$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CDCC902E170811EFB6DE866CC4F9AE02.roa File: CDCC902E170811EFB6DE866CC4F9AE02.roa (raw, json) Hash identifier: Qr52xk5Cmr7B9ojqij9Sa1V9McPqDHOMkRtq3w6aXoE= Subject key identifier: 82:5A:68:0F:2C:AB:89:67:35:6A:DD:49:61:C7:D2:7F:37:64:3A:E6 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 35F7 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CDCC902E170811EFB6DE866CC4F9AE02.roa Signing time: Fri 16 Aug 2024 14:40:30 +0000 ROA not before: Fri 16 Aug 2024 14:40:29 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 2914 IP address blocks: 2001:d38::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13815 (0x35f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Aug 16 14:40:29 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bf64dd-60f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e5:de:79:58:4d:64:ad:0d:93:11:17:59:80: a6:0c:d0:92:41:08:c1:6c:d3:7f:ab:77:b0:ee:37: 71:16:1f:a2:58:26:9e:0d:e3:32:1d:78:2f:04:c3: 9c:5a:d0:04:d9:ea:5a:5d:0e:94:e3:c5:05:24:8e: 21:59:2e:53:c5:3e:da:64:82:46:04:9d:b1:1f:d3: 1e:89:6b:3b:5e:54:05:11:1a:7a:16:ac:87:13:3a: 05:bb:44:78:36:21:7b:73:8b:b2:cd:61:28:8a:29: 75:63:72:86:8f:9a:d4:4b:a5:58:5b:ac:cb:73:f0: f8:e0:80:3c:92:07:74:c0:ed:06:d8:b8:b3:1f:58: 39:eb:6c:6f:66:ff:74:4d:de:bd:12:0c:1d:6c:9f: 20:4e:e6:7f:05:d7:2a:39:57:72:5e:2b:3d:cd:be: f3:fb:e8:77:ae:e4:92:69:55:f0:cb:25:fa:27:c5: 6c:8c:6c:0d:a8:d5:57:b2:0a:3e:25:e8:d9:67:70: b6:0a:1c:c6:75:91:36:24:a8:ab:48:40:07:a2:56: 11:44:b3:44:53:fe:c4:94:dc:24:3f:27:38:16:99: ca:92:5a:c3:45:21:59:d6:0f:c4:3a:d0:45:e7:d4: 3e:bf:a2:ba:62:c2:d7:b9:16:64:1e:37:5f:98:3d: 4d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5A:68:0F:2C:AB:89:67:35:6A:DD:49:61:C7:D2:7F:37:64:3A:E6 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CDCC902E170811EFB6DE866CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:d38::/32 Signature Algorithm: sha256WithRSAEncryption e1:d3:eb:6f:e0:1f:c1:c9:8c:a5:60:1a:06:4a:73:fc:bd:fa: 5d:2d:9e:57:a0:c2:7f:33:df:5b:2f:15:da:13:06:16:a6:33: 81:3d:66:0d:91:46:1e:01:f1:fa:f5:3a:c7:5f:6f:37:91:a2: fd:26:42:6e:f7:6e:12:04:fd:d3:86:a7:17:d6:8f:f8:34:c5: f3:e7:c5:1a:f0:4a:06:3e:f2:82:95:97:3a:0e:89:db:21:7f: 00:74:b2:1f:46:da:0c:39:c5:a7:d7:6a:ca:30:b8:ba:5b:0b: 7c:1f:0e:bb:99:f3:20:73:20:b2:dc:d8:64:28:7c:ea:c1:ae: c4:71:f9:38:f2:89:e4:5b:e2:b1:ee:7a:5b:27:73:69:c6:8c: 2b:04:75:a9:1e:5d:cf:e3:52:1b:8a:a4:f5:e9:2f:c9:ee:9e: f9:15:2e:e6:d8:67:4e:76:37:7b:66:68:26:6b:85:85:a1:95: 32:e4:23:7c:a9:f4:33:08:74:40:a0:1f:ef:96:55:1f:20:e9: b7:d4:75:fa:38:ab:a0:e0:2a:37:1c:6b:9f:c7:df:ae:cb:9e: e5:e8:0f:ea:5d:9a:4e:32:3e:69:2b:e0:12:21:f7:fb:79:4d: 98:11:d7:77:02:11:a5:ca:b3:39:8f:33:cd:07:b9:b9:d4:da: e5:64:1a:01 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICNfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjQwODE2MTQ0MDI5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNjRkZC02MGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueXeeVhNZK0NkxEXWYCmDNCSQQjBbNN/q3ew7jdxFh+iWCaeDeMyHXgvBMOc WtAE2epaXQ6U48UFJI4hWS5TxT7aZIJGBJ2xH9MeiWs7XlQFERp6FqyHEzoFu0R4 NiF7c4uyzWEoiil1Y3KGj5rUS6VYW6zLc/D44IA8kgd0wO0G2LizH1g562xvZv90 Td69EgwdbJ8gTuZ/BdcqOVdyXis9zb7z++h3ruSSaVXwyyX6J8VsjGwNqNVXsgo+ JejZZ3C2ChzGdZE2JKirSEAHolYRRLNEU/7ElNwkPyc4FpnKklrDRSFZ1g/EOtBF 59Q+v6K6YsLXuRZkHjdfmD1NmwIDAQABo4ICljCCApIwHQYDVR0OBBYEFIJaaA8s q4lnNWrdSWHH0n83ZDrmMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvQ0RDQzkwMkUx NzA4MTFFRkI2REU4NjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAgAQ04MA0GCSqGSIb3DQEBCwUAA4IBAQDh0+tv4B/ByYyl YBoGSnP8vfpdLZ5XoMJ/M99bLxXaEwYWpjOBPWYNkUYeAfH69TrHX283kaL9JkJu 924SBP3ThqcX1o/4NMXz58Ua8EoGPvKClZc6DonbIX8AdLIfRtoMOcWn12rKMLi6 Wwt8Hw67mfMgcyCy3NhkKHzqwa7Ecfk48onkW+Kx7npbJ3NpxowrBHWpHl3P41Ib iqT16S/J7p75FS7m2GdOdjd7Zmgma4WFoZUy5CN8qfQzCHRAoB/vllUfIOm31HX6 OKug4Co3HGufx9+uy57l6A/qXZpOMj5pK+ASIff7eU2YEdd3AhGlyrM5jzPNB7m5 1NrlZBoB -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:08 2024 by rpki-client on console-ams.rpki-client.org