$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/910426E4539811EAB7BED96CC4F9AE02.roa File: 910426E4539811EAB7BED96CC4F9AE02.roa (raw, json) Hash identifier: r6ib9/db7Uzs6OwRGIIIO3AR9xUdnpzwielA/LB94vA= Subject key identifier: FA:D3:EE:13:A0:A0:4F:E9:E1:5A:66:D1:6C:45:FF:AC:AC:2D:9B:79 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1796 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/910426E4539811EAB7BED96CC4F9AE02.roa Signing time: Tue 20 Feb 2024 17:55:29 +0000 ROA not before: Tue 20 Feb 2024 17:55:29 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 21775 IP address blocks: 2402:7800:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:55:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6038 (0x1796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:55:29 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d4e790-478b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:08:e9:8b:d2:18:3b:94:42:6d:9b:e8:e0:a6: 77:80:51:11:a5:2e:58:99:0a:bc:2e:20:27:cf:68: a7:95:3d:0e:3a:9c:5d:55:0a:d6:00:88:5d:9b:6d: 73:a3:2a:23:e2:12:fc:1a:7d:7b:c4:ac:c1:0b:aa: 90:a7:22:d4:3e:0d:de:59:ee:01:1b:52:4d:b4:00: c7:80:54:d0:d9:e2:37:a1:90:f4:02:54:07:52:3e: 70:5f:e8:11:cf:28:3c:9b:d0:14:a1:6f:50:a1:7e: 12:27:ba:a3:0c:4f:af:a2:49:7e:b4:b1:7a:58:01: b4:8b:e5:ba:ea:86:24:17:aa:92:f1:bf:02:d0:d8: 9f:42:2e:6d:53:b8:b6:a1:0c:62:a8:31:48:93:2c: e3:e1:d1:e7:ee:61:4a:05:d9:4e:45:b9:b7:3c:2e: 6e:3d:99:8b:d1:f5:d0:d6:67:db:3e:74:1a:8d:77: 28:2d:d8:18:65:5d:ac:2f:7c:99:62:64:53:64:b6: 14:ab:ed:c0:94:59:93:32:19:ad:7a:a7:6b:ad:aa: 0e:41:d3:4c:24:05:b7:fb:f2:7c:14:bc:8b:0a:5d: 6b:0b:9c:ba:6f:72:e7:5e:a3:7e:08:aa:02:1a:79: ea:f2:55:1f:6b:41:81:77:af:88:1c:3a:03:8f:fc: 8e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D3:EE:13:A0:A0:4F:E9:E1:5A:66:D1:6C:45:FF:AC:AC:2D:9B:79 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/910426E4539811EAB7BED96CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:7800:3002::/48 Signature Algorithm: sha256WithRSAEncryption 17:4e:be:b9:a1:66:49:29:82:22:1d:dc:1d:81:3d:fb:38:60: 53:5b:33:14:d7:3a:6a:b6:9c:0a:68:b6:58:cc:ca:37:08:fd: b0:44:ee:a9:45:14:ce:50:5b:60:26:e1:a0:20:46:bb:da:b7: 5e:5d:9a:da:b4:33:bf:12:d9:91:23:52:12:53:ca:0e:d2:74: 31:cd:28:11:52:2b:0e:9f:83:a0:55:86:a5:37:ac:18:aa:95: 95:83:23:67:34:52:da:12:31:ca:f6:c6:94:3b:2d:4c:36:9f: 66:c6:a6:f3:cb:6f:7c:0a:8a:52:ed:f6:88:5b:9d:09:a7:e0: 48:50:85:ff:fa:17:af:a5:86:29:95:9e:94:eb:90:4c:e1:5b: 00:66:6c:92:7b:db:61:79:be:f8:29:93:08:23:c5:e1:d8:a7: e9:ca:05:e9:f7:43:f1:1c:e1:85:50:e8:69:06:69:4b:b8:a7: 91:f7:97:60:96:67:76:53:ae:6a:43:43:e8:b4:3e:d5:7a:e5: 71:09:a6:c5:0d:ea:99:75:f7:d4:67:c2:4f:31:7b:4d:a3:02: eb:fc:3d:c0:97:fb:0b:a6:15:60:c8:0b:f2:c9:fd:bc:b2:8a: 87:38:03:e8:3a:84:20:90:d6:c2:76:26:06:bc:4e:78:bc:ef: 0b:d2:3b:a6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICF5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQwMjIwMTc1NTI5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZTc5MC00NzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgjpi9IYO5RCbZvo4KZ3gFERpS5YmQq8LiAnz2inlT0OOpxdVQrWAIhdm21z oyoj4hL8Gn17xKzBC6qQpyLUPg3eWe4BG1JNtADHgFTQ2eI3oZD0AlQHUj5wX+gR zyg8m9AUoW9QoX4SJ7qjDE+vokl+tLF6WAG0i+W66oYkF6qS8b8C0NifQi5tU7i2 oQxiqDFIkyzj4dHn7mFKBdlORbm3PC5uPZmL0fXQ1mfbPnQajXcoLdgYZV2sL3yZ YmRTZLYUq+3AlFmTMhmteqdrraoOQdNMJAW3+/J8FLyLCl1rC5y6b3LnXqN+CKoC Gnnq8lUfa0GBd6+IHDoDj/yOEwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPrT7hOg oE/p4Vpm0WxF/6ysLZt5MB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvOTEwNDI2RTQ1 Mzk4MTFFQUI3QkVEOTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAngAMAIwDQYJKoZIhvcNAQELBQADggEBABdOvrmhZkkp giId3B2BPfs4YFNbMxTXOmq2nApotljMyjcI/bBE7qlFFM5QW2Am4aAgRrvat15d mtq0M78S2ZEjUhJTyg7SdDHNKBFSKw6fg6BVhqU3rBiqlZWDI2c0UtoSMcr2xpQ7 LUw2n2bGpvPLb3wKilLt9ohbnQmn4EhQhf/6F6+lhimVnpTrkEzhWwBmbJJ722F5 vvgpkwgjxeHYp+nKBen3Q/Ec4YVQ6GkGaUu4p5H3l2CWZ3ZTrmpDQ+i0PtV65XEJ psUN6pl199Rnwk8xe02jAuv8PcCX+wumFWDIC/LJ/byyioc4A+g6hCCQ1sJ2Jga8 Tni87wvSO6Y= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:07 2024 by rpki-client on console-fra.rpki-client.org