$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/C0C401905AE311EF90924C30C4F9AE02.roa File: C0C401905AE311EF90924C30C4F9AE02.roa (raw, json) Hash identifier: 7P9QGIuS2YxmoaQtTvokUjWFQu4qLuQF/pm4P1jB/wE= Subject key identifier: B8:38:EE:17:62:BB:6B:5B:8C:5A:60:1D:B6:B2:74:B3:FB:35:D2:CF Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 02 Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/C0C401905AE311EF90924C30C4F9AE02.roa Signing time: Thu 15 Aug 2024 08:52:51 +0000 ROA not before: Thu 15 Aug 2024 08:52:51 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151663 IP address blocks: 2001:df4:2b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Aug 15 08:52:51 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bdc1e3-c9a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:32:f6:51:a3:c6:5d:92:81:02:77:91:9e:83: d1:ca:12:d6:51:72:3f:65:57:f0:de:93:91:d9:f1: 79:f8:e4:85:e2:92:5c:26:38:c1:65:b8:81:96:35: 34:df:62:09:53:98:a9:24:5b:f8:a7:4c:e5:6e:b3: 56:59:0b:47:f2:8a:6c:03:1e:ab:3b:50:a1:5c:1a: c0:8a:a0:23:0e:f3:d8:2a:2a:28:79:4f:5d:5b:44: 41:da:21:34:12:71:15:5a:81:1e:cd:52:9b:16:57: 15:19:6a:22:77:c6:58:fe:57:a3:8b:22:af:b7:5e: 1b:1a:2f:8f:bb:a4:28:65:50:f5:f6:59:36:7e:26: ee:1a:8e:10:60:eb:d0:b5:d3:9b:1a:1e:ba:8e:3c: 10:b4:52:da:f8:6f:9a:0f:bb:0c:31:a7:ac:2f:ce: aa:47:a8:da:36:cc:e8:90:f4:4d:3c:4d:5b:d6:7c: a5:19:b9:80:c3:90:44:8e:3b:d3:83:91:28:fb:2f: ae:5a:8a:82:d6:a4:b1:6c:04:f2:2b:25:98:15:35: ff:69:be:ee:69:d5:5b:ca:be:1e:4a:09:36:87:a3: f6:6e:09:86:60:c5:a1:35:df:d4:11:bd:09:36:9f: 85:d2:da:fc:79:f2:37:7b:ad:46:27:ed:36:b6:00: f3:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:38:EE:17:62:BB:6B:5B:8C:5A:60:1D:B6:B2:74:B3:FB:35:D2:CF X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/C0C401905AE311EF90924C30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:2b40::/48 Signature Algorithm: sha256WithRSAEncryption 8c:d5:8d:f6:e7:e6:49:f4:91:c1:23:3c:b1:89:05:01:ad:9d: 68:a9:a3:5a:cb:9d:0e:58:da:bb:37:99:3d:99:53:f4:37:04: bd:15:92:89:d0:fe:a8:12:e2:f4:27:0c:37:cd:a2:4e:f2:f7: 41:ba:94:62:65:1b:d8:22:10:38:1a:8b:88:6f:f5:55:c4:e3: 6f:94:c6:a2:dd:66:2c:ae:0c:f6:9b:0a:20:8d:8d:1c:71:85: 6c:ee:e0:c9:c8:8d:ed:a4:eb:fd:de:7b:e0:3f:29:62:d5:2e: 9b:35:b7:36:9c:09:0d:6a:66:a3:78:04:c5:1f:5a:9a:d7:04: f7:b3:17:3e:e5:43:1d:17:22:f9:b7:81:45:22:e9:bf:8d:76: 86:5a:c0:c9:65:68:f3:5a:09:15:1b:6f:7f:4b:b2:4a:26:ca: bd:f1:c5:1e:75:32:68:f6:1f:2c:14:ee:c0:f6:a7:0b:17:48: 54:a7:cb:7d:81:8c:48:32:eb:32:16:b4:38:a1:4b:ef:c3:1e: e2:7a:c4:82:85:54:16:5f:7f:58:a4:30:0a:e5:37:cd:41:8c: f3:bf:0d:1d:93:54:88:82:e9:1f:a8:01:f4:08:97:45:cb:5e: 23:df:85:9c:e7:c9:cd:6f:06:fa:3f:6e:c7:db:33:e2:45:32: f8:cc:54:7d -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RDU5NjExMC8GA1UEBRMoNzIyNjA4MEU3QzY1MjUyMzQzOTYyODY2QjMxMzlGMDIz ODcyQzQwMjAeFw0yNDA4MTUwODUyNTFaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmRjMWUzLWM5YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJMvZRo8ZdkoECd5Geg9HKEtZRcj9lV/Dek5HZ8Xn45IXiklwmOMFluIGWNTTf YglTmKkkW/inTOVus1ZZC0fyimwDHqs7UKFcGsCKoCMO89gqKih5T11bREHaITQS cRVagR7NUpsWVxUZaiJ3xlj+V6OLIq+3XhsaL4+7pChlUPX2WTZ+Ju4ajhBg69C1 05saHrqOPBC0Utr4b5oPuwwxp6wvzqpHqNo2zOiQ9E08TVvWfKUZuYDDkESOO9OD kSj7L65aioLWpLFsBPIrJZgVNf9pvu5p1VvKvh5KCTaHo/ZuCYZgxaE139QRvQk2 n4XS2vx58jd7rUYn7Ta2APN1AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUuDjuF2K7 a1uMWmAdtrJ0s/s10s8wHwYDVR0jBBgwFoAUciYIDnxlJSNDlihmsxOfAjhyxAIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVENTk2LzBERTIzRTE2NUFF MzExRUY5MzJDMjMyRkM0RjlBRTAyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhB SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2lZSURueGxKU05EbGlobXN4T2ZBamh5eEFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9DMEM0MDE5MDVB RTMxMUVGOTA5MjRDMzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQrQDANBgkqhkiG9w0BAQsFAAOCAQEAjNWN9ufmSfSR wSM8sYkFAa2daKmjWsudDljauzeZPZlT9DcEvRWSidD+qBLi9CcMN82iTvL3QbqU YmUb2CIQOBqLiG/1VcTjb5TGot1mLK4M9psKII2NHHGFbO7gyciN7aTr/d574D8p YtUumzW3NpwJDWpmo3gExR9amtcE97MXPuVDHRci+beBRSLpv412hlrAyWVo81oJ FRtvf0uySibKvfHFHnUyaPYfLBTuwPanCxdIVKfLfYGMSDLrMha0OKFL78Me4nrE goVUFl9/WKQwCuU3zUGM878NHZNUiILpH6gB9AiXRcteI9+FnOfJzW8G+j9ux9sz 4kUy+MxUfQ== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:27 2024 by rpki-client on console-fra.rpki-client.org