$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa File: 3285ADDAA9D911EF9F30DA47C4F9AE02.roa (raw, json) Hash identifier: PndM68SZJlTeIqOI1x9l6/0KbEC0/NHXem5qN2WLzbs= Subject key identifier: 60:19:20:79:89:52:B9:B6:9C:8A:32:43:C5:2E:1C:18:30:36:BB:94 Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Certificate serial: 8F Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa Signing time: Sat 23 Nov 2024 20:26:19 +0000 ROA not before: Sat 23 Nov 2024 20:26:19 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152698 IP address blocks: 2001:df3:ad40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Validity Not Before: Nov 23 20:26:19 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67423a6b-4c6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5f:23:f3:6d:15:60:32:d1:8c:f3:4e:93:d2: 7a:08:fb:e2:91:96:7c:1f:a0:73:b5:37:a1:44:45: 52:45:14:4b:ca:23:92:b1:d1:e1:df:2a:d3:06:17: 77:fd:9b:0c:34:33:9d:c6:a6:d2:37:39:3d:2a:52: a1:16:72:b9:f1:61:ad:90:7a:c4:9c:0f:5d:6e:0a: ca:b2:e2:8e:5b:d9:6c:aa:3d:88:2a:67:6d:89:64: 5d:98:4c:22:f7:bc:da:37:c7:36:93:99:28:f5:ed: b0:0e:70:cf:a5:f0:9b:39:4d:56:c0:db:05:4f:23: 49:90:b4:81:55:9f:52:56:e2:25:4f:4c:5a:8e:e0: 2a:9f:fd:76:14:a1:f0:d3:51:34:6a:a0:d0:3b:86: 5c:99:37:37:6e:01:29:28:2c:5e:a2:d7:7b:47:1b: 42:6b:db:d0:ca:9b:0d:a4:a8:de:10:35:a7:52:f8: 02:93:21:99:da:81:a0:23:75:ff:ab:cf:80:2c:e9: b3:fd:eb:91:c0:f8:a2:e9:1a:d4:f2:12:98:96:12: b9:f7:ea:1d:e1:ab:a8:84:eb:65:d8:4c:49:63:1f: 74:cc:5e:0a:62:60:c5:aa:cb:cc:b1:69:03:6a:b4: f1:8e:62:c1:f9:8c:81:af:33:d6:bc:b2:9d:0f:64: ed:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:19:20:79:89:52:B9:B6:9C:8A:32:43:C5:2E:1C:18:30:36:BB:94 X509v3 Authority Key Identifier: keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:ad40::/48 Signature Algorithm: sha256WithRSAEncryption 51:3f:8d:64:6a:72:4f:d5:ea:82:a5:7e:b1:e2:ca:5e:49:a6: d4:17:24:c0:5a:53:f5:be:a5:cb:37:34:b7:b3:fd:cf:21:1b: ab:59:e7:14:85:3f:88:93:3b:22:e2:f5:b6:c2:da:ce:f2:6d: b4:84:b5:85:e9:d2:5e:1d:31:86:e0:72:a3:f2:56:4e:7d:2d: 8f:3f:b0:11:5b:f5:29:a3:24:83:db:75:88:b2:e8:e5:db:b6: 25:11:52:97:72:78:ca:c3:59:5f:05:aa:f7:ff:47:19:9f:54: 93:6b:ea:b3:3c:72:63:07:b3:25:65:52:90:bb:76:ca:29:02: 1f:36:14:51:3f:48:4f:f9:bc:28:b3:f6:c7:d2:4b:0c:e3:f3: 5d:99:72:f5:8a:2c:3d:c5:3c:94:eb:15:a4:ab:7f:e7:96:8b: 4b:41:d7:1e:16:46:b3:f8:70:24:53:aa:2d:24:12:43:96:1a: 0a:d1:e9:dd:f0:ad:e8:94:08:16:e2:9a:32:ff:8b:db:d3:b1: e3:91:1c:91:1f:c4:0d:46:5f:c6:d9:ed:af:8e:4f:f4:d6:5e: f9:f0:58:f0:a1:dc:50:9b:68:63:ae:dc:5c:d5:92:bf:e8:9a: e7:bb:eb:4b:98:e0:1d:66:69:fe:5e:ae:3e:cb:d5:5c:24:3f: dd:3f:59:21 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkzNTMxMTAvBgNVBAUTKEFDRDA0N0QwRDg4RTI2NTdFMTJDRjkxMzAxQzE2MEYx RDNDRDJGMzMwHhcNMjQxMTIzMjAyNjE5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQyM2E2Yi00YzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3l8j820VYDLRjPNOk9J6CPvikZZ8H6BztTehREVSRRRLyiOSsdHh3yrTBhd3 /ZsMNDOdxqbSNzk9KlKhFnK58WGtkHrEnA9dbgrKsuKOW9lsqj2IKmdtiWRdmEwi 97zaN8c2k5ko9e2wDnDPpfCbOU1WwNsFTyNJkLSBVZ9SVuIlT0xajuAqn/12FKHw 01E0aqDQO4ZcmTc3bgEpKCxeotd7RxtCa9vQypsNpKjeEDWnUvgCkyGZ2oGgI3X/ q8+ALOmz/euRwPii6RrU8hKYlhK59+od4auohOtl2ExJYx90zF4KYmDFqsvMsWkD arTxjmLB+YyBrzPWvLKdD2TtYQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGAZIHmJ Urm2nIoyQ8UuHBgwNruUMB8GA1UdIwQYMBaAFKzQR9DYjiZX4Sz5EwHBYPHTzS8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTM1My8wODc1RTY0ODA1 QzYxMUVGODk2MjBBMjZDNEY5QUUwMi9yTkJIME5pT0psZmhMUGtUQWNGZzhkUE5M ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOQkgwTmlPSmxmaExQa1RBY0ZnOGRQTkx6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkzNTMvMDg3NUU2NDgwNUM2MTFFRjg5NjIwQTI2QzRGOUFFMDIvMzI4NUFEREFB OUQ5MTFFRjlGMzBEQTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zrUAwDQYJKoZIhvcNAQELBQADggEBAFE/jWRqck/V 6oKlfrHiyl5JptQXJMBaU/W+pcs3NLez/c8hG6tZ5xSFP4iTOyLi9bbC2s7ybbSE tYXp0l4dMYbgcqPyVk59LY8/sBFb9SmjJIPbdYiy6OXbtiURUpdyeMrDWV8Fqvf/ RxmfVJNr6rM8cmMHsyVlUpC7dsopAh82FFE/SE/5vCiz9sfSSwzj812ZcvWKLD3F PJTrFaSrf+eWi0tB1x4WRrP4cCRTqi0kEkOWGgrR6d3wreiUCBbimjL/i9vTseOR HJEfxA1GX8bZ7a+OT/TWXvnwWPCh3FCbaGOu3FzVkr/omue760uY4B1maf5erj7L 1VwkP90/WSE= -----END CERTIFICATE-----Generated at Mon Nov 25 06:04:17 2024 by rpki-client on console-ams.rpki-client.org