$ rpki-client -vvf rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/2C7BB8BAB92411EC8E787A55C4F9AE02.roa File: 2C7BB8BAB92411EC8E787A55C4F9AE02.roa (raw, json) Hash identifier: +dFNC6bX5H+V6njzLbV2Ca6KkTrT3TtAm0EkKfPs5f0= Subject key identifier: CB:F8:95:08:6F:9B:E7:81:8F:87:3F:FB:B8:A1:5D:CE:F4:A6:73:33 Certificate issuer: /CN=A917ECB0/serialNumber=2FDDBB45F34F261933AC2B7D67AC73D393A9D164 Certificate serial: 02F0 Authority key identifier: 2F:DD:BB:45:F3:4F:26:19:33:AC:2B:7D:67:AC:73:D3:93:A9:D1:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L927RfNPJhkzrCt9Z6xz05Op0WQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/2C7BB8BAB92411EC8E787A55C4F9AE02.roa Signing time: Tue 19 Nov 2024 00:54:12 +0000 ROA not before: Tue 19 Nov 2024 00:54:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133145 IP address blocks: 2001:df4:d080::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/L927RfNPJhkzrCt9Z6xz05Op0WQ.crl rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/L927RfNPJhkzrCt9Z6xz05Op0WQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L927RfNPJhkzrCt9Z6xz05Op0WQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 752 (0x2f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ECB0/serialNumber=2FDDBB45F34F261933AC2B7D67AC73D393A9D164 Validity Not Before: Nov 19 00:54:12 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=673be1b4-07b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:87:9f:12:e5:a4:70:a4:44:1b:8b:d0:44:71: 38:98:22:52:95:78:3b:8c:de:30:bc:5e:87:39:dd: 34:9e:bb:f7:4a:d0:61:f7:b8:3e:01:66:a4:2a:94: 45:cc:a0:e3:80:bb:be:ef:18:90:c8:7c:49:88:6c: 78:26:ba:16:50:0b:c4:b0:ed:e6:55:5a:34:bf:e4: e3:ea:99:3f:ff:5c:a8:7c:85:ee:94:9d:f1:0e:b1: 3f:5a:57:88:ea:b9:57:ee:aa:d8:0e:37:c5:b5:c1: da:1a:43:00:90:33:1b:a4:a2:a6:3a:e7:7b:b4:e3: 03:eb:21:d0:47:47:02:7f:dc:2d:60:2e:b4:48:b7: a5:22:71:35:f0:c9:89:5f:bd:66:78:ae:c5:42:20: 77:31:26:16:65:35:98:8d:0a:d6:f5:5d:83:d5:4d: 38:2a:8c:5b:5e:d3:f3:7a:d8:d9:44:8f:79:54:2c: 10:f2:69:13:b5:d8:0f:01:2e:b8:56:9d:cd:f7:63: 0f:c7:1e:ce:7e:9c:23:e4:63:33:e0:2f:0e:49:42: fa:f9:01:e1:05:88:31:95:56:9b:63:30:1a:8d:7f: d1:91:23:25:01:20:cb:9f:fc:8a:fd:c7:bf:7a:63: 27:2d:3a:70:fe:28:b5:f1:ea:70:3a:8e:fd:c6:7f: 60:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F8:95:08:6F:9B:E7:81:8F:87:3F:FB:B8:A1:5D:CE:F4:A6:73:33 X509v3 Authority Key Identifier: keyid:2F:DD:BB:45:F3:4F:26:19:33:AC:2B:7D:67:AC:73:D3:93:A9:D1:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/L927RfNPJhkzrCt9Z6xz05Op0WQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L927RfNPJhkzrCt9Z6xz05Op0WQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ECB0/6186732CB92111ECBDFFF653C4F9AE02/2C7BB8BAB92411EC8E787A55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:d080::/47 Signature Algorithm: sha256WithRSAEncryption 91:9b:b9:21:14:fb:32:1c:7e:c6:f7:f0:02:2d:9d:0e:bc:a2: 0f:ef:84:3c:03:72:37:5b:55:b3:8b:dc:af:e1:f1:b4:66:58: fe:55:59:84:58:d5:69:59:e4:a4:de:48:07:12:60:0a:b2:e4: 3b:88:e8:c1:1c:7c:e0:e4:8a:14:1d:4b:99:f7:75:9a:02:91: d5:1f:65:6f:f8:ba:84:f4:4a:40:68:25:83:d9:91:59:7a:1e: 2b:ef:01:ec:70:3a:21:97:28:05:77:dc:e2:33:ec:44:94:1b: f9:81:72:da:ac:e7:e9:7b:e8:0e:e0:c3:a7:99:5d:18:9d:2b: 05:f0:ce:89:e1:9d:80:d4:54:4b:ae:7a:48:e3:51:e1:5d:4c: 16:64:dd:ae:f8:98:63:3a:a8:d2:41:8d:17:24:b3:ee:a7:88: af:e8:54:5c:b5:77:eb:f9:e8:d7:5d:a1:f9:6e:53:b6:2b:e8: 78:ab:21:d6:fe:31:3d:9d:0a:88:c9:25:9b:b6:7e:16:6d:07: 83:22:e8:9a:e0:5c:ec:54:80:78:56:8e:71:06:90:68:5d:f6: fa:b0:8e:83:b8:d6:11:66:ee:e0:84:17:3a:b2:01:6a:0a:14: b6:d3:7f:fa:ca:8d:44:98:21:18:a9:a4:d5:14:34:1f:ee:35: 76:58:30:dc -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VDQjAxMTAvBgNVBAUTKDJGRERCQjQ1RjM0RjI2MTkzM0FDMkI3RDY3QUM3M0Qz OTNBOUQxNjQwHhcNMjQxMTE5MDA1NDEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNiZTFiNC0wN2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoefEuWkcKREG4vQRHE4mCJSlXg7jN4wvF6HOd00nrv3StBh97g+AWakKpRF zKDjgLu+7xiQyHxJiGx4JroWUAvEsO3mVVo0v+Tj6pk//1yofIXulJ3xDrE/WleI 6rlX7qrYDjfFtcHaGkMAkDMbpKKmOud7tOMD6yHQR0cCf9wtYC60SLelInE18MmJ X71meK7FQiB3MSYWZTWYjQrW9V2D1U04KoxbXtPzetjZRI95VCwQ8mkTtdgPAS64 Vp3N92MPxx7Ofpwj5GMz4C8OSUL6+QHhBYgxlVabYzAajX/RkSMlASDLn/yK/ce/ emMnLTpw/ii18epwOo79xn9gCwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMv4lQhv m+eBj4c/+7ihXc70pnMzMB8GA1UdIwQYMBaAFC/du0XzTyYZM6wrfWesc9OTqdFk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUNCMC82MTg2NzMyQ0I5 MjExMUVDQkRGRkY2NTNDNEY5QUUwMi9MOTI3UmZOUEpoa3pyQ3Q5WjZ4ejA1T3Aw V1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w5MjdSZk5QSmhrenJDdDlaNnh6MDVPcDBXUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VDQjAvNjE4NjczMkNCOTIxMTFFQ0JERkZGNjUzQzRGOUFFMDIvMkM3QkI4QkFC OTI0MTFFQzhFNzg3QTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEgAQ300IAwDQYJKoZIhvcNAQELBQADggEBAJGbuSEU+zIc fsb38AItnQ68og/vhDwDcjdbVbOL3K/h8bRmWP5VWYRY1WlZ5KTeSAcSYAqy5DuI 6MEcfODkihQdS5n3dZoCkdUfZW/4uoT0SkBoJYPZkVl6HivvAexwOiGXKAV33OIz 7ESUG/mBctqs5+l76A7gw6eZXRidKwXwzonhnYDUVEuuekjjUeFdTBZk3a74mGM6 qNJBjRcks+6niK/oVFy1d+v56NddofluU7Yr6HirIdb+MT2dCojJJZu2fhZtB4Mi 6JrgXOxUgHhWjnEGkGhd9vqwjoO41hFm7uCEFzqyAWoKFLbTf/rKjUSYIRippNUU NB/uNXZYMNw= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org