$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/3C46738AD49D11EDAD9A672FC4F9AE02.roa File: 3C46738AD49D11EDAD9A672FC4F9AE02.roa (raw, json) Hash identifier: t5s3Ybo931LYAhYI/Vvo5cem0MCHg347gdOGZERuiPw= Subject key identifier: CF:36:8E:1C:38:A1:CE:2B:7E:EB:6E:89:85:31:CE:94:29:AF:93:B1 Certificate issuer: /CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Certificate serial: 02E6 Authority key identifier: 25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/3C46738AD49D11EDAD9A672FC4F9AE02.roa Signing time: Thu 07 Nov 2024 01:14:44 +0000 ROA not before: Thu 07 Nov 2024 01:14:44 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 8075 IP address blocks: 2407:30c0:184::/48 maxlen: 48 2407:30c0:185::/48 maxlen: 48 2407:30c0:186::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 742 (0x2e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Validity Not Before: Nov 7 01:14:44 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672c1484-5564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bf:41:34:e7:0b:d0:e9:cc:5a:02:09:99:b4: 04:15:b7:9f:d4:18:4f:b1:dd:b0:10:3b:88:8f:16: cb:35:9a:db:7e:e2:e3:1c:09:24:a9:e6:b4:fd:cf: 14:92:bb:0b:8b:de:98:59:3f:06:3b:6d:cb:2b:11: f2:2f:cd:b2:11:8e:ee:d4:8e:eb:fa:af:68:16:1a: f1:67:ee:11:8e:0f:1e:53:a2:a0:2d:76:23:05:43: 7e:fc:8d:6e:74:4d:c6:34:c6:90:ec:56:51:4f:0a: 67:4b:88:35:aa:c9:4a:3b:48:98:64:4b:28:71:dd: b4:08:a7:2b:83:c3:8c:0a:9e:db:2e:70:c2:0e:29: ac:13:60:f7:f7:d4:19:0b:69:1e:11:8f:85:6f:e8: 47:9c:b5:e7:c8:c1:8d:1e:93:e3:91:25:80:90:8d: 27:ea:b9:d2:aa:91:60:88:bb:88:51:8f:87:48:d8: 66:a3:20:dc:7e:9b:ec:00:03:93:41:8b:86:48:56: af:14:a8:51:8e:0a:cd:31:72:48:81:0b:28:7c:51: 6f:10:57:f3:42:63:c7:a5:b1:9a:81:3a:1e:f4:99: 01:3c:a0:8f:8a:dc:03:92:7a:c9:0d:da:5e:a3:ca: 82:ef:96:1a:7b:85:3b:41:b3:6b:52:e0:bc:f1:5e: c3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:36:8E:1C:38:A1:CE:2B:7E:EB:6E:89:85:31:CE:94:29:AF:93:B1 X509v3 Authority Key Identifier: keyid:25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/3C46738AD49D11EDAD9A672FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:30c0:184::-2407:30c0:186:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption ba:96:d1:12:7e:0e:d2:95:3a:bb:2a:5c:47:06:63:03:8f:95: 80:1b:ea:52:d8:0a:6d:d0:fa:29:0e:6c:32:d7:86:5d:10:09: 04:bf:bb:14:e6:f0:de:c3:5d:9a:0b:9b:fc:bb:11:08:74:f1: c0:89:b0:40:a6:b0:7c:60:cf:85:ad:a5:fa:ef:78:0f:20:c1: 2b:85:8d:20:14:90:0c:c1:8c:db:a7:a5:35:86:ce:1a:40:24: 2b:cb:f5:ee:7d:37:8b:58:d1:dd:d2:94:d9:ab:03:08:76:07: 96:d6:b8:be:ff:d8:68:9e:b7:c0:7a:84:95:35:15:5f:35:e3: 7b:02:d7:0c:ed:0e:4a:eb:83:49:9b:47:4e:21:b8:da:4f:13: 0b:68:19:ee:d0:3e:93:72:8d:e4:0b:2e:a0:36:eb:7f:e5:f1: 82:87:35:8b:3a:28:ed:31:f0:dd:aa:ca:e1:4e:4f:a5:5b:f0: 3d:c9:e6:2f:78:d7:35:04:26:00:d3:3b:e4:59:9d:0f:80:bf: c5:bc:82:1b:fe:14:10:8b:48:d7:2e:bd:85:e7:3d:a8:d0:1e: 88:fc:8f:0a:89:4c:ce:f4:99:7e:8a:f1:12:ba:c7:08:fc:e1: f3:5a:a7:7c:c7:ae:9c:37:4e:a5:16:34:17:e1:d8:20:73:fb: 8f:0c:bf:29 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYzMDQxMTAvBgNVBAUTKDI1OTZBRUQwQzBDQjNCQ0ZFMzE4MDRCMjM5Q0Y0NjU3 NzEyRTI3NkEwHhcNMjQxMTA3MDExNDQ0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjMTQ4NC01NTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb9BNOcL0OnMWgIJmbQEFbef1BhPsd2wEDuIjxbLNZrbfuLjHAkkqea0/c8U krsLi96YWT8GO23LKxHyL82yEY7u1I7r+q9oFhrxZ+4Rjg8eU6KgLXYjBUN+/I1u dE3GNMaQ7FZRTwpnS4g1qslKO0iYZEsocd20CKcrg8OMCp7bLnDCDimsE2D399QZ C2keEY+Fb+hHnLXnyMGNHpPjkSWAkI0n6rnSqpFgiLuIUY+HSNhmoyDcfpvsAAOT QYuGSFavFKhRjgrNMXJIgQsofFFvEFfzQmPHpbGagToe9JkBPKCPitwDknrJDdpe o8qC75Yae4U7QbNrUuC88V7DBQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFM82jhw4 oc4rfutuiYUxzpQpr5OxMB8GA1UdIwQYMBaAFCWWrtDAyzvP4xgEsjnPRldxLidq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjMwNC8xOUU0REYwNkRC MDcxMUVDOTkyMkQ3MEZDNEY5QUUwMi9KWmF1ME1ETE84X2pHQVN5T2M5R1YzRXVK Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0paYXUwTURMTzhfakdBU3lPYzlHVjNFdUoyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYzMDQvMTlFNERGMDZEQjA3MTFFQzk5MjJENzBGQzRGOUFFMDIvM0M0NjczOEFE NDlEMTFFREFEOUE2NzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHAiQHMMABhAMHACQHMMABhjANBgkqhkiG9w0BAQsFAAOC AQEAupbREn4O0pU6uypcRwZjA4+VgBvqUtgKbdD6KQ5sMteGXRAJBL+7FObw3sNd mgub/LsRCHTxwImwQKawfGDPha2l+u94DyDBK4WNIBSQDMGM26elNYbOGkAkK8v1 7n03i1jR3dKU2asDCHYHlta4vv/YaJ63wHqElTUVXzXjewLXDO0OSuuDSZtHTiG4 2k8TC2gZ7tA+k3KN5AsuoDbrf+Xxgoc1izoo7THw3arK4U5PpVvwPcnmL3jXNQQm ANM75FmdD4C/xbyCG/4UEItI1y69hec9qNAeiPyPColMzvSZforxErrHCPzh81qn fMeunDdOpRY0F+HYIHP7jwy/KQ== -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:53 2024 by rpki-client on console-ams.rpki-client.org