$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa File: 6E44CE88597B11EDB603273AC4F9AE02.roa (raw, json) Hash identifier: uSAHzBc+YHmREVNWY2QOkLWbks+7w1YPJ8vpHREo1FM= Subject key identifier: 34:22:AC:14:A7:A7:DC:39:73:59:6B:38:56:2C:69:E9:94:B3:90:50 Certificate issuer: /CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Certificate serial: 19EC Authority key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa Signing time: Tue 06 Aug 2024 16:53:53 +0000 ROA not before: Tue 06 Aug 2024 16:53:53 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 16509 IP address blocks: 2401:1d80:3000::/40 maxlen: 48 2401:1d80:3100::/40 maxlen: 46 2401:1d80:3200::/40 maxlen: 46 2401:1d80:3300::/40 maxlen: 46 2401:1d80:4000::/40 maxlen: 46 2401:1d80:4100::/40 maxlen: 46 2401:1d80:4200::/40 maxlen: 46 2401:1d80:4300::/40 maxlen: 46 2401:1d80:5000::/40 maxlen: 46 2401:1d80:5100::/40 maxlen: 46 2401:1d80:5200::/40 maxlen: 46 2401:1d80:5300::/40 maxlen: 46 2401:1d80:5800::/40 maxlen: 46 2401:1d80:5900::/40 maxlen: 46 2401:1d80:5a00::/40 maxlen: 46 2401:1d80:5b00::/40 maxlen: 46 2401:1d80:6000::/40 maxlen: 46 2401:1d80:6100::/40 maxlen: 46 2401:1d80:6200::/40 maxlen: 46 2401:1d80:6300::/40 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:20:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6636 (0x19ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Validity Not Before: Aug 6 16:53:53 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b25521-eb33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f7:83:3b:26:29:4b:10:c6:32:e3:af:06:f9: e4:07:42:b4:09:75:ab:77:53:f0:8e:c3:f8:21:53: 1e:5c:d3:03:f7:7b:a2:04:02:83:46:ec:04:91:c6: a2:2f:09:7e:c4:52:f0:00:90:38:eb:37:2a:52:26: ec:b5:40:73:54:74:d7:e5:9d:15:ed:a0:8e:a0:08: 77:a5:4e:08:ee:0f:b1:38:f7:99:97:50:bd:fd:76: 17:fa:10:1e:32:14:83:f9:6a:ba:09:70:2c:6a:17: 35:ec:f6:ac:98:3c:20:74:9b:4e:0c:45:b1:a3:bd: 05:de:cd:05:28:d4:85:6a:e1:3e:de:8b:2c:31:05: 31:be:66:37:94:a4:d2:79:01:49:27:a1:fb:7c:a2: 46:f8:2c:c3:96:67:83:5c:ab:9f:41:10:d5:d7:7b: 59:01:84:6e:84:c0:45:2e:4f:9b:c0:f1:c3:fe:65: a3:41:f6:6a:fc:04:18:9c:86:45:59:be:a0:17:e7: 42:bb:b0:f3:b8:85:e1:88:48:b0:21:47:a4:12:ba: df:66:53:93:d3:52:b4:5e:ad:84:8e:38:25:ba:31: bd:8e:45:6d:4f:98:ef:e0:6b:4d:60:b7:3c:1b:1c: ff:ab:eb:2f:27:ec:2d:e9:82:79:80:2c:df:9a:b6: cb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:22:AC:14:A7:A7:DC:39:73:59:6B:38:56:2C:69:E9:94:B3:90:50 X509v3 Authority Key Identifier: keyid:38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:1d80:3000::/38 2401:1d80:4000::/38 2401:1d80:5000::/38 2401:1d80:5800::/38 2401:1d80:6000::/38 Signature Algorithm: sha256WithRSAEncryption 31:f8:5d:95:bb:ad:6d:33:c6:64:26:b1:91:68:12:43:ea:5b: 3c:89:fe:e1:5c:a1:f4:44:c6:62:e5:bf:4d:db:77:82:41:04: 6c:7b:08:3f:0b:3a:5f:95:fd:51:53:7d:a6:22:7f:1e:7b:64: cd:63:8f:92:60:2c:5e:5c:0e:06:7d:fc:9e:e2:45:38:ea:41: 80:a8:7f:fb:3b:cd:a9:20:1b:82:33:1b:a1:dc:6e:8c:1d:45: e3:77:d6:55:80:8e:3d:36:4f:6b:c6:a2:a4:5c:4a:86:f0:d7: c9:af:37:c2:79:f9:2a:2c:18:ba:78:9c:e9:f8:ce:e6:50:29: a6:73:a4:df:48:2f:b3:19:07:46:1e:13:19:4a:bc:07:58:59: 8b:32:ef:04:4a:e3:b5:58:17:0c:df:a9:95:f4:32:df:41:a3: 3e:13:45:82:2b:a8:10:8f:6f:6b:29:12:25:7c:13:82:9d:a1: 91:42:a0:00:cc:e7:42:d0:9d:df:57:c3:ff:91:dd:88:9c:73: 0f:6d:c3:91:9f:bf:77:55:8e:25:71:e3:1f:4b:d4:a4:de:e9: b3:a7:3c:6c:ca:a3:bf:a4:8a:8c:85:66:ff:e2:26:bc:47:44: 5f:2d:7d:ed:3f:5f:0d:ae:51:fb:4e:0e:56:aa:64:4c:ea:53: 0e:3d:4b:81 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICGewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwNzcxMTAvBgNVBAUTKDM4NkY2RjhBQTFFNjZDNTI1NEVBMUU0Nzg4OEMxMDNG NDUzNjIyMkEwHhcNMjQwODA2MTY1MzUzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyNTUyMS1lYjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxveDOyYpSxDGMuOvBvnkB0K0CXWrd1PwjsP4IVMeXNMD93uiBAKDRuwEkcai Lwl+xFLwAJA46zcqUibstUBzVHTX5Z0V7aCOoAh3pU4I7g+xOPeZl1C9/XYX+hAe MhSD+Wq6CXAsahc17PasmDwgdJtODEWxo70F3s0FKNSFauE+3ossMQUxvmY3lKTS eQFJJ6H7fKJG+CzDlmeDXKufQRDV13tZAYRuhMBFLk+bwPHD/mWjQfZq/AQYnIZF Wb6gF+dCu7DzuIXhiEiwIUekErrfZlOT01K0Xq2EjjglujG9jkVtT5jv4GtNYLc8 Gxz/q+svJ+wt6YJ5gCzfmrbLywIDAQABo4ICtzCCArMwHQYDVR0OBBYEFDQirBSn p9w5c1lrOFYsaemUs5BQMB8GA1UdIwQYMBaAFDhvb4qh5mxSVOoeR4iMED9FNiIq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjA3Ny9EQjdCNzAwNjQ4 MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJGSlU2aDVIaUl3UVAwVTJJ aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HOXZpcUhtYkZKVTZoNUhpSXdRUDBVMklpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIwNzcvREI3QjcwMDY0ODI0MTFFNzk0MDQxRDJEQzRGOUFFMDIvNkU0NENFODg1 OTdCMTFFREI2MDMyNzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgACMCgDBgIkAR2AMAMGAiQBHYBAAwYCJAEdgFADBgIkAR2AWAMGAiQB HYBgMA0GCSqGSIb3DQEBCwUAA4IBAQAx+F2Vu61tM8ZkJrGRaBJD6ls8if7hXKH0 RMZi5b9N23eCQQRsewg/Czpflf1RU32mIn8ee2TNY4+SYCxeXA4Gffye4kU46kGA qH/7O82pIBuCMxuh3G6MHUXjd9ZVgI49Nk9rxqKkXEqG8NfJrzfCefkqLBi6eJzp +M7mUCmmc6TfSC+zGQdGHhMZSrwHWFmLMu8ESuO1WBcM36mV9DLfQaM+E0WCK6gQ j29rKRIlfBOCnaGRQqAAzOdC0J3fV8P/kd2InHMPbcORn793VY4lceMfS9Sk3umz pzxsyqO/pIqMhWb/4ia8R0RfLX3tP18NrlH7Tg5WqmRM6lMOPUuB -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:10 2024 by rpki-client on console-ams.rpki-client.org