$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/312AAAD4BB7E11E9AFB49C42C4F9AE02.roa File: 312AAAD4BB7E11E9AFB49C42C4F9AE02.roa (raw, json) Hash identifier: k6jn/HtB7ksK0AYue3Gi2YlXKybN47y+89NwaYeQS2Y= Subject key identifier: 06:AD:40:08:CD:4A:66:41:12:CB:97:5B:55:C4:0C:EB:F6:86:C9:AB Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 352E Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/312AAAD4BB7E11E9AFB49C42C4F9AE02.roa Signing time: Mon 16 Sep 2024 14:51:11 +0000 ROA not before: Mon 16 Sep 2024 14:51:11 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45177 IP address blocks: 2403:cc00:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13614 (0x352e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 16 14:51:11 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e845df-ebcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4c:e4:e8:cc:04:49:fb:b1:50:1c:74:69:85: 68:e2:9f:4e:d9:cf:72:c2:52:e7:11:35:6c:59:25: 4f:6a:a0:f9:b1:72:76:95:ee:fe:19:78:c9:f6:ad: 0d:dc:97:57:17:de:11:7a:cb:7e:9b:cc:b5:9a:75: d8:df:00:d8:a8:99:03:0d:ef:47:f0:8c:14:7b:29: b4:a0:71:ea:a7:e7:97:35:7a:fe:ae:be:9e:31:c0: 91:b7:c7:b5:a9:81:f2:5f:f6:ff:04:09:c0:b5:ee: 89:dc:f7:4f:cb:48:8a:f1:61:96:77:30:58:fb:1d: b5:f2:9c:a5:da:f8:86:9f:7d:0b:58:45:b6:d6:0e: a0:c5:c5:1e:43:94:70:b1:ef:30:c9:7c:6e:a3:c1: 9e:75:b7:c9:e9:6d:e3:e4:2f:21:90:23:cb:ac:04: 8c:e1:c2:60:16:a5:bb:59:80:b8:68:d1:e4:83:b3: a0:a6:1c:e9:b7:72:77:b9:89:0d:fe:61:53:6f:f0: 63:78:81:82:14:52:58:35:a4:b7:22:89:d9:2f:3b: c9:b0:4f:6c:6d:13:1c:bb:0c:37:22:26:b5:b7:0a: 90:2e:3c:60:10:85:02:b4:6e:b1:0a:64:4d:fd:34: f7:45:b9:ba:f7:fc:7b:77:47:72:3d:fa:37:b4:97: 64:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:AD:40:08:CD:4A:66:41:12:CB:97:5B:55:C4:0C:EB:F6:86:C9:AB X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/312AAAD4BB7E11E9AFB49C42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cc00:4000::/36 Signature Algorithm: sha256WithRSAEncryption 8f:24:57:b8:a6:fc:97:04:d8:21:6a:e6:47:46:79:a0:64:de: 0d:95:00:ef:31:11:2c:24:58:2c:c1:06:c1:37:fa:aa:89:64: 01:95:bf:67:4c:98:93:ca:79:bd:70:8f:35:e4:3c:c5:ba:47: 68:81:61:e1:ce:c0:2b:e9:a3:3e:43:64:32:34:f6:60:1a:89: 6d:50:b2:67:9a:e0:f0:38:3e:39:a2:6c:aa:5e:6b:b6:90:45: 90:e9:3d:05:16:86:2e:05:87:e8:a0:b9:e4:3b:6c:2a:6b:a3: f6:ba:cd:6b:55:b3:31:5f:e3:c4:a0:fd:b9:75:93:5c:b7:c5: 98:9a:e8:e7:54:4c:e9:a0:eb:81:00:64:1f:7c:3d:8b:1e:fa: 9d:c3:4b:71:66:da:b0:01:2d:90:5c:6e:51:a4:52:c9:79:99: 2e:33:b6:cd:2e:d8:b8:98:1c:40:3b:4b:a7:80:84:71:c1:f3: 70:e1:4d:0c:4a:bb:d2:9f:2e:9a:1b:be:66:35:00:09:39:05: 52:86:76:66:1b:61:e5:88:65:43:91:d9:61:a5:76:15:65:a7: 80:44:36:58:4d:31:8c:06:b1:2c:cb:fd:61:1c:af:1a:ec:88: 0d:25:8d:d5:22:61:2d:b4:af:b9:99:ab:f3:60:d3:1f:1a:07: 97:29:3a:38 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICNS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjQwOTE2MTQ1MTExWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4NDVkZi1lYmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukzk6MwESfuxUBx0aYVo4p9O2c9ywlLnETVsWSVPaqD5sXJ2le7+GXjJ9q0N 3JdXF94Rest+m8y1mnXY3wDYqJkDDe9H8IwUeym0oHHqp+eXNXr+rr6eMcCRt8e1 qYHyX/b/BAnAte6J3PdPy0iK8WGWdzBY+x218pyl2viGn30LWEW21g6gxcUeQ5Rw se8wyXxuo8GedbfJ6W3j5C8hkCPLrASM4cJgFqW7WYC4aNHkg7Ogphzpt3J3uYkN /mFTb/BjeIGCFFJYNaS3IonZLzvJsE9sbRMcuww3Iia1twqQLjxgEIUCtG6xCmRN /TT3Rbm69/x7d0dyPfo3tJdk5QIDAQABo4IClzCCApMwHQYDVR0OBBYEFAatQAjN SmZBEsuXW1XEDOv2hsmrMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvMzEyQUFBRDRC QjdFMTFFOUFGQjQ5QzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkA8wAQDANBgkqhkiG9w0BAQsFAAOCAQEAjyRXuKb8lwTY IWrmR0Z5oGTeDZUA7zERLCRYLMEGwTf6qolkAZW/Z0yYk8p5vXCPNeQ8xbpHaIFh 4c7AK+mjPkNkMjT2YBqJbVCyZ5rg8Dg+OaJsql5rtpBFkOk9BRaGLgWH6KC55Dts Kmuj9rrNa1WzMV/jxKD9uXWTXLfFmJro51RM6aDrgQBkH3w9ix76ncNLcWbasAEt kFxuUaRSyXmZLjO2zS7YuJgcQDtLp4CEccHzcOFNDEq70p8umhu+ZjUACTkFUoZ2 Zhth5YhlQ5HZYaV2FWWngEQ2WE0xjAaxLMv9YRyvGuyIDSWN1SJhLbSvuZmr82DT HxoHlyk6OA== -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:04 2024 by rpki-client on console-fra.rpki-client.org