$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/14C4C7D4002611EFBD462953C4F9AE02.roa File: 14C4C7D4002611EFBD462953C4F9AE02.roa (raw, json) Hash identifier: hi6S2Mh9Zc0AeJAKr2eaBvvBpbecYaUaD50MlmI4NaA= Subject key identifier: 4E:7C:61:66:6C:72:BF:00:73:32:14:C3:0A:C5:F9:41:34:F0:B7:A3 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 0119 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/14C4C7D4002611EFBD462953C4F9AE02.roa Signing time: Thu 29 Aug 2024 23:55:39 +0000 ROA not before: Thu 29 Aug 2024 23:55:39 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 216183 IP address blocks: 2401:b60:19::/48 maxlen: 48 2401:b60:20::/48 maxlen: 48 2401:b60:21::/48 maxlen: 48 2401:b60:210::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:10:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Aug 29 23:55:39 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66d10a7a-4f2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bd:63:32:97:68:5b:d7:7d:80:df:ef:95:5f: df:91:49:91:7b:59:aa:dc:89:28:fd:24:6a:90:bf: b7:91:01:5d:3b:08:4b:2b:17:ca:db:e9:5a:d0:2f: 14:b3:a6:7a:c8:85:cb:b6:5c:03:f8:b2:9c:fe:b2: 15:89:fe:cb:7c:a7:73:de:dc:2f:cb:4e:84:ac:ee: f7:3b:6a:18:7c:43:e3:00:2b:ba:d9:45:7a:fd:71: a8:16:6b:40:bc:a4:09:71:db:8d:d5:1e:9e:fb:af: 02:26:0b:c9:c5:0d:e0:fb:bc:1f:73:6d:43:04:df: 9d:32:ed:9b:97:3e:99:cf:52:ae:25:37:d2:31:50: fd:25:b9:81:49:02:5b:22:23:7e:92:76:2c:4c:2e: 31:e6:77:4b:12:72:4e:00:6b:27:5f:74:43:1b:59: 19:d1:cc:95:be:bd:59:3b:83:8e:14:06:2e:38:8e: dd:8d:3d:21:d9:ac:43:98:b0:0a:24:db:8c:d6:bb: 22:86:75:be:4e:44:37:1b:91:e9:16:77:b5:de:26: 26:e2:1d:e4:44:d1:0f:94:a1:27:62:c5:99:e3:5b: af:51:54:cb:fb:92:ed:54:05:05:9e:cd:88:71:ff: 5b:59:57:fc:03:f5:3c:0f:5f:d3:e5:fd:2c:9b:05: 40:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:7C:61:66:6C:72:BF:00:73:32:14:C3:0A:C5:F9:41:34:F0:B7:A3 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/14C4C7D4002611EFBD462953C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:19::/48 2401:b60:20::/47 2401:b60:210::/44 Signature Algorithm: sha256WithRSAEncryption 06:ac:f0:c6:5c:88:d3:18:f3:35:6b:32:9d:a7:65:90:96:b7: 37:77:6a:25:bd:5f:46:43:dd:11:79:22:1a:f3:80:8c:7d:89: 2d:a8:24:28:92:8e:be:8a:7f:d4:29:c6:9e:0e:01:4c:41:0a: 08:5f:e3:18:50:bb:7e:46:fb:44:2f:00:5d:da:bf:9b:65:b9: 82:23:20:11:e9:f5:0b:62:4c:5a:b2:4b:d5:34:7e:87:62:fb: 88:d3:c0:d6:f0:ff:28:e3:58:09:ee:f8:42:90:78:02:1b:9f: 31:0b:16:1d:a3:e1:88:12:f6:ce:22:bc:68:f8:27:f2:1e:ff: fe:d9:fa:b2:ce:06:d1:3a:c1:1c:3b:6d:1f:16:ae:03:b9:27: dc:b7:05:74:c7:76:71:c9:99:a0:c6:e2:ce:ae:30:9f:f1:6d: f7:26:eb:19:55:2f:65:81:02:ef:0e:74:27:2b:7b:65:c2:1c: 19:14:c4:2d:2a:2d:be:ad:a5:50:08:6d:5b:86:d8:11:5e:c2: 27:0d:39:fa:f3:b8:ea:b2:cc:89:e4:dd:29:dd:eb:41:a9:67: a8:ac:08:eb:c0:67:1a:75:d1:24:37:89:a8:97:d1:14:b9:83: 8f:59:bf:56:91:ba:5a:84:9f:9e:2a:31:d2:48:c0:2c:74:d7: 48:5c:3e:c7 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjQwODI5MjM1NTM5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxMGE3YS00ZjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuL1jMpdoW9d9gN/vlV/fkUmRe1mq3Iko/SRqkL+3kQFdOwhLKxfK2+la0C8U s6Z6yIXLtlwD+LKc/rIVif7LfKdz3twvy06ErO73O2oYfEPjACu62UV6/XGoFmtA vKQJcduN1R6e+68CJgvJxQ3g+7wfc21DBN+dMu2blz6Zz1KuJTfSMVD9JbmBSQJb IiN+knYsTC4x5ndLEnJOAGsnX3RDG1kZ0cyVvr1ZO4OOFAYuOI7djT0h2axDmLAK JNuM1rsihnW+TkQ3G5HpFne13iYm4h3kRNEPlKEnYsWZ41uvUVTL+5LtVAUFns2I cf9bWVf8A/U8D1/T5f0smwVAvwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFE58YWZs cr8AczIUwwrF+UE08LejMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvMTRDNEM3RDQw MDI2MTFFRkJENDYyOTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgACMBsDBwAkAQtgABkDBwEkAQtgACADBwQkAQtgAhAwDQYJKoZIhvcN AQELBQADggEBAAas8MZciNMY8zVrMp2nZZCWtzd3aiW9X0ZD3RF5IhrzgIx9iS2o JCiSjr6Kf9Qpxp4OAUxBCghf4xhQu35G+0QvAF3av5tluYIjIBHp9QtiTFqyS9U0 fodi+4jTwNbw/yjjWAnu+EKQeAIbnzELFh2j4YgS9s4ivGj4J/Ie//7Z+rLOBtE6 wRw7bR8WrgO5J9y3BXTHdnHJmaDG4s6uMJ/xbfcm6xlVL2WBAu8OdCcre2XCHBkU xC0qLb6tpVAIbVuG2BFewicNOfrzuOqyzInk3Snd60GpZ6isCOvAZxp10SQ3iaiX 0RS5g49Zv1aRulqEn54qMdJIwCx010hcPsc= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:18 2024 by rpki-client on console-ams.rpki-client.org