$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa File: 386FD4FCB37D11EF8D6EAF63C4F9AE02.roa (raw, json) Hash identifier: aJEyHw65stDKmv/A9AlKIYdtN6qUu7eSq0Nk49wiYVM= Subject key identifier: B6:5A:1F:BC:7C:25:C5:E2:9E:A1:32:5E:92:8D:8E:98:89:81:E7:8F Certificate issuer: /CN=A91DF233/serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Certificate serial: 02 Authority key identifier: B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa Signing time: Fri 06 Dec 2024 02:53:07 +0000 ROA not before: Fri 06 Dec 2024 02:53:07 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 151660 IP address blocks: 2401:dc20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233/serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Validity Not Before: Dec 6 02:53:07 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67526713-202e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ff:8a:00:dd:ea:1a:86:06:e8:43:d3:7d:14: 2b:eb:e6:97:a1:09:3f:6d:7b:a2:76:22:e8:0b:60: 7c:16:8c:f0:91:a3:f5:de:46:1f:49:91:90:7a:94: 74:fa:15:f1:f1:f3:d2:04:19:5f:78:74:26:17:fe: 36:51:82:0c:60:58:4f:9f:fb:69:1c:86:1a:46:cb: 29:e5:13:ae:f9:c2:d0:25:f1:41:fc:b7:24:3f:23: 9f:e2:72:3a:f5:81:d8:b1:a8:d7:0e:26:08:d8:9f: 29:26:2b:f2:84:c4:be:30:6e:7e:28:64:2c:73:9e: 0b:1b:b2:1d:35:d6:e3:c1:31:96:04:72:f1:40:8a: d7:06:29:a9:17:6c:f5:4f:34:72:49:6a:44:70:64: 6e:be:70:77:c0:13:b8:f5:8c:8a:ed:16:e7:23:ed: 48:b7:19:b4:3f:0a:dd:d9:cd:d1:24:37:9c:89:91: 65:60:de:29:d9:77:63:d9:a0:4a:32:df:af:25:7d: 7d:31:1b:c5:38:92:d9:fa:a6:11:cc:fa:b7:6b:6d: 8a:34:8b:ad:bb:6f:3f:c1:00:23:67:e2:30:00:43: b2:23:1d:58:9f:7f:af:79:ed:93:c0:dd:dc:78:6e: 23:7d:b1:57:7b:d8:83:84:8c:19:4c:b3:27:ec:52: ca:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:5A:1F:BC:7C:25:C5:E2:9E:A1:32:5E:92:8D:8E:98:89:81:E7:8F X509v3 Authority Key Identifier: keyid:B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:dc20::/32 Signature Algorithm: sha256WithRSAEncryption 2f:83:44:0d:cf:52:f9:a4:99:05:ec:32:8c:68:71:a8:55:f7: ed:dc:aa:fc:03:80:1d:e2:42:b2:5c:6b:09:2c:fd:34:2b:b9: 29:e1:73:c5:29:14:1d:49:f6:f2:b9:98:6d:8d:1e:96:81:22: 6c:39:c0:b9:30:ea:60:c3:04:43:20:c7:6d:46:59:22:04:80: e3:ae:97:1a:91:5d:f5:79:9f:d2:24:23:a9:3f:0b:89:4a:63: fe:f7:d7:29:2b:a5:f3:f3:53:71:86:43:94:7d:65:a2:6c:97: c6:5b:f7:5b:ba:2c:3c:3d:1a:ac:1d:e4:21:b8:90:1a:ab:7c: 34:61:4b:89:4f:46:68:ae:61:39:c4:da:bf:20:93:2e:e1:e3: 86:b9:dc:a3:85:2f:2f:13:a4:32:38:e5:16:f7:30:08:3b:bf: ff:85:fa:0a:58:4b:c8:11:83:61:02:54:2e:df:81:6f:28:9a: 12:f8:a7:e6:fa:26:02:c8:9a:aa:ec:e2:35:ac:57:12:a4:b3: d1:ca:e4:8b:49:4c:36:3e:ee:21:81:41:85:82:d4:61:d3:c3: 36:69:d9:17:01:54:23:dc:03:44:7e:0b:5f:c6:97:e7:37:05: 64:ce:5f:18:38:42:09:c4:ac:73:76:17:f7:49:1d:e1:63:a6: 50:25:e3:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjIzMzExMC8GA1UEBRMoQjFCQTE4NjhCQTdDRUI5NENERDY0RjA1NzQxMzlBMDFB NTBCOTBENTAeFw0yNDEyMDYwMjUzMDdaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTI2NzEzLTIwMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG/4oA3eoahgboQ9N9FCvr5pehCT9te6J2IugLYHwWjPCRo/XeRh9JkZB6lHT6 FfHx89IEGV94dCYX/jZRggxgWE+f+2kchhpGyynlE675wtAl8UH8tyQ/I5/icjr1 gdixqNcOJgjYnykmK/KExL4wbn4oZCxzngsbsh011uPBMZYEcvFAitcGKakXbPVP NHJJakRwZG6+cHfAE7j1jIrtFucj7Ui3GbQ/Ct3ZzdEkN5yJkWVg3inZd2PZoEoy 368lfX0xG8U4ktn6phHM+rdrbYo0i627bz/BACNn4jAAQ7IjHViff6957ZPA3dx4 biN9sVd72IOEjBlMsyfsUsqZAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUtlofvHwl xeKeoTJeko2OmImB548wHwYDVR0jBBgwFoAUsboYaLp865TN1k8FdBOaAaULkNUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMjMzLzExNEU3REJBQjM3 ODExRUY4ODMyMkIwRkM0RjlBRTAyL3Nib1lhTHA4NjVUTjFrOEZkQk9hQWFVTGtO VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2JvWWFMcDg2NVROMWs4RmRCT2FBYVVMa05VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjIzMy8xMTRFN0RCQUIzNzgxMUVGODgzMjJCMEZDNEY5QUUwMi8zODZGRDRGQ0Iz N0QxMUVGOEQ2RUFGNjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB3CAwDQYJKoZIhvcNAQELBQADggEBAC+DRA3PUvmkmQXs MoxocahV9+3cqvwDgB3iQrJcawks/TQruSnhc8UpFB1J9vK5mG2NHpaBImw5wLkw 6mDDBEMgx21GWSIEgOOulxqRXfV5n9IkI6k/C4lKY/731ykrpfPzU3GGQ5R9ZaJs l8Zb91u6LDw9Gqwd5CG4kBqrfDRhS4lPRmiuYTnE2r8gky7h44a53KOFLy8TpDI4 5Rb3MAg7v/+F+gpYS8gRg2ECVC7fgW8omhL4p+b6JgLImqrs4jWsVxKks9HK5ItJ TDY+7iGBQYWC1GHTwzZp2RcBVCPcA0R+C1/Gl+c3BWTOXxg4QgnErHN2F/dJHeFj plAl40s= -----END CERTIFICATE-----Generated at Fri Dec 27 08:43:52 2024 by rpki-client on console-fra.rpki-client.org