$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/7AE3D13C62A111ED80F96E47C4F9AE02.roa File: 7AE3D13C62A111ED80F96E47C4F9AE02.roa (raw, json) Hash identifier: /dh2BYyOs2T7d9tTc6SvzUzA1l6MPCZkZgm7SbaZhYs= Subject key identifier: 4A:A5:F0:11:D9:D1:51:5B:71:4F:6E:C9:B1:DC:F7:C7:A2:B4:DB:06 Certificate issuer: /CN=A91DEDFD/serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85 Certificate serial: 0806 Authority key identifier: F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/7AE3D13C62A111ED80F96E47C4F9AE02.roa Signing time: Sun 02 Jun 2024 22:29:43 +0000 ROA not before: Sun 02 Jun 2024 22:29:43 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 18041 IP address blocks: 2404:c140:2596::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2054 (0x806) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEDFD/serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85 Validity Not Before: Jun 2 22:29:43 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665cf257-7ca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f0:cb:44:c0:27:bc:9a:68:a4:56:52:be:92: 8a:6c:2a:42:99:f6:3b:0e:24:57:b4:b5:6d:97:d4: 38:b7:74:14:53:f9:c8:9e:77:67:6a:98:2a:d0:ae: 3b:a3:04:c6:77:e5:a4:15:46:70:54:9f:43:04:9f: 85:26:c4:86:c9:40:93:63:d3:0f:09:f0:30:54:d4: e2:b7:86:c2:32:e5:b1:f7:0b:48:aa:98:f1:70:6a: 5a:fb:15:e4:14:d9:60:37:d2:7b:af:8d:6f:4c:13: e8:d9:be:61:1d:4a:d1:f6:64:79:43:a4:8b:d4:55: db:49:31:00:a8:a5:97:20:81:e6:2d:ea:db:19:10: 33:e2:cf:40:f8:6a:80:be:38:92:c2:e3:7d:3a:65: d4:e8:65:91:95:71:31:ef:a0:e5:cb:ec:b4:86:a3: 69:e8:8e:3b:34:2b:16:ab:8d:dc:ae:9a:03:42:4c: b7:79:0d:3f:9e:df:af:a5:ee:cb:04:59:f9:17:ce: 1e:f1:eb:b2:1d:7c:90:a2:6e:48:3e:9e:72:24:09: cb:1d:24:61:a9:50:fa:89:28:c8:26:cc:1b:09:84: b3:29:f1:38:d1:1e:c2:02:c4:cd:72:55:72:2b:3b: ad:de:24:0f:c4:fe:8d:6e:ee:71:cb:e8:c2:df:6e: 0f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A5:F0:11:D9:D1:51:5B:71:4F:6E:C9:B1:DC:F7:C7:A2:B4:DB:06 X509v3 Authority Key Identifier: keyid:F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/7AE3D13C62A111ED80F96E47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:c140:2596::/48 Signature Algorithm: sha256WithRSAEncryption 5e:b2:4b:37:21:16:86:96:0a:f3:bb:0c:49:ff:5c:3a:be:5b: e6:29:b4:b2:53:ff:10:84:a3:5d:69:14:dc:4f:ca:9d:e6:ac: 46:28:45:99:88:72:04:b9:1d:2e:d6:7b:ab:9f:5d:36:d1:f8: 7e:30:ee:e5:0e:3a:b1:a3:7b:bc:52:d6:1d:e9:29:6e:95:19: be:2c:d8:9c:79:de:2f:2c:03:6d:5b:4d:21:5e:5b:fd:5b:5f: e0:76:c5:3c:36:b6:64:d5:5c:40:35:2c:98:f4:61:69:ec:44: 97:50:10:00:fc:0a:51:fe:75:62:92:63:f1:93:88:65:d6:5d: 03:99:f5:ed:ba:82:f6:9e:68:15:0c:69:c8:25:d3:f1:e8:14: 35:5a:2e:a9:fc:1b:c7:39:e9:e3:de:70:c7:23:a4:11:68:65: 2c:4d:de:90:ce:77:d5:e8:84:cb:48:5d:c7:77:74:89:da:46: 35:56:9b:42:2e:b8:e0:08:9c:dd:38:32:f6:60:b8:17:cc:3a: bc:63:3e:7a:0f:7d:f4:a7:32:3d:05:9f:e9:a3:47:39:df:9e: ab:01:90:17:30:02:d3:1b:6f:25:39:3c:31:e3:31:57:2c:0e: a1:eb:ae:f1:ae:a8:3f:44:6c:54:81:74:e5:6d:a2:41:4e:8e: 15:cd:14:85 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVERkQxMTAvBgNVBAUTKEY0NTMyMUQ4Nzg1Qjg4OTdENUE4MzRCOTBFQUI5MTBD NTU5MDlEODUwHhcNMjQwNjAyMjIyOTQzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjZjI1Ny03Y2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fDLRMAnvJpopFZSvpKKbCpCmfY7DiRXtLVtl9Q4t3QUU/nInndnapgq0K47 owTGd+WkFUZwVJ9DBJ+FJsSGyUCTY9MPCfAwVNTit4bCMuWx9wtIqpjxcGpa+xXk FNlgN9J7r41vTBPo2b5hHUrR9mR5Q6SL1FXbSTEAqKWXIIHmLerbGRAz4s9A+GqA vjiSwuN9OmXU6GWRlXEx76Dly+y0hqNp6I47NCsWq43crpoDQky3eQ0/nt+vpe7L BFn5F84e8euyHXyQom5IPp5yJAnLHSRhqVD6iSjIJswbCYSzKfE40R7CAsTNclVy Kzut3iQPxP6Nbu5xy+jC324PSQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEql8BHZ 0VFbcU9uybHc98eitNsGMB8GA1UdIwQYMBaAFPRTIdh4W4iX1ag0uQ6rkQxVkJ2F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERURGRC81NDUzNkIzRUJD ODgxMUVBODhFRjNENDlDNEY5QUUwMi85Rk1oMkhoYmlKZlZxRFM1RHF1UkRGV1Fu WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGTWgySGhiaUpmVnFEUzVEcXVSREZXUW5ZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVERkQvNTQ1MzZCM0VCQzg4MTFFQTg4RUYzRDQ5QzRGOUFFMDIvN0FFM0QxM0M2 MkExMTFFRDgwRjk2RTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBMFAJZYwDQYJKoZIhvcNAQELBQADggEBAF6ySzchFoaW CvO7DEn/XDq+W+YptLJT/xCEo11pFNxPyp3mrEYoRZmIcgS5HS7We6ufXTbR+H4w 7uUOOrGje7xS1h3pKW6VGb4s2Jx53i8sA21bTSFeW/1bX+B2xTw2tmTVXEA1LJj0 YWnsRJdQEAD8ClH+dWKSY/GTiGXWXQOZ9e26gvaeaBUMacgl0/HoFDVaLqn8G8c5 6ePecMcjpBFoZSxN3pDOd9XohMtIXcd3dInaRjVWm0IuuOAInN04MvZguBfMOrxj PnoPffSnMj0Fn+mjRznfnqsBkBcwAtMbbyU5PDHjMVcsDqHrrvGuqD9EbFSBdOVt okFOjhXNFIU= -----END CERTIFICATE-----Generated at Wed Nov 20 21:35:03 2024 by rpki-client on console-ams.rpki-client.org