$ rpki-client -vvf rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/D8FEAF6C637611EFB2D9FD47C4F9AE02.roa File: D8FEAF6C637611EFB2D9FD47C4F9AE02.roa (raw, json) Hash identifier: rCeTEdWJzDJDdyTFfW5+yJKqhOmfCKimM46piNEKqjM= Subject key identifier: A6:CE:3A:88:26:26:BC:70:98:C1:9D:55:9B:F9:88:EE:18:AB:65:81 Certificate issuer: /CN=A918497E/serialNumber=8D4BF79A419EEC0FA533E5FCA50FF372A33CB390 Certificate serial: 75 Authority key identifier: 8D:4B:F7:9A:41:9E:EC:0F:A5:33:E5:FC:A5:0F:F3:72:A3:3C:B3:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/D8FEAF6C637611EFB2D9FD47C4F9AE02.roa Signing time: Mon 26 Aug 2024 06:45:57 +0000 ROA not before: Mon 26 Aug 2024 06:45:57 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 147006 IP address blocks: 2401:bee0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.crl rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918497E/serialNumber=8D4BF79A419EEC0FA533E5FCA50FF372A33CB390 Validity Not Before: Aug 26 06:45:57 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66cc24a5-8635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:45:04:1d:e0:a6:56:f3:77:6a:e3:2b:d6:30: ab:5e:dc:00:1a:19:44:3b:6c:4b:84:8c:d7:49:90: 1d:13:09:54:03:12:cb:89:76:57:a2:f1:25:08:2d: d2:c9:bc:51:67:18:90:42:de:94:29:ea:ad:71:2b: f8:93:99:50:31:b8:da:c0:59:9d:f8:7b:84:a2:87: 9a:b6:81:d1:5d:e7:bd:09:4b:f0:0f:73:98:c9:db: af:06:68:1e:23:55:af:26:7a:d6:06:39:fd:03:63: 94:d6:98:e5:37:8b:22:32:23:33:46:82:9b:ae:88: 7f:2a:38:7e:48:44:00:ae:1a:bf:95:eb:7b:80:a9: 4c:ab:03:a9:e1:75:69:a1:ad:4f:60:37:c6:99:97: aa:7a:ee:70:13:06:c3:c2:f9:18:f0:36:e7:d0:19: 55:e8:97:79:24:da:de:8e:4c:7f:5d:04:8a:c6:8e: da:17:b0:1d:85:77:33:c8:2b:b2:3f:32:30:61:05: bc:bf:28:35:bd:59:eb:9a:24:68:fa:8c:48:a5:06: 56:ac:35:d7:45:23:3d:d1:a0:8b:07:45:7f:d6:44: cf:2a:58:41:7b:05:27:c9:82:ea:31:b7:ff:96:f7: 17:a0:77:e4:1f:70:a7:cd:4a:79:43:dc:d4:f7:e7: b2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:CE:3A:88:26:26:BC:70:98:C1:9D:55:9B:F9:88:EE:18:AB:65:81 X509v3 Authority Key Identifier: keyid:8D:4B:F7:9A:41:9E:EC:0F:A5:33:E5:FC:A5:0F:F3:72:A3:3C:B3:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/D8FEAF6C637611EFB2D9FD47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:bee0::/32 Signature Algorithm: sha256WithRSAEncryption 09:03:03:ea:e8:9c:cd:d5:c6:8d:9d:42:7b:3d:b4:2e:76:4f: 3f:24:17:90:64:a8:8e:4f:e9:28:ad:ec:0d:4d:93:ec:9c:28: de:fe:75:d9:89:a7:68:94:88:71:87:69:c8:06:35:01:6a:cc: b8:8a:ea:b0:4d:1d:9b:1e:34:49:a7:f8:96:8f:46:e6:dd:79: 54:5b:1a:90:f8:58:05:23:14:86:da:ad:9c:ab:2a:4e:32:1e: ea:c3:87:fe:f4:93:5d:4a:5c:86:0d:2c:08:67:74:08:e1:0f: 14:1f:b5:8f:35:88:ac:e2:5b:7a:2a:4f:34:ed:85:5e:21:0a: a7:ad:fe:f6:a3:99:22:d3:36:8a:92:bf:20:b6:63:22:ed:ae: 1e:56:8f:37:6a:13:8b:54:0e:c4:d2:28:8a:06:b4:ca:44:d5: 1d:a4:d7:5e:81:f6:ed:cb:3c:e7:bc:ac:ed:67:e8:4f:d5:17: 93:f3:75:f6:e3:2f:b3:2c:da:03:be:0d:1e:a1:7e:5b:58:7d: 1d:91:e1:b5:86:32:62:31:0d:67:a8:54:85:74:bd:b2:b3:b1: a8:64:84:10:f1:05:70:60:9e:09:91:d2:77:be:b9:f5:4f:6e: b6:aa:6b:35:4d:0e:5b:9b:1e:7c:2f:3e:da:a0:0f:f2:d1:89: 04:3b:5f:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDk3RTExMC8GA1UEBRMoOEQ0QkY3OUE0MTlFRUMwRkE1MzNFNUZDQTUwRkYzNzJB MzNDQjM5MDAeFw0yNDA4MjYwNjQ1NTdaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Y2MyNGE1LTg2MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKRQQd4KZW83dq4yvWMKte3AAaGUQ7bEuEjNdJkB0TCVQDEsuJdlei8SUILdLJ vFFnGJBC3pQp6q1xK/iTmVAxuNrAWZ34e4Sih5q2gdFd570JS/APc5jJ268GaB4j Va8metYGOf0DY5TWmOU3iyIyIzNGgpuuiH8qOH5IRACuGr+V63uAqUyrA6nhdWmh rU9gN8aZl6p67nATBsPC+RjwNufQGVXol3kk2t6OTH9dBIrGjtoXsB2FdzPIK7I/ MjBhBby/KDW9WeuaJGj6jEilBlasNddFIz3RoIsHRX/WRM8qWEF7BSfJguoxt/+W 9xegd+QfcKfNSnlD3NT357KBAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUps46iCYm vHCYwZ1Vm/mI7hirZYEwHwYDVR0jBBgwFoAUjUv3mkGe7A+lM+X8pQ/zcqM8s5Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0OTdFL0MzMjBDMjI2QjVE ODExRUU4REE2NkQ4NUM0RjlBRTAyL2pVdjNta0dlN0EtbE0tWDhwUV96Y3FNOHM1 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvalV2M21rR2U3QS1sTS1YOHBRX3pjcU04czVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDk3RS9DMzIwQzIyNkI1RDgxMUVFOERBNjZEODVDNEY5QUUwMi9EOEZFQUY2QzYz NzYxMUVGQjJEOUZENDdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBvuAwDQYJKoZIhvcNAQELBQADggEBAAkDA+ronM3Vxo2d Qns9tC52Tz8kF5BkqI5P6Sit7A1Nk+ycKN7+ddmJp2iUiHGHacgGNQFqzLiK6rBN HZseNEmn+JaPRubdeVRbGpD4WAUjFIbarZyrKk4yHurDh/70k11KXIYNLAhndAjh DxQftY81iKziW3oqTzTthV4hCqet/vajmSLTNoqSvyC2YyLtrh5WjzdqE4tUDsTS KIoGtMpE1R2k116B9u3LPOe8rO1n6E/VF5PzdfbjL7Ms2gO+DR6hfltYfR2R4bWG MmIxDWeoVIV0vbKzsahkhBDxBXBgngmR0ne+ufVPbraqazVNDlubHnwvPtqgD/LR iQQ7XzU= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org