$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/F042F19A911311EF9A1A7F54C4F9AE02.roa File: F042F19A911311EF9A1A7F54C4F9AE02.roa (raw, json) Hash identifier: hBFHKnjfNPkSPQ8LFBtT/taQcDMk7/Q7iyGIaAxoH34= Subject key identifier: D9:F0:FF:A3:B4:6B:E9:A0:57:9C:3D:33:2F:3B:03:9C:B1:BE:BE:CF Certificate issuer: /CN=A91EFCFF/serialNumber=EBFBD4CB9B58AC082D3F382987A597A58C96BA91 Certificate serial: 0D Authority key identifier: EB:FB:D4:CB:9B:58:AC:08:2D:3F:38:29:87:A5:97:A5:8C:96:BA:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6_vUy5tYrAgtPzgph6WXpYyWupE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/F042F19A911311EF9A1A7F54C4F9AE02.roa Signing time: Wed 23 Oct 2024 07:53:49 +0000 ROA not before: Wed 23 Oct 2024 07:53:49 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142165 IP address blocks: 2401:bfe0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/6_vUy5tYrAgtPzgph6WXpYyWupE.crl rsync://rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/6_vUy5tYrAgtPzgph6WXpYyWupE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6_vUy5tYrAgtPzgph6WXpYyWupE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 07:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFCFF/serialNumber=EBFBD4CB9B58AC082D3F382987A597A58C96BA91 Validity Not Before: Oct 23 07:53:49 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6718ab8d-fa79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:42:ce:f9:23:2f:cd:8f:82:2a:88:00:d5:1d: 16:10:6b:15:bd:ee:43:32:56:96:33:2e:73:08:71: a9:0c:11:bd:c0:8c:92:54:b1:32:f3:98:6d:6a:43: 94:14:4f:8e:9e:f5:15:82:55:ad:4a:8b:e6:cf:ea: 23:23:f8:8e:45:07:d7:39:5a:43:47:86:48:d0:77: ed:65:30:82:ae:45:11:df:14:9c:89:eb:2b:dd:97: 77:c1:3a:29:3a:ee:c9:a0:7a:36:3a:32:37:8e:16: d2:08:5f:bc:00:34:3c:4b:62:01:62:f2:c6:75:7e: 11:fc:e7:14:7f:e9:2b:9d:52:d1:d0:33:0e:91:87: 78:8d:ca:84:45:03:23:c3:ba:20:36:ac:8a:46:70: 3d:d4:75:3d:97:02:a4:dc:f7:51:f6:f5:49:4d:e3: c5:c3:3c:cc:2d:ad:1f:41:db:39:35:ae:5d:4a:47: dc:b9:e8:b3:d3:74:47:ff:13:bd:61:a8:4e:46:b2: ca:92:34:05:aa:e1:2b:93:a3:d9:ea:d5:50:d9:4e: 3a:c9:0f:c0:34:35:d7:59:b0:95:4f:c5:94:3e:26: 7e:b4:af:a7:0a:02:9a:b4:66:22:cc:b1:f2:35:f1: 98:89:9e:5d:65:ee:8a:16:b1:83:6a:c0:12:4a:db: 36:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F0:FF:A3:B4:6B:E9:A0:57:9C:3D:33:2F:3B:03:9C:B1:BE:BE:CF X509v3 Authority Key Identifier: keyid:EB:FB:D4:CB:9B:58:AC:08:2D:3F:38:29:87:A5:97:A5:8C:96:BA:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/6_vUy5tYrAgtPzgph6WXpYyWupE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6_vUy5tYrAgtPzgph6WXpYyWupE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/F042F19A911311EF9A1A7F54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:bfe0::/32 Signature Algorithm: sha256WithRSAEncryption 74:18:9d:de:f5:b0:9a:fd:17:fb:11:f1:58:cf:ff:09:25:30: b9:a8:05:ce:9f:5a:a6:15:6a:d8:ab:2a:95:d3:d5:41:ac:a0: 08:3b:04:9b:ec:65:3c:6e:12:b4:05:84:4c:9c:0d:41:5c:37: a3:e8:dc:3f:4b:f5:d8:48:84:26:5c:eb:f8:c7:23:a2:a1:67: 67:c5:38:ff:6a:f1:fb:5f:e2:b9:ad:57:96:df:ae:6f:94:eb: c0:c4:d2:e3:d8:24:22:d1:e4:bc:26:71:32:fa:bf:44:d7:6d: 69:88:51:fa:48:39:ca:f9:78:89:4a:c9:2c:ee:ca:c8:3e:8b: e2:83:cc:fe:5f:84:30:15:09:aa:d5:69:22:77:84:39:47:64: 9b:06:c1:5f:99:43:59:f3:56:4a:33:99:a4:1b:4e:82:69:7d: 4f:62:a4:e2:0f:f0:af:a5:cf:4b:86:9c:1e:a2:6b:98:09:9e: be:db:b9:82:26:c2:15:d9:45:f5:b8:d1:5a:90:70:ea:76:fe: 08:b5:9c:31:e0:2c:ec:58:50:4f:d3:44:42:75:11:37:e0:67: e7:8d:9a:3a:cc:db:7b:fa:7a:37:11:5e:35:73:a9:56:72:0a: d8:49:99:fc:40:bc:f7:68:7a:b9:0e:9c:81:18:17:92:ee:5a: 29:e5:02:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RkNGRjExMC8GA1UEBRMoRUJGQkQ0Q0I5QjU4QUMwODJEM0YzODI5ODdBNTk3QTU4 Qzk2QkE5MTAeFw0yNDEwMjMwNzUzNDlaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MThhYjhkLWZhNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLQs75Iy/Nj4IqiADVHRYQaxW97kMyVpYzLnMIcakMEb3AjJJUsTLzmG1qQ5QU T46e9RWCVa1Ki+bP6iMj+I5FB9c5WkNHhkjQd+1lMIKuRRHfFJyJ6yvdl3fBOik6 7smgejY6MjeOFtIIX7wANDxLYgFi8sZ1fhH85xR/6SudUtHQMw6Rh3iNyoRFAyPD uiA2rIpGcD3UdT2XAqTc91H29UlN48XDPMwtrR9B2zk1rl1KR9y56LPTdEf/E71h qE5GssqSNAWq4SuTo9nq1VDZTjrJD8A0NddZsJVPxZQ+Jn60r6cKApq0ZiLMsfI1 8ZiJnl1l7ooWsYNqwBJK2zZ1AgMBAAGjggKWMIICkjAdBgNVHQ4EFgQU2fD/o7Rr 6aBXnD0zLzsDnLG+vs8wHwYDVR0jBBgwFoAU6/vUy5tYrAgtPzgph6WXpYyWupEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGQ0ZGLzE4QUNFM0Y2ODIx RjExRUZBMURCNEM3NUM0RjlBRTAyLzZfdlV5NXRZckFndFB6Z3BoNldYcFl5V3Vw RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNl92VXk1dFlyQWd0UHpncGg2V1hwWXlXdXBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkNGRi8xOEFDRTNGNjgyMUYxMUVGQTFEQjRDNzVDNEY5QUUwMi9GMDQyRjE5QTkx MTMxMUVGOUExQTdGNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBv+AwDQYJKoZIhvcNAQELBQADggEBAHQYnd71sJr9F/sR 8VjP/wklMLmoBc6fWqYVatirKpXT1UGsoAg7BJvsZTxuErQFhEycDUFcN6Po3D9L 9dhIhCZc6/jHI6KhZ2fFOP9q8ftf4rmtV5bfrm+U68DE0uPYJCLR5LwmcTL6v0TX bWmIUfpIOcr5eIlKySzuysg+i+KDzP5fhDAVCarVaSJ3hDlHZJsGwV+ZQ1nzVkoz maQbToJpfU9ipOIP8K+lz0uGnB6ia5gJnr7buYImwhXZRfW40VqQcOp2/gi1nDHg LOxYUE/TREJ1ETfgZ+eNmjrM23v6ejcRXjVzqVZyCthJmfxAvPdoerkOnIEYF5Lu WinlAhc= -----END CERTIFICATE-----Generated at Wed Oct 23 09:59:05 2024 by rpki-client on console-ams.rpki-client.org