$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/12032AE02EAC11EFB73C0767C4F9AE02.roa File: 12032AE02EAC11EFB73C0767C4F9AE02.roa (raw, json) Hash identifier: xTsY4iW+fb2o0N8YA+SXz8YOTeNUYyhxpihIk2CiRFI= Subject key identifier: 11:4F:24:B2:D6:8B:7B:73:50:17:E0:24:F8:22:ED:A4:BA:6E:41:85 Certificate issuer: /CN=A91FA6FF/serialNumber=CAE3DB8ADEE7A16AB6CA537F2347B0205BDF4F76 Certificate serial: 03 Authority key identifier: CA:E3:DB:8A:DE:E7:A1:6A:B6:CA:53:7F:23:47:B0:20:5B:DF:4F:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yuPbit7noWq2ylN_I0ewIFvfT3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/12032AE02EAC11EFB73C0767C4F9AE02.roa Signing time: Thu 20 Jun 2024 02:23:24 +0000 ROA not before: Thu 20 Jun 2024 02:23:24 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 15830 IP address blocks: 2401:9f20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/yuPbit7noWq2ylN_I0ewIFvfT3Y.crl rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/yuPbit7noWq2ylN_I0ewIFvfT3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yuPbit7noWq2ylN_I0ewIFvfT3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6FF/serialNumber=CAE3DB8ADEE7A16AB6CA537F2347B0205BDF4F76 Validity Not Before: Jun 20 02:23:24 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6673929c-383d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a0:8f:9f:8d:dc:a2:0b:13:a2:97:fb:50:4d: 41:01:4e:e8:53:f1:9e:38:c5:6e:e1:ff:38:bd:11: 65:87:6f:d6:b0:8a:26:38:b4:b4:e6:c2:10:61:13: b5:42:c9:a8:16:80:fb:77:34:95:33:88:82:2c:0d: a7:1f:00:de:40:a6:c0:62:65:c7:91:22:8a:8d:37: 9d:ba:98:6d:2b:07:9c:a3:f1:63:46:2f:16:50:3c: bf:c8:a5:e3:29:ba:e0:c7:56:d8:9d:46:98:94:de: d8:5d:b9:61:b8:0e:e8:3d:60:f3:49:d3:3e:49:a2: ee:01:5d:26:2c:23:db:da:1c:66:a9:16:9e:70:26: f1:7b:37:d3:88:f5:96:69:ff:4b:70:ee:0b:9c:5c: 91:86:af:da:74:c3:3c:ca:b6:65:1d:44:9d:92:fc: b2:ff:cd:b6:a5:e4:e2:7c:73:c7:10:ed:58:65:9e: 16:ca:78:db:32:d3:89:e4:3d:71:d9:21:5e:61:58: f2:2b:d7:da:66:fe:e4:35:d4:43:99:5b:05:12:f2: 2b:09:b5:ef:18:90:5d:c2:5c:be:82:d9:94:98:95: a9:fc:ab:28:b9:01:50:1e:eb:ba:c0:aa:4b:ec:5b: e4:b3:ea:77:68:2c:ae:3e:a6:b1:05:2d:e3:b9:6c: 71:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:4F:24:B2:D6:8B:7B:73:50:17:E0:24:F8:22:ED:A4:BA:6E:41:85 X509v3 Authority Key Identifier: keyid:CA:E3:DB:8A:DE:E7:A1:6A:B6:CA:53:7F:23:47:B0:20:5B:DF:4F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/yuPbit7noWq2ylN_I0ewIFvfT3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yuPbit7noWq2ylN_I0ewIFvfT3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/12032AE02EAC11EFB73C0767C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:9f20::/32 Signature Algorithm: sha256WithRSAEncryption 29:86:13:b8:46:b3:f4:b8:60:b1:e0:06:d4:5e:11:f6:55:fa: 45:b9:6e:1c:fa:05:5b:1d:47:8f:2c:07:25:80:6a:06:99:db: 1c:c0:91:17:18:7e:cc:1a:f0:cb:26:2d:b2:ff:3d:a1:be:e2: c8:b9:b8:19:1f:08:fe:02:3f:9d:be:2e:d6:41:88:1b:88:80: df:e0:03:07:47:39:c7:d7:6e:cb:c5:98:2e:c9:88:19:19:b3: cf:38:12:bb:24:81:21:68:4e:7f:78:4b:59:3b:cb:39:a7:42: 1d:1d:50:d5:6c:f5:33:3d:57:4a:7d:61:bf:a4:52:59:23:26: 98:3d:00:ff:fd:97:64:c5:d9:79:21:25:15:66:17:d2:5b:fd: d9:fb:14:a8:f8:bd:dc:a7:4d:c0:6e:22:5c:27:df:44:e3:1a: c0:6d:75:b6:2f:ce:4c:3b:08:17:58:15:0e:a0:c3:ea:2e:31: 10:27:e7:66:29:46:57:1e:3c:2c:ff:81:fb:80:5c:01:5d:78: 09:24:91:3c:42:dc:a8:a9:df:2d:a1:c3:49:32:4a:3d:f6:ee: 59:5e:a2:58:94:47:ff:5a:cb:4b:06:00:08:c4:12:b8:93:ef: ae:b8:d6:c8:29:94:fc:d2:8b:6e:96:54:0c:61:01:de:81:8d: f3:d2:16:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTZGRjExMC8GA1UEBRMoQ0FFM0RCOEFERUU3QTE2QUI2Q0E1MzdGMjM0N0IwMjA1 QkRGNEY3NjAeFw0yNDA2MjAwMjIzMjRaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzM5MjljLTM4M2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzoI+fjdyiCxOil/tQTUEBTuhT8Z44xW7h/zi9EWWHb9awiiY4tLTmwhBhE7VC yagWgPt3NJUziIIsDacfAN5ApsBiZceRIoqNN526mG0rB5yj8WNGLxZQPL/IpeMp uuDHVtidRpiU3thduWG4Dug9YPNJ0z5Jou4BXSYsI9vaHGapFp5wJvF7N9OI9ZZp /0tw7gucXJGGr9p0wzzKtmUdRJ2S/LL/zbal5OJ8c8cQ7VhlnhbKeNsy04nkPXHZ IV5hWPIr19pm/uQ11EOZWwUS8isJte8YkF3CXL6C2ZSYlan8qyi5AVAe67rAqkvs W+Sz6ndoLK4+prEFLeO5bHFbAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUEU8kstaL e3NQF+Ak+CLtpLpuQYUwHwYDVR0jBBgwFoAUyuPbit7noWq2ylN/I0ewIFvfT3Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNkZGL0QyODFFNzMwMkUy OTExRUZCQUVENkExQUM0RjlBRTAyL3l1UGJpdDdub1dxMnlsTl9JMGV3SUZ2ZlQz WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveXVQYml0N25vV3EyeWxOX0kwZXdJRnZmVDNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTZGRi9EMjgxRTczMDJFMjkxMUVGQkFFRDZBMUFDNEY5QUUwMi8xMjAzMkFFMDJF QUMxMUVGQjczQzA3NjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBnyAwDQYJKoZIhvcNAQELBQADggEBACmGE7hGs/S4YLHg BtReEfZV+kW5bhz6BVsdR48sByWAagaZ2xzAkRcYfswa8MsmLbL/PaG+4si5uBkf CP4CP52+LtZBiBuIgN/gAwdHOcfXbsvFmC7JiBkZs884ErskgSFoTn94S1k7yzmn Qh0dUNVs9TM9V0p9Yb+kUlkjJpg9AP/9l2TF2XkhJRVmF9Jb/dn7FKj4vdynTcBu Ilwn30TjGsBtdbYvzkw7CBdYFQ6gw+ouMRAn52YpRlcePCz/gfuAXAFdeAkkkTxC 3Kip3y2hw0kySj327lleoliUR/9ay0sGAAjEEriT76641sgplPzSi26WVAxhAd6B jfPSFtE= -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:34 2024 by rpki-client on console-fra.rpki-client.org