$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/5D313B1C31DA11EEBE28A546C4F9AE02.roa File: 5D313B1C31DA11EEBE28A546C4F9AE02.roa (raw, json) Hash identifier: FoAylNmdesRHU3oexctbCd7CtqneWbl6QUSlHnFcNTI= Subject key identifier: 6A:1A:78:3C:87:6B:8F:BD:33:C1:71:DB:CA:9A:C4:3C:6D:A4:60:D5 Certificate issuer: /CN=A9148AC0/serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Certificate serial: F9 Authority key identifier: 76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/5D313B1C31DA11EEBE28A546C4F9AE02.roa Signing time: Sun 03 Nov 2024 03:37:08 +0000 ROA not before: Sun 03 Nov 2024 03:37:08 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55891 IP address blocks: 2405:4cc1:100::/40 maxlen: 40 2405:4cc1:200::/40 maxlen: 40 2405:4cc1:300::/40 maxlen: 40 2405:4cc1:500::/40 maxlen: 40 2405:4cc1:600::/40 maxlen: 40 2405:4cc1:700::/40 maxlen: 40 2405:4cc1:800::/40 maxlen: 40 2405:4cc1:900::/40 maxlen: 40 2405:4cc1:b00::/40 maxlen: 40 2405:4cc1:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC0/serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Validity Not Before: Nov 3 03:37:08 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726efe4-3a25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:81:f5:0d:ff:90:e6:fb:8e:a0:f8:a6:99:80: c2:23:a8:9f:70:4a:f3:3f:8f:34:9e:21:4d:72:a7: ff:11:c3:e8:4e:26:be:46:0a:ae:cf:53:b2:f3:f9: dd:cf:fa:f8:37:97:42:a8:1c:4d:f2:87:35:5c:13: a1:2b:cd:e9:1a:28:5b:d5:3f:00:58:ac:5d:6b:5b: 48:d5:32:f2:3b:af:fe:cd:4e:e4:36:d2:46:3d:f3: 4c:14:ad:2b:01:df:42:83:9d:92:6c:e0:77:bd:38: ee:1e:ed:9a:b3:07:47:51:47:24:39:1c:60:e3:64: 0d:5b:2d:37:22:24:76:12:71:e3:b6:b5:54:7e:2c: 87:e5:ad:fc:ab:23:ee:64:e4:21:25:ab:44:a5:f9: 32:18:ac:cd:c0:5d:29:99:7f:c5:61:6b:a8:d7:42: b0:20:ae:7b:94:6a:ac:8c:8d:ee:44:b8:c9:f0:1d: 23:7b:a9:21:fb:df:ec:10:b5:b8:b7:b4:56:61:90: cb:ad:0c:13:6c:17:e7:37:bf:9f:36:91:cd:7d:07: 1e:2b:09:77:8c:da:0a:e7:f3:60:48:95:e6:44:13: 4d:c7:ac:37:f9:51:e6:3a:7e:4a:d6:df:25:2c:40: 7f:b1:f6:81:a6:c0:19:2d:75:61:6c:ff:2e:1b:5d: 93:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:1A:78:3C:87:6B:8F:BD:33:C1:71:DB:CA:9A:C4:3C:6D:A4:60:D5 X509v3 Authority Key Identifier: keyid:76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/5D313B1C31DA11EEBE28A546C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:4cc1:100::-2405:4cc1:3ff:ffff:ffff:ffff:ffff:ffff 2405:4cc1:500::-2405:4cc1:9ff:ffff:ffff:ffff:ffff:ffff 2405:4cc1:b00::/40 2405:4cc1:1000::/40 Signature Algorithm: sha256WithRSAEncryption 23:22:93:32:cb:8f:6b:63:71:4e:5c:28:9d:51:b6:92:5b:57: 0e:65:0d:ea:b2:89:25:e6:cd:e3:d6:29:ef:7f:fb:e8:89:f5: 3e:ec:53:17:a1:f5:71:b2:8f:e2:6f:62:cf:a5:82:35:b9:89: 36:7b:67:d1:ec:0f:72:c7:04:f1:42:f2:87:60:58:75:a2:e6: 10:96:73:56:27:33:b1:ca:83:93:a8:36:93:14:be:ee:fd:02: 74:10:fc:ed:4c:73:20:48:b8:0b:18:14:08:3f:6b:b5:90:86: a6:6c:11:45:f4:a4:72:10:de:d0:74:c4:4d:2b:2a:ba:18:41: 4f:32:3b:a0:7c:0b:a2:c5:51:e3:5f:27:ef:68:b9:db:f2:71: f3:80:c9:dd:3d:fb:59:13:a7:96:2b:d4:bf:eb:a3:64:a1:ab: fa:0a:9f:6c:4f:9e:11:9e:2d:e3:3d:ed:0d:0b:c8:30:d4:b3: d2:99:39:f5:72:49:6f:bb:65:9d:7b:95:22:6d:84:89:ed:6b: 1a:6e:76:30:07:aa:be:fb:10:28:2a:61:aa:d7:d4:bc:1f:16: a8:4d:77:83:57:0f:1d:e2:cb:cf:84:15:6f:f1:7d:91:2b:6e: 05:17:ed:51:00:16:65:dd:26:35:ba:26:ca:69:5e:3d:12:41: f9:55:0c:09 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzAxMTAvBgNVBAUTKDc2Njg1N0JBM0Y3QzcyOEI2ODA1MjVBQzQxRkE3Q0Uy QTFGMDA5MkQwHhcNMjQxMTAzMDMzNzA4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ZWZlNC0zYTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIH1Df+Q5vuOoPimmYDCI6ifcErzP480niFNcqf/EcPoTia+Rgquz1Oy8/nd z/r4N5dCqBxN8oc1XBOhK83pGihb1T8AWKxda1tI1TLyO6/+zU7kNtJGPfNMFK0r Ad9Cg52SbOB3vTjuHu2aswdHUUckORxg42QNWy03IiR2EnHjtrVUfiyH5a38qyPu ZOQhJatEpfkyGKzNwF0pmX/FYWuo10KwIK57lGqsjI3uRLjJ8B0je6kh+9/sELW4 t7RWYZDLrQwTbBfnN7+fNpHNfQceKwl3jNoK5/NgSJXmRBNNx6w3+VHmOn5K1t8l LEB/sfaBpsAZLXVhbP8uG12TbwIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFGoaeDyH a4+9M8Fx28qaxDxtpGDVMB8GA1UdIwQYMBaAFHZoV7o/fHKLaAUlrEH6fOKh8Akt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDMC9FNEVENTM5NDMx RDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNvdG9CU1dzUWZwODRxSHdD UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtaFh1ajk4Y290b0JTV3NRZnA4NHFId0NTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhBQzAvRTRFRDUzOTQzMUQ4MTFFRTgzMDA2QTQxQzRGOUFFMDIvNUQzMTNCMUMz MURBMTFFRUJFMjhBNTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgACMDQwEAMGACQFTMEBAwYCJAVMwQAwEAMGACQFTMEFAwYBJAVMwQgD BgAkBUzBCwMGACQFTMEQMA0GCSqGSIb3DQEBCwUAA4IBAQAjIpMyy49rY3FOXCid UbaSW1cOZQ3qsokl5s3j1invf/voifU+7FMXofVxso/ib2LPpYI1uYk2e2fR7A9y xwTxQvKHYFh1ouYQlnNWJzOxyoOTqDaTFL7u/QJ0EPztTHMgSLgLGBQIP2u1kIam bBFF9KRyEN7QdMRNKyq6GEFPMjugfAuixVHjXyfvaLnb8nHzgMndPftZE6eWK9S/ 66Nkoav6Cp9sT54Rni3jPe0NC8gw1LPSmTn1cklvu2Wde5UibYSJ7WsabnYwB6q+ +xAoKmGq19S8HxaoTXeDVw8d4svPhBVv8X2RK24FF+1RABZl3SY1uibKaV49EkH5 VQwJ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org