$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/64B2DE72AC1011ED8592693FC4F9AE02.roa File: 64B2DE72AC1011ED8592693FC4F9AE02.roa (raw, json) Hash identifier: xgTk5QLU2Vm82iRKTqkbO5V1pNHv+/+0qFa5a4D2Fm4= Subject key identifier: B1:96:FF:CF:A9:29:CD:A7:90:2D:6F:93:04:98:AE:DB:F8:D5:8B:75 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 0142 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/64B2DE72AC1011ED8592693FC4F9AE02.roa Signing time: Tue 03 Sep 2024 04:47:05 +0000 ROA not before: Tue 03 Sep 2024 04:47:05 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24234 IP address blocks: 2400:b400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Sep 3 04:47:05 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d694c9-fb62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a5:2d:b3:7f:8c:b3:94:e6:78:2c:fd:24:f9: d6:ec:9f:65:b0:e2:9c:ca:36:0f:fc:46:80:05:b1: 03:96:11:cf:a5:bf:e7:5d:4b:db:93:23:20:3e:4d: 22:ce:85:61:cf:0d:17:3d:73:1f:7b:60:3a:86:02: 0e:2d:72:73:61:f3:f6:46:e7:5e:7e:ac:c0:6b:8f: 17:f1:fd:05:0b:b3:1a:4f:fe:7f:6f:33:cc:5d:78: a8:a2:df:c6:85:ca:41:34:09:ec:b3:ea:00:e3:46: 4e:bd:ae:d7:a2:cb:0b:4c:b1:4f:3d:b7:a1:c8:4a: e7:76:a6:f7:e8:6e:75:b1:1b:fc:26:df:8a:b1:26: c9:95:3c:a2:70:a9:a8:1c:cd:c6:39:97:90:ec:31: e7:2a:f5:62:fc:15:84:9b:6d:b7:4c:9d:b7:77:ef: fc:a5:40:53:48:3e:b0:28:3f:33:b3:d0:3c:ad:db: dc:36:6a:22:ed:7d:77:18:5c:d0:70:43:fc:97:c8: f6:e6:3b:19:f6:57:da:2d:a9:12:83:64:c5:93:fb: 39:b6:8b:89:5b:61:ce:11:f6:74:46:ae:ea:cd:b3: 1f:f9:50:fd:55:74:3f:8f:e6:cf:1d:fc:6f:bf:37: 03:b9:e8:89:52:fc:dc:e7:de:f5:5b:5e:b5:20:18: 46:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:96:FF:CF:A9:29:CD:A7:90:2D:6F:93:04:98:AE:DB:F8:D5:8B:75 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/64B2DE72AC1011ED8592693FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:b400::/32 Signature Algorithm: sha256WithRSAEncryption 4b:94:3c:95:e3:ae:d6:ce:31:ca:60:39:c0:93:76:77:1a:b1: 4d:b0:dc:15:eb:19:99:64:6a:c5:eb:7b:f4:ad:35:7c:74:25: 07:03:51:08:b9:3e:a2:46:75:4e:68:d8:2f:73:2a:95:d8:1e: c5:4e:b5:e8:01:35:72:be:4f:08:fd:1b:5b:75:94:a5:d3:49: 49:44:fb:28:20:f9:5c:18:02:44:8d:e4:d6:0e:3c:91:8d:33: 97:f6:e7:ff:bd:4e:c1:c4:8d:f9:97:ab:7a:9d:db:b7:02:dd: 1b:47:e4:15:63:e1:2e:d2:6d:1d:12:92:2c:6b:7f:60:0d:0d: d2:90:1c:6f:67:6a:40:0b:09:04:ca:e8:95:96:6a:42:31:2d: b2:f4:1b:a9:80:83:8c:88:2c:67:c5:f2:e7:22:fa:fb:88:36: 63:24:78:f4:b0:4d:e8:1b:e1:66:03:78:a4:09:55:95:0f:d6: 40:6e:74:c9:3d:0d:5b:56:90:e2:b2:d8:4a:48:cb:46:25:00: 0a:5f:3e:f4:a5:d6:17:0d:b1:00:82:9e:3e:8a:41:d0:c6:73: 0b:04:4f:11:b4:60:f9:d8:d7:ac:3e:61:23:51:11:11:90:7b: a6:e6:a0:6c:4c:d1:6c:b1:d8:f9:50:6f:fc:29:26:be:5b:ff: 26:27:66:1d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjQwOTAzMDQ0NzA1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2OTRjOS1mYjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqUts3+Ms5TmeCz9JPnW7J9lsOKcyjYP/EaABbEDlhHPpb/nXUvbkyMgPk0i zoVhzw0XPXMfe2A6hgIOLXJzYfP2RudefqzAa48X8f0FC7MaT/5/bzPMXXioot/G hcpBNAnss+oA40ZOva7XossLTLFPPbehyErndqb36G51sRv8Jt+KsSbJlTyicKmo HM3GOZeQ7DHnKvVi/BWEm223TJ23d+/8pUBTSD6wKD8zs9A8rdvcNmoi7X13GFzQ cEP8l8j25jsZ9lfaLakSg2TFk/s5touJW2HOEfZ0Rq7qzbMf+VD9VXQ/j+bPHfxv vzcDueiJUvzc5971W161IBhGLQIDAQABo4ICljCCApIwHQYDVR0OBBYEFLGW/8+p Kc2nkC1vkwSYrtv41Yt1MB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFOUIvNjlFQjQyQzA5NjBFMTFFRDlBNENFQTY1QzRGOUFFMDIvNjRCMkRFNzJB QzEwMTFFRDg1OTI2OTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkALQAMA0GCSqGSIb3DQEBCwUAA4IBAQBLlDyV467WzjHK YDnAk3Z3GrFNsNwV6xmZZGrF63v0rTV8dCUHA1EIuT6iRnVOaNgvcyqV2B7FTrXo ATVyvk8I/RtbdZSl00lJRPsoIPlcGAJEjeTWDjyRjTOX9uf/vU7BxI35l6t6ndu3 At0bR+QVY+Eu0m0dEpIsa39gDQ3SkBxvZ2pACwkEyuiVlmpCMS2y9BupgIOMiCxn xfLnIvr7iDZjJHj0sE3oG+FmA3ikCVWVD9ZAbnTJPQ1bVpDisthKSMtGJQAKXz70 pdYXDbEAgp4+ikHQxnMLBE8RtGD52NesPmEjURERkHum5qBsTNFssdj5UG/8KSa+ W/8mJ2Yd -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org