$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/DDBFCC3E74D011EDBF68684EC4F9AE02.roa File: DDBFCC3E74D011EDBF68684EC4F9AE02.roa (raw, json) Hash identifier: xC5IbrGlwZQjRObBvjWbmr7ez3H9Rd+jV1MSu1MCVh4= Subject key identifier: D2:1B:EC:3C:A3:B9:3B:62:CE:0F:76:4A:5C:E4:3D:60:86:D9:33:42 Certificate issuer: /CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Certificate serial: 02E4 Authority key identifier: 25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/DDBFCC3E74D011EDBF68684EC4F9AE02.roa Signing time: Thu 07 Nov 2024 01:14:42 +0000 ROA not before: Thu 07 Nov 2024 01:14:42 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 31898 IP address blocks: 2407:30c0:200::/48 maxlen: 48 2407:30c0:201::/48 maxlen: 48 2407:30c0:202::/48 maxlen: 48 2407:30c0:203::/48 maxlen: 48 2407:30c0:204::/48 maxlen: 48 2407:30c0:205::/48 maxlen: 48 2407:30c0:206::/48 maxlen: 48 2407:30c0:207::/48 maxlen: 48 2407:30c0:208::/48 maxlen: 48 2407:30c0:209::/48 maxlen: 48 2407:30c0:20a::/48 maxlen: 48 2407:30c0:20b::/48 maxlen: 48 2407:30c0:20c::/48 maxlen: 48 2407:30c0:20d::/48 maxlen: 48 2407:30c0:20e::/48 maxlen: 48 2407:30c0:20f::/48 maxlen: 48 2407:30c0:211::/48 maxlen: 48 2407:30c0:212::/48 maxlen: 48 2407:30c0:213::/48 maxlen: 48 2407:30c0:214::/48 maxlen: 48 2407:30c0:215::/48 maxlen: 48 2407:30c0:216::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 740 (0x2e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Validity Not Before: Nov 7 01:14:42 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672c1482-60b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4c:0c:96:e1:d4:ac:38:ad:fe:16:f9:4c:fd: 78:d1:de:2b:bd:05:7b:32:71:8f:14:07:1d:4b:e1: ae:21:15:82:da:b6:d4:28:73:a9:63:f5:25:c6:a2: 99:9f:24:4e:4e:02:99:81:98:b5:bf:20:0f:51:40: d0:be:be:e3:43:77:5c:0d:3e:bf:47:59:7f:f5:32: ac:e1:c7:5b:00:58:ac:a4:09:da:4c:75:cb:0c:f6: 78:7d:57:d8:aa:84:4b:aa:13:1c:c6:84:d3:7e:96: ba:a9:d0:bd:c6:2f:b3:ec:00:f5:ec:80:d4:06:64: 68:c8:80:cc:6a:2f:77:3c:0e:0a:45:f7:3d:97:71: d5:02:d5:d0:02:4d:ea:1f:1f:20:cf:8f:91:b0:e5: 7d:50:d1:f0:f7:9d:8b:a0:8b:82:f4:9f:3e:d3:bc: 20:8a:a3:15:a9:3c:07:7a:28:f3:4e:08:c8:40:be: ba:dd:11:57:0a:1f:9f:ce:17:4b:4f:af:08:1b:36: 51:a1:78:6a:c1:3e:e3:d7:cb:f5:0e:b5:cd:c1:84: b3:df:1a:83:f7:d1:02:28:e6:b9:bb:e0:e8:ab:15: de:9c:0f:d6:62:da:3a:2f:a4:b3:9c:f9:b5:a8:6f: a5:00:10:43:07:15:86:3a:5d:2c:c7:a0:3c:60:c2: b2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:1B:EC:3C:A3:B9:3B:62:CE:0F:76:4A:5C:E4:3D:60:86:D9:33:42 X509v3 Authority Key Identifier: keyid:25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/DDBFCC3E74D011EDBF68684EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:30c0:200::/44 2407:30c0:211::-2407:30c0:216:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 6f:7e:52:32:ba:01:8d:e3:3b:84:d3:9a:35:3c:51:84:e7:46: bb:02:b5:c2:5a:6e:4f:88:dd:db:6d:c3:1b:e5:15:35:50:72: d7:89:6f:e3:c5:4c:b0:ce:0b:f4:cd:08:c3:94:fc:21:d1:d7: 8b:b1:2d:ad:b1:a5:26:7c:91:0e:52:62:fc:5b:97:21:11:5e: f6:2d:b9:5f:03:93:7b:66:6a:a5:af:30:2f:72:87:99:cf:08: 3c:a6:f3:bb:89:9a:da:6c:72:72:4e:d4:b0:ae:67:9d:ae:a8: 38:a0:cb:93:8f:c2:e0:40:65:ba:b1:eb:57:50:d9:3b:fa:84: 8c:5b:bf:4a:7b:11:30:0e:65:39:ea:d8:6b:e8:1f:06:cb:03: ef:09:40:0a:5d:a4:ad:00:7b:f1:0b:50:ab:9b:45:b8:75:c9: c9:96:03:a1:a9:87:0b:2c:db:c7:d4:fb:5a:83:eb:21:bc:9e: ac:f5:28:6c:40:5b:14:e2:59:9f:5a:01:d5:a3:c5:e7:da:0e: 77:82:78:8c:8f:b6:1d:84:13:86:09:06:20:fe:43:ff:33:97: ee:c2:27:0f:7b:42:af:cc:f7:a7:00:b1:3f:70:d3:98:10:ef: 24:a7:93:ca:2b:52:79:b5:f2:ea:e6:f4:e4:91:06:3e:33:cd: 07:e9:5c:43 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYzMDQxMTAvBgNVBAUTKDI1OTZBRUQwQzBDQjNCQ0ZFMzE4MDRCMjM5Q0Y0NjU3 NzEyRTI3NkEwHhcNMjQxMTA3MDExNDQyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjMTQ4Mi02MGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kwMluHUrDit/hb5TP140d4rvQV7MnGPFAcdS+GuIRWC2rbUKHOpY/UlxqKZ nyROTgKZgZi1vyAPUUDQvr7jQ3dcDT6/R1l/9TKs4cdbAFispAnaTHXLDPZ4fVfY qoRLqhMcxoTTfpa6qdC9xi+z7AD17IDUBmRoyIDMai93PA4KRfc9l3HVAtXQAk3q Hx8gz4+RsOV9UNHw952LoIuC9J8+07wgiqMVqTwHeijzTgjIQL663RFXCh+fzhdL T68IGzZRoXhqwT7j18v1DrXNwYSz3xqD99ECKOa5u+DoqxXenA/WYto6L6SznPm1 qG+lABBDBxWGOl0sx6A8YMKy2wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNIb7Dyj uTtizg92SlzkPWCG2TNCMB8GA1UdIwQYMBaAFCWWrtDAyzvP4xgEsjnPRldxLidq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjMwNC8xOUU0REYwNkRC MDcxMUVDOTkyMkQ3MEZDNEY5QUUwMi9KWmF1ME1ETE84X2pHQVN5T2M5R1YzRXVK Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0paYXUwTURMTzhfakdBU3lPYzlHVjNFdUoyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYzMDQvMTlFNERGMDZEQjA3MTFFQzk5MjJENzBGQzRGOUFFMDIvRERCRkNDM0U3 NEQwMTFFREJGNjg2ODRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMCMEAgACMB0DBwQkBzDAAgAwEgMHACQHMMACEQMHACQHMMACFjANBgkqhkiG 9w0BAQsFAAOCAQEAb35SMroBjeM7hNOaNTxRhOdGuwK1wlpuT4jd223DG+UVNVBy 14lv48VMsM4L9M0Iw5T8IdHXi7EtrbGlJnyRDlJi/FuXIRFe9i25XwOTe2Zqpa8w L3KHmc8IPKbzu4ma2mxyck7UsK5nna6oOKDLk4/C4EBlurHrV1DZO/qEjFu/SnsR MA5lOerYa+gfBssD7wlACl2krQB78QtQq5tFuHXJyZYDoamHCyzbx9T7WoPrIbye rPUobEBbFOJZn1oB1aPF59oOd4J4jI+2HYQThgkGIP5D/zOX7sInD3tCr8z3pwCx P3DTmBDvJKeTyitSebXy6ub05JEGPjPNB+lcQw== -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:07 2024 by rpki-client on console-fra.rpki-client.org