$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/305C2134666211EFB1D51134C4F9AE02.roa File: 305C2134666211EFB1D51134C4F9AE02.roa (raw, json) Hash identifier: 678Vn3LLWwx5u4uELhujFENcUsNRng8pzaOjm9n/20Y= Subject key identifier: 38:94:C2:BD:7F:95:C7:A7:4F:66:DC:31:88:E6:24:C9:86:BE:51:33 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 0118 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/305C2134666211EFB1D51134C4F9AE02.roa Signing time: Thu 29 Aug 2024 23:55:38 +0000 ROA not before: Thu 29 Aug 2024 23:55:38 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 215050 IP address blocks: 2401:b60:fffd::/48 maxlen: 48 2401:b60:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:10:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Aug 29 23:55:38 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66d10a79-555e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7d:28:75:89:75:92:3e:b9:f8:04:c4:ae:86: 94:ae:e6:a1:a4:12:25:74:a8:d2:d8:5a:90:ba:56: a3:c9:92:aa:f2:1c:10:d1:76:6f:55:4e:97:77:1a: c7:7c:8f:49:3d:e0:e2:0c:e4:23:ff:6a:9e:1d:d6: fa:74:28:3f:bb:ed:ed:07:10:7f:e7:c7:0b:4b:90: 48:2b:9a:aa:ca:3c:50:79:37:32:28:46:51:dd:9e: ad:7c:a0:76:08:40:f4:29:1f:60:47:88:72:da:94: 7c:a8:59:b4:e6:5b:89:4d:9c:99:fd:27:6c:d6:19: d2:b4:f9:3b:2d:55:1e:97:87:84:49:e3:cd:dc:fc: f4:17:7a:cd:a9:48:80:1f:93:96:6e:25:88:56:40: 54:88:63:09:82:ea:de:20:70:e7:eb:04:83:c6:c7: e9:76:23:78:7b:77:03:64:ee:ff:4e:2a:56:20:d8: 78:0f:4d:29:e3:52:66:00:c3:46:28:5f:36:e5:fa: 9b:8a:0d:a9:57:21:5f:a1:d5:b1:25:36:cb:db:b9: a1:55:cb:0f:9a:75:88:38:94:0b:51:df:13:73:0f: 6a:1d:0c:a6:d5:c2:f6:dd:b0:0e:c4:b8:51:fa:02: 74:96:8c:5b:b6:f2:87:c3:33:bb:c1:42:14:bb:8b: 9d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:94:C2:BD:7F:95:C7:A7:4F:66:DC:31:88:E6:24:C9:86:BE:51:33 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/305C2134666211EFB1D51134C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:fffd::-2401:b60:fffe:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 28:68:eb:1c:8f:34:69:57:7e:c3:01:04:b5:e3:98:3a:d8:fb: a4:9d:87:c2:36:cb:24:ee:73:95:91:78:6b:8b:2f:cb:1c:fe: ca:fa:ba:18:76:2b:12:80:56:24:0e:25:1a:ad:b8:79:cd:b6: 8e:e9:48:b3:a2:4b:60:01:fe:e6:26:16:99:ff:6a:fb:9c:4b: a7:e6:51:a7:c1:74:fa:cc:7a:b6:24:64:4f:24:3d:38:48:74: 79:0a:69:2b:35:f0:d1:a4:36:5d:6f:b4:89:68:a2:f6:22:6d: a0:a3:f1:35:3f:c5:7c:c5:3f:23:d9:74:7b:c8:02:7c:d5:9e: fe:60:a1:0b:3e:e4:63:e3:4c:33:11:c6:1f:e4:96:b6:41:e4: 09:41:45:87:6a:00:6b:ec:a9:1f:25:42:a3:b0:bc:fe:6f:15: 77:91:20:98:70:40:ee:4b:69:b9:fc:06:fa:c9:61:2a:35:73: 67:90:3c:72:06:a8:ea:06:6f:61:b9:b6:cc:7a:34:4e:aa:2a: d5:5e:87:5f:61:21:37:b0:31:81:5d:02:78:00:b4:0a:27:0b: 13:45:62:a3:f2:46:a5:05:1a:14:49:51:a8:9e:b0:bb:3c:5d: f5:23:df:4a:f3:31:53:fd:ee:41:c2:16:79:3a:e3:52:09:5e: 08:63:13:0c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjQwODI5MjM1NTM4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxMGE3OS01NTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1H0odYl1kj65+ATEroaUruahpBIldKjS2FqQulajyZKq8hwQ0XZvVU6XdxrH fI9JPeDiDOQj/2qeHdb6dCg/u+3tBxB/58cLS5BIK5qqyjxQeTcyKEZR3Z6tfKB2 CED0KR9gR4hy2pR8qFm05luJTZyZ/Sds1hnStPk7LVUel4eESePN3Pz0F3rNqUiA H5OWbiWIVkBUiGMJgureIHDn6wSDxsfpdiN4e3cDZO7/TipWINh4D00p41JmAMNG KF825fqbig2pVyFfodWxJTbL27mhVcsPmnWIOJQLUd8Tcw9qHQym1cL23bAOxLhR +gJ0loxbtvKHwzO7wUIUu4udcQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFDiUwr1/ lcenT2bcMYjmJMmGvlEzMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvMzA1QzIxMzQ2 NjYyMTFFRkIxRDUxMTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHACQBC2D//QMHACQBC2D//jANBgkqhkiG9w0BAQsFAAOC AQEAKGjrHI80aVd+wwEEteOYOtj7pJ2HwjbLJO5zlZF4a4svyxz+yvq6GHYrEoBW JA4lGq24ec22julIs6JLYAH+5iYWmf9q+5xLp+ZRp8F0+sx6tiRkTyQ9OEh0eQpp KzXw0aQ2XW+0iWii9iJtoKPxNT/FfMU/I9l0e8gCfNWe/mChCz7kY+NMMxHGH+SW tkHkCUFFh2oAa+ypHyVCo7C8/m8Vd5EgmHBA7ktpufwG+slhKjVzZ5A8cgao6gZv Ybm2zHo0Tqoq1V6HX2EhN7AxgV0CeAC0CicLE0Vio/JGpQUaFElRqJ6wuzxd9SPf SvMxU/3uQcIWeTrjUgleCGMTDA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:08 2024 by rpki-client on console-fra.rpki-client.org