$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7879B24A3BA611EC8737B534C4F9AE02.roa File: 7879B24A3BA611EC8737B534C4F9AE02.roa (raw, json) Hash identifier: /NNSrkw0/Mb+wg39zz0HMBaPlsqc85X/IL/r2mMHDUM= Subject key identifier: 33:9A:3F:17:0C:94:30:2E:8E:3E:C4:2B:9B:5F:FA:97:CF:F3:15:BB Certificate issuer: /CN=A91F4268/serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Certificate serial: 044B Authority key identifier: 93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7879B24A3BA611EC8737B534C4F9AE02.roa Signing time: Tue 13 Feb 2024 01:53:53 +0000 ROA not before: Tue 13 Feb 2024 01:53:53 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 26506 IP address blocks: 2402:6800:6::/48 maxlen: 48 2402:6800:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4268/serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Validity Not Before: Feb 13 01:53:53 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cacbb1-2edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a8:18:07:39:ef:d9:d3:48:95:01:91:73:ff: 97:e3:81:4c:1d:0d:27:35:b4:73:a9:e8:31:3b:b1: bf:80:6b:d2:9b:34:65:bc:f3:52:a3:fd:63:a3:e6: ad:23:8b:9d:55:2f:3e:e9:b6:3f:e5:2b:7e:3f:07: a5:a2:9d:8c:9d:15:af:c4:c8:40:fc:ce:8c:d9:fa: 30:29:af:bb:0f:99:37:31:d4:13:68:76:98:af:81: e1:63:ce:93:57:93:fd:ab:94:74:6f:67:1f:21:32: 18:a2:6d:d1:5e:70:b0:71:12:f9:33:54:a2:0e:5d: f3:03:f5:6e:05:a3:90:d9:8c:75:58:88:0a:1a:ff: b7:58:39:41:d4:d4:29:79:d6:b9:b2:65:55:e2:ad: e7:93:1f:fa:ba:81:0a:c5:7d:69:48:11:28:b0:ac: 54:6a:17:19:5e:88:17:a0:8c:41:f3:72:98:9f:93: 69:ff:d7:a3:41:5d:2b:bf:02:81:4c:e3:1b:7c:39: 10:62:e2:ed:a6:14:13:61:5d:54:69:f0:42:17:04: 9b:f6:b0:e0:1d:61:cc:3d:56:a6:1a:aa:b5:a4:6b: 3f:73:fa:77:db:24:09:f4:32:df:1b:f8:92:69:1f: a4:05:ae:0e:9b:be:0e:77:0f:9f:d1:d6:69:fc:89: d8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:9A:3F:17:0C:94:30:2E:8E:3E:C4:2B:9B:5F:FA:97:CF:F3:15:BB X509v3 Authority Key Identifier: keyid:93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7879B24A3BA611EC8737B534C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:6800:6::/48 2402:6800:100::/48 Signature Algorithm: sha256WithRSAEncryption 33:01:0d:c9:ad:92:41:b4:7f:7b:4e:cf:78:31:29:b5:00:93: a2:0f:2b:f9:98:83:30:08:33:75:49:e8:f6:e9:86:1a:d5:54: 95:89:2b:6b:55:fb:30:4f:f3:9a:78:4b:8f:24:13:42:b6:de: 5a:86:fb:d4:0e:9c:42:ee:85:f5:b2:1d:bd:a5:8a:d1:96:1d: 3e:08:ff:0d:1d:02:eb:e8:6c:fe:a8:5d:73:ee:63:be:c9:ad: 2d:22:d0:0b:a6:f6:8c:3c:cb:b0:fb:54:df:89:07:86:69:33: 3a:10:88:b0:0f:f7:4f:a8:a1:86:26:61:83:cd:cb:0f:e4:3f: 7d:09:21:29:3b:13:fb:fb:d1:cc:e4:e0:65:ad:ad:a7:85:e4: 73:ef:3d:d2:cb:84:2c:a9:94:86:40:46:5e:1a:b9:fe:a3:89: 99:f6:9d:95:15:6a:ca:d2:93:6b:c0:df:e1:8d:37:1c:ea:4e: c4:7b:48:9e:48:5d:33:97:40:e0:30:8b:a3:bd:6c:96:23:fb: c4:37:c5:a7:c8:db:b9:d1:05:4e:fb:04:de:3c:e4:17:b5:08: 5a:3c:2a:d4:09:1e:be:26:11:d4:bf:7e:cf:9e:25:58:9c:28: 0c:90:83:c1:62:94:2b:62:8d:8e:81:34:b2:32:ad:20:9f:9c: 4d:a9:7d:25 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyNjgxMTAvBgNVBAUTKDkzNzMyRjNGQzMxMzU5QkJCRjhCMzc5NjI0QkY5MTM1 MUNDQUQ4NTcwHhcNMjQwMjEzMDE1MzUzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNhY2JiMS0yZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKgYBznv2dNIlQGRc/+X44FMHQ0nNbRzqegxO7G/gGvSmzRlvPNSo/1jo+at I4udVS8+6bY/5St+Pwelop2MnRWvxMhA/M6M2fowKa+7D5k3MdQTaHaYr4HhY86T V5P9q5R0b2cfITIYom3RXnCwcRL5M1SiDl3zA/VuBaOQ2Yx1WIgKGv+3WDlB1NQp eda5smVV4q3nkx/6uoEKxX1pSBEosKxUahcZXogXoIxB83KYn5Np/9ejQV0rvwKB TOMbfDkQYuLtphQTYV1UafBCFwSb9rDgHWHMPVamGqq1pGs/c/p32yQJ9DLfG/iS aR+kBa4Om74Odw+f0dZp/InYXQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDOaPxcM lDAujj7EK5tf+pfP8xW7MB8GA1UdIwQYMBaAFJNzLz/DE1m7v4s3liS/kTUcythX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI2OC9DNzhFQkNFQTIx OTMxMUVDOTAwQzU2NTNDNEY5QUUwMi9rM012UDhNVFdidV9pemVXSkwtUk5Seksy RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szTXZQOE1UV2J1X2l6ZVdKTC1STlJ6SzJGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyNjgvQzc4RUJDRUEyMTkzMTFFQzkwMEM1NjUzQzRGOUFFMDIvNzg3OUIyNEEz QkE2MTFFQzg3MzdCNTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkAmgAAAYDBwAkAmgAAQAwDQYJKoZIhvcNAQELBQADggEB ADMBDcmtkkG0f3tOz3gxKbUAk6IPK/mYgzAIM3VJ6PbphhrVVJWJK2tV+zBP85p4 S48kE0K23lqG+9QOnELuhfWyHb2litGWHT4I/w0dAuvobP6oXXPuY77JrS0i0Aum 9ow8y7D7VN+JB4ZpMzoQiLAP90+ooYYmYYPNyw/kP30JISk7E/v70czk4GWtraeF 5HPvPdLLhCyplIZARl4auf6jiZn2nZUVasrSk2vA3+GNNxzqTsR7SJ5IXTOXQOAw i6O9bJYj+8Q3xafI27nRBU77BN485Be1CFo8KtQJHr4mEdS/fs+eJVicKAyQg8Fi lCtijY6BNLIyrSCfnE2pfSU= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:25 2024 by rpki-client on console-fra.rpki-client.org