$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/D80D96066C7F11EF92105459C4F9AE02.roa File: D80D96066C7F11EF92105459C4F9AE02.roa (raw, json) Hash identifier: 7pF3uHzaE+Wewnte+bG2KwxN3eFFLWjZ6eq6MYtYcWc= Subject key identifier: 5B:53:2E:96:33:71:4F:5E:E3:B7:CF:57:72:4B:12:A9:46:F8:A6:4C Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: 02 Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/D80D96066C7F11EF92105459C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:43:01 +0000 ROA not before: Fri 06 Sep 2024 18:43:01 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153175 IP address blocks: 2001:df4:1e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Sep 6 18:43:01 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66db4d35-7628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:78:ba:c8:1f:ba:24:2c:52:1d:ec:5b:47:cb: 28:a2:8a:8e:e8:41:e4:6c:27:7c:3c:ad:4c:1f:b0: 2a:24:d5:69:7f:fa:63:fc:39:6e:4e:81:9e:f8:04: df:8b:be:60:00:9e:10:1b:38:bf:50:7e:de:b8:e7: bf:49:d2:68:b4:90:25:de:5a:55:8f:8a:72:55:0e: 91:21:cf:34:23:6b:65:94:7a:2d:76:59:ae:93:99: d2:9c:d9:ee:c5:b7:7f:15:2a:5c:dd:37:0a:09:8f: aa:b3:70:49:58:63:cf:f3:16:bc:c0:f3:0f:0c:6c: 6b:f8:a7:e3:62:f3:f2:46:34:ce:6a:cd:f7:0f:9d: 49:36:fa:b3:ea:df:c7:fe:07:36:f0:63:1d:ed:66: a1:45:63:25:35:2e:a9:5a:a5:80:54:ec:a8:f9:e9: b3:05:1c:46:53:27:dd:6b:5a:02:b3:bf:5c:1a:54: fd:9c:af:e8:fc:df:2e:b1:70:02:02:12:3b:4f:cf: b9:bd:de:a0:f5:20:cb:bc:a0:81:dc:83:9a:1c:bd: dd:75:21:21:8b:2d:bb:ce:a8:6e:f9:13:d4:1c:75: e8:41:dd:2d:6e:e0:22:aa:8a:3a:29:97:6e:e3:86: eb:26:e5:0d:cb:83:4f:13:6e:6b:1e:1d:65:23:ad: 53:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:53:2E:96:33:71:4F:5E:E3:B7:CF:57:72:4B:12:A9:46:F8:A6:4C X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/D80D96066C7F11EF92105459C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:1e40::/48 Signature Algorithm: sha256WithRSAEncryption 8d:a0:6c:79:00:15:4b:fa:b5:36:79:ce:79:86:3f:fc:a7:fd: d4:13:f7:32:a7:e0:4c:ae:47:f9:3a:b4:b2:92:ca:17:c3:43: 61:c7:b9:97:53:d5:de:b7:8d:cf:d7:8f:84:13:c0:ab:a4:30: f8:36:f3:73:26:f2:0a:62:a6:08:a0:32:a5:f6:2f:6f:d9:25: b0:57:7b:65:31:e1:50:25:3b:51:c8:37:9f:c5:fd:e3:73:de: 05:34:80:fd:c2:47:c9:e1:4d:5c:26:54:3d:0a:ae:99:a7:e6: e0:9a:fa:d4:49:92:b9:81:6c:ea:d6:f0:ad:26:ba:49:22:f8: 4b:4a:9e:a5:0d:1e:1e:d5:bb:de:3b:ff:aa:39:08:3b:4a:b6: 03:84:ed:b5:38:72:5c:cc:65:39:53:d6:c3:9d:24:5b:10:c4: 91:a3:00:a6:df:3c:59:ac:ff:1c:57:ed:fd:ea:f5:6d:97:d2: bf:63:50:58:39:c8:48:4e:41:13:11:88:ff:65:4b:1b:32:3b: 86:95:37:33:b3:ed:50:36:94:10:1d:95:30:83:c2:43:15:31: 09:1c:55:35:d3:70:b1:53:f6:00:28:cd:70:7f:d8:77:25:3c: 95:57:e9:99:c4:88:81:e1:31:30:b0:76:16:b5:78:ff:5c:d4: 51:36:fb:40 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODk4MTExMC8GA1UEBRMoMzIxNEUyNjBBNzhGN0QxNjc3RTgzMDEzN0MxMDY1NzMw MDMxQ0Y2NjAeFw0yNDA5MDYxODQzMDFaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGI0ZDM1LTc2MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAeLrIH7okLFId7FtHyyiiio7oQeRsJ3w8rUwfsCok1Wl/+mP8OW5OgZ74BN+L vmAAnhAbOL9Qft64579J0mi0kCXeWlWPinJVDpEhzzQja2WUei12Wa6TmdKc2e7F t38VKlzdNwoJj6qzcElYY8/zFrzA8w8MbGv4p+Ni8/JGNM5qzfcPnUk2+rPq38f+ BzbwYx3tZqFFYyU1LqlapYBU7Kj56bMFHEZTJ91rWgKzv1waVP2cr+j83y6xcAIC EjtPz7m93qD1IMu8oIHcg5ocvd11ISGLLbvOqG75E9QcdehB3S1u4CKqijopl27j husm5Q3Lg08TbmseHWUjrVMnAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUW1MuljNx T17jt89XcksSqUb4pkwwHwYDVR0jBBgwFoAUMhTiYKePfRZ36DATfBBlcwAxz2Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OTgxLzI3MkI0QzcwNkM3 RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWhUaVlLZVBmUlozNkRBVGZCQmxjd0F4ejJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8yNzJCNEM3MDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9EODBEOTYwNjZD N0YxMUVGOTIxMDU0NTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQeQDANBgkqhkiG9w0BAQsFAAOCAQEAjaBseQAVS/q1 NnnOeYY//Kf91BP3MqfgTK5H+Tq0spLKF8NDYce5l1PV3reNz9ePhBPAq6Qw+Dbz cybyCmKmCKAypfYvb9klsFd7ZTHhUCU7Ucg3n8X943PeBTSA/cJHyeFNXCZUPQqu mafm4Jr61EmSuYFs6tbwrSa6SSL4S0qepQ0eHtW73jv/qjkIO0q2A4TttThyXMxl OVPWw50kWxDEkaMApt88Waz/HFft/er1bZfSv2NQWDnISE5BExGI/2VLGzI7hpU3 M7PtUDaUEB2VMIPCQxUxCRxVNdNwsVP2ACjNcH/YdyU8lVfpmcSIgeExMLB2FrV4 /1zUUTb7QA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:31 2024 by rpki-client on console-fra.rpki-client.org