$ rpki-client -vvf rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/12702794577711ECB7FD0C6FC4F9AE02.roa File: 12702794577711ECB7FD0C6FC4F9AE02.roa (raw, json) Hash identifier: NTwcziLMtFlTStig4CVAU0N2D/vr7vauF4cZRlhZ38s= Subject key identifier: 0A:59:21:E2:64:92:B1:7E:2C:A4:41:38:77:9C:7D:F0:0C:B6:9B:A7 Certificate issuer: /CN=A91F39A9/serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Certificate serial: 03B0 Authority key identifier: BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/12702794577711ECB7FD0C6FC4F9AE02.roa Signing time: Wed 17 Jul 2024 01:42:50 +0000 ROA not before: Wed 17 Jul 2024 01:42:50 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 18196 IP address blocks: 2400:3c20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 944 (0x3b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F39A9/serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Validity Not Before: Jul 17 01:42:50 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6697219a-4ccd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d7:4f:28:a8:d8:ba:8d:af:4c:3b:ba:45:c6: bc:31:c0:e7:a0:dd:38:10:2e:49:74:93:de:08:3d: f5:cc:45:c4:fb:85:ce:d0:8e:0a:52:74:31:51:0d: 17:6e:a7:68:b6:ec:cc:dc:67:0e:d4:77:3e:90:54: 43:4c:6e:7c:7b:01:c5:a2:11:81:5d:47:aa:b6:13: b9:49:be:4c:9c:63:f8:e4:b4:a9:63:33:dd:11:24: 84:9a:a9:13:45:d9:b6:ef:a4:ea:46:7f:09:30:56: bc:01:d6:23:b4:a2:cd:b4:bb:d3:3e:14:98:72:70: 10:9d:68:b3:80:c2:a5:f6:00:3e:2b:f5:89:4e:2d: 38:e9:fd:04:ee:90:06:75:bf:60:03:f5:dd:bd:bd: 39:7b:2b:15:7d:79:c6:56:70:f6:be:3d:a1:16:61: e0:78:89:fe:6d:98:cc:fd:43:2d:90:ea:7d:9a:41: 4e:65:1a:60:b9:d4:9a:62:4f:cd:1f:87:ad:18:4e: ce:ec:7f:a7:34:6a:33:f1:2f:34:69:12:88:e2:48: 53:f8:52:96:e6:d6:27:01:92:ab:f4:b2:9d:b0:6e: dc:f9:18:3e:e9:86:68:62:4b:f6:89:b3:f4:aa:27: 98:8a:ec:c8:f2:17:dc:ce:02:8f:d5:0b:6f:06:21: c9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:59:21:E2:64:92:B1:7E:2C:A4:41:38:77:9C:7D:F0:0C:B6:9B:A7 X509v3 Authority Key Identifier: keyid:BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/12702794577711ECB7FD0C6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:3c20::/32 Signature Algorithm: sha256WithRSAEncryption 18:0a:fb:78:c2:5e:9a:01:40:34:c5:b8:7c:6d:23:ba:62:0c: ea:95:d9:30:15:9b:f6:87:6d:ea:29:19:72:a5:9e:bd:49:87: 02:17:fa:37:b5:1b:e4:3c:2d:43:27:e4:89:7a:82:c4:e1:94: cd:63:e9:53:f4:94:04:fe:08:e1:1c:d0:c5:c8:54:a7:31:70: 79:3b:c0:67:7d:84:93:83:be:e0:82:b3:54:27:3e:d6:95:61: cc:cd:13:4e:89:a2:d7:7c:ea:4c:ef:89:28:4b:ad:5e:7f:85: 26:f6:4a:d6:78:52:dd:23:00:a0:ae:75:4b:72:c2:1a:69:7f: 04:92:cc:a3:cb:c9:bb:db:b1:60:c2:0a:e7:e2:cc:7d:19:d0: 0d:e5:e8:ee:c5:f8:0b:ea:7d:61:9e:b7:24:89:2a:be:5e:25: a9:5a:9c:c4:e0:29:0c:3c:7b:5d:6e:b6:81:3b:da:d8:50:d5: ba:7a:dd:20:8e:77:d0:e0:fe:76:68:ea:4b:3f:8a:71:78:3d: 71:71:02:75:01:a9:47:ef:f1:13:f9:37:c0:21:8b:2e:cd:73: 86:28:b3:45:ef:ba:70:bc:67:a9:79:2a:33:f7:75:96:ca:e3: 9b:71:a9:60:2f:ae:a6:bf:fa:bd:34:bd:6d:90:fa:2d:bc:8b: 95:ee:e3:fd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICA7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5QTkxMTAvBgNVBAUTKEJCN0ZCOTU3QkQ2RDE4NEEwODkyMzE2OTRDRjgzODlE QjY4OEZFNTMwHhcNMjQwNzE3MDE0MjUwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3MjE5YS00Y2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5tdPKKjYuo2vTDu6Rca8McDnoN04EC5JdJPeCD31zEXE+4XO0I4KUnQxUQ0X bqdotuzM3GcO1Hc+kFRDTG58ewHFohGBXUeqthO5Sb5MnGP45LSpYzPdESSEmqkT Rdm276TqRn8JMFa8AdYjtKLNtLvTPhSYcnAQnWizgMKl9gA+K/WJTi046f0E7pAG db9gA/Xdvb05eysVfXnGVnD2vj2hFmHgeIn+bZjM/UMtkOp9mkFOZRpgudSaYk/N H4etGE7O7H+nNGoz8S80aRKI4khT+FKW5tYnAZKr9LKdsG7c+Rg+6YZoYkv2ibP0 qieYiuzI8hfczgKP1QtvBiHJyQIDAQABo4ICljCCApIwHQYDVR0OBBYEFApZIeJk krF+LKRBOHecffAMtpunMB8GA1UdIwQYMBaAFLt/uVe9bRhKCJIxaUz4OJ22iP5T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzlBOS81MjU0ODZCODU2 NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdFb0lrakZwVFBnNG5iYUlf bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzLTVWNzF0R0VvSWtqRnBUUGc0bmJhSV9sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM5QTkvNTI1NDg2Qjg1NjYyMTFFQ0I4RUM3MzMxQzRGOUFFMDIvMTI3MDI3OTQ1 Nzc3MTFFQ0I3RkQwQzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkADwgMA0GCSqGSIb3DQEBCwUAA4IBAQAYCvt4wl6aAUA0 xbh8bSO6YgzqldkwFZv2h23qKRlypZ69SYcCF/o3tRvkPC1DJ+SJeoLE4ZTNY+lT 9JQE/gjhHNDFyFSnMXB5O8BnfYSTg77ggrNUJz7WlWHMzRNOiaLXfOpM74koS61e f4Um9krWeFLdIwCgrnVLcsIaaX8Eksyjy8m727Fgwgrn4sx9GdAN5ejuxfgL6n1h nrckiSq+XiWpWpzE4CkMPHtdbraBO9rYUNW6et0gjnfQ4P52aOpLP4pxeD1xcQJ1 AalH7/ET+TfAIYsuzXOGKLNF77pwvGepeSoz93WWyuObcalgL66mv/q9NL1tkPot vIuV7uP9 -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:39 2024 by rpki-client on console-fra.rpki-client.org