$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/47B127AE4D7511EFB3398E63C4F9AE02.roa File: 47B127AE4D7511EFB3398E63C4F9AE02.roa (raw, json) Hash identifier: 2dO1EOkqZlaVEs3tLD8wAQU+H0N6P9JtMey7HZfZljA= Subject key identifier: 44:04:C8:73:8A:E7:D5:13:F4:E1:6A:C5:0C:ED:6C:14:3F:67:F1:F6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9564 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/47B127AE4D7511EFB3398E63C4F9AE02.roa Signing time: Mon 29 Jul 2024 06:39:18 +0000 ROA not before: Mon 29 Jul 2024 06:39:18 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150099 IP address blocks: 2001:df3:7640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38244 (0x9564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 29 06:39:18 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66a73916-6b50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c3:6d:7c:d1:c9:2f:e7:d0:fd:f5:4b:b4:13: 92:98:7c:36:dd:aa:ba:8b:12:f0:66:4c:9e:c6:1f: cb:07:25:57:f1:26:51:52:2d:8a:d6:1b:4c:a6:2b: e9:5d:63:3d:2f:d1:90:ab:6a:87:a8:f5:5e:ab:bf: a0:b7:82:0a:fe:de:df:45:71:6a:a3:ea:10:df:3e: 44:0e:26:04:57:b6:df:2b:db:7d:d0:20:73:24:b4: 5f:bd:3a:ab:1d:dd:e8:5e:84:8a:3e:d3:cb:86:2a: e0:64:f7:36:fc:45:73:cc:d3:b7:b6:f2:21:c8:d9: 3e:3e:55:09:02:82:1e:11:78:13:17:7f:07:be:7d: 55:43:ec:78:75:d1:7f:27:f1:e9:4e:33:02:b7:fd: 2f:bf:29:07:bc:e0:bc:14:45:73:01:73:3c:e0:21: 1c:cc:af:3f:1b:c0:ae:0c:dd:5d:49:2f:db:48:5c: 31:a5:79:4f:1f:ff:35:a2:0e:97:e9:0e:a0:42:29: 16:f6:bd:59:1f:b9:cf:fc:f9:75:3e:0a:19:7f:d4: 03:42:d6:b8:58:56:51:9a:72:0c:d1:aa:46:a8:e0: 96:7d:0f:a2:15:b5:fa:cc:bf:96:03:bc:64:97:5c: 5c:7e:2a:22:8c:ec:4f:a0:6d:be:f8:e0:ce:f4:6b: d5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:04:C8:73:8A:E7:D5:13:F4:E1:6A:C5:0C:ED:6C:14:3F:67:F1:F6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/47B127AE4D7511EFB3398E63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7640::/48 Signature Algorithm: sha256WithRSAEncryption 00:47:03:97:ec:49:88:6f:b9:bc:91:1e:14:9f:10:25:14:24: 34:99:5b:a9:e6:6a:30:ef:3d:ee:91:60:38:44:34:28:b2:ed: dd:26:92:1b:bc:0f:2c:c9:2a:7e:51:78:d6:c7:85:78:ad:39: ca:e8:db:71:80:55:35:a4:f3:4e:a9:ca:22:ab:e3:75:48:68: 43:41:6e:d1:02:28:b9:32:7b:f7:ac:da:60:fb:17:83:f2:46: d8:8f:02:14:c5:e0:75:76:a3:44:67:81:8a:17:e7:6b:ca:62: 29:ce:9a:8b:74:b0:35:0d:e2:4d:50:2c:aa:95:0b:67:b6:ee: b9:69:9f:66:84:d5:eb:29:5a:05:fb:b1:98:46:32:c8:94:b4: 96:25:b6:c9:63:18:c1:13:dc:45:bc:2a:e7:2c:7c:c4:f7:f9: bf:14:82:8e:e8:8b:74:fc:83:05:83:9d:49:eb:7a:26:10:67: 7a:ed:57:60:80:e2:72:99:bd:48:56:c4:3a:d2:84:6e:2f:00: 1b:af:c2:02:fe:b8:21:7a:2b:34:a4:70:34:ef:ab:e3:d8:c9: 63:ae:b5:1d:77:70:9c:63:dc:6b:89:09:26:85:73:61:0e:c9: 41:47:da:bc:40:75:39:8e:10:86:5e:ab:69:8d:1a:b1:71:72: f9:23:47:2f -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAJVkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDcyOTA2MzkxOFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjZhNzM5MTYtNmI1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPDbXzRyS/n0P31S7QTkph8Nt2quosS8GZMnsYfywclV/EmUVItitYbTKYr 6V1jPS/RkKtqh6j1Xqu/oLeCCv7e30VxaqPqEN8+RA4mBFe23yvbfdAgcyS0X706 qx3d6F6Eij7Ty4Yq4GT3NvxFc8zTt7byIcjZPj5VCQKCHhF4Exd/B759VUPseHXR fyfx6U4zArf9L78pB7zgvBRFcwFzPOAhHMyvPxvArgzdXUkv20hcMaV5Tx//NaIO l+kOoEIpFva9WR+5z/z5dT4KGX/UA0LWuFhWUZpyDNGqRqjgln0PohW1+sy/lgO8 ZJdcXH4qIozsT6BtvvjgzvRr1XsCAwEAAaOCApgwggKUMB0GA1UdDgQWBBREBMhz iufVE/ThasUM7WwUP2fx9jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQ3QjEyN0FF NEQ3NTExRUZCMzM5OEU2M0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN83ZAMA0GCSqGSIb3DQEBCwUAA4IBAQAARwOX7EmI b7m8kR4UnxAlFCQ0mVup5mow7z3ukWA4RDQosu3dJpIbvA8sySp+UXjWx4V4rTnK 6NtxgFU1pPNOqcoiq+N1SGhDQW7RAii5Mnv3rNpg+xeD8kbYjwIUxeB1dqNEZ4GK F+drymIpzpqLdLA1DeJNUCyqlQtntu65aZ9mhNXrKVoF+7GYRjLIlLSWJbbJYxjB E9xFvCrnLHzE9/m/FIKO6It0/IMFg51J63omEGd67VdggOJymb1IVsQ60oRuLwAb r8IC/rgheis0pHA076vj2MljrrUdd3CcY9xriQkmhXNhDslBR9q8QHU5jhCGXqtp jRqxcXL5I0cv -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:36 2024 by rpki-client on console-fra.rpki-client.org