$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/2EC0897A740C11EFB881CE37C4F9AE02.roa File: 2EC0897A740C11EFB881CE37C4F9AE02.roa (raw, json) Hash identifier: C+VHhvYJIxJRl2QjSKnvrnjeERAfLrb94Vm3sllfwRo= Subject key identifier: BC:20:A6:4D:03:59:04:9B:1A:8E:F6:F5:4E:DA:E1:D9:A8:4A:5F:7D Certificate issuer: /CN=A91EE92F/serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Certificate serial: 02 Authority key identifier: E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/2EC0897A740C11EFB881CE37C4F9AE02.roa Signing time: Mon 16 Sep 2024 09:15:14 +0000 ROA not before: Mon 16 Sep 2024 09:15:14 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153329 IP address blocks: 2401:c460::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE92F/serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Validity Not Before: Sep 16 09:15:14 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66e7f722-6ad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:16:c0:8d:cb:78:d7:8d:be:5d:cf:51:d9:69: 39:52:71:9b:09:3c:54:5c:af:53:fa:03:fc:f1:e0: a6:3e:64:7a:d9:36:9f:6d:6f:00:b4:73:6f:76:04: 67:44:9d:a0:75:2e:39:3b:5d:79:47:59:76:d1:2f: d5:d1:f4:f3:92:1e:56:e7:e5:74:a9:61:c0:63:e5: a9:7d:9c:2b:f4:08:4f:ee:8b:e5:91:2b:d6:c5:9e: 3b:3d:6e:2c:e3:0d:82:98:78:ef:d3:54:64:06:93: 9b:02:3e:eb:cf:31:9f:b6:59:68:cd:70:f9:96:3c: d7:1d:3c:e4:4a:11:7f:03:13:13:7a:92:f1:1d:15: 00:90:ee:40:f0:54:b7:9c:bf:fb:3e:8b:d6:a4:65: 9d:4b:ca:94:e8:b1:a8:7e:b5:63:a8:3a:e3:65:27: cb:cf:0a:c1:c1:7a:70:37:2c:21:96:e0:50:a7:91: d6:c1:4c:c0:04:2f:e8:87:58:9f:ea:b0:d8:f2:7b: 48:01:0f:5a:a7:db:b7:cd:e4:b0:ec:d0:96:2b:c0: 79:8d:aa:ee:60:71:ab:e7:d6:25:14:24:01:47:21: f1:07:3b:89:1f:fe:95:17:67:0d:b2:55:c6:06:32: ad:e7:7e:1e:e4:cf:56:d0:17:24:01:60:1e:77:a6: ce:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:20:A6:4D:03:59:04:9B:1A:8E:F6:F5:4E:DA:E1:D9:A8:4A:5F:7D X509v3 Authority Key Identifier: keyid:E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/2EC0897A740C11EFB881CE37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:c460::/32 Signature Algorithm: sha256WithRSAEncryption 2b:1d:28:32:1f:2a:aa:88:3e:f1:07:47:85:41:d1:3b:ce:c6: 4b:1a:36:87:cd:57:3f:f5:78:b2:87:d3:cf:b3:f6:a1:96:be: 71:66:89:14:6b:e4:94:18:f7:02:93:33:35:e5:91:42:c2:99: 52:08:a6:20:da:21:a2:35:53:22:9c:8a:2d:00:46:9f:97:17: bc:c3:d4:96:a6:49:31:50:c2:96:e8:ef:72:1e:75:e3:85:15: 2b:77:d7:68:7f:71:b2:9b:a9:59:5a:51:4a:6f:9e:0b:88:f2: 01:b2:26:0a:92:32:6a:13:12:35:43:6a:de:f0:cc:df:8a:94: f9:82:af:ba:c1:56:9b:f4:0c:56:95:db:b9:f3:9f:77:38:0a: 90:1f:0e:c2:5e:43:ca:61:75:ec:cf:31:17:c0:75:73:1c:d4: cf:65:c6:4c:93:b2:2b:8d:24:05:26:e8:42:ca:9b:26:28:12: 28:c8:8c:99:ad:13:ec:bc:1a:af:72:af:ec:f4:be:c3:5e:49: 8f:9e:20:9d:41:ee:72:9c:22:b2:44:34:5c:a0:9c:df:bf:bf: 32:ea:0c:fd:dc:22:1b:40:81:89:8c:40:ce:61:26:75:80:1e: 1b:57:78:69:7c:60:38:f9:c5:c6:e4:01:97:d2:65:eb:94:1a: 5f:6b:93:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTkyRjExMC8GA1UEBRMoRTFENzgzN0VCQ0M3QTlBNEQxNzUxNjU3ODYwNDc2M0Ey QkQwNDI3MjAeFw0yNDA5MTYwOTE1MTRaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTdmNzIyLTZhZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiFsCNy3jXjb5dz1HZaTlScZsJPFRcr1P6A/zx4KY+ZHrZNp9tbwC0c292BGdE naB1Ljk7XXlHWXbRL9XR9POSHlbn5XSpYcBj5al9nCv0CE/ui+WRK9bFnjs9bizj DYKYeO/TVGQGk5sCPuvPMZ+2WWjNcPmWPNcdPORKEX8DExN6kvEdFQCQ7kDwVLec v/s+i9akZZ1LypTosah+tWOoOuNlJ8vPCsHBenA3LCGW4FCnkdbBTMAEL+iHWJ/q sNjye0gBD1qn27fN5LDs0JYrwHmNqu5gcavn1iUUJAFHIfEHO4kf/pUXZw2yVcYG Mq3nfh7kz1bQFyQBYB53ps7nAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUvCCmTQNZ BJsajvb1Ttrh2ahKX30wHwYDVR0jBBgwFoAU4deDfrzHqaTRdRZXhgR2OivQQnIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFOTJGLzFCMjkwQjVFNzQw QjExRUY5RTlDMDMzNkM0RjlBRTAyLzRkZURmcnpIcWFUUmRSWlhoZ1IyT2l2UVFu SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGRlRGZyekhxYVRSZFJaWGhnUjJPaXZRUW5JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTkyRi8xQjI5MEI1RTc0MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi8yRUMwODk3QTc0 MEMxMUVGQjg4MUNFMzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBxGAwDQYJKoZIhvcNAQELBQADggEBACsdKDIfKqqIPvEH R4VB0TvOxksaNofNVz/1eLKH08+z9qGWvnFmiRRr5JQY9wKTMzXlkULCmVIIpiDa IaI1UyKcii0ARp+XF7zD1JamSTFQwpbo73IedeOFFSt312h/cbKbqVlaUUpvnguI 8gGyJgqSMmoTEjVDat7wzN+KlPmCr7rBVpv0DFaV27nzn3c4CpAfDsJeQ8phdezP MRfAdXMc1M9lxkyTsiuNJAUm6ELKmyYoEijIjJmtE+y8Gq9yr+z0vsNeSY+eIJ1B 7nKcIrJENFygnN+/vzLqDP3cIhtAgYmMQM5hJnWAHhtXeGl8YDj5xcbkAZfSZeuU Gl9rk6w= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org