$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/E367308E8D8811EDB3C13D6CC4F9AE02.roa File: E367308E8D8811EDB3C13D6CC4F9AE02.roa (raw, json) Hash identifier: pxP+7JsX1QXgZ6389EUW7Rq0A265BP9eId8bGB02ABI= Subject key identifier: 31:93:6A:9A:C2:E0:3F:E1:14:3E:AB:F1:9E:A9:1B:DB:4D:AC:10:14 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 3432 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/E367308E8D8811EDB3C13D6CC4F9AE02.roa Signing time: Tue 20 Aug 2024 15:31:17 +0000 ROA not before: Tue 20 Aug 2024 15:31:17 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 38620 IP address blocks: 2409::/40 maxlen: 40 240a:e000::/21 maxlen: 22 240a:e800::/21 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13362 (0x3432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Aug 20 15:31:17 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66c4b6c4-57db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3b:05:32:7c:6a:c5:b7:ed:79:72:ca:68:f6: 43:a4:18:13:7f:b7:10:52:1e:c7:c4:d6:61:6f:77: 1c:62:d4:e7:9e:e2:19:38:0b:a9:e9:93:c7:30:1f: b8:8b:09:8e:3a:20:e4:20:c5:99:15:a0:75:f9:d4: d2:b1:7a:e8:81:5f:a2:bc:de:98:1f:4d:bb:3e:e0: 2e:b2:0b:b8:ce:f8:1d:fe:0f:a8:7b:23:0c:4b:98: 53:e3:7b:9b:82:29:96:42:24:66:ac:f7:62:00:3f: f0:2b:0c:4c:ab:5e:e4:6d:23:31:14:93:c8:ca:ae: 25:0d:ac:8b:db:70:00:d7:66:12:39:42:85:6f:42: e8:52:20:d3:12:7f:ee:9f:d1:ac:88:13:e4:63:db: b3:ab:d0:92:13:ae:88:a2:b5:6e:ba:10:ee:85:b5: 3b:74:5e:7e:e6:dd:49:39:73:ed:e8:da:0b:38:50: 6e:75:99:63:15:a8:d9:4d:08:53:45:06:27:d8:9f: 1a:8f:c3:34:4d:91:03:3b:39:63:b8:fe:3f:de:9a: 8b:22:48:ff:3b:ec:5f:4e:f0:f0:86:43:e0:1b:a7: 6f:70:c4:df:79:5b:85:56:b1:08:3f:9f:96:be:a9: d6:be:f4:8f:e3:53:e3:a6:d8:58:4d:dc:a0:f6:92: 22:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:93:6A:9A:C2:E0:3F:E1:14:3E:AB:F1:9E:A9:1B:DB:4D:AC:10:14 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/E367308E8D8811EDB3C13D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2409::/40 240a:e000::/20 Signature Algorithm: sha256WithRSAEncryption f6:83:4e:21:f1:bd:80:ff:c3:d2:c4:59:33:9d:53:13:10:e4: 31:ae:29:2e:b8:c8:08:b0:3b:2e:9f:33:74:23:12:22:da:9a: 94:ab:34:6b:9d:cf:8e:53:67:2a:d6:a0:77:74:ff:2c:23:9a: 89:33:4b:e8:91:f8:28:28:2c:1c:58:3f:20:66:f4:78:d8:b8: 42:e9:b8:ab:4e:32:1e:91:ea:fb:17:c3:fa:da:9a:b9:9f:31: f6:dd:ba:7d:18:a4:03:9b:b6:e2:c7:35:77:de:b1:d8:9a:78: 0e:ee:8c:8e:17:ae:d0:3c:50:34:71:0d:c5:f9:02:46:92:7d: be:03:29:4c:d5:5f:08:ed:cb:67:4c:e3:74:33:e9:9d:ab:60: c5:29:32:31:06:40:7a:67:b0:96:12:a9:b2:d7:d0:df:c5:47: ee:00:16:e5:14:10:95:5f:d4:c1:aa:f4:1e:8b:18:3b:bd:42: 22:18:26:ab:a5:83:6d:82:9d:d6:6c:fd:7d:52:42:64:d7:2c: 24:5d:65:9c:4f:95:cf:8d:32:8a:4e:6a:c5:e7:e9:6b:9d:1f: f6:b3:fa:3b:c8:09:0f:45:5c:97:b8:2b:6e:c2:69:51:e4:cb: 8c:24:e9:1d:7d:a2:55:49:36:c8:c5:fd:bf:3d:7a:d2:15:6a: 44:a8:43:b5 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICNDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjQwODIwMTUzMTE3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YjZjNC01N2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTsFMnxqxbfteXLKaPZDpBgTf7cQUh7HxNZhb3ccYtTnnuIZOAup6ZPHMB+4 iwmOOiDkIMWZFaB1+dTSsXrogV+ivN6YH027PuAusgu4zvgd/g+oeyMMS5hT43ub gimWQiRmrPdiAD/wKwxMq17kbSMxFJPIyq4lDayL23AA12YSOUKFb0LoUiDTEn/u n9GsiBPkY9uzq9CSE66IorVuuhDuhbU7dF5+5t1JOXPt6NoLOFBudZljFajZTQhT RQYn2J8aj8M0TZEDOzljuP4/3pqLIkj/O+xfTvDwhkPgG6dvcMTfeVuFVrEIP5+W vqnWvvSP41PjpthYTdyg9pIiUQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFDGTaprC 4D/hFD6r8Z6pG9tNrBAUMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvRTM2NzMwOEU4 RDg4MTFFREIzQzEzRDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgACMA4DBgAkCQAAAAMEBCQK4DANBgkqhkiG9w0BAQsFAAOCAQEA9oNO IfG9gP/D0sRZM51TExDkMa4pLrjICLA7Lp8zdCMSItqalKs0a53PjlNnKtagd3T/ LCOaiTNL6JH4KCgsHFg/IGb0eNi4Qum4q04yHpHq+xfD+tqauZ8x9t26fRikA5u2 4sc1d96x2Jp4Du6Mjheu0DxQNHENxfkCRpJ9vgMpTNVfCO3LZ0zjdDPpnatgxSky MQZAemewlhKpstfQ38VH7gAW5RQQlV/Uwar0HosYO71CIhgmq6WDbYKd1mz9fVJC ZNcsJF1lnE+Vz40yik5qxefpa50f9rP6O8gJD0Vcl7grbsJpUeTLjCTpHX2iVUk2 yMX9vz160hVqRKhDtQ== -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:19 2024 by rpki-client on console-ams.rpki-client.org