$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/B2DE2498C4FD11ED909F2770C4F9AE02.roa File: B2DE2498C4FD11ED909F2770C4F9AE02.roa (raw, json) Hash identifier: 307Gxd4M7BNZ22HOhN4gQVH037OEfJpHMiGF7rrVYmY= Subject key identifier: 8C:42:AF:04:A5:19:3A:01:8B:E4:F7:41:63:CC:96:AB:7E:E3:B2:4F Certificate issuer: /CN=A91FA66B/serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Certificate serial: BA Authority key identifier: 62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/B2DE2498C4FD11ED909F2770C4F9AE02.roa Signing time: Fri 01 Mar 2024 06:18:27 +0000 ROA not before: Fri 01 Mar 2024 06:18:27 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 38016 IP address blocks: 2406:c800::/32 maxlen: 32 2406:c800:a1ca::/48 maxlen: 48 2406:c800:e000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA66B/serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Validity Not Before: Mar 1 06:18:27 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e17333-a621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6f:7d:6f:3a:b6:a6:4d:28:f6:f0:6a:86:ac: a4:a3:f8:bb:84:4a:49:41:f9:c5:99:2f:79:0e:bd: b9:f7:8d:f2:f0:71:25:b9:26:e2:49:04:c0:5b:a1: ea:77:19:52:4a:90:c7:73:9b:64:87:d4:b7:0b:59: 35:3f:90:4a:ff:3f:b2:03:bf:8b:51:b2:a9:9f:69: 43:17:b7:12:b9:28:f6:70:40:37:61:c8:26:01:51: c4:cd:a7:d0:73:2f:01:3b:0f:2e:72:5e:dd:61:ca: ee:94:31:a9:80:08:24:b6:dc:6e:4f:bb:86:aa:a3: aa:f0:3d:c3:60:49:2e:8d:04:5a:f5:4f:bd:ea:84: 84:20:53:24:cf:85:b1:87:8b:3f:f2:d9:d4:4f:6b: 5f:15:1e:df:90:09:39:a9:e5:94:66:0d:86:b4:ae: f7:54:8d:1d:51:ae:47:7a:82:ac:5c:ff:f2:24:13: 0c:eb:75:b2:6c:78:92:51:c1:4f:29:4c:88:ee:27: b3:12:a6:0e:4b:5e:a8:12:2b:5d:0a:14:f0:05:f5: 20:67:72:97:ed:1e:02:c6:65:a6:38:3c:1e:40:a3: ad:d1:72:a6:6d:bf:b2:8d:d8:8d:52:d8:7f:ef:d6: a5:0b:40:94:e9:1e:35:0a:1a:b3:13:af:80:69:22: 66:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:42:AF:04:A5:19:3A:01:8B:E4:F7:41:63:CC:96:AB:7E:E3:B2:4F X509v3 Authority Key Identifier: keyid:62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/B2DE2498C4FD11ED909F2770C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:c800::/32 Signature Algorithm: sha256WithRSAEncryption 7d:34:36:aa:42:ec:bd:bc:18:88:ad:49:4f:43:70:ba:11:21: 9f:fc:fd:eb:41:e3:f1:7d:cc:bd:b8:78:70:ea:83:33:33:de: a7:54:73:26:a4:a1:f0:f1:3d:32:0e:38:2e:ef:98:ea:5a:fc: 1f:ea:ed:95:bb:bb:35:02:c4:bc:05:95:b7:79:a3:96:12:e0: 95:97:e5:3e:48:9a:0d:b2:6e:04:2d:7f:b8:31:4f:e6:a4:d8: 53:80:9a:d0:ef:65:5f:c8:cd:2f:a7:20:9a:96:63:ac:34:df: 98:ff:55:5b:1d:55:8e:30:cd:ed:60:2e:3d:5e:7c:d4:34:f4: 10:94:fe:02:7b:23:db:0f:18:3e:1a:3b:7d:3c:55:b2:fb:2f: a3:a8:6c:29:0d:a3:56:23:7a:96:13:3d:0e:9a:cb:ac:b6:d8: 15:df:98:5f:cf:db:03:7e:e0:70:28:d5:8a:35:1e:f8:f6:11: 40:55:43:68:fc:82:99:46:49:2a:fe:33:18:b5:b1:5f:4d:1a: 06:06:ea:f5:ed:1a:39:46:06:68:bb:9b:61:fd:1f:2f:18:5c: 8f:8f:1c:bb:e0:55:30:50:30:f0:99:67:eb:76:38:80:69:8b: f8:f7:43:ad:c5:e9:86:4b:3a:c5:1c:9d:ff:85:01:30:b8:68: 41:03:b8:cd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NkIxMTAvBgNVBAUTKDYyNjdDOTdFQjRBMERGMDFFREJENkY5RDQxQTg2QTg3 OUUwMjc5N0YwHhcNMjQwMzAxMDYxODI3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxNzMzMy1hNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx299bzq2pk0o9vBqhqyko/i7hEpJQfnFmS95Dr25943y8HEluSbiSQTAW6Hq dxlSSpDHc5tkh9S3C1k1P5BK/z+yA7+LUbKpn2lDF7cSuSj2cEA3YcgmAVHEzafQ cy8BOw8ucl7dYcrulDGpgAgkttxuT7uGqqOq8D3DYEkujQRa9U+96oSEIFMkz4Wx h4s/8tnUT2tfFR7fkAk5qeWUZg2GtK73VI0dUa5HeoKsXP/yJBMM63WybHiSUcFP KUyI7iezEqYOS16oEitdChTwBfUgZ3KX7R4CxmWmODweQKOt0XKmbb+yjdiNUth/ 79alC0CU6R41ChqzE6+AaSJmxQIDAQABo4ICljCCApIwHQYDVR0OBBYEFIxCrwSl GToBi+T3QWPMlqt+47JPMB8GA1UdIwQYMBaAFGJnyX60oN8B7b1vnUGoaoeeAnl/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY2Qi8xNDJCQ0I5NkM0 RkExMUVEOUJERjMxNTdDNEY5QUUwMi9ZbWZKZnJTZzN3SHR2Vy1kUWFocWg1NENl WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltZkpmclNnM3dIdHZXLWRRYWhxaDU0Q2VYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE2NkIvMTQyQkNCOTZDNEZBMTFFRDlCREYzMTU3QzRGOUFFMDIvQjJERTI0OThD NEZEMTFFRDkwOUYyNzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBsgAMA0GCSqGSIb3DQEBCwUAA4IBAQB9NDaqQuy9vBiI rUlPQ3C6ESGf/P3rQePxfcy9uHhw6oMzM96nVHMmpKHw8T0yDjgu75jqWvwf6u2V u7s1AsS8BZW3eaOWEuCVl+U+SJoNsm4ELX+4MU/mpNhTgJrQ72VfyM0vpyCalmOs NN+Y/1VbHVWOMM3tYC49XnzUNPQQlP4CeyPbDxg+Gjt9PFWy+y+jqGwpDaNWI3qW Ez0OmsusttgV35hfz9sDfuBwKNWKNR749hFAVUNo/IKZRkkq/jMYtbFfTRoGBur1 7Ro5RgZou5th/R8vGFyPjxy74FUwUDDwmWfrdjiAaYv490OtxemGSzrFHJ3/hQEw uGhBA7jN -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:09 2024 by rpki-client on console-fra.rpki-client.org