$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DCEA7D2A319611EFB9AC5611C4F9AE02.roa File: DCEA7D2A319611EFB9AC5611C4F9AE02.roa (raw, json) Hash identifier: s3ke80Hbfm/llJ0fhDauq7mez8kf8/KCZMk0fLwjYEI= Subject key identifier: 3C:A5:E5:F2:A7:F4:77:07:10:E1:B8:77:3D:CD:10:60:A5:F0:4A:FA Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Certificate serial: 39 Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DCEA7D2A319611EFB9AC5611C4F9AE02.roa Signing time: Sun 23 Jun 2024 19:29:09 +0000 ROA not before: Sun 23 Jun 2024 19:29:09 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152698 IP address blocks: 2001:df3:ad40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Validity Not Before: Jun 23 19:29:09 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66787785-eb37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:15:c3:ef:e0:ff:48:03:30:0b:49:5c:7e:8b: 97:13:c7:23:3d:b7:6e:95:20:4f:7d:01:86:68:02: 73:93:1e:bd:de:e0:6c:e0:87:ca:50:37:0d:2e:98: 74:a4:33:40:01:2d:b1:7f:ac:8d:e8:ba:ee:fc:2b: da:b0:9c:c1:7e:5a:19:df:6c:ba:81:57:d6:81:40: fd:34:57:b6:71:4d:bb:30:50:cf:1b:54:c9:fd:78: 69:12:fa:1f:b5:76:a3:10:93:09:c8:bd:45:3a:ee: 8b:9f:0b:92:ff:b7:e0:26:64:4d:e2:8c:9c:19:7e: 5e:c0:24:18:28:36:2f:40:c5:14:b0:9f:c4:e6:85: e7:4b:01:f5:65:2c:0b:77:01:f9:f2:28:2d:18:a8: b9:31:3b:b8:a6:37:35:de:3c:f0:df:f9:46:a7:dd: 49:d6:6a:04:e4:70:a5:31:8e:0b:3b:81:d7:87:e9: e0:bc:dc:87:54:42:80:8b:16:8e:98:4a:71:7c:90: 54:b2:36:d5:8a:4f:f5:ec:ae:f0:da:17:99:69:9d: 18:e2:2e:16:79:0e:90:84:95:fd:46:90:45:b5:5d: 7a:77:2c:1b:09:35:2a:68:d0:63:78:44:37:1b:ea: 92:49:6f:a6:fe:77:f7:a5:f9:50:72:87:7d:fe:f4: aa:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A5:E5:F2:A7:F4:77:07:10:E1:B8:77:3D:CD:10:60:A5:F0:4A:FA X509v3 Authority Key Identifier: keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DCEA7D2A319611EFB9AC5611C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:ad40::/48 Signature Algorithm: sha256WithRSAEncryption 95:7f:c2:8c:b6:cd:2a:96:75:b5:aa:55:87:55:b9:49:4a:50: 28:63:c3:86:5c:17:9e:3a:d8:7b:e3:19:9d:47:99:1d:70:a0: ab:2e:04:eb:d3:53:04:fa:39:e8:da:b6:a9:23:b5:18:b2:32: f4:87:93:58:51:58:dc:5a:d3:a5:c4:14:8b:d7:0f:14:6c:de: aa:45:70:70:ca:9b:8b:4f:6e:77:be:1f:26:77:7c:3b:87:ac: 0f:d4:83:85:63:a1:21:f4:bb:66:3f:2d:ee:ac:20:5c:81:b8: dc:80:2c:ac:7c:fd:7a:a2:76:1d:b3:34:90:76:50:a4:21:98: 36:84:92:a3:69:60:7b:e3:1f:86:f2:b3:56:49:e1:81:2f:ef: 3e:50:b5:4b:ba:cd:39:62:52:a4:b2:e5:28:40:4c:ac:e3:4c: b3:b4:b3:93:c0:9b:f9:b5:c4:5f:0a:b4:1c:69:a8:45:ba:cd: 3b:d3:e8:3a:a2:b9:0a:fb:26:17:94:6a:55:38:9b:7c:4c:7d: 4e:32:a2:41:96:5e:e1:00:ca:35:56:78:95:61:d7:85:27:b3: 2b:0f:41:8c:cd:90:46:b0:3f:04:f1:98:36:83:9d:55:af:16: d7:2a:13:c4:ef:fd:b0:2d:e6:80:f5:0a:d5:ed:62:0c:57:76: 8b:98:de:54 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OTM1MzExMC8GA1UEBRMoQUNEMDQ3RDBEODhFMjY1N0UxMkNGOTEzMDFDMTYwRjFE M0NEMkYzMzAeFw0yNDA2MjMxOTI5MDlaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Nzg3Nzg1LWViMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGFcPv4P9IAzALSVx+i5cTxyM9t26VIE99AYZoAnOTHr3e4Gzgh8pQNw0umHSk M0ABLbF/rI3ouu78K9qwnMF+WhnfbLqBV9aBQP00V7ZxTbswUM8bVMn9eGkS+h+1 dqMQkwnIvUU67oufC5L/t+AmZE3ijJwZfl7AJBgoNi9AxRSwn8TmhedLAfVlLAt3 AfnyKC0YqLkxO7imNzXePPDf+Uan3UnWagTkcKUxjgs7gdeH6eC83IdUQoCLFo6Y SnF8kFSyNtWKT/XsrvDaF5lpnRjiLhZ5DpCElf1GkEW1XXp3LBsJNSpo0GN4RDcb 6pJJb6b+d/el+VByh33+9KpvAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUPKXl8qf0 dwcQ4bh3Pc0QYKXwSvowHwYDVR0jBBgwFoAUrNBH0NiOJlfhLPkTAcFg8dPNLzMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5MzUzLzA4NzVFNjQ4MDVD NjExRUY4OTYyMEEyNkM0RjlBRTAyL3JOQkgwTmlPSmxmaExQa1RBY0ZnOGRQTkx6 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvck5CSDBOaU9KbGZoTFBrVEFjRmc4ZFBOTHpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTM1My8wODc1RTY0ODA1QzYxMUVGODk2MjBBMjZDNEY5QUUwMi9EQ0VBN0QyQTMx OTYxMUVGQjlBQzU2MTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfOtQDANBgkqhkiG9w0BAQsFAAOCAQEAlX/CjLbNKpZ1 tapVh1W5SUpQKGPDhlwXnjrYe+MZnUeZHXCgqy4E69NTBPo56Nq2qSO1GLIy9IeT WFFY3FrTpcQUi9cPFGzeqkVwcMqbi09ud74fJnd8O4esD9SDhWOhIfS7Zj8t7qwg XIG43IAsrHz9eqJ2HbM0kHZQpCGYNoSSo2lge+MfhvKzVknhgS/vPlC1S7rNOWJS pLLlKEBMrONMs7Szk8Cb+bXEXwq0HGmoRbrNO9PoOqK5CvsmF5RqVTibfEx9TjKi QZZe4QDKNVZ4lWHXhSezKw9BjM2QRrA/BPGYNoOdVa8W1yoTxO/9sC3mgPUK1e1i DFd2i5jeVA== -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:31 2024 by rpki-client on console-ams.rpki-client.org