$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/C155660E492B11EF8EF0D04FC4F9AE02.roa File: C155660E492B11EF8EF0D04FC4F9AE02.roa (raw, json) Hash identifier: OVQ/CMJ4XqARrGXYEMgXeRxRPf3/PHnhFuc4e8fTgpg= Subject key identifier: 23:1B:B8:9A:A6:0A:38:16:9D:2C:ED:B6:84:CA:5E:90:07:9A:48:EC Certificate issuer: /CN=A91E0CF5/serialNumber=CBBBBB24B22B435D1CA493A9D63DCA779BE0796A Certificate serial: 02 Authority key identifier: CB:BB:BB:24:B2:2B:43:5D:1C:A4:93:A9:D6:3D:CA:77:9B:E0:79:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/C155660E492B11EF8EF0D04FC4F9AE02.roa Signing time: Tue 23 Jul 2024 19:42:55 +0000 ROA not before: Tue 23 Jul 2024 19:42:55 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135418 IP address blocks: 2001:df4:1ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5/serialNumber=CBBBBB24B22B435D1CA493A9D63DCA779BE0796A Validity Not Before: Jul 23 19:42:55 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66a007bf-10b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f2:37:4a:c3:2a:eb:5f:47:fe:3f:a7:6d:dc: 5d:24:71:d2:06:26:92:f4:0c:b9:1e:67:fd:91:71: dd:58:43:e9:45:c6:52:ba:e2:23:60:41:6a:5d:5d: a0:db:37:6d:79:20:49:7c:44:9a:96:4e:bf:76:d2: e8:de:77:0c:52:a2:e1:b9:29:e4:94:a4:7c:6d:96: c0:da:72:7a:8e:ae:b5:6c:29:33:65:ef:2c:cf:7e: 17:85:ba:1e:09:3f:01:d8:e6:a7:eb:0d:42:6e:c4: b9:9c:64:ba:56:5c:7d:51:19:8e:62:fe:75:06:ab: ef:d5:2f:64:8b:49:1c:2b:07:af:57:45:a0:a2:4d: 5f:42:5d:b4:7b:42:1a:0d:94:e9:6e:53:27:fc:97: 8f:30:62:57:68:bc:f8:91:07:74:e6:7a:84:d2:8f: 20:69:e6:64:2e:5d:2a:34:94:c8:fd:29:31:e8:a4: 11:11:82:3b:3d:27:ab:68:10:a0:dc:8f:7a:b5:27: cf:c8:07:14:83:06:b3:55:c6:fc:ea:48:43:0b:5b: 74:38:8c:15:c7:35:2a:7f:c5:9c:15:7b:b1:2b:10: 57:bc:a3:e2:9f:92:09:a9:b5:e3:7d:c6:e5:26:69: a4:c2:ff:64:f8:34:56:ff:f2:72:59:0a:e6:94:1c: 0b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1B:B8:9A:A6:0A:38:16:9D:2C:ED:B6:84:CA:5E:90:07:9A:48:EC X509v3 Authority Key Identifier: keyid:CB:BB:BB:24:B2:2B:43:5D:1C:A4:93:A9:D6:3D:CA:77:9B:E0:79:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/C155660E492B11EF8EF0D04FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:1ac0::/48 Signature Algorithm: sha256WithRSAEncryption c6:43:af:e6:99:ca:74:74:10:dc:57:ff:ac:c2:8c:03:9c:22: 9e:1e:0c:ad:3f:fd:9e:6f:95:e6:72:e4:c1:88:ad:5f:c4:e0: 44:8f:35:a5:cc:27:2f:e8:20:5c:12:68:6e:e9:b9:ec:26:81: 7d:0f:5a:25:48:41:5d:ab:2c:da:e4:3f:29:5e:b5:8f:a6:4e: 71:58:be:c8:7c:cd:80:a8:15:72:58:47:d1:f6:ab:ad:11:77: d8:0c:14:d9:b9:34:99:be:bf:91:ed:5d:06:f9:c5:6d:a3:0d: 70:68:4c:ac:86:87:34:28:01:65:e9:99:85:e8:c2:19:33:08: e5:71:7d:e4:b3:1e:7a:16:3b:de:67:24:c4:e3:47:4b:95:4b: 1b:5b:ba:92:c8:c9:9b:2b:ae:bc:15:a5:78:fa:be:d2:24:ed: 87:0c:9c:89:06:84:ef:bd:f7:5d:82:b3:51:a2:37:20:d8:ac: b3:13:0e:a4:7b:df:54:10:53:b5:e2:98:06:66:48:0a:e1:d7: cd:d0:d5:ba:d3:ce:f9:99:82:0c:4d:bc:d8:52:45:c7:7d:bf: 48:11:e3:f9:a8:d3:05:67:0b:d2:43:e3:36:00:ef:cd:14:35: 14:c9:3e:f2:a7:d0:52:1c:d8:d9:dc:69:4b:71:82:5f:c4:d9: bb:60:7a:2a -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MENGNTExMC8GA1UEBRMoQ0JCQkJCMjRCMjJCNDM1RDFDQTQ5M0E5RDYzRENBNzc5 QkUwNzk2QTAeFw0yNDA3MjMxOTQyNTVaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTAwN2JmLTEwYjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs8jdKwyrrX0f+P6dt3F0kcdIGJpL0DLkeZ/2Rcd1YQ+lFxlK64iNgQWpdXaDb N215IEl8RJqWTr920ujedwxSouG5KeSUpHxtlsDacnqOrrVsKTNl7yzPfheFuh4J PwHY5qfrDUJuxLmcZLpWXH1RGY5i/nUGq+/VL2SLSRwrB69XRaCiTV9CXbR7QhoN lOluUyf8l48wYldovPiRB3TmeoTSjyBp5mQuXSo0lMj9KTHopBERgjs9J6toEKDc j3q1J8/IBxSDBrNVxvzqSEMLW3Q4jBXHNSp/xZwVe7ErEFe8o+KfkgmpteN9xuUm aaTC/2T4NFb/8nJZCuaUHAtjAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUIxu4mqYK OBadLO22hMpekAeaSOwwHwYDVR0jBBgwFoAUy7u7JLIrQ10cpJOp1j3Kd5vgeWow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQ0Y1LzUzOEMxOTYwNDky QjExRUZCRTEwMTg0RkM0RjlBRTAyL3k3dTdKTElyUTEwY3BKT3AxajNLZDV2Z2VX by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTd1N0pMSXJRMTBjcEpPcDFqM0tkNXZnZVdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENGNS81MzhDMTk2MDQ5MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi9DMTU1NjYwRTQ5 MkIxMUVGOEVGMEQwNEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQawDANBgkqhkiG9w0BAQsFAAOCAQEAxkOv5pnKdHQQ 3Ff/rMKMA5winh4MrT/9nm+V5nLkwYitX8TgRI81pcwnL+ggXBJobum57CaBfQ9a JUhBXass2uQ/KV61j6ZOcVi+yHzNgKgVclhH0farrRF32AwU2bk0mb6/ke1dBvnF baMNcGhMrIaHNCgBZemZhejCGTMI5XF95LMeehY73mckxONHS5VLG1u6ksjJmyuu vBWlePq+0iTthwyciQaE7733XYKzUaI3INissxMOpHvfVBBTteKYBmZICuHXzdDV utPO+ZmCDE282FJFx32/SBHj+ajTBWcL0kPjNgDvzRQ1FMk+8qfQUhzY2dxpS3GC X8TZu2B6Kg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:30 2024 by rpki-client on console-fra.rpki-client.org