$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/B9D8F9CE89D011EEB603FF75C4F9AE02.roa File: B9D8F9CE89D011EEB603FF75C4F9AE02.roa (raw, json) Hash identifier: KlICDI7CttOBxnlmouufoikQHOv6fc+7+U3kFci82ro= Subject key identifier: FD:BB:19:CD:93:ED:93:1E:8D:5D:8D:39:6F:3C:47:E5:B1:F0:BE:B3 Certificate issuer: /CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Certificate serial: CA Authority key identifier: F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/B9D8F9CE89D011EEB603FF75C4F9AE02.roa Signing time: Thu 23 Nov 2023 07:20:06 +0000 ROA not before: Thu 23 Nov 2023 07:20:06 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 149201 IP address blocks: 2401:43e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Validity Not Before: Nov 23 07:20:06 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655efd26-a58f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:cd:d0:84:53:66:19:37:f1:aa:f8:53:f7: 08:91:7f:48:bf:36:79:b2:b1:2e:1a:aa:63:dd:1f: 06:1d:0e:c8:20:e4:43:ab:75:01:a2:ff:ce:b8:c5: 5e:6d:6e:06:0e:ce:57:23:d1:6e:e0:72:d9:67:90: 1b:a9:97:39:fe:29:e7:47:f8:61:86:fa:e9:35:1e: 59:3c:ef:06:fa:ca:08:4e:62:2b:3e:6a:d5:70:be: c0:79:93:0a:82:c7:78:fb:39:46:09:4d:b4:6f:f0: 4e:b5:75:d3:41:1f:af:72:ab:62:90:45:ec:13:ce: 5e:d9:e8:c6:a9:82:e7:0a:72:2f:c5:c0:d5:0d:ca: 3d:27:88:64:95:8c:87:6f:90:88:d2:50:e6:93:20: 2f:e0:51:7f:83:1b:bb:10:6f:bc:5c:be:11:75:9d: 6b:9d:be:d5:d8:30:51:b4:36:9e:b8:d8:50:4e:ca: 15:0e:1b:93:b0:61:2a:5e:79:be:83:f0:96:9c:eb: e6:7f:78:fc:b1:9f:56:96:e6:f9:e2:c3:dc:1a:3e: 53:31:a5:95:6f:34:19:93:20:ff:be:b4:b2:5d:70: 46:84:03:ea:79:9e:eb:91:7b:7f:86:77:01:79:68: 36:a5:3c:89:a2:4f:fd:a5:8f:60:0b:a7:8c:cc:55: 59:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:BB:19:CD:93:ED:93:1E:8D:5D:8D:39:6F:3C:47:E5:B1:F0:BE:B3 X509v3 Authority Key Identifier: keyid:F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/B9D8F9CE89D011EEB603FF75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:43e0::/48 Signature Algorithm: sha256WithRSAEncryption 48:0d:39:22:35:b3:7a:99:2a:34:25:61:6e:ba:4c:41:41:47: 31:49:3f:cb:05:19:3f:34:a0:5a:9b:80:c3:4a:1e:25:3b:41: 14:84:19:fe:93:8c:79:55:b8:6a:ea:d3:3b:cd:36:a8:81:37: bf:c6:60:e2:f5:7e:d2:2c:50:c1:a5:00:5b:2e:79:04:2e:2e: 22:da:5e:33:cf:51:4e:cc:5c:9d:e9:61:82:be:8f:be:f0:4c: 3b:62:cd:78:0c:8b:21:a0:e4:01:13:f5:f5:8c:51:94:98:f3: 65:65:64:38:6f:08:9d:1f:28:33:15:f0:da:23:8c:a4:6d:c8: 00:0e:6a:69:c9:fa:d2:6c:29:e2:d2:b6:6d:98:a6:72:75:5e: db:3d:ce:82:9f:43:09:22:fb:4a:62:8e:cd:27:20:0e:1c:fd: 61:fd:04:72:c2:75:55:f4:3b:6c:ef:86:71:f0:6f:3f:88:5d: 9b:56:a4:11:b6:99:e9:b6:b3:07:4a:e4:e5:18:62:3b:05:cb: 68:76:40:6c:c7:21:94:55:66:15:77:f6:3e:12:6a:3f:ed:0a: c6:ef:cd:45:08:47:74:5e:8b:e5:71:6b:53:11:ee:6e:ba:5d: f7:71:e3:ce:0a:db:eb:e1:54:ae:99:d5:57:ca:8f:2d:3e:ff: 61:d2:10:3e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDMjQxMTAvBgNVBAUTKEY0OTdEMTcxNjkyNzZENDNDNTg1MjE1QzE5ODMzMUMz M0MyMjVBNzUwHhcNMjMxMTIzMDcyMDA2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVlZmQyNi1hNThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbfN0IRTZhk38ar4U/cIkX9IvzZ5srEuGqpj3R8GHQ7IIORDq3UBov/OuMVe bW4GDs5XI9Fu4HLZZ5AbqZc5/innR/hhhvrpNR5ZPO8G+soITmIrPmrVcL7AeZMK gsd4+zlGCU20b/BOtXXTQR+vcqtikEXsE85e2ejGqYLnCnIvxcDVDco9J4hklYyH b5CI0lDmkyAv4FF/gxu7EG+8XL4RdZ1rnb7V2DBRtDaeuNhQTsoVDhuTsGEqXnm+ g/CWnOvmf3j8sZ9Wlub54sPcGj5TMaWVbzQZkyD/vrSyXXBGhAPqeZ7rkXt/hncB eWg2pTyJok/9pY9gC6eMzFVZkwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFP27Gc2T 7ZMejV2NOW88R+Wx8L6zMB8GA1UdIwQYMBaAFPSX0XFpJ21DxYUhXBmDMcM8Ilp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0MyNC8xNkM2MTMxNjZB RkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJVUEZoU0ZjR1lNeHd6d2lX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlKZlJjV2tuYlVQRmhTRmNHWU14d3p3aVduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNDMjQvMTZDNjEzMTY2QUZBMTFFREI3MDZGRjNDQzRGOUFFMDIvQjlEOEY5Q0U4 OUQwMTFFRUI2MDNGRjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAUPgAAAwDQYJKoZIhvcNAQELBQADggEBAEgNOSI1s3qZ KjQlYW66TEFBRzFJP8sFGT80oFqbgMNKHiU7QRSEGf6TjHlVuGrq0zvNNqiBN7/G YOL1ftIsUMGlAFsueQQuLiLaXjPPUU7MXJ3pYYK+j77wTDtizXgMiyGg5AET9fWM UZSY82VlZDhvCJ0fKDMV8NojjKRtyAAOamnJ+tJsKeLStm2YpnJ1Xts9zoKfQwki +0pijs0nIA4c/WH9BHLCdVX0O2zvhnHwbz+IXZtWpBG2mem2swdK5OUYYjsFy2h2 QGzHIZRVZhV39j4Saj/tCsbvzUUIR3Rei+Vxa1MR7m66Xfdx484K2+vhVK6Z1VfK jy0+/2HSED4= -----END CERTIFICATE-----Generated at Wed May 15 06:10:20 2024 by rpki-client on console-ams.rpki-client.org