$ rpki-client -vvf rpki.apnic.net/member_repository/A91F83DC/A397A3E426ED11EFB4C9BA28C4F9AE02/24AB7D08271F11EF81086430C4F9AE02.roa File: 24AB7D08271F11EF81086430C4F9AE02.roa (raw, json) Hash identifier: Iji2xdjNL9b32bfsJ+kVOrXH1mKlpeXd/SW3QeUD+pI= Subject key identifier: B3:17:E9:E9:DB:50:5F:D0:43:76:B9:1C:1D:43:AC:72:C9:DA:35:23 Certificate issuer: /CN=A91F83DC/serialNumber=09C36BC65DE72A04147F9D7220BDBA8D525D1564 Certificate serial: 05 Authority key identifier: 09:C3:6B:C6:5D:E7:2A:04:14:7F:9D:72:20:BD:BA:8D:52:5D:15:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CcNrxl3nKgQUf51yIL26jVJdFWQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F83DC/A397A3E426ED11EFB4C9BA28C4F9AE02/24AB7D08271F11EF81086430C4F9AE02.roa Signing time: Mon 10 Jun 2024 11:46:58 +0000 ROA not before: Mon 10 Jun 2024 11:46:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152906 IP address blocks: 2401:a5a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F83DC/A397A3E426ED11EFB4C9BA28C4F9AE02/CcNrxl3nKgQUf51yIL26jVJdFWQ.crl rsync://rpki.apnic.net/member_repository/A91F83DC/A397A3E426ED11EFB4C9BA28C4F9AE02/CcNrxl3nKgQUf51yIL26jVJdFWQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CcNrxl3nKgQUf51yIL26jVJdFWQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:14:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F83DC/serialNumber=09C36BC65DE72A04147F9D7220BDBA8D525D1564 Validity Not Before: Jun 10 11:46:58 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6666e7b2-f0d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a4:ef:bb:fe:52:0b:de:67:2d:0f:95:0b:ad: 63:90:3b:05:32:db:f7:ab:f7:25:61:83:a2:99:17: 23:4d:6b:c0:71:ea:bb:f5:88:9b:85:83:26:43:47: c1:8c:6f:31:4e:f9:de:1d:b8:51:e9:93:f5:63:6e: 44:d6:04:a1:7e:16:e4:f1:0f:b6:b0:45:24:d8:67: 5a:44:32:c9:b4:ab:44:cb:aa:46:ca:42:81:85:22: 18:99:d1:5d:cc:8b:2b:26:d1:52:17:75:6e:6c:c9: 70:b1:e7:fb:05:6b:d1:94:75:4c:5c:5e:08:ca:5b: bf:91:d9:3c:53:2b:20:cb:2b:bc:91:a5:59:d2:bf: 83:f5:b5:e0:e0:fe:1d:1a:96:df:c7:46:1c:15:89: 7c:8e:ec:04:7b:cb:e7:4b:7d:b4:74:a7:b8:72:d5: 9b:39:1b:7e:45:76:18:7b:ec:c5:9f:ea:a0:59:50: 96:c0:2b:21:04:85:66:6c:16:6c:66:db:8e:e5:ba: af:ab:c7:36:ab:b0:c8:8c:34:c6:29:8e:f3:bd:69: 4f:2e:04:b8:08:d1:28:28:81:02:a3:e0:df:38:34: 1f:8f:89:5c:4c:f3:97:e0:4c:09:04:da:05:ee:31: be:95:a2:61:ca:92:f3:5f:92:e1:d5:1e:0c:a3:c0: de:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:17:E9:E9:DB:50:5F:D0:43:76:B9:1C:1D:43:AC:72:C9:DA:35:23 X509v3 Authority Key Identifier: keyid:09:C3:6B:C6:5D:E7:2A:04:14:7F:9D:72:20:BD:BA:8D:52:5D:15:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F83DC/A397A3E426ED11EFB4C9BA28C4F9AE02/CcNrxl3nKgQUf51yIL26jVJdFWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CcNrxl3nKgQUf51yIL26jVJdFWQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F83DC/A397A3E426ED11EFB4C9BA28C4F9AE02/24AB7D08271F11EF81086430C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a5a0::/32 Signature Algorithm: sha256WithRSAEncryption aa:64:0b:22:3b:14:75:92:78:ba:2c:d9:02:e6:14:72:23:a1: ef:c8:03:43:6b:4a:24:4c:f0:ae:72:87:84:c8:1d:58:50:80: ed:00:73:df:62:c5:05:57:97:48:0a:9f:e6:86:0b:0a:5a:bc: 80:66:cb:ef:fc:f2:7d:fd:04:e3:43:89:6e:d8:ff:00:3d:a4: ab:0c:bf:6d:08:6c:96:30:75:ad:13:90:38:97:fc:c3:9a:87: 8c:ea:fb:72:d3:5c:a1:1b:18:28:96:48:e0:f3:1c:21:e1:0b: 61:39:45:05:cc:a8:98:58:72:b8:8e:4b:a3:89:7a:11:b4:e2: 5b:71:dd:ec:36:5a:26:ac:c4:88:e9:f0:58:f5:d4:68:12:09: a7:3d:86:7e:9f:63:19:e4:b0:ee:7b:c4:38:b7:cc:74:4c:ab: 88:09:e0:6f:10:94:04:9b:c7:95:27:28:af:4a:ce:ab:4f:1b: d2:94:20:14:9a:f6:d2:f3:cd:86:3c:13:53:41:6a:d2:0a:c0: 9d:d7:8d:4a:ca:94:26:b4:2b:cb:3c:b2:00:12:4c:7a:1b:20: dd:ee:07:ab:77:dd:5f:78:76:6f:d9:e3:30:31:75:db:17:c0: fa:dd:8e:e7:5b:c5:21:02:a4:64:e2:d9:ff:aa:d0:7a:ff:56: 28:4d:f9:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODNEQzExMC8GA1UEBRMoMDlDMzZCQzY1REU3MkEwNDE0N0Y5RDcyMjBCREJBOEQ1 MjVEMTU2NDAeFw0yNDA2MTAxMTQ2NThaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjZlN2IyLWYwZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9pO+7/lIL3mctD5ULrWOQOwUy2/er9yVhg6KZFyNNa8Bx6rv1iJuFgyZDR8GM bzFO+d4duFHpk/VjbkTWBKF+FuTxD7awRSTYZ1pEMsm0q0TLqkbKQoGFIhiZ0V3M iysm0VIXdW5syXCx5/sFa9GUdUxcXgjKW7+R2TxTKyDLK7yRpVnSv4P1teDg/h0a lt/HRhwViXyO7AR7y+dLfbR0p7hy1Zs5G35Fdhh77MWf6qBZUJbAKyEEhWZsFmxm 247luq+rxzarsMiMNMYpjvO9aU8uBLgI0SgogQKj4N84NB+PiVxM85fgTAkE2gXu Mb6VomHKkvNfkuHVHgyjwN43AgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUsxfp6dtQ X9BDdrkcHUOscsnaNSMwHwYDVR0jBBgwFoAUCcNrxl3nKgQUf51yIL26jVJdFWQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4M0RDL0EzOTdBM0U0MjZF RDExRUZCNEM5QkEyOEM0RjlBRTAyL0NjTnJ4bDNuS2dRVWY1MXlJTDI2alZKZEZX US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2NOcnhsM25LZ1FVZjUxeUlMMjZqVkpkRldRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODNEQy9BMzk3QTNFNDI2RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi8yNEFCN0QwODI3 MUYxMUVGODEwODY0MzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBpaAwDQYJKoZIhvcNAQELBQADggEBAKpkCyI7FHWSeLos 2QLmFHIjoe/IA0NrSiRM8K5yh4TIHVhQgO0Ac99ixQVXl0gKn+aGCwpavIBmy+/8 8n39BONDiW7Y/wA9pKsMv20IbJYwda0TkDiX/MOah4zq+3LTXKEbGCiWSODzHCHh C2E5RQXMqJhYcriOS6OJehG04ltx3ew2WiasxIjp8Fj11GgSCac9hn6fYxnksO57 xDi3zHRMq4gJ4G8QlASbx5UnKK9KzqtPG9KUIBSa9tLzzYY8E1NBatIKwJ3XjUrK lCa0K8s8sgASTHobIN3uB6t33V94dm/Z4zAxddsXwPrdjudbxSECpGTi2f+q0Hr/ VihN+QQ= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:40 2024 by rpki-client on console-ams.rpki-client.org