$ rpki-client -vvf rpki.apnic.net/member_repository/A9148456/607AD92031D711EE9C203B20C4F9AE02/D459D92C31D711EEBE1BFD20C4F9AE02.roa File: D459D92C31D711EEBE1BFD20C4F9AE02.roa (raw, json) Hash identifier: RQHCuTNnhU+W3QyMF/cWQQa7ATaR8Vs28IecrYMvrEA= Subject key identifier: 51:A1:CE:47:E6:F1:C1:11:13:BF:C7:19:47:F6:EC:33:D6:E9:F2:91 Certificate issuer: /CN=A9148456/serialNumber=64F060D8A158D12444CBDAECBEE08CECB882D2C9 Certificate serial: D8 Authority key identifier: 64:F0:60:D8:A1:58:D1:24:44:CB:DA:EC:BE:E0:8C:EC:B8:82:D2:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPBg2KFY0SREy9rsvuCM7LiC0sk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148456/607AD92031D711EE9C203B20C4F9AE02/D459D92C31D711EEBE1BFD20C4F9AE02.roa Signing time: Sat 07 Sep 2024 06:07:52 +0000 ROA not before: Sat 07 Sep 2024 06:07:52 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55891 IP address blocks: 2406:4ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148456/607AD92031D711EE9C203B20C4F9AE02/ZPBg2KFY0SREy9rsvuCM7LiC0sk.crl rsync://rpki.apnic.net/member_repository/A9148456/607AD92031D711EE9C203B20C4F9AE02/ZPBg2KFY0SREy9rsvuCM7LiC0sk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPBg2KFY0SREy9rsvuCM7LiC0sk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148456/serialNumber=64F060D8A158D12444CBDAECBEE08CECB882D2C9 Validity Not Before: Sep 7 06:07:52 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66dbedb8-9d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9d:0d:1e:61:67:5d:8c:35:86:65:22:28:c6: 1b:31:08:fa:d2:95:cb:da:66:e0:93:56:a0:69:41: bb:e4:08:87:15:04:7b:4b:f0:df:f5:06:8e:36:2c: ff:7b:5a:50:06:32:83:5e:cf:24:7f:0c:44:d2:96: 09:6c:3d:c3:a5:dc:2a:b6:c4:4a:05:fe:da:7b:ae: af:31:44:96:30:a7:47:50:4e:b7:bc:2c:a0:7b:c0: db:47:fa:5e:22:55:2e:e1:30:59:e0:3d:49:59:24: 92:1f:ba:23:f4:72:54:ff:40:e9:79:2c:3a:24:d5: 9f:c2:24:72:9d:15:92:b1:c4:e4:73:4b:b0:0f:06: fd:ba:fc:fd:46:16:ee:ba:36:c1:c0:5b:e4:ba:d3: 73:04:72:b9:ec:06:7d:68:6b:4a:43:bb:d5:9a:a6: 37:a8:80:76:6a:e8:fd:22:36:89:b8:20:18:20:46: ce:5a:98:9e:fa:4e:2d:70:78:e3:6a:c8:09:20:ee: f1:0a:29:41:21:1b:83:94:eb:98:fa:72:13:5d:88: e7:9a:ba:0c:10:19:38:e8:11:8c:5a:b4:36:41:a3: ee:7c:95:5e:9a:57:13:68:b5:b2:14:bb:1a:5d:38: f5:5b:13:2c:a3:87:eb:f0:5d:6a:f0:bb:c8:5d:e4: d9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A1:CE:47:E6:F1:C1:11:13:BF:C7:19:47:F6:EC:33:D6:E9:F2:91 X509v3 Authority Key Identifier: keyid:64:F0:60:D8:A1:58:D1:24:44:CB:DA:EC:BE:E0:8C:EC:B8:82:D2:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148456/607AD92031D711EE9C203B20C4F9AE02/ZPBg2KFY0SREy9rsvuCM7LiC0sk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPBg2KFY0SREy9rsvuCM7LiC0sk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148456/607AD92031D711EE9C203B20C4F9AE02/D459D92C31D711EEBE1BFD20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:4ac0::/32 Signature Algorithm: sha256WithRSAEncryption 89:56:d6:52:f0:cf:26:06:68:8f:b4:7f:92:6a:a4:22:f8:1e: 70:f7:5b:e8:87:a5:33:20:b9:6b:2d:f0:3a:d0:10:37:be:5d: be:64:65:3d:a0:f2:95:38:9d:b5:c6:d7:a7:bf:46:db:fd:6b: d7:da:29:13:eb:0e:9d:eb:53:a3:0e:92:fc:6f:92:51:06:88: cf:9b:d0:2d:ec:3e:48:e7:c5:04:29:b5:d1:59:5c:7b:98:32: b7:dd:2e:18:e0:eb:4e:a4:95:57:d3:34:97:75:89:c7:2b:e1: bc:e6:29:3a:3b:bc:58:96:1b:15:71:ee:a9:0b:27:c8:4e:22: b1:56:92:07:bc:9c:32:35:46:a3:ab:eb:55:9f:5f:bc:54:78: 6d:8d:5e:1f:b3:d8:04:bb:45:cc:80:8d:c8:08:0f:4e:1f:46: 06:e0:4f:c9:00:3a:34:eb:73:ae:c7:17:0f:ce:0f:1c:ef:3d: c3:65:f8:43:e1:f7:36:d9:c6:ba:bc:18:39:d1:55:e5:6a:0d: 89:3d:bb:9b:a1:f3:c7:db:de:86:8c:93:0b:ba:1c:bd:d7:18: c7:24:5f:90:91:67:3d:e1:38:00:39:32:d9:d2:3f:40:16:cd: 8b:54:77:fd:0c:86:6c:9f:6e:c8:c7:d7:ac:45:4d:d2:3a:91: 47:9d:e1:ee -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NTYxMTAvBgNVBAUTKDY0RjA2MEQ4QTE1OEQxMjQ0NENCREFFQ0JFRTA4Q0VD Qjg4MkQyQzkwHhcNMjQwOTA3MDYwNzUyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiZWRiOC05ZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv50NHmFnXYw1hmUiKMYbMQj60pXL2mbgk1agaUG75AiHFQR7S/Df9QaONiz/ e1pQBjKDXs8kfwxE0pYJbD3DpdwqtsRKBf7ae66vMUSWMKdHUE63vCyge8DbR/pe IlUu4TBZ4D1JWSSSH7oj9HJU/0DpeSw6JNWfwiRynRWSscTkc0uwDwb9uvz9Rhbu ujbBwFvkutNzBHK57AZ9aGtKQ7vVmqY3qIB2auj9IjaJuCAYIEbOWpie+k4tcHjj asgJIO7xCilBIRuDlOuY+nITXYjnmroMEBk46BGMWrQ2QaPufJVemlcTaLWyFLsa XTj1WxMso4fr8F1q8LvIXeTZMwIDAQABo4ICljCCApIwHQYDVR0OBBYEFFGhzkfm 8cERE7/HGUf27DPW6fKRMB8GA1UdIwQYMBaAFGTwYNihWNEkRMva7L7gjOy4gtLJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ1Ni82MDdBRDkyMDMx RDcxMUVFOUMyMDNCMjBDNEY5QUUwMi9aUEJnMktGWTBTUkV5OXJzdnVDTTdMaUMw c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pQQmcyS0ZZMFNSRXk5cnN2dUNNN0xpQzBzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg0NTYvNjA3QUQ5MjAzMUQ3MTFFRTlDMjAzQjIwQzRGOUFFMDIvRDQ1OUQ5MkMz MUQ3MTFFRUJFMUJGRDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBkrAMA0GCSqGSIb3DQEBCwUAA4IBAQCJVtZS8M8mBmiP tH+SaqQi+B5w91voh6UzILlrLfA60BA3vl2+ZGU9oPKVOJ21xtenv0bb/WvX2ikT 6w6d61OjDpL8b5JRBojPm9At7D5I58UEKbXRWVx7mDK33S4Y4OtOpJVX0zSXdYnH K+G85ik6O7xYlhsVce6pCyfITiKxVpIHvJwyNUajq+tVn1+8VHhtjV4fs9gEu0XM gI3ICA9OH0YG4E/JADo063OuxxcPzg8c7z3DZfhD4fc22ca6vBg50VXlag2JPbub ofPH296GjJMLuhy91xjHJF+QkWc94TgAOTLZ0j9AFs2LVHf9DIZsn27Ix9esRU3S OpFHneHu -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org