$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/D8210F284C2D11EFB69E1971C4F9AE02.roa File: D8210F284C2D11EFB69E1971C4F9AE02.roa (raw, json) Hash identifier: WqGj3maimmt9ctgBv9I2mOJJVp3Tw9OaIsq0AH+SBzE= Subject key identifier: 00:70:5E:9E:76:22:46:2F:2F:B5:B9:EA:BF:53:ED:ED:81:DD:4F:D7 Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 7B Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/D8210F284C2D11EFB69E1971C4F9AE02.roa Signing time: Sun 11 Aug 2024 06:17:24 +0000 ROA not before: Sun 11 Aug 2024 06:17:24 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9304 IP address blocks: 2403:27c0:c03::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Aug 11 06:17:24 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b85774-c214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:63:86:84:a6:ef:c2:fd:1f:b8:21:56:da:d5: 70:96:e4:11:39:77:7d:e9:ce:d0:c5:31:bf:b8:a7: 8a:be:20:13:79:06:81:2c:a1:62:84:03:ab:5f:74: 4e:d1:ad:78:91:2b:62:cb:bd:a1:0f:44:84:67:ae: 64:67:cf:2e:10:86:a9:fd:34:f7:e0:0b:0f:5c:f0: b6:6f:cd:99:d8:29:8b:c7:01:61:0f:48:e3:0b:14: ca:38:53:69:a4:28:49:b9:b3:a6:c4:2a:1a:93:f1: b2:90:d5:fe:b3:67:9c:13:44:a7:e1:68:19:9b:be: 11:43:a2:73:14:a2:f4:a6:b0:a4:67:6f:0e:11:53: 44:81:c7:95:1e:7b:b4:03:6f:71:ab:b1:12:5e:91: 1b:27:5c:1d:0e:ba:64:f5:4b:a8:0f:fc:d0:be:7e: 7a:98:6f:ef:ec:31:bc:a8:74:1d:0c:d3:01:d0:c9: 29:9a:27:c2:e5:26:51:e1:fc:3e:1b:92:e0:74:c1: f3:17:7d:aa:fb:0c:a3:f2:0d:63:2f:96:6a:1d:1c: 52:eb:8a:7c:ac:dc:59:a9:87:d7:a0:74:5a:5c:60: 83:66:27:ef:8f:57:0b:68:bb:be:08:a1:b2:75:b5: 00:e7:2d:8b:fa:89:37:c4:68:ab:a6:0a:98:ff:dc: 1c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:70:5E:9E:76:22:46:2F:2F:B5:B9:EA:BF:53:ED:ED:81:DD:4F:D7 X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/D8210F284C2D11EFB69E1971C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:27c0:c03::/48 Signature Algorithm: sha256WithRSAEncryption 8b:97:09:83:5a:17:55:4e:c2:ec:bc:2a:50:4a:d0:75:ff:0f: 5f:28:42:bc:89:4c:d2:81:f4:14:bc:c1:42:f2:a7:6f:96:60: f8:d0:8a:c3:90:c5:1e:cf:42:2e:b8:fc:26:ac:0a:9d:f6:d7: e4:e4:78:5a:b8:38:a4:fa:94:ae:4b:d4:ff:a7:e2:ec:a3:a0: fe:10:f3:33:f5:75:e5:9b:39:c6:1f:4b:4f:eb:b9:58:76:5e: e2:44:45:19:be:df:92:a5:bb:39:29:b5:4d:79:cb:cd:36:76: 2d:a8:f3:07:57:40:73:e0:02:98:f8:53:4d:2f:08:8b:5b:7b: be:a2:47:b6:71:d7:ae:9c:3e:cc:87:33:30:47:f8:00:ba:36: 39:0e:10:4b:5d:6c:28:39:eb:e5:31:7c:28:17:3b:70:f2:07: 52:a5:90:00:c7:77:5f:c3:ba:44:42:08:cf:27:6e:37:f7:75: db:4a:62:ab:5e:a2:8b:92:f9:44:4b:12:a0:de:83:63:8a:40: 73:74:a8:1b:e7:2a:8c:91:3b:32:c8:6d:7a:4b:2c:e6:e8:84: b9:69:4a:6b:64:06:e2:0c:b3:c6:33:bc:84:db:6d:c7:b9:ea: b2:c2:4c:23:d1:2e:fc:16:21:08:ba:b3:67:81:36:29:2e:62: cf:bd:e6:2e -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTY2RjExMC8GA1UEBRMoQjIyQzNEMEFCQ0QzOTE5NDg2QTNFNjFFOEQ3ODg5MjM5 MjJCRjZBNTAeFw0yNDA4MTEwNjE3MjRaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Yjg1Nzc0LWMyMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlY4aEpu/C/R+4IVba1XCW5BE5d33pztDFMb+4p4q+IBN5BoEsoWKEA6tfdE7R rXiRK2LLvaEPRIRnrmRnzy4Qhqn9NPfgCw9c8LZvzZnYKYvHAWEPSOMLFMo4U2mk KEm5s6bEKhqT8bKQ1f6zZ5wTRKfhaBmbvhFDonMUovSmsKRnbw4RU0SBx5Uee7QD b3GrsRJekRsnXB0OumT1S6gP/NC+fnqYb+/sMbyodB0M0wHQySmaJ8LlJlHh/D4b kuB0wfMXfar7DKPyDWMvlmodHFLrinys3Fmph9egdFpcYINmJ++PVwtou74IobJ1 tQDnLYv6iTfEaKumCpj/3Bx/AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUAHBennYi Ri8vtbnqv1Pt7YHdT9cwHwYDVR0jBBgwFoAUsiw9CrzTkZSGo+YejXiJI5Ir9qUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBNjZGLzhGQ0M5RDI4QzZG OTExRUU5N0U2RkIxREM0RjlBRTAyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2l3OUNyelRrWlNHby1ZZWpYaUpJNUlyOXFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY2Ri84RkNDOUQyOEM2RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9EODIxMEYyODRD MkQxMUVGQjY5RTE5NzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQDJ8AMAzANBgkqhkiG9w0BAQsFAAOCAQEAi5cJg1oXVU7C 7LwqUErQdf8PXyhCvIlM0oH0FLzBQvKnb5Zg+NCKw5DFHs9CLrj8JqwKnfbX5OR4 Wrg4pPqUrkvU/6fi7KOg/hDzM/V15Zs5xh9LT+u5WHZe4kRFGb7fkqW7OSm1TXnL zTZ2LajzB1dAc+ACmPhTTS8Ii1t7vqJHtnHXrpw+zIczMEf4ALo2OQ4QS11sKDnr 5TF8KBc7cPIHUqWQAMd3X8O6REIIzyduN/d120piq16ii5L5REsSoN6DY4pAc3So G+cqjJE7Mshtekss5uiEuWlKa2QG4gyzxjO8hNttx7nqssJMI9Eu/BYhCLqzZ4E2 KS5iz73mLg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:26 2024 by rpki-client on console-fra.rpki-client.org