$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa File: A48D6CEEED6311EDB69EB62AC4F9AE02.roa (raw, json) Hash identifier: pFkFEkTKQG0aukmaymkgeuPliGp48AQuLq3E4+kMcmU= Subject key identifier: 43:CF:DB:23:B8:C2:84:36:51:4D:1D:B0:F9:5F:0A:DE:C3:88:75:26 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 01AB Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa Signing time: Fri 21 Jun 2024 03:54:44 +0000 ROA not before: Fri 21 Jun 2024 03:54:44 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140224 IP address blocks: 2407:2440:1a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jun 21 03:54:44 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6674f984-afd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:dc:79:0b:63:62:37:bb:8a:8b:55:ad:f2:61: 03:f3:68:78:35:1b:3f:e9:db:16:19:66:2c:f8:ef: a6:97:a8:a2:5e:1d:61:16:c2:91:f0:f5:6b:44:40: d0:47:f6:90:dd:4a:ae:0d:17:a5:f6:71:f9:4c:bf: 29:0b:7d:4a:81:02:cc:fc:00:71:30:d6:50:f0:1c: e8:e8:ef:39:70:8e:4e:eb:d5:97:b5:f7:b2:92:cd: b5:00:3d:e1:c9:14:ef:24:2b:9a:c4:d3:82:6b:b6: 2b:e5:16:83:c0:fd:ee:45:56:a3:7d:77:ce:cc:f8: 1f:a0:f8:82:a2:c8:32:76:98:ff:53:40:90:bc:49: 02:07:21:4c:eb:df:ba:c9:05:73:27:45:2a:0d:c5: 56:55:5c:0f:e0:0b:fc:d6:ac:63:ec:d3:9e:2f:a8: d7:04:6a:ab:4c:b3:cc:8f:e2:51:01:2c:0f:32:4f: 87:f0:64:63:28:90:0d:55:d8:0c:b2:a7:be:08:17: 50:77:59:7b:3b:c3:35:00:92:ae:4b:d2:89:b7:11: a9:e1:33:e4:8a:9d:8d:65:03:a6:87:08:81:82:3b: 48:1c:3d:b1:73:d1:0b:b5:60:0b:5d:4f:6b:c0:65: 11:8b:1b:c3:2d:09:9b:0f:b5:8a:eb:b5:66:b4:95: 31:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:CF:DB:23:B8:C2:84:36:51:4D:1D:B0:F9:5F:0A:DE:C3:88:75:26 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:2440:1a::/48 Signature Algorithm: sha256WithRSAEncryption 9d:1d:20:00:56:85:dc:cb:5c:e7:53:cd:7f:f4:25:e5:70:9f: a5:3d:5d:39:bf:fa:10:85:49:68:03:38:95:fe:4d:6c:c5:fe: de:fa:9d:be:f0:37:a9:41:8e:7d:93:a2:ef:04:a6:a3:f6:2e: b9:f3:dd:0b:3f:fc:60:57:bd:10:a7:6c:8c:0e:86:17:a7:b9: 17:22:bf:25:db:b0:2c:6a:ca:40:4a:75:ec:1a:6e:d0:80:8e: 96:ec:c8:1d:85:02:56:07:7d:89:e9:3b:5e:d9:18:82:6b:55: da:df:7d:26:10:51:5b:2a:da:7c:91:a7:92:16:41:fd:b5:6f: e7:06:cd:2e:c7:c5:55:31:79:ad:78:9b:ee:f3:68:24:c8:10: e3:7d:58:c8:78:3e:f4:9c:82:2c:86:39:8a:4f:de:29:ef:3f: 0c:d5:aa:f7:aa:37:da:51:ea:eb:99:49:a1:0e:16:71:af:49: a2:a7:6f:1d:98:7c:81:84:35:65:c5:12:4d:82:33:d3:d9:6b: bf:44:f5:57:23:55:db:bd:b9:e0:bb:dd:de:36:c0:1b:94:7a: c1:44:fb:e9:1b:e6:c4:7e:88:54:d7:7c:61:4b:38:36:5e:c2: 20:68:da:93:62:8f:c1:c7:20:f4:eb:6b:cc:dd:41:b2:0f:c9: aa:0e:da:f9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjQwNjIxMDM1NDQ0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc0Zjk4NC1hZmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNx5C2NiN7uKi1Wt8mED82h4NRs/6dsWGWYs+O+ml6iiXh1hFsKR8PVrREDQ R/aQ3UquDRel9nH5TL8pC31KgQLM/ABxMNZQ8Bzo6O85cI5O69WXtfeyks21AD3h yRTvJCuaxNOCa7Yr5RaDwP3uRVajfXfOzPgfoPiCosgydpj/U0CQvEkCByFM69+6 yQVzJ0UqDcVWVVwP4Av81qxj7NOeL6jXBGqrTLPMj+JRASwPMk+H8GRjKJANVdgM sqe+CBdQd1l7O8M1AJKuS9KJtxGp4TPkip2NZQOmhwiBgjtIHD2xc9ELtWALXU9r wGURixvDLQmbD7WK67VmtJUxOQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEPP2yO4 woQ2UU0dsPlfCt7DiHUmMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvQTQ4RDZDRUVF RDYzMTFFREI2OUVCNjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkByRAABowDQYJKoZIhvcNAQELBQADggEBAJ0dIABWhdzL XOdTzX/0JeVwn6U9XTm/+hCFSWgDOJX+TWzF/t76nb7wN6lBjn2Tou8EpqP2Lrnz 3Qs//GBXvRCnbIwOhhenuRcivyXbsCxqykBKdewabtCAjpbsyB2FAlYHfYnpO17Z GIJrVdrffSYQUVsq2nyRp5IWQf21b+cGzS7HxVUxea14m+7zaCTIEON9WMh4PvSc giyGOYpP3invPwzVqveqN9pR6uuZSaEOFnGvSaKnbx2YfIGENWXFEk2CM9PZa79E 9VcjVdu9ueC73d42wBuUesFE++kb5sR+iFTXfGFLODZewiBo2pNij8HHIPTra8zd QbIPyaoO2vk= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:07 2024 by rpki-client on console-fra.rpki-client.org