$ rpki-client -vvf rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/D6A3090012C411EFAA7E5571C4F9AE02.roa File: D6A3090012C411EFAA7E5571C4F9AE02.roa (raw, json) Hash identifier: YhMHAZFNsSZE7k3x+/GlQGMfcWxDJQ6tAPNz/tg+MMo= Subject key identifier: 9A:6D:AC:19:7F:17:94:79:BD:81:F1:95:31:F3:7C:B9:C5:A5:BF:84 Certificate issuer: /CN=A918404E/serialNumber=9C7C776F6BF6003283F0CAB43E2DC61494997162 Certificate serial: 0874 Authority key identifier: 9C:7C:77:6F:6B:F6:00:32:83:F0:CA:B4:3E:2D:C6:14:94:99:71:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/D6A3090012C411EFAA7E5571C4F9AE02.roa Signing time: Fri 16 Aug 2024 22:10:28 +0000 ROA not before: Fri 16 Aug 2024 22:10:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 17747 IP address blocks: 2406:3c80:4::/48 maxlen: 48 2406:3c80:5::/48 maxlen: 48 2406:3c80:6::/48 maxlen: 48 2406:3c80:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.crl rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2164 (0x874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918404E/serialNumber=9C7C776F6BF6003283F0CAB43E2DC61494997162 Validity Not Before: Aug 16 22:10:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bfce54-be98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cc:87:11:38:4b:20:52:c2:54:2c:15:6f:07: b8:24:3c:12:96:81:23:d4:90:d0:39:d2:d4:f5:bd: 49:df:63:52:64:9a:67:b2:35:90:51:de:f4:f5:c1: 17:73:d2:ff:5b:93:f1:d8:39:a5:1a:ae:23:4b:f3: e6:df:4a:46:fd:f0:9b:9f:92:7a:70:e3:20:07:c7: 95:b7:02:5b:05:ae:d7:b9:f8:6b:ec:ab:08:95:98: 4b:59:43:74:e6:b1:77:b4:4b:08:28:67:81:24:62: 28:14:15:15:14:8a:14:77:5a:eb:48:2d:4b:d3:39: 61:3f:50:3f:93:6c:70:c0:c7:1b:be:7e:93:71:2a: 41:11:2c:62:c2:06:b7:88:62:9d:1b:83:3a:86:96: e1:1a:d4:35:0b:83:38:2a:07:88:be:11:e7:25:a3: 49:ee:2a:48:ab:0a:14:68:54:19:2b:56:a1:55:85: 5e:6f:14:23:f7:77:f0:5a:e4:f3:37:93:8f:84:b6: 7a:4a:04:d7:65:e1:4d:c9:ed:98:e7:52:9e:b4:29: 4a:b5:75:10:3a:cb:47:c8:62:de:48:e4:1b:77:82: e1:31:3d:9f:cd:be:22:80:6c:71:3a:3f:57:c9:04: 66:6d:ac:aa:42:b1:65:16:d0:e2:70:ba:f7:6b:1a: ae:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:6D:AC:19:7F:17:94:79:BD:81:F1:95:31:F3:7C:B9:C5:A5:BF:84 X509v3 Authority Key Identifier: keyid:9C:7C:77:6F:6B:F6:00:32:83:F0:CA:B4:3E:2D:C6:14:94:99:71:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/D6A3090012C411EFAA7E5571C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:3c80:4::-2406:3c80:6:ffff:ffff:ffff:ffff:ffff 2406:3c80:8::/48 Signature Algorithm: sha256WithRSAEncryption 9c:3b:ae:c3:b0:65:32:b7:95:34:2c:ac:79:b7:4e:62:0e:ec: 9e:2b:d2:81:52:bc:29:b6:cd:44:de:4d:62:48:3a:76:0e:20: f7:7e:43:21:f0:0e:f0:a8:52:a2:3c:d8:63:08:56:47:70:8c: 21:c8:81:51:02:1b:80:e1:74:62:82:22:51:48:a5:fd:e0:9b: 0d:21:b2:83:34:8e:b0:51:ea:8c:92:70:fd:84:d9:4f:f2:1a: 96:f9:ec:b8:4f:58:4d:52:b0:ee:36:99:d2:7f:b7:56:40:22: 07:83:3c:34:7e:84:65:29:53:92:9a:0b:98:85:e5:bc:14:c8: 42:3c:c7:2c:79:5e:ff:cb:ba:c6:22:03:d2:a5:2f:5f:ba:0c: 99:4a:8a:d5:2a:a6:8a:22:21:25:1b:d6:eb:51:8f:5d:62:70: 9f:a5:5c:22:85:ac:ce:53:5d:56:18:b9:13:83:20:6b:03:5e: f9:83:9e:f1:06:3a:8b:12:93:cf:0a:1b:2f:54:4a:bf:6b:11: 2c:a4:23:ea:43:39:4a:21:09:50:0c:35:b4:ba:ba:46:7c:65: 3d:07:22:60:c4:a4:eb:06:0e:7a:19:75:63:64:74:ad:51:88: 9e:e5:56:65:87:2c:9f:9f:fd:0b:cf:aa:f9:1a:51:8d:fe:bb: 0f:80:5b:dd -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwNEUxMTAvBgNVBAUTKDlDN0M3NzZGNkJGNjAwMzI4M0YwQ0FCNDNFMkRDNjE0 OTQ5OTcxNjIwHhcNMjQwODE2MjIxMDI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmY2U1NC1iZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMyHEThLIFLCVCwVbwe4JDwSloEj1JDQOdLU9b1J32NSZJpnsjWQUd709cEX c9L/W5Px2DmlGq4jS/Pm30pG/fCbn5J6cOMgB8eVtwJbBa7Xufhr7KsIlZhLWUN0 5rF3tEsIKGeBJGIoFBUVFIoUd1rrSC1L0zlhP1A/k2xwwMcbvn6TcSpBESxiwga3 iGKdG4M6hpbhGtQ1C4M4KgeIvhHnJaNJ7ipIqwoUaFQZK1ahVYVebxQj93fwWuTz N5OPhLZ6SgTXZeFNye2Y51KetClKtXUQOstHyGLeSOQbd4LhMT2fzb4igGxxOj9X yQRmbayqQrFlFtDicLr3axquhQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJptrBl/ F5R5vYHxlTHzfLnFpb+EMB8GA1UdIwQYMBaAFJx8d29r9gAyg/DKtD4txhSUmXFi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDA0RS9CQzAzMEM3NkYx REExMUVBQUZDNkM3MEFDNEY5QUUwMi9uSHgzYjJ2MkFES0Q4TXEwUGkzR0ZKU1pj V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25IeDNiMnYyQURLRDhNcTBQaTNHRkpTWmNXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwNEUvQkMwMzBDNzZGMURBMTFFQUFGQzZDNzBBQzRGOUFFMDIvRDZBMzA5MDAx MkM0MTFFRkFBN0U1NTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMCMEAgACMB0wEgMHAiQGPIAABAMHACQGPIAABgMHACQGPIAACDANBgkqhkiG 9w0BAQsFAAOCAQEAnDuuw7BlMreVNCysebdOYg7snivSgVK8KbbNRN5NYkg6dg4g 935DIfAO8KhSojzYYwhWR3CMIciBUQIbgOF0YoIiUUil/eCbDSGygzSOsFHqjJJw /YTZT/IalvnsuE9YTVKw7jaZ0n+3VkAiB4M8NH6EZSlTkpoLmIXlvBTIQjzHLHle /8u6xiID0qUvX7oMmUqK1SqmiiIhJRvW61GPXWJwn6VcIoWszlNdVhi5E4MgawNe +YOe8QY6ixKTzwobL1RKv2sRLKQj6kM5SiEJUAw1tLq6RnxlPQciYMSk6wYOehl1 Y2R0rVGInuVWZYcsn5/9C8+q+RpRjf67D4Bb3Q== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:33 2024 by rpki-client on console-ams.rpki-client.org