$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/792023A8E0DD11EE86DB926AC4F9AE02.roa File: 792023A8E0DD11EE86DB926AC4F9AE02.roa (raw, json) Hash identifier: gZAAhBS7lDX/ARKaEp+quX+YnSdkN0XwL2ShlYH1ilM= Subject key identifier: 44:38:CE:B9:BA:D5:32:7F:BE:1B:FE:49:09:E4:DF:87:39:E7:7D:23 Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 1219 Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/792023A8E0DD11EE86DB926AC4F9AE02.roa Signing time: Sat 20 Jul 2024 14:30:17 +0000 ROA not before: Sat 20 Jul 2024 14:30:17 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38255 IP address blocks: 2001:255::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4633 (0x1219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: Jul 20 14:30:17 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=669bc9f8-57af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:29:a3:b2:e0:98:32:16:35:b8:05:18:cd:47: 7d:d8:87:f8:a5:e5:8c:f2:1c:a0:78:2b:0a:0a:80: 82:c3:c9:fe:fc:fa:cb:2a:29:e5:c9:d6:c9:70:4c: 2e:09:28:32:ca:67:c0:dd:d8:78:95:dd:31:b8:b8: 34:ed:db:c8:81:2e:b9:bb:8d:fa:f2:78:a0:34:01: 2a:ab:fe:3a:4b:eb:23:38:f3:3a:99:c1:49:28:6a: 22:38:24:15:95:66:53:e6:80:3d:b6:ce:3d:7d:1e: e5:b1:ca:37:ce:ec:0e:07:30:9e:0d:86:d5:e5:53: 94:9b:c7:43:86:20:d5:87:ef:38:21:ca:56:09:02: 65:b2:de:2d:98:dc:b1:6f:b6:7c:58:3a:4a:e0:27: ed:d1:4d:fb:f5:97:35:d0:7d:92:24:dd:d8:ad:c3: 95:31:df:47:a2:61:85:11:e3:fa:71:92:ba:9d:30: fd:02:a8:e3:99:8b:6e:f6:67:dc:ba:33:c2:84:72: 86:29:3c:0b:11:5c:e2:be:61:ba:9c:20:ad:45:00: fa:b5:a7:9e:a5:80:51:3c:5a:ca:f1:c0:90:62:53: 54:29:cd:81:90:87:d3:5b:66:cb:8e:7b:f7:e4:f2: d2:84:31:60:ef:b3:4c:35:7c:83:ec:27:ba:56:a7: f5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:38:CE:B9:BA:D5:32:7F:BE:1B:FE:49:09:E4:DF:87:39:E7:7D:23 X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/792023A8E0DD11EE86DB926AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:255::/32 Signature Algorithm: sha256WithRSAEncryption 34:7c:bb:de:3f:d7:93:c2:5b:f5:77:8c:ac:bc:ea:12:f2:0f: 6c:e2:c2:df:4f:d4:6a:c0:99:cf:bf:a3:23:d1:bf:87:38:12: b9:75:44:c7:22:64:89:9a:96:eb:6b:5a:e7:62:9f:83:27:c4: bf:41:37:43:84:02:a6:6c:dd:15:ce:7d:67:d0:8d:84:a8:2e: 29:d1:d0:d2:a1:1a:b5:52:80:5c:19:e0:d7:e1:c2:f8:3d:51: 63:1e:a5:f8:61:3c:b2:0d:88:58:6e:66:fe:5c:f2:b4:57:ea: 0c:01:ce:e6:90:43:e7:e2:89:27:aa:00:dc:f7:3d:f1:80:b2: 8b:7f:94:71:6d:2c:87:e6:e2:98:07:f1:4b:06:4f:5d:e7:91: 54:3b:2b:2a:27:d5:0c:df:56:11:6c:18:a9:8c:7e:99:41:78: 82:28:17:2a:35:ac:19:60:b2:bc:ca:71:e5:80:80:62:f8:c6: 8e:eb:0a:c2:86:f3:cf:0b:9e:94:a6:7b:3e:52:7e:77:b7:6d: 4e:63:7e:71:b9:3c:73:22:b9:b7:69:8d:7e:9b:ec:0c:8c:d0: 4f:9d:30:e5:f2:66:7b:b2:7d:cb:da:e7:72:1d:6f:ca:0a:9f: 1c:2f:7a:70:3d:db:23:c9:d9:66:08:1f:c4:bd:96:dc:7c:bc: 35:b3:76:de -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICEhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjQwNzIwMTQzMDE3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjliYzlmOC01N2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4CmjsuCYMhY1uAUYzUd92If4peWM8hygeCsKCoCCw8n+/PrLKinlydbJcEwu CSgyymfA3dh4ld0xuLg07dvIgS65u4368nigNAEqq/46S+sjOPM6mcFJKGoiOCQV lWZT5oA9ts49fR7lsco3zuwOBzCeDYbV5VOUm8dDhiDVh+84IcpWCQJlst4tmNyx b7Z8WDpK4Cft0U379Zc10H2SJN3YrcOVMd9HomGFEeP6cZK6nTD9AqjjmYtu9mfc ujPChHKGKTwLEVzivmG6nCCtRQD6taeepYBRPFrK8cCQYlNUKc2BkIfTW2bLjnv3 5PLShDFg77NMNXyD7Ce6Vqf1aQIDAQABo4ICljCCApIwHQYDVR0OBBYEFEQ4zrm6 1TJ/vhv+SQnk34c5530jMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTVENjEvMEM2QTBDOUUxRDc5MTFFMjg3OUUzOEM1MDhCMDJDRDIvNzkyMDIzQThF MEREMTFFRTg2REI5MjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAgAQJVMA0GCSqGSIb3DQEBCwUAA4IBAQA0fLveP9eTwlv1 d4ysvOoS8g9s4sLfT9RqwJnPv6Mj0b+HOBK5dUTHImSJmpbra1rnYp+DJ8S/QTdD hAKmbN0Vzn1n0I2EqC4p0dDSoRq1UoBcGeDX4cL4PVFjHqX4YTyyDYhYbmb+XPK0 V+oMAc7mkEPn4oknqgDc9z3xgLKLf5RxbSyH5uKYB/FLBk9d55FUOysqJ9UM31YR bBipjH6ZQXiCKBcqNawZYLK8ynHlgIBi+MaO6wrChvPPC56Upns+Un53t21OY35x uTxzIrm3aY1+m+wMjNBPnTDl8mZ7sn3L2udyHW/KCp8cL3pwPdsjydlmCB/EvZbc fLw1s3be -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:04 2024 by rpki-client on console-fra.rpki-client.org