$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/39D4D290CB8311E88E74AD83C4F9AE02.roa File: 39D4D290CB8311E88E74AD83C4F9AE02.roa (raw, json) Hash identifier: mkbx/bzyF+QWS8oqI8XyH1scPq9ynG9SZktcZG6GCNo= Subject key identifier: 90:BC:0B:0A:B1:28:B3:7B:22:7D:F0:40:16:68:F4:C1:43:A8:8E:E3 Certificate issuer: /CN=A91E46B1/serialNumber=8C7D6BA1F15509ACF3131582597D5CAD9E419B4F Certificate serial: 13D4 Authority key identifier: 8C:7D:6B:A1:F1:55:09:AC:F3:13:15:82:59:7D:5C:AD:9E:41:9B:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jH1rofFVCazzExWCWX1crZ5Bm08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/39D4D290CB8311E88E74AD83C4F9AE02.roa Signing time: Tue 18 Jun 2024 18:09:23 +0000 ROA not before: Tue 18 Jun 2024 18:09:23 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 23779 IP address blocks: 2402:af40::/32 maxlen: 38 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/jH1rofFVCazzExWCWX1crZ5Bm08.crl rsync://rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/jH1rofFVCazzExWCWX1crZ5Bm08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jH1rofFVCazzExWCWX1crZ5Bm08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5076 (0x13d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46B1/serialNumber=8C7D6BA1F15509ACF3131582597D5CAD9E419B4F Validity Not Before: Jun 18 18:09:23 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6671cd53-7d5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1a:57:42:2d:34:3f:87:fa:f4:57:03:2f:4a: 75:92:0d:c4:81:17:6e:ef:d4:b3:59:2b:45:bc:53: 7d:08:e0:51:4d:b3:3f:93:d4:9a:7a:db:bf:56:a8: 0e:6d:7b:e5:da:86:00:67:8a:72:3e:0a:c9:47:4d: a6:a7:60:78:ba:35:1a:37:39:77:16:dc:0a:8b:60: e9:82:91:ce:84:19:ca:0a:8b:c7:19:2a:ad:1d:4a: 53:9c:24:40:a2:ab:d8:38:25:74:44:8c:92:0e:b0: 2d:25:6b:4a:ae:59:0c:26:e8:1d:ea:85:e4:41:46: 37:7c:00:1b:e8:db:aa:3b:13:ac:93:2b:e2:90:0a: 64:44:bb:c9:ba:ec:34:24:04:48:c5:84:ac:44:b9: c6:a8:d4:3c:9c:3e:d0:7e:34:6d:64:0f:1f:04:73: 1e:b5:08:04:f5:f0:2f:97:95:25:5d:25:34:01:d8: 6e:be:e0:17:49:b7:2f:c3:a9:2c:ef:56:bd:88:79: d4:a8:d9:9e:f4:92:c8:27:a8:3e:dc:29:6d:7c:0d: 5b:60:9c:47:af:3a:8d:e3:c2:31:01:45:6f:bd:61: b7:47:55:d2:36:0f:b2:5f:67:3e:34:df:b4:63:7d: 71:1e:a5:05:5a:4d:45:3d:00:16:a3:0e:16:70:a6: 0e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:BC:0B:0A:B1:28:B3:7B:22:7D:F0:40:16:68:F4:C1:43:A8:8E:E3 X509v3 Authority Key Identifier: keyid:8C:7D:6B:A1:F1:55:09:AC:F3:13:15:82:59:7D:5C:AD:9E:41:9B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/jH1rofFVCazzExWCWX1crZ5Bm08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jH1rofFVCazzExWCWX1crZ5Bm08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/39D4D290CB8311E88E74AD83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:af40::/32 Signature Algorithm: sha256WithRSAEncryption 63:5b:e4:59:99:d0:94:91:51:a7:30:09:4d:8f:d4:ee:ea:33: 5c:ea:d3:14:21:62:db:36:c5:65:83:9f:0a:6b:2a:36:33:08: d5:b1:dd:fa:cb:95:50:4c:02:4b:fe:03:55:27:db:fb:84:01: e4:92:49:62:ce:ed:f7:fd:ea:52:31:a4:34:58:4f:eb:83:f6: c3:cb:8b:ba:8a:c2:f0:fc:4b:1d:6b:73:c1:6e:00:7e:71:0f: cf:43:49:86:76:6d:6a:26:2e:a4:ac:07:b7:e8:97:a9:58:8a: 7e:5b:6b:07:d6:07:b5:f1:fe:2b:ee:d5:6e:6a:f2:87:ec:93: cc:32:45:6a:f8:79:da:6a:cd:72:55:bc:62:c2:72:11:21:39: d7:a1:d8:1f:1e:ad:e4:d5:eb:a4:ba:c1:8e:8a:4c:63:f6:a9: c8:c4:44:7e:4c:bc:9b:67:94:d4:56:36:f8:d6:9a:aa:21:43: d7:2d:bd:ba:01:c0:36:95:9f:e9:be:fd:1c:a7:e2:8f:71:10: 1f:4c:31:e3:67:4e:a4:a7:a4:12:83:4f:0a:29:00:0e:32:f5: 40:aa:78:81:88:d5:5b:f2:f5:f3:d1:6d:19:39:aa:86:da:40: c5:cc:cd:46:c7:1a:12:8d:ef:e4:fa:56:af:a8:3f:91:f2:dd: 96:90:e2:07 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICE9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QjExMTAvBgNVBAUTKDhDN0Q2QkExRjE1NTA5QUNGMzEzMTU4MjU5N0Q1Q0FE OUU0MTlCNEYwHhcNMjQwNjE4MTgwOTIzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcxY2Q1My03ZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RpXQi00P4f69FcDL0p1kg3EgRdu79SzWStFvFN9COBRTbM/k9Saetu/VqgO bXvl2oYAZ4pyPgrJR02mp2B4ujUaNzl3FtwKi2DpgpHOhBnKCovHGSqtHUpTnCRA oqvYOCV0RIySDrAtJWtKrlkMJugd6oXkQUY3fAAb6NuqOxOskyvikApkRLvJuuw0 JARIxYSsRLnGqNQ8nD7QfjRtZA8fBHMetQgE9fAvl5UlXSU0AdhuvuAXSbcvw6ks 71a9iHnUqNme9JLIJ6g+3CltfA1bYJxHrzqN48IxAUVvvWG3R1XSNg+yX2c+NN+0 Y31xHqUFWk1FPQAWow4WcKYOzQIDAQABo4ICljCCApIwHQYDVR0OBBYEFJC8Cwqx KLN7In3wQBZo9MFDqI7jMB8GA1UdIwQYMBaAFIx9a6HxVQms8xMVgll9XK2eQZtP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZCMS9GOTBEOTQ3NjY3 OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9qSDFyb2ZGVkNhenpFeFdDV1gxY3JaNUJt MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pIMXJvZkZWQ2F6ekV4V0NXWDFjclo1Qm0wOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ2QjEvRjkwRDk0NzY2Nzk3MTFFOEE3ODkxQzQ4QzRGOUFFMDIvMzlENEQyOTBD QjgzMTFFODhFNzRBRDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAq9AMA0GCSqGSIb3DQEBCwUAA4IBAQBjW+RZmdCUkVGn MAlNj9Tu6jNc6tMUIWLbNsVlg58Kayo2MwjVsd36y5VQTAJL/gNVJ9v7hAHkkkli zu33/epSMaQ0WE/rg/bDy4u6isLw/Esda3PBbgB+cQ/PQ0mGdm1qJi6krAe36Jep WIp+W2sH1ge18f4r7tVuavKH7JPMMkVq+Hnaas1yVbxiwnIRITnXodgfHq3k1euk usGOikxj9qnIxER+TLybZ5TUVjb41pqqIUPXLb26AcA2lZ/pvv0cp+KPcRAfTDHj Z06kp6QSg08KKQAOMvVAqniBiNVb8vXz0W0ZOaqG2kDFzM1GxxoSje/k+lavqD+R 8t2WkOIH -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org