$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/F6668BF41FF311EFB0A97A82C4F9AE02.roa File: F6668BF41FF311EFB0A97A82C4F9AE02.roa (raw, json) Hash identifier: aCxLNGUfAZ6CNYlr7962E8YpM0oFXazWi/2qqzUqx5o= Subject key identifier: 61:78:AB:BE:5C:61:BA:AC:2A:62:6B:57:8F:8E:8B:52:90:A7:E9:2B Certificate issuer: /CN=A91E57A9/serialNumber=F7F06369399D9935F5FB59FD58571541A581CC63 Certificate serial: 02 Authority key identifier: F7:F0:63:69:39:9D:99:35:F5:FB:59:FD:58:57:15:41:A5:81:CC:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9_BjaTmdmTX1-1n9WFcVQaWBzGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/F6668BF41FF311EFB0A97A82C4F9AE02.roa Signing time: Sat 01 Jun 2024 08:50:14 +0000 ROA not before: Sat 01 Jun 2024 08:50:14 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138327 IP address blocks: 2001:df3:de40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/9_BjaTmdmTX1-1n9WFcVQaWBzGM.crl rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/9_BjaTmdmTX1-1n9WFcVQaWBzGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9_BjaTmdmTX1-1n9WFcVQaWBzGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57A9/serialNumber=F7F06369399D9935F5FB59FD58571541A581CC63 Validity Not Before: Jun 1 08:50:14 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665ae0c6-8178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a2:c2:3a:a4:a5:e7:2f:4c:77:5b:54:4f:c8: 6a:8d:9f:3e:d7:df:b0:82:26:45:f3:44:d6:93:af: 9d:0d:10:ec:8c:1a:6b:7b:c8:36:b3:9e:0e:77:d2: 5f:1f:4d:7b:f2:ec:8c:d4:f5:0d:9e:a0:75:b4:61: e7:54:29:f0:cc:53:68:50:d1:85:a5:23:8d:32:86: c3:dc:0b:82:ef:9c:f2:32:5c:d9:d8:6d:68:c4:8e: 83:23:34:ba:a1:99:8f:08:67:3a:8d:6e:2b:a8:06: 36:3c:9d:24:aa:4c:c6:01:7c:a2:86:a5:16:8a:f5: c4:94:4f:72:a7:5d:76:0a:81:77:5c:0e:a5:47:35: b9:b2:33:28:c3:e8:7e:7e:f2:09:9f:39:7a:f9:09: 62:f4:47:29:e6:bd:af:4e:75:05:06:b7:17:2d:61: 53:9d:20:5e:25:10:6a:7d:e6:f9:c4:8f:b2:05:97: 85:78:00:2d:b7:f3:7a:c4:e1:79:a9:70:e0:59:3f: 64:58:e9:bd:93:c0:ae:a4:71:26:47:ed:95:b6:8a: 7f:84:50:4b:63:59:a9:f9:c5:8d:b6:21:fd:61:0c: b1:28:5b:2f:42:c4:ca:2a:74:b9:f3:a9:6e:0e:40: 0c:73:b7:e9:8d:d1:c1:3c:fe:51:ae:ed:4a:3a:d0: 2f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:78:AB:BE:5C:61:BA:AC:2A:62:6B:57:8F:8E:8B:52:90:A7:E9:2B X509v3 Authority Key Identifier: keyid:F7:F0:63:69:39:9D:99:35:F5:FB:59:FD:58:57:15:41:A5:81:CC:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/9_BjaTmdmTX1-1n9WFcVQaWBzGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9_BjaTmdmTX1-1n9WFcVQaWBzGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/F6668BF41FF311EFB0A97A82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:de40::/48 Signature Algorithm: sha256WithRSAEncryption 3a:da:55:b7:15:4e:99:71:6a:52:59:83:fb:d8:d0:6f:c2:ac: eb:9e:41:52:52:97:5b:a6:75:db:b1:8e:4d:e3:0a:2b:d6:45: 6c:24:d4:82:85:5d:9a:0b:0a:48:ef:10:c6:1e:30:29:bd:4a: fc:c1:b8:fa:90:e7:f2:90:76:86:7f:29:be:f6:a5:0b:46:78: 1c:88:45:b2:09:c4:dd:cd:cd:a1:62:6b:91:56:f3:2a:e7:69: e2:e1:04:b3:b0:14:f6:f5:c5:15:06:a5:cb:61:84:64:ef:f9: 7e:84:8e:5c:c8:70:75:d1:e1:61:8d:86:31:1e:1c:22:4c:cf: 68:50:c8:0c:01:c4:87:46:e3:2a:19:81:34:4a:f6:80:50:f8: 72:0a:58:b6:b8:0b:9f:54:f1:d9:64:cb:9b:c6:d5:bd:b6:85: 88:f9:99:fc:86:63:10:f6:a6:7b:e4:12:20:88:32:bd:d6:1c: ac:54:21:1b:ad:d4:03:0a:f2:06:f4:62:11:07:67:d5:4c:7a: b3:38:a6:d3:02:9e:d0:4c:74:2e:c9:1d:d7:eb:01:ef:69:3c: 63:a8:e6:77:ef:ac:33:38:34:ae:61:35:6b:8b:88:71:3a:e6: f8:96:65:a8:f0:54:48:0a:82:cc:cf:be:35:75:ab:b0:e7:76: 2d:0e:3c:d1 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTdBOTExMC8GA1UEBRMoRjdGMDYzNjkzOTlEOTkzNUY1RkI1OUZENTg1NzE1NDFB NTgxQ0M2MzAeFw0yNDA2MDEwODUwMTRaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NWFlMGM2LTgxNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgosI6pKXnL0x3W1RPyGqNnz7X37CCJkXzRNaTr50NEOyMGmt7yDazng530l8f TXvy7IzU9Q2eoHW0YedUKfDMU2hQ0YWlI40yhsPcC4LvnPIyXNnYbWjEjoMjNLqh mY8IZzqNbiuoBjY8nSSqTMYBfKKGpRaK9cSUT3KnXXYKgXdcDqVHNbmyMyjD6H5+ 8gmfOXr5CWL0Rynmva9OdQUGtxctYVOdIF4lEGp95vnEj7IFl4V4AC2383rE4Xmp cOBZP2RY6b2TwK6kcSZH7ZW2in+EUEtjWan5xY22If1hDLEoWy9CxMoqdLnzqW4O QAxzt+mN0cE8/lGu7Uo60C9xAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUYXirvlxh uqwqYmtXj46LUpCn6SswHwYDVR0jBBgwFoAU9/BjaTmdmTX1+1n9WFcVQaWBzGMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1N0E5Lzg2MjQ2MzQ4MUZG MzExRUZBM0ZCMkM4MUM0RjlBRTAyLzlfQmphVG1kbVRYMS0xbjlXRmNWUWFXQnpH TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOV9CamFUbWRtVFgxLTFuOVdGY1ZRYVdCekdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdBOS84NjI0NjM0ODFGRjMxMUVGQTNGQjJDODFDNEY5QUUwMi9GNjY2OEJGNDFG RjMxMUVGQjBBOTdBODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfPeQDANBgkqhkiG9w0BAQsFAAOCAQEAOtpVtxVOmXFq UlmD+9jQb8Ks655BUlKXW6Z127GOTeMKK9ZFbCTUgoVdmgsKSO8Qxh4wKb1K/MG4 +pDn8pB2hn8pvvalC0Z4HIhFsgnE3c3NoWJrkVbzKudp4uEEs7AU9vXFFQaly2GE ZO/5foSOXMhwddHhYY2GMR4cIkzPaFDIDAHEh0bjKhmBNEr2gFD4cgpYtrgLn1Tx 2WTLm8bVvbaFiPmZ/IZjEPame+QSIIgyvdYcrFQhG63UAwryBvRiEQdn1Ux6szim 0wKe0Ex0Lskd1+sB72k8Y6jmd++sMzg0rmE1a4uIcTrm+JZlqPBUSAqCzM++NXWr sOd2LQ480Q== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:33 2024 by rpki-client on console-fra.rpki-client.org