$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/6156C7F6A27311EFBF7D5E22C4F9AE02.roa File: 6156C7F6A27311EFBF7D5E22C4F9AE02.roa (raw, json) Hash identifier: S974N0P9f8Bg6Jc7BIscRXeUqpVDlIBE/NP1Bo0j0PA= Subject key identifier: 41:B2:9D:05:0C:BC:56:6F:06:64:4D:07:81:6A:EC:75:72:37:2C:BD Certificate issuer: /CN=A91F7537/serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Certificate serial: 02 Authority key identifier: 21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/6156C7F6A27311EFBF7D5E22C4F9AE02.roa Signing time: Thu 14 Nov 2024 10:29:51 +0000 ROA not before: Thu 14 Nov 2024 10:29:51 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153456 IP address blocks: 2001:df4:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537/serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Validity Not Before: Nov 14 10:29:51 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6735d11f-5254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:59:3d:da:0f:af:2e:da:b8:b0:9f:32:03:2f: e7:f9:61:f2:0d:67:c5:cc:ed:74:72:0d:10:76:7c: 7f:d0:5d:73:f0:cd:0e:34:d5:17:5b:eb:da:18:3e: 0c:78:ae:39:8b:be:c7:a8:bb:2a:82:d3:de:d0:11: 42:60:27:53:a1:ca:de:59:72:36:43:91:22:8a:d2: 06:3d:be:47:25:0c:fe:6f:87:fe:6a:37:e1:85:07: 77:40:aa:a0:c6:ef:2c:25:8f:07:b7:03:eb:86:b9: f0:aa:6d:5b:25:d2:16:c5:42:b8:37:41:24:ac:65: 68:80:56:9c:ca:a5:76:b5:90:59:ea:85:65:8c:4f: 0a:bd:a3:c9:b6:17:12:12:d7:96:52:6b:a1:50:ce: 6c:06:25:b3:27:f4:bc:52:f3:d7:c3:c9:46:0a:74: b8:a6:8d:bd:39:72:6f:55:9a:77:1b:63:6b:2a:35: 3c:65:92:38:83:25:cd:94:b0:57:3c:19:00:04:6c: d5:c3:58:e2:2b:50:00:ca:ff:0f:15:6c:16:8c:d2: 33:48:a6:20:d9:ad:b7:56:1c:9f:a8:85:ce:4d:7f: f6:af:9c:0f:8d:46:43:e1:3c:8d:37:8e:cd:8d:92: 1c:0e:c3:37:ab:30:db:08:41:c2:34:c5:f8:1b:08: 80:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B2:9D:05:0C:BC:56:6F:06:64:4D:07:81:6A:EC:75:72:37:2C:BD X509v3 Authority Key Identifier: keyid:21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/6156C7F6A27311EFBF7D5E22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:a040::/48 Signature Algorithm: sha256WithRSAEncryption 5e:d6:06:03:34:d9:d9:71:bf:13:79:0c:4a:f4:c5:f0:56:43: b7:f4:9f:ae:ba:0f:c0:e8:4d:e1:19:16:52:40:91:61:19:91: 62:9c:d7:be:17:36:6c:26:84:a5:73:5d:02:7c:ed:97:87:ba: a1:d8:c4:d0:7d:ed:32:57:bd:e7:69:a3:40:f5:4c:26:70:b6: 06:ea:1b:24:78:f8:db:c7:6e:3d:79:3b:79:9a:9a:5e:68:32: 5d:67:be:64:47:c7:1d:6f:d5:c8:92:74:28:ac:5a:91:b1:c3: 71:b5:c0:7d:a2:49:d8:bb:18:4f:ee:c0:8d:00:84:af:69:e3: 25:c9:c5:08:e0:5f:31:07:1a:39:28:7f:87:d0:e4:67:f0:bf: 69:c7:ea:2a:68:06:b3:98:5c:c8:e2:09:a9:d2:52:0a:ae:d0: d5:16:89:b0:0f:26:2d:2b:8c:e1:e3:4d:e3:09:41:f4:60:3f: 2d:0f:37:4e:43:30:6d:d2:fc:63:a5:ce:80:9c:8d:f4:14:a9: ab:49:52:79:52:ca:f5:ff:2f:76:69:43:3c:dd:59:cb:68:75: 7b:df:73:91:5a:62:af:cb:2a:31:d7:cf:d1:00:76:62:14:b2: 9b:32:e4:63:47:67:ed:b7:11:e1:dc:f1:b3:f8:d1:df:4b:b5: c1:93:7d:0b -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzUzNzExMC8GA1UEBRMoMjEwOTQ2Q0RBOURFNzVERUY5NjA5ODk1RkJGMjFFRDg0 QzcyRjRFNzAeFw0yNDExMTQxMDI5NTFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzVkMTFmLTUyNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqWT3aD68u2riwnzIDL+f5YfINZ8XM7XRyDRB2fH/QXXPwzQ401Rdb69oYPgx4 rjmLvseouyqC097QEUJgJ1Ohyt5ZcjZDkSKK0gY9vkclDP5vh/5qN+GFB3dAqqDG 7ywljwe3A+uGufCqbVsl0hbFQrg3QSSsZWiAVpzKpXa1kFnqhWWMTwq9o8m2FxIS 15ZSa6FQzmwGJbMn9LxS89fDyUYKdLimjb05cm9VmncbY2sqNTxlkjiDJc2UsFc8 GQAEbNXDWOIrUADK/w8VbBaM0jNIpiDZrbdWHJ+ohc5Nf/avnA+NRkPhPI03js2N khwOwzerMNsIQcI0xfgbCIAzAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUQbKdBQy8 Vm8GZE0HgWrsdXI3LL0wHwYDVR0jBBgwFoAUIQlGzanedd75YJiV+/Ie2Exy9Ocw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3NTM3Lzg3REQ1NDhDQTI3 MTExRUZBMzkyRjA3OUM0RjlBRTAyL0lRbEd6YW5lZGQ3NVlKaVYtX0llMkV4eTlP Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVFsR3phbmVkZDc1WUppVi1fSWUyRXh5OU9jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzUzNy84N0RENTQ4Q0EyNzExMUVGQTM5MkYwNzlDNEY5QUUwMi82MTU2QzdGNkEy NzMxMUVGQkY3RDVFMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfSgQDANBgkqhkiG9w0BAQsFAAOCAQEAXtYGAzTZ2XG/ E3kMSvTF8FZDt/SfrroPwOhN4RkWUkCRYRmRYpzXvhc2bCaEpXNdAnztl4e6odjE 0H3tMle952mjQPVMJnC2BuobJHj428duPXk7eZqaXmgyXWe+ZEfHHW/VyJJ0KKxa kbHDcbXAfaJJ2LsYT+7AjQCEr2njJcnFCOBfMQcaOSh/h9DkZ/C/acfqKmgGs5hc yOIJqdJSCq7Q1RaJsA8mLSuM4eNN4wlB9GA/LQ83TkMwbdL8Y6XOgJyN9BSpq0lS eVLK9f8vdmlDPN1Zy2h1e99zkVpir8sqMdfP0QB2YhSymzLkY0dn7bcR4dzxs/jR 30u1wZN9Cw== -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:54 2024 by rpki-client on console-fra.rpki-client.org