$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa File: A55DE586ED6311EDB69EB62AC4F9AE02.roa (raw, json) Hash identifier: rfdeiioOombk9ugXAhar8jfxVQvhaRByjypcJo5xwas= Subject key identifier: 2B:D3:DF:24:6B:38:A3:6D:E9:BD:7C:BB:BF:A2:A6:0D:1A:5C:5C:A2 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 01AD Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa Signing time: Fri 21 Jun 2024 03:54:47 +0000 ROA not before: Fri 21 Jun 2024 03:54:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 18004 IP address blocks: 2407:2440:1b::/48 maxlen: 48 2407:2440:1c::/48 maxlen: 48 2407:2440:1d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jun 21 03:54:47 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6674f986-e728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f9:7a:24:31:eb:50:b6:20:66:f0:40:23:79: ad:51:97:c8:33:c8:b1:1c:d8:1d:bd:cc:df:96:48: 57:fe:b5:b5:42:5c:3b:f6:8a:e6:89:44:9c:10:35: 34:bb:ae:11:7c:67:26:e3:ca:1c:fa:85:3a:92:f8: 28:d4:7a:65:b7:6f:29:28:11:ae:31:f2:48:97:69: 2b:90:fa:b7:46:c9:5b:a8:20:e7:5c:00:4c:e4:2d: de:03:64:e7:7f:18:93:fa:51:b4:86:73:ad:5c:62: 12:0c:a5:ec:bd:f5:58:5d:f8:5c:4c:e5:da:42:e9: 87:0a:0a:21:a3:4d:20:6d:77:e6:4e:33:33:2e:57: 20:f4:b6:01:83:f0:16:57:73:58:ee:ec:9d:14:de: a9:74:d8:96:27:a8:e2:4e:6f:62:7d:c7:bd:c5:a9: 6a:ea:3f:e0:5c:ca:18:92:ac:a9:87:39:d3:e0:ea: ad:78:30:61:cf:2f:df:31:14:d7:75:2e:bd:f6:06: 97:2f:c3:71:09:69:ec:8b:19:d0:9a:4d:76:e0:82: 57:81:8a:c3:8a:72:9d:6f:94:b2:96:84:fd:6b:84: 31:78:f1:f4:47:4e:0d:e9:0c:83:76:5b:ff:75:f9: 80:f7:53:5a:5f:38:9e:da:ad:0c:6f:31:cd:c9:cf: 9c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D3:DF:24:6B:38:A3:6D:E9:BD:7C:BB:BF:A2:A6:0D:1A:5C:5C:A2 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:2440:1b::-2407:2440:1d:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 71:8b:4e:af:b4:75:ff:a8:8a:31:b3:8c:46:17:53:52:44:69: 76:2f:4e:f6:a8:55:c0:df:1c:ee:cc:79:39:b5:ed:82:12:02: 7e:78:91:22:b0:55:1c:16:39:44:1a:fb:c4:7e:e7:d0:c4:52: 41:cb:7d:e2:9c:96:0d:0c:93:60:eb:07:cc:7d:1c:8e:31:5c: 18:74:f9:8c:a8:e8:3e:61:85:21:2d:f9:84:6c:5c:1f:c2:67: 77:c8:45:85:7c:1b:bf:10:0b:75:d5:15:5b:93:b6:e8:01:fa: 0a:88:09:72:02:7d:b1:f2:ae:39:0e:ad:9a:a9:69:54:b6:e4: 20:12:30:4e:e7:e7:26:31:69:e3:80:bb:18:07:99:21:d2:8d: cd:b1:59:66:12:6d:97:2f:06:61:15:6c:f3:91:7c:91:bd:be: bb:ce:05:77:97:70:95:4d:f0:ab:c6:4f:20:30:bc:45:39:f0: 09:70:ce:87:e0:4c:12:36:4a:45:5d:ca:63:5e:14:a6:4a:b5: 28:d3:d3:d6:c6:1e:0b:bc:9d:11:49:24:38:b7:36:d5:17:88: e4:6c:38:da:d0:6b:95:f7:31:85:45:11:6c:2b:a7:f0:b0:b7: ef:d1:c8:0a:c5:8a:ad:b1:d4:32:18:3e:0f:f1:f6:4b:29:7e: 44:d8:dc:97 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjQwNjIxMDM1NDQ3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc0Zjk4Ni1lNzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkvl6JDHrULYgZvBAI3mtUZfIM8ixHNgdvczflkhX/rW1Qlw79ormiUScEDU0 u64RfGcm48oc+oU6kvgo1Hplt28pKBGuMfJIl2krkPq3RslbqCDnXABM5C3eA2Tn fxiT+lG0hnOtXGISDKXsvfVYXfhcTOXaQumHCgoho00gbXfmTjMzLlcg9LYBg/AW V3NY7uydFN6pdNiWJ6jiTm9ifce9xalq6j/gXMoYkqyphznT4OqteDBhzy/fMRTX dS699gaXL8NxCWnsixnQmk124IJXgYrDinKdb5SyloT9a4QxePH0R04N6QyDdlv/ dfmA91NaXzie2q0MbzHNyc+cEwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFCvT3yRr OKNt6b18u7+ipg0aXFyiMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvQTU1REU1ODZF RDYzMTFFREI2OUVCNjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHACQHJEAAGwMHASQHJEAAHDANBgkqhkiG9w0BAQsFAAOC AQEAcYtOr7R1/6iKMbOMRhdTUkRpdi9O9qhVwN8c7sx5ObXtghICfniRIrBVHBY5 RBr7xH7n0MRSQct94pyWDQyTYOsHzH0cjjFcGHT5jKjoPmGFIS35hGxcH8Jnd8hF hXwbvxALddUVW5O26AH6CogJcgJ9sfKuOQ6tmqlpVLbkIBIwTufnJjFp44C7GAeZ IdKNzbFZZhJtly8GYRVs85F8kb2+u84Fd5dwlU3wq8ZPIDC8RTnwCXDOh+BMEjZK RV3KY14Upkq1KNPT1sYeC7ydEUkkOLc21ReI5Gw42tBrlfcxhUURbCun8LC379HI CsWKrbHUMhg+D/H2Syl+RNjclw== -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:07 2024 by rpki-client on console-fra.rpki-client.org