$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/8663E8B6658A11E9930DC678C4F9AE02.roa File: 8663E8B6658A11E9930DC678C4F9AE02.roa (raw, json) Hash identifier: nnsGbqSAK23dzd+NhzAKnl4RNtdUbFKnIUPab2S+fr0= Subject key identifier: 58:F2:C0:2F:72:D5:CC:1E:E0:63:F3:A1:E6:5E:BC:F9:37:4D:23:34 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0EFD Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/8663E8B6658A11E9930DC678C4F9AE02.roa Signing time: Thu 20 Jun 2024 18:08:58 +0000 ROA not before: Thu 20 Jun 2024 18:08:58 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138966 IP address blocks: 2402:b940:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3837 (0xefd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Jun 20 18:08:58 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66747039-71d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f3:d6:1b:c8:76:e1:d8:b7:e1:68:d1:e3:99: d8:f8:1f:32:a0:d6:c3:c4:4a:dd:b3:e9:c5:d4:6e: 3a:3d:32:47:c5:53:75:eb:85:50:c6:fe:c5:35:6f: d9:b0:78:f7:58:2a:74:dd:74:3d:9d:a9:89:9b:7f: c1:dc:36:a2:23:f2:53:2c:1c:4a:58:04:af:0a:eb: c1:75:b3:26:84:d9:b4:b4:db:fa:37:32:ba:1a:2a: a1:3d:46:4f:d5:1c:3c:fb:21:54:a6:a0:f0:38:58: 81:66:b5:94:eb:92:b7:bd:88:a6:73:1f:ff:51:01: 09:72:0c:06:ad:96:85:83:5f:b7:66:a7:b2:69:79: e9:05:de:4c:a5:6b:3f:4d:c4:08:1f:58:b3:48:92: 02:25:64:3e:c9:16:bb:15:33:e8:7c:12:02:3f:c2: 4e:ea:14:f1:3c:53:7d:d7:ee:52:6e:d5:5a:b1:7c: b8:6c:2e:7a:c0:d6:23:93:c0:36:c3:56:09:09:48: 1b:7d:67:1d:59:2d:32:09:74:3f:ab:e4:91:24:5a: 10:15:b2:98:22:aa:5e:6f:3b:c3:c3:7b:28:e1:8e: d0:50:7e:d7:35:92:79:d8:06:ad:71:e2:28:be:27: 17:40:b4:f8:f2:b8:a2:98:d6:51:7f:1e:ac:fb:ee: a5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F2:C0:2F:72:D5:CC:1E:E0:63:F3:A1:E6:5E:BC:F9:37:4D:23:34 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/8663E8B6658A11E9930DC678C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:b940:100::/40 Signature Algorithm: sha256WithRSAEncryption 9c:fe:8b:ea:ba:bc:25:23:ee:5b:a9:9a:2d:0a:09:e5:95:f3: 2b:96:75:ab:b4:ef:4a:9c:ff:63:65:1b:67:5a:f6:36:a4:b9: 4c:d2:4f:7b:7e:8d:d6:e1:2c:2c:f6:cc:9c:f3:5c:72:54:0d: c7:62:11:dc:72:cb:57:22:35:24:5e:27:21:e7:a8:05:cd:2f: 30:13:19:1e:1d:3b:e4:5b:8f:eb:4c:86:8d:93:86:c8:f5:1a: ba:d4:99:cc:29:78:f9:76:1a:48:a5:78:d4:35:4b:cd:cd:f3: c3:92:28:28:46:02:b4:ca:96:be:e9:6d:8f:89:62:c2:f7:4e: c4:8f:7a:52:32:0b:c5:35:f6:90:5e:cd:2a:8a:e3:af:09:cf: 11:ed:1b:03:33:b0:f3:42:c8:76:10:8c:07:c0:bb:bd:56:f8: 5e:97:bc:26:c5:8b:d1:ac:98:b4:32:cd:f4:c5:9c:65:62:25: 86:43:72:7d:7a:1c:c7:0d:3a:01:63:5a:e1:1e:63:bc:b6:46: 44:e2:7d:80:99:d9:26:85:c7:8e:2e:cf:d8:22:61:a4:0a:68: 3c:2f:f1:59:66:7d:4d:c0:da:21:fb:da:7f:7a:7f:b9:13:76: e9:66:ff:27:a1:a3:db:28:c2:46:23:1c:3c:f2:96:13:5c:cb: b3:79:de:d2 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICDv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjQwNjIwMTgwODU4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc0NzAzOS03MWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPPWG8h24di34WjR45nY+B8yoNbDxErds+nF1G46PTJHxVN164VQxv7FNW/Z sHj3WCp03XQ9namJm3/B3DaiI/JTLBxKWASvCuvBdbMmhNm0tNv6NzK6GiqhPUZP 1Rw8+yFUpqDwOFiBZrWU65K3vYimcx//UQEJcgwGrZaFg1+3ZqeyaXnpBd5MpWs/ TcQIH1izSJICJWQ+yRa7FTPofBICP8JO6hTxPFN91+5SbtVasXy4bC56wNYjk8A2 w1YJCUgbfWcdWS0yCXQ/q+SRJFoQFbKYIqpebzvDw3so4Y7QUH7XNZJ52AatceIo vicXQLT48riimNZRfx6s++6l+QIDAQABo4IClzCCApMwHQYDVR0OBBYEFFjywC9y 1cwe4GPzoeZevPk3TSM0MB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNGMDIvQ0NBQjU3NTA2M0YwMTFFOUE5QkNBMTQxQzRGOUFFMDIvODY2M0U4QjY2 NThBMTFFOTkzMERDNjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkArlAATANBgkqhkiG9w0BAQsFAAOCAQEAnP6L6rq8JSPu W6maLQoJ5ZXzK5Z1q7TvSpz/Y2UbZ1r2NqS5TNJPe36N1uEsLPbMnPNcclQNx2IR 3HLLVyI1JF4nIeeoBc0vMBMZHh075FuP60yGjZOGyPUautSZzCl4+XYaSKV41DVL zc3zw5IoKEYCtMqWvultj4liwvdOxI96UjILxTX2kF7NKorjrwnPEe0bAzOw80LI dhCMB8C7vVb4Xpe8JsWL0ayYtDLN9MWcZWIlhkNyfXocxw06AWNa4R5jvLZGROJ9 gJnZJoXHji7P2CJhpApoPC/xWWZ9TcDaIfvaf3p/uRN26Wb/J6Gj2yjCRiMcPPKW E1zLs3ne0g== -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:26 2024 by rpki-client on console-fra.rpki-client.org