$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/822FC22091F711EFADE11266C4F9AE02/388A91E0985A11EFA6912B0EC4F9AE02.roa File: 388A91E0985A11EFA6912B0EC4F9AE02.roa (raw, json) Hash identifier: JjgqoANmsusAqQnFWaBmauCJuNgw+HQl/ZcBjvaDkfs= Subject key identifier: 63:25:FC:6F:A7:42:B2:0D:D0:F2:85:D4:03:11:5F:95:A3:D6:EE:04 Certificate issuer: /CN=A91E554A/serialNumber=E6758B9A375982C2C4D1C7649A31E4CF27D5A680 Certificate serial: 08 Authority key identifier: E6:75:8B:9A:37:59:82:C2:C4:D1:C7:64:9A:31:E4:CF:27:D5:A6:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nWLmjdZgsLE0cdkmjHkzyfVpoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/822FC22091F711EFADE11266C4F9AE02/388A91E0985A11EFA6912B0EC4F9AE02.roa Signing time: Fri 01 Nov 2024 14:04:34 +0000 ROA not before: Fri 01 Nov 2024 14:04:34 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153377 IP address blocks: 2001:df4:7bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/822FC22091F711EFADE11266C4F9AE02/5nWLmjdZgsLE0cdkmjHkzyfVpoA.crl rsync://rpki.apnic.net/member_repository/A91E554A/822FC22091F711EFADE11266C4F9AE02/5nWLmjdZgsLE0cdkmjHkzyfVpoA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nWLmjdZgsLE0cdkmjHkzyfVpoA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A/serialNumber=E6758B9A375982C2C4D1C7649A31E4CF27D5A680 Validity Not Before: Nov 1 14:04:34 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6724dff1-1bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:84:87:36:57:1d:a5:a4:cf:25:fa:69:9f:22: 12:7d:4b:ec:0e:49:01:a1:ca:78:3b:6c:40:54:aa: 12:47:59:ef:fb:7b:54:85:d6:df:6e:0a:49:f9:6c: 4e:25:ef:c9:05:03:29:16:f2:2e:08:7d:dd:ec:c2: 3d:34:f4:ef:0e:81:24:3f:6f:a4:6b:eb:87:8f:6c: 2f:be:81:fa:44:52:59:f2:fb:51:e4:3e:a1:53:fa: 92:e5:eb:ff:ba:1b:68:38:b6:55:e5:a1:d7:36:fb: b1:cd:5e:1e:88:11:33:2b:f1:3b:af:aa:a5:3a:2d: 26:b7:8d:ec:21:5a:37:85:6e:ff:08:a7:1d:c2:6b: 26:12:74:bf:38:09:77:ca:60:a4:75:96:ec:dc:6d: b4:bd:19:19:ec:79:ff:df:98:9f:38:7a:2b:a5:c8: 95:27:03:e1:ca:00:62:f0:ca:7a:5d:01:da:f6:ca: 77:c5:b2:ad:4e:85:e9:59:b4:09:6c:6e:4d:3d:8e: db:8f:4c:3c:91:12:24:15:72:92:cb:3e:94:7f:a0: f1:0e:2f:aa:9b:04:5e:25:4b:fd:8a:b1:e7:de:05: 99:2b:bc:4e:a5:ab:7b:f6:2d:ca:d4:93:bd:49:7a: 88:92:14:18:7b:50:ba:b1:6b:4d:7d:f9:37:17:42: 84:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:25:FC:6F:A7:42:B2:0D:D0:F2:85:D4:03:11:5F:95:A3:D6:EE:04 X509v3 Authority Key Identifier: keyid:E6:75:8B:9A:37:59:82:C2:C4:D1:C7:64:9A:31:E4:CF:27:D5:A6:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/822FC22091F711EFADE11266C4F9AE02/5nWLmjdZgsLE0cdkmjHkzyfVpoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nWLmjdZgsLE0cdkmjHkzyfVpoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/822FC22091F711EFADE11266C4F9AE02/388A91E0985A11EFA6912B0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:7bc0::/48 Signature Algorithm: sha256WithRSAEncryption 23:be:c9:6e:6c:89:33:87:7e:54:51:ba:b0:71:56:c0:17:be: 01:08:55:67:87:35:f9:f4:a4:61:d8:ba:49:fb:b8:29:5a:89: 75:a4:d1:47:d9:d8:07:e2:ce:1a:4e:e1:ac:d9:61:16:68:17: 44:dd:ff:7a:e4:bf:83:00:0b:e0:ce:8f:a3:d6:15:67:ba:09: a1:16:8b:44:08:7e:ae:f7:52:03:d2:09:e1:ef:92:0f:d1:66: 23:93:87:38:91:0c:19:34:55:38:88:27:52:c9:b4:21:05:1a: 2e:11:71:bb:21:73:b6:73:ad:03:33:38:0f:07:6f:fc:28:7f: 37:cf:04:59:b0:0b:53:b4:82:f3:74:14:bb:91:92:53:ba:c7: b6:84:e6:5d:c8:cd:69:72:53:09:4c:1b:64:a9:d5:e7:4b:fa: 55:5b:b9:96:d6:9b:67:6a:d8:77:9d:f4:9a:37:ad:91:fa:5d: dc:2c:73:51:75:9a:68:23:6e:c5:41:1b:7a:83:d0:7d:91:9b: db:ee:96:e7:89:42:58:cc:8b:3d:53:91:b7:10:fc:0b:ad:82: b1:71:bc:4d:cc:14:40:c5:ba:bd:e2:36:54:a3:f9:0f:b1:30: 72:55:db:67:5e:26:2c:5e:56:b4:c8:56:91:b6:6f:23:2f:32: a2:a5:0f:33 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTU0QTExMC8GA1UEBRMoRTY3NThCOUEzNzU5ODJDMkM0RDFDNzY0OUEzMUU0Q0Yy N0Q1QTY4MDAeFw0yNDExMDExNDA0MzRaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjRkZmYxLTFiYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+hIc2Vx2lpM8l+mmfIhJ9S+wOSQGhyng7bEBUqhJHWe/7e1SF1t9uCkn5bE4l 78kFAykW8i4Ifd3swj009O8OgSQ/b6Rr64ePbC++gfpEUlny+1HkPqFT+pLl6/+6 G2g4tlXlodc2+7HNXh6IETMr8TuvqqU6LSa3jewhWjeFbv8Ipx3CayYSdL84CXfK YKR1luzcbbS9GRnsef/fmJ84eiulyJUnA+HKAGLwynpdAdr2ynfFsq1OhelZtAls bk09jtuPTDyREiQVcpLLPpR/oPEOL6qbBF4lS/2KsefeBZkrvE6lq3v2LcrUk71J eoiSFBh7ULqxa019+TcXQoSFAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUYyX8b6dC sg3Q8oXUAxFflaPW7gQwHwYDVR0jBBgwFoAU5nWLmjdZgsLE0cdkmjHkzyfVpoAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1NTRBLzgyMkZDMjIwOTFG NzExRUZBREUxMTI2NkM0RjlBRTAyLzVuV0xtamRaZ3NMRTBjZGttakhrenlmVnBv QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNW5XTG1qZFpnc0xFMGNka21qSGt6eWZWcG9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS84MjJGQzIyMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi8zODhBOTFFMDk4 NUExMUVGQTY5MTJCMEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfR7wDANBgkqhkiG9w0BAQsFAAOCAQEAI77JbmyJM4d+ VFG6sHFWwBe+AQhVZ4c1+fSkYdi6Sfu4KVqJdaTRR9nYB+LOGk7hrNlhFmgXRN3/ euS/gwAL4M6Po9YVZ7oJoRaLRAh+rvdSA9IJ4e+SD9FmI5OHOJEMGTRVOIgnUsm0 IQUaLhFxuyFztnOtAzM4Dwdv/Ch/N88EWbALU7SC83QUu5GSU7rHtoTmXcjNaXJT CUwbZKnV50v6VVu5ltabZ2rYd530mjetkfpd3CxzUXWaaCNuxUEbeoPQfZGb2+6W 54lCWMyLPVORtxD8C62CsXG8TcwUQMW6veI2VKP5D7EwclXbZ14mLF5WtMhWkbZv Iy8yoqUPMw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org