$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa File: 9D003F28621711E9B8C69E15C4F9AE02.roa (raw, json) Hash identifier: v7RjiERJ+UaXKwbiabeVpDMvLEWGvJ12a2mTucr6CA4= Subject key identifier: BD:E4:60:68:A8:BA:4F:70:69:00:D3:9E:E4:01:E2:5E:12:D3:13:01 Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1169 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa Signing time: Sat 02 Nov 2024 17:26:11 +0000 ROA not before: Sat 02 Nov 2024 17:26:11 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 13335 IP address blocks: 2405:8100:8001::/48 maxlen: 48 2405:8100:8002::/48 maxlen: 48 2405:8100:8003::/48 maxlen: 48 2405:8100:8004::/48 maxlen: 48 2405:8100:8005::/48 maxlen: 48 2405:8100:c000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4457 (0x1169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Nov 2 17:26:11 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672660b2-071d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3c:49:d1:59:23:60:8d:a5:8b:58:c6:9b:cb: 91:e0:42:78:e0:ae:58:5c:34:18:86:a1:9d:eb:11: f7:26:1b:a6:01:df:b9:2d:67:9d:d8:f1:5b:af:d4: 97:de:b8:a8:66:10:97:eb:8d:7a:9d:31:40:85:d7: fc:9b:83:01:68:72:02:2a:cd:ed:4d:cb:62:24:06: 1b:ed:30:f2:3f:9a:cc:5a:2a:87:b8:32:66:dd:c6: 8a:69:ab:1a:b9:2e:2d:91:e7:a6:cc:62:2b:2d:c1: aa:11:e5:0a:c7:02:58:5a:41:87:16:4a:35:09:e6: eb:fe:97:fb:8d:c8:bd:96:d1:46:a2:dc:9c:49:bf: 38:51:84:7f:b3:9f:93:67:12:b6:3e:d4:f2:6f:66: d1:af:68:bd:3e:d6:af:7c:72:2e:b5:a7:67:a0:ab: 13:c5:83:0f:7a:a3:23:cb:b7:3f:6a:e5:fc:6e:a9: 80:2f:f1:6a:ec:5f:5b:14:57:46:b7:e0:3b:49:aa: cb:40:df:d6:e6:7c:00:55:45:26:e2:a9:82:da:36: 3d:4d:16:e3:b1:aa:03:d5:06:fd:44:f4:c2:d1:1a: 2f:0a:bc:87:71:2e:31:72:0c:0a:8e:93:5e:76:a4: 38:d5:20:ef:29:40:64:bf:34:ef:3b:1a:a2:85:f9: fd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E4:60:68:A8:BA:4F:70:69:00:D3:9E:E4:01:E2:5E:12:D3:13:01 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:8100:8001::-2405:8100:8005:ffff:ffff:ffff:ffff:ffff 2405:8100:c000::/38 Signature Algorithm: sha256WithRSAEncryption 1b:05:f0:48:d6:43:9c:40:6d:7c:68:67:93:78:ff:2c:68:84: 74:96:b4:ec:51:b3:af:0d:51:0e:d2:9a:02:b4:4e:8c:78:bf: 37:2d:77:52:b3:06:f9:1d:1d:7f:99:be:18:8e:62:73:df:1d: 14:2e:a3:cf:5a:ac:ba:bd:4f:79:52:6f:93:d5:40:be:53:be: cc:59:a2:24:30:69:a3:f9:98:0e:ef:d9:fa:16:81:98:f0:e8: 60:df:0a:bd:6c:0c:ae:c6:98:0c:28:18:a9:b7:13:51:d6:f6: aa:3d:59:8f:bd:97:36:af:a1:1a:a5:e5:50:af:3f:46:aa:76: 56:45:5a:d4:56:2a:fd:ce:f6:08:76:ac:c9:25:6b:bf:eb:fe: 51:7d:7e:23:aa:22:12:03:a4:c6:94:94:ff:a4:ad:60:77:16: 5e:21:2f:60:9e:45:8c:9e:89:ed:fb:9f:27:64:7c:ec:bc:91: 71:99:ac:64:06:bd:8d:c1:94:6f:c3:39:f7:fc:33:4c:5a:35: c9:86:93:26:34:3a:21:12:28:c5:27:5a:05:05:81:60:ad:99: b6:74:b8:85:2a:68:48:74:21:27:55:a8:0d:23:f1:5a:67:8b: 6c:d2:99:f5:06:f6:61:a6:26:5b:b7:ee:83:ac:4e:d9:b9:33: 82:f1:b9:bd -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICEWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjQxMTAyMTcyNjExWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NjBiMi0wNzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jxJ0VkjYI2li1jGm8uR4EJ44K5YXDQYhqGd6xH3JhumAd+5LWed2PFbr9SX 3rioZhCX6416nTFAhdf8m4MBaHICKs3tTctiJAYb7TDyP5rMWiqHuDJm3caKaasa uS4tkeemzGIrLcGqEeUKxwJYWkGHFko1Cebr/pf7jci9ltFGotycSb84UYR/s5+T ZxK2PtTyb2bRr2i9PtavfHIutadnoKsTxYMPeqMjy7c/auX8bqmAL/Fq7F9bFFdG t+A7SarLQN/W5nwAVUUm4qmC2jY9TRbjsaoD1Qb9RPTC0RovCryHcS4xcgwKjpNe dqQ41SDvKUBkvzTvOxqihfn9twIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFL3kYGio uk9waQDTnuQB4l4S0xMBMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM3RjIvNDhFRkQxN0NGMUE3MTFFOEFBNjE0RjUxQzRGOUFFMDIvOUQwMDNGMjg2 MjE3MTFFOUI4QzY5RTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgACMBwwEgMHACQFgQCAAQMHASQFgQCABAMGAiQFgQDAMA0GCSqGSIb3 DQEBCwUAA4IBAQAbBfBI1kOcQG18aGeTeP8saIR0lrTsUbOvDVEO0poCtE6MeL83 LXdSswb5HR1/mb4YjmJz3x0ULqPPWqy6vU95Um+T1UC+U77MWaIkMGmj+ZgO79n6 FoGY8Ohg3wq9bAyuxpgMKBiptxNR1vaqPVmPvZc2r6EapeVQrz9GqnZWRVrUVir9 zvYIdqzJJWu/6/5RfX4jqiISA6TGlJT/pK1gdxZeIS9gnkWMnont+58nZHzsvJFx maxkBr2NwZRvwzn3/DNMWjXJhpMmNDohEijFJ1oFBYFgrZm2dLiFKmhIdCEnVagN I/FaZ4ts0pn1BvZhpiZbt+6DrE7ZuTOC8bm9 -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:10 2024 by rpki-client on console-ams.rpki-client.org