9VgCKdBbEeYm358MT8htjNNK+x0CWX MVynEpEszQ== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:18 2024 by rpki-client on console-ams.rpki-client.org