$ rpki-client -vvf rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/F2257AC0289011ED8AEEB43CC4F9AE02.roa File: F2257AC0289011ED8AEEB43CC4F9AE02.roa (raw, json) Hash identifier: Eg0ppNj4Rfn9XDDO2a6sOjdWSFXYTHKi+qKN2PGRgYA= Subject key identifier: A7:EB:78:F7:EC:D3:76:5D:61:A7:18:35:A0:D2:C5:19:F2:FD:21:4E Certificate issuer: /CN=A91340D8/serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Certificate serial: 01B7 Authority key identifier: 1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/F2257AC0289011ED8AEEB43CC4F9AE02.roa Signing time: Fri 13 Sep 2024 05:48:08 +0000 ROA not before: Fri 13 Sep 2024 05:48:08 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 19855 IP address blocks: 2400:7160:2000::/44 maxlen: 44 2400:7160:2020::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91340D8/serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Validity Not Before: Sep 13 05:48:08 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e3d217-8fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:31:d5:15:cf:69:ef:a6:5c:a2:f6:61:33:76: a6:d2:04:ee:d2:f9:4e:b0:ef:fe:ed:be:46:b2:3e: 9f:38:bd:2f:80:77:05:aa:c9:b4:63:f8:7d:6c:30: d7:f4:81:8b:82:b1:21:39:2e:4a:00:99:8b:d4:bb: 7a:68:e2:60:98:eb:3e:a6:a3:e3:ce:c0:6b:ad:25: a4:c6:d4:19:87:cd:dd:98:d2:dc:b4:88:02:69:87: 1b:f9:f2:45:f6:5e:89:2f:85:b6:aa:f2:9b:67:9e: 3d:a1:41:70:14:b4:e5:d4:30:a4:6a:62:98:42:98: f9:84:9d:b4:2f:9f:ed:92:6a:ee:8e:09:6d:44:b9: 4b:fb:ca:3c:ed:3a:37:6a:3a:af:5e:55:d7:1d:54: 9c:94:b4:68:ba:37:59:42:15:45:90:21:d2:85:f7: 7f:37:3a:17:5a:b9:da:49:bd:f5:58:4b:f4:cf:1f: 27:8f:27:26:e2:a4:38:4f:3e:96:27:de:9e:52:40: 97:c2:0f:f3:67:74:06:dc:60:15:0f:73:98:d7:e0: f8:0d:fb:15:39:0e:3b:99:f3:21:b7:bd:a8:09:a6: cf:fb:f9:05:83:c8:77:fc:cd:a0:e8:02:d4:dd:e4: a2:8e:ca:38:85:5a:eb:c3:db:a4:5e:8d:41:81:bc: ea:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:EB:78:F7:EC:D3:76:5D:61:A7:18:35:A0:D2:C5:19:F2:FD:21:4E X509v3 Authority Key Identifier: keyid:1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/F2257AC0289011ED8AEEB43CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:7160:2000::/44 2400:7160:2020::/44 Signature Algorithm: sha256WithRSAEncryption 75:ab:6d:58:f7:e1:70:98:0b:4c:c9:32:30:02:cb:b8:6b:ba: 95:ce:92:47:2b:6e:ff:1a:d9:a3:66:b8:86:fd:39:02:1d:7c: 08:a9:59:9a:e8:ea:97:6d:8d:96:71:7a:fd:2a:55:c8:94:47: 08:aa:70:48:f1:9f:fa:6a:04:4e:eb:c3:a0:d5:7d:7a:6a:42: 63:6a:26:dd:4f:b1:6d:c7:03:4d:ea:d4:8e:6b:ea:28:6d:76: 6a:ab:81:09:7b:8b:f4:95:1b:bb:43:66:d0:01:e9:55:d0:53: 91:2e:b6:20:1b:99:e0:fb:69:b9:3e:0a:a7:4e:fe:8b:8e:27: de:42:88:cf:e2:c7:a1:cc:01:e6:e8:85:22:04:5d:42:46:c3: 18:e5:29:67:aa:9d:df:46:b3:6a:d9:4c:63:41:11:8e:47:d4: 31:15:35:ce:14:27:b3:ca:24:11:0c:c7:c6:52:55:3c:f9:a4: 97:b8:2b:03:ac:b9:4a:71:e0:3a:91:b1:98:45:93:2e:a8:0e: e2:c6:65:56:02:bc:08:8d:30:aa:fa:5b:c9:03:c0:79:04:a5: 34:25:28:60:b1:69:be:02:40:08:01:7b:8e:18:33:61:d8:36: ae:75:0d:40:e8:e2:e9:0f:5e:e2:cd:9b:68:97:ec:88:38:f7: 90:ac:93:f5 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQwRDgxMTAvBgNVBAUTKDFCOEFFN0M3NDMwMTcyOUQ4NUMzMTU5NTI0OUMzQjQ4 RjFCOTE1MUUwHhcNMjQwOTEzMDU0ODA4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzZDIxNy04ZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzHVFc9p76ZcovZhM3am0gTu0vlOsO/+7b5Gsj6fOL0vgHcFqsm0Y/h9bDDX 9IGLgrEhOS5KAJmL1Lt6aOJgmOs+pqPjzsBrrSWkxtQZh83dmNLctIgCaYcb+fJF 9l6JL4W2qvKbZ549oUFwFLTl1DCkamKYQpj5hJ20L5/tkmrujgltRLlL+8o87To3 ajqvXlXXHVSclLRoujdZQhVFkCHShfd/NzoXWrnaSb31WEv0zx8njycm4qQ4Tz6W J96eUkCXwg/zZ3QG3GAVD3OY1+D4DfsVOQ47mfMht72oCabP+/kFg8h3/M2g6ALU 3eSijso4hVrrw9ukXo1BgbzqTwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKfrePfs 03ZdYacYNaDSxRny/SFOMB8GA1UdIwQYMBaAFBuK58dDAXKdhcMVlSScO0jxuRUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDBEOC9CM0RFNUNFNDI4 OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNwMkZ3eFdWSkp3N1NQRzVG UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0cm54ME1CY3AyRnd4V1ZKSnc3U1BHNUZSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQwRDgvQjNERTVDRTQyODhEMTFFREE5QTRFQTZGQzRGOUFFMDIvRjIyNTdBQzAy ODkwMTFFRDhBRUVCNDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkAHFgIAADBwQkAHFgICAwDQYJKoZIhvcNAQELBQADggEB AHWrbVj34XCYC0zJMjACy7hrupXOkkcrbv8a2aNmuIb9OQIdfAipWZro6pdtjZZx ev0qVciURwiqcEjxn/pqBE7rw6DVfXpqQmNqJt1PsW3HA03q1I5r6ihtdmqrgQl7 i/SVG7tDZtAB6VXQU5EutiAbmeD7abk+CqdO/ouOJ95CiM/ix6HMAebohSIEXUJG wxjlKWeqnd9Gs2rZTGNBEY5H1DEVNc4UJ7PKJBEMx8ZSVTz5pJe4KwOsuUpx4DqR sZhFky6oDuLGZVYCvAiNMKr6W8kDwHkEpTQlKGCxab4CQAgBe44YM2HYNq51DUDo 4ukPXuLNm2iX7Ig495Csk/U= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org