$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/64B2DE72AC1011ED8592693FC4F9AE02.roa File: 64B2DE72AC1011ED8592693FC4F9AE02.roa (raw, json) Hash identifier: VvRWFM8hSr1F+uDn107EVzpQtzcyRibgxYedeLMEFnw= Subject key identifier: 25:A9:63:4B:66:DD:F5:76:7C:15:19:B8:54:46:CE:AB:15:89:69:E6 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 7F Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/64B2DE72AC1011ED8592693FC4F9AE02.roa Signing time: Thu 31 Aug 2023 04:54:10 +0000 ROA not before: Thu 31 Aug 2023 04:54:10 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 24234 IP address blocks: 2400:b400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Aug 31 04:54:10 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f01cf2-5be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a0:d8:ce:f3:80:c5:eb:d8:50:b8:1b:fd:2d: 6e:2f:6a:de:4b:c3:a3:00:b3:fa:b2:67:d2:f9:a7: 83:d3:4d:1f:ad:1b:93:cc:4c:3a:83:67:6d:89:a8: 61:cb:92:2d:b3:f3:5a:55:2e:71:d5:77:bb:bb:ea: a6:97:60:df:df:70:d2:05:5a:92:96:c4:58:54:6c: 7d:f6:41:c7:b4:ce:67:4b:b1:9e:5a:ab:ba:2a:fd: 0d:5e:f1:2e:86:01:a6:23:7a:6d:5e:d6:13:f8:35: 87:cd:b1:83:52:48:71:07:24:22:8b:13:30:eb:b2: ce:88:15:1b:33:7a:e1:84:50:a8:ce:52:13:72:f5: 12:c1:68:7b:78:e1:7f:74:12:a4:eb:69:50:36:8e: 03:57:c3:e8:37:64:52:58:cd:dd:15:b7:dc:7d:92: 11:a0:31:c4:ef:b5:e2:93:2b:38:57:c2:8b:c4:8d: 59:42:7d:11:9a:51:ef:ec:c2:32:c7:4f:73:be:20: 6a:e5:10:98:f8:d0:0f:1c:4b:23:1d:06:a9:94:4e: d9:ca:98:b6:85:cc:13:44:f4:7c:77:81:07:48:d2: cb:d4:72:ff:60:12:7c:c2:65:dc:05:47:27:4a:f9: fe:d3:87:1b:9d:a9:66:ee:2d:9d:bf:a0:a5:8b:1d: 5b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A9:63:4B:66:DD:F5:76:7C:15:19:B8:54:46:CE:AB:15:89:69:E6 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/64B2DE72AC1011ED8592693FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:b400::/32 Signature Algorithm: sha256WithRSAEncryption 7f:8b:8f:e4:2f:c2:32:55:30:b9:57:b9:ff:c7:dd:ad:46:30: 35:ab:f7:6d:d3:5b:e3:b0:84:50:7e:c4:9c:62:6f:ee:be:03: 51:9e:0a:db:a8:29:3f:de:3e:ad:d3:3a:39:0d:ad:5b:a3:0c: bd:2d:bb:d0:14:c6:40:94:15:03:e2:3d:a1:c9:a1:45:83:4a: a9:f3:cf:45:84:58:68:db:47:cb:ca:2c:f8:b3:56:81:96:09: b5:66:3b:77:f6:db:c0:af:b6:0f:f6:c7:c0:e0:ac:0a:f1:18: fd:72:f0:e8:a6:dc:1a:e3:10:b2:4a:a5:30:96:16:76:ef:c0: 60:c1:88:42:22:6a:2b:21:ac:29:49:99:6f:c0:c6:dd:0a:02: f1:df:fe:91:93:dc:57:c2:3e:4a:8e:51:b6:d6:b5:db:e1:80: 1b:e1:af:83:87:87:35:b4:4d:2c:f6:7d:c2:d1:35:92:6b:4b: 9c:fc:5a:2d:7e:4c:03:73:53:a7:6d:52:80:84:41:23:df:5e: a7:72:5c:ec:2f:1f:03:74:4a:ad:8f:ef:ef:eb:44:8d:f1:15: 2f:03:b2:fb:86:6a:2f:4b:a9:81:83:c0:03:a6:88:c8:52:c8: 83:16:3b:09:a8:e9:2a:ae:1a:33:64:95:01:70:d3:55:7d:09: f3:67:7b:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OEU5QjExMC8GA1UEBRMoNDQ2NzkyNDM5MjU4MTgyQTdBMUU0REE0QjJDMDZGQUQy QUFFRTRCOTAeFw0yMzA4MzEwNDU0MTBaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZjAxY2YyLTViZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGoNjO84DF69hQuBv9LW4vat5Lw6MAs/qyZ9L5p4PTTR+tG5PMTDqDZ22JqGHL ki2z81pVLnHVd7u76qaXYN/fcNIFWpKWxFhUbH32Qce0zmdLsZ5aq7oq/Q1e8S6G AaYjem1e1hP4NYfNsYNSSHEHJCKLEzDrss6IFRszeuGEUKjOUhNy9RLBaHt44X90 EqTraVA2jgNXw+g3ZFJYzd0Vt9x9khGgMcTvteKTKzhXwovEjVlCfRGaUe/swjLH T3O+IGrlEJj40A8cSyMdBqmUTtnKmLaFzBNE9Hx3gQdI0svUcv9gEnzCZdwFRydK +f7ThxudqWbuLZ2/oKWLHVtBAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUJaljS2bd 9XZ8FRm4VEbOqxWJaeYwHwYDVR0jBBgwFoAURGeSQ5JYGCp6Hk2kssBvrSqu5Lkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4RTlCLzY5RUI0MkMwOTYw RTExRUQ5QTRDRUE2NUM0RjlBRTAyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVM ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUkdlU1E1SllHQ3A2SGsya3NzQnZyU3F1NUxrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEU5Qi82OUVCNDJDMDk2MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi82NEIyREU3MkFD MTAxMUVEODU5MjY5M0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQAtAAwDQYJKoZIhvcNAQELBQADggEBAH+Lj+QvwjJVMLlX uf/H3a1GMDWr923TW+OwhFB+xJxib+6+A1GeCtuoKT/ePq3TOjkNrVujDL0tu9AU xkCUFQPiPaHJoUWDSqnzz0WEWGjbR8vKLPizVoGWCbVmO3f228Cvtg/2x8DgrArx GP1y8Oim3BrjELJKpTCWFnbvwGDBiEIiaishrClJmW/Axt0KAvHf/pGT3FfCPkqO UbbWtdvhgBvhr4OHhzW0TSz2fcLRNZJrS5z8Wi1+TANzU6dtUoCEQSPfXqdyXOwv HwN0Sq2P7+/rRI3xFS8DsvuGai9LqYGDwAOmiMhSyIMWOwmo6SquGjNklQFw01V9 CfNnezE= -----END CERTIFICATE-----Generated at Sun May 19 07:40:46 2024 by rpki-client on console-fra.rpki-client.org