$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6C897E54597B11EDB603273AC4F9AE02.roa File: 6C897E54597B11EDB603273AC4F9AE02.roa (raw, json) Hash identifier: tECuYiObkHM8+lQ9pAL6rPX0WAXD3+sDD+oT9RLjEFY= Subject key identifier: 7D:FD:22:16:BB:3F:42:7F:14:78:A9:AE:D1:2A:22:BD:F8:B8:AF:77 Certificate issuer: /CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Certificate serial: 19EB Authority key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6C897E54597B11EDB603273AC4F9AE02.roa Signing time: Tue 06 Aug 2024 16:53:52 +0000 ROA not before: Tue 06 Aug 2024 16:53:52 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 14618 IP address blocks: 2401:1d80:3000::/40 maxlen: 48 2401:1d80:3100::/40 maxlen: 46 2401:1d80:3200::/40 maxlen: 46 2401:1d80:3300::/40 maxlen: 46 2401:1d80:4000::/40 maxlen: 46 2401:1d80:4100::/40 maxlen: 46 2401:1d80:4200::/40 maxlen: 46 2401:1d80:4300::/40 maxlen: 46 2401:1d80:5000::/40 maxlen: 46 2401:1d80:5100::/40 maxlen: 46 2401:1d80:5200::/40 maxlen: 46 2401:1d80:5300::/40 maxlen: 46 2401:1d80:5800::/40 maxlen: 46 2401:1d80:5900::/40 maxlen: 46 2401:1d80:5a00::/40 maxlen: 46 2401:1d80:5b00::/40 maxlen: 46 2401:1d80:6000::/40 maxlen: 46 2401:1d80:6100::/40 maxlen: 46 2401:1d80:6200::/40 maxlen: 46 2401:1d80:6300::/40 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 16:20:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6635 (0x19eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB077 Validity Not Before: Aug 6 16:53:52 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b25520-efb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bc:50:1a:4b:2e:16:4e:ac:69:16:9c:88:2b: 18:82:f9:4d:ce:39:22:c2:8d:ef:db:fe:f1:63:f7: 96:c6:b5:b1:7f:54:da:f7:e5:35:b8:ee:96:41:44: 5c:fd:15:0e:59:cd:55:3e:f2:e4:0c:a6:9e:1b:ea: 7a:77:63:f2:9b:fb:69:01:4f:01:af:fb:ae:cc:06: 9d:c9:e3:fc:ab:6c:10:a9:8d:24:f0:d0:2a:fc:e4: 9a:d8:0c:cf:e2:87:e7:29:9a:33:0e:58:21:9a:e3: b2:c1:9a:ed:a0:6b:25:86:ac:28:1b:4d:3c:0d:97: 11:71:f1:8c:d8:b2:6b:f4:7a:83:1a:52:fe:21:13: fe:c3:c4:2c:4e:97:c0:59:a5:66:ed:60:29:46:fa: 32:d7:55:dd:9f:6f:06:86:3f:94:08:49:db:3f:9a: e6:c4:c9:17:c4:b4:b3:c7:66:e6:23:c2:77:ad:66: 84:b5:1e:3d:3e:98:33:5a:39:8e:b7:23:48:7e:02: 63:8d:ba:a0:01:32:4f:1c:68:07:40:bf:88:dd:9c: 25:c9:59:df:51:df:39:03:6b:61:17:8b:43:f9:aa: 75:fb:ab:8e:02:47:3b:73:1f:7d:fe:61:76:5b:33: 92:cb:c9:db:0f:b0:bc:85:b1:a1:3e:b4:68:cc:e3: db:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FD:22:16:BB:3F:42:7F:14:78:A9:AE:D1:2A:22:BD:F8:B8:AF:77 X509v3 Authority Key Identifier: keyid:38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6C897E54597B11EDB603273AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:1d80:3000::/38 2401:1d80:4000::/38 2401:1d80:5000::/38 2401:1d80:5800::/38 2401:1d80:6000::/38 Signature Algorithm: sha256WithRSAEncryption 63:42:70:eb:cc:d7:50:f3:12:7c:31:b4:67:e8:76:68:21:83: 84:de:a7:b5:81:55:d4:3b:c2:43:1b:e9:97:e6:dc:b2:4a:b5: 70:8d:bb:70:8f:47:00:82:06:2f:ba:89:4b:c2:2f:6e:97:57: c3:a8:79:37:90:5d:7c:4f:73:13:55:9f:11:cb:6c:4d:f4:d4: 05:5c:f7:e5:5e:ae:90:92:1b:10:93:f8:c8:b0:d5:2a:2a:21: a1:76:3b:9b:27:5b:3f:35:23:b9:a4:02:a2:50:27:e9:63:40: 46:df:16:31:f6:9a:cf:f0:87:33:36:79:ab:76:ec:36:e0:8f: 84:a3:cb:50:45:a7:af:e8:c7:40:2e:1f:9f:2c:f2:18:07:b4: 87:e6:33:0a:90:ca:9d:8b:7f:63:49:9a:50:98:e7:2e:d0:41: 5f:ea:da:7c:9b:3b:9a:db:90:66:93:06:f4:20:bc:9f:c3:d4: 5b:d0:1b:a4:ea:42:22:8d:82:ba:c4:26:c3:e4:33:38:20:4c: 67:fc:1a:6f:e3:6a:93:e2:b0:a7:52:8d:79:60:34:8d:7e:97: f2:50:bc:71:c5:ab:18:e9:ce:41:1d:9c:08:51:c1:b4:f4:0b: 1a:58:bf:39:9a:ff:48:cf:6e:95:4a:c1:55:e7:ce:8e:1c:6b: 25:3a:2c:6d -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICGeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwNzcxMTAvBgNVBAUTKDM4NkY2RjhBQTFFNjZDNTI1NEVBMUU0Nzg4OEMxMDNG NDUzNjIyMkEwHhcNMjQwODA2MTY1MzUyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyNTUyMC1lZmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7xQGksuFk6saRaciCsYgvlNzjkiwo3v2/7xY/eWxrWxf1Ta9+U1uO6WQURc /RUOWc1VPvLkDKaeG+p6d2Pym/tpAU8Br/uuzAadyeP8q2wQqY0k8NAq/OSa2AzP 4ofnKZozDlghmuOywZrtoGslhqwoG008DZcRcfGM2LJr9HqDGlL+IRP+w8QsTpfA WaVm7WApRvoy11Xdn28Ghj+UCEnbP5rmxMkXxLSzx2bmI8J3rWaEtR49PpgzWjmO tyNIfgJjjbqgATJPHGgHQL+I3ZwlyVnfUd85A2thF4tD+ap1+6uOAkc7cx99/mF2 WzOSy8nbD7C8hbGhPrRozOPb7QIDAQABo4ICtzCCArMwHQYDVR0OBBYEFH39Iha7 P0J/FHiprtEqIr34uK93MB8GA1UdIwQYMBaAFDhvb4qh5mxSVOoeR4iMED9FNiIq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjA3Ny9EQjdCNzAwNjQ4 MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJGSlU2aDVIaUl3UVAwVTJJ aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HOXZpcUhtYkZKVTZoNUhpSXdRUDBVMklpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIwNzcvREI3QjcwMDY0ODI0MTFFNzk0MDQxRDJEQzRGOUFFMDIvNkM4OTdFNTQ1 OTdCMTFFREI2MDMyNzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgACMCgDBgIkAR2AMAMGAiQBHYBAAwYCJAEdgFADBgIkAR2AWAMGAiQB HYBgMA0GCSqGSIb3DQEBCwUAA4IBAQBjQnDrzNdQ8xJ8MbRn6HZoIYOE3qe1gVXU O8JDG+mX5tyySrVwjbtwj0cAggYvuolLwi9ul1fDqHk3kF18T3MTVZ8Ry2xN9NQF XPflXq6QkhsQk/jIsNUqKiGhdjubJ1s/NSO5pAKiUCfpY0BG3xYx9prP8IczNnmr duw24I+Eo8tQRaev6MdALh+fLPIYB7SH5jMKkMqdi39jSZpQmOcu0EFf6tp8mzua 25Bmkwb0ILyfw9Rb0Buk6kIijYK6xCbD5DM4IExn/Bpv42qT4rCnUo15YDSNfpfy ULxxxasY6c5BHZwIUcG09AsaWL85mv9Iz26VSsFV586OHGslOixt -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:03 2025 by rpki-client