$ rpki-client -vvf rpki.apnic.net/member_repository/A9192D09/F0F2EDB2931C11EDB9B79C49C4F9AE02/DD8D4802932211EDBF466F52C4F9AE02.roa File: DD8D4802932211EDBF466F52C4F9AE02.roa (raw, json) Hash identifier: pmbN5fPCbO/oalKNS7ivInU9ETfH9WfdJG7H7rtfmr4= Subject key identifier: 99:68:7C:AC:00:A8:A9:30:0E:5F:02:C0:ED:25:9D:44:37:3C:83:41 Certificate issuer: /CN=A9192D09/serialNumber=384545D6F55F32B31FE8646F244A7C07BA695408 Certificate serial: 014C Authority key identifier: 38:45:45:D6:F5:5F:32:B3:1F:E8:64:6F:24:4A:7C:07:BA:69:54:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEVF1vVfMrMf6GRvJEp8B7ppVAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192D09/F0F2EDB2931C11EDB9B79C49C4F9AE02/DD8D4802932211EDBF466F52C4F9AE02.roa Signing time: Sat 19 Oct 2024 03:16:48 +0000 ROA not before: Sat 19 Oct 2024 03:16:48 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 18227 IP address blocks: 2404:4300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192D09/F0F2EDB2931C11EDB9B79C49C4F9AE02/OEVF1vVfMrMf6GRvJEp8B7ppVAg.crl rsync://rpki.apnic.net/member_repository/A9192D09/F0F2EDB2931C11EDB9B79C49C4F9AE02/OEVF1vVfMrMf6GRvJEp8B7ppVAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEVF1vVfMrMf6GRvJEp8B7ppVAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192D09/serialNumber=384545D6F55F32B31FE8646F244A7C07BA695408 Validity Not Before: Oct 19 03:16:48 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671324a0-f775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8f:e5:35:ee:d5:50:c2:9e:3d:1a:19:6e:fb: 5e:85:83:ca:ca:89:59:3e:28:e5:b4:bf:7f:29:80: 9d:89:72:79:f0:aa:6a:07:85:07:1a:07:ca:ef:e1: ea:8e:d8:68:3d:f0:d4:90:3a:4a:77:74:e1:7b:1f: 52:e9:55:2a:43:6f:08:53:58:3f:b6:59:25:c2:7a: 43:43:42:0d:49:56:89:7c:79:b4:51:c8:4e:37:2d: 5f:5e:25:8c:69:59:81:6e:5d:c3:17:82:95:6c:01: 2a:5b:25:df:1a:d1:0b:8f:4d:cc:92:67:99:5c:78: 15:05:8a:b8:4f:11:82:09:f2:21:c9:29:ad:6b:3b: c4:c6:1a:d5:c1:9f:6b:5a:95:b0:ba:e7:eb:23:a7: 53:f3:59:b3:5b:e9:47:d0:a7:94:7e:33:ab:54:37: e7:de:e4:84:89:73:a7:cd:00:13:72:64:d3:22:b6: b4:0e:22:1d:d8:24:f1:85:88:d4:e6:df:0b:4e:b9: 75:7f:a2:5c:c4:ba:d3:1f:5e:c3:78:da:53:8a:2c: a6:74:88:4d:e7:28:8b:6f:7c:fe:a6:9a:f7:ec:c3: 28:60:7f:6a:d7:9e:48:34:2a:e7:8e:a7:4e:11:c8: cc:a1:dd:ed:af:df:4d:d2:92:d9:c1:92:0b:89:18: 37:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:68:7C:AC:00:A8:A9:30:0E:5F:02:C0:ED:25:9D:44:37:3C:83:41 X509v3 Authority Key Identifier: keyid:38:45:45:D6:F5:5F:32:B3:1F:E8:64:6F:24:4A:7C:07:BA:69:54:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192D09/F0F2EDB2931C11EDB9B79C49C4F9AE02/OEVF1vVfMrMf6GRvJEp8B7ppVAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEVF1vVfMrMf6GRvJEp8B7ppVAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192D09/F0F2EDB2931C11EDB9B79C49C4F9AE02/DD8D4802932211EDBF466F52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:4300::/32 Signature Algorithm: sha256WithRSAEncryption 28:85:b5:5a:90:7b:d4:20:4a:45:fd:47:52:11:82:8f:4e:41: 40:ab:71:f3:02:1a:fe:7d:0f:71:31:0e:ea:b2:74:ce:f5:05: a0:ad:2b:5f:54:94:7a:1a:1d:44:fd:b2:35:9c:7f:34:fd:17: 03:31:42:39:41:5b:f9:85:a4:43:9a:84:09:de:de:d0:17:8c: 75:ef:aa:56:f4:e3:47:4a:95:44:43:d1:82:97:1a:2b:c5:68: 13:3c:48:11:0a:8a:fd:62:c0:4e:c0:a7:3f:5e:64:3d:13:ca: f9:c5:4a:64:da:54:c6:d8:c0:23:1b:80:e7:a5:36:bb:6e:3c: 49:95:10:d3:04:af:cd:6a:af:06:cf:63:25:8a:5b:a6:d1:4b: db:6a:1a:43:08:bf:90:8f:74:ed:f3:40:b4:cd:76:8f:74:3b: f9:ed:ad:15:14:a4:b8:ed:bb:c7:89:f6:0d:20:25:c4:b8:38: 96:09:4c:91:86:f3:38:80:60:e1:3b:6c:15:c6:32:b8:77:08: eb:21:89:71:d6:70:93:b9:e7:8b:e4:af:88:82:d3:73:e8:42: 6c:4a:cd:21:a9:4c:49:f3:8c:07:db:c7:2f:c6:41:f6:ce:57: ed:4e:43:30:5f:95:70:8d:1f:6d:c9:87:0f:53:b0:b7:96:be: 62:89:e7:ac -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJEMDkxMTAvBgNVBAUTKDM4NDU0NUQ2RjU1RjMyQjMxRkU4NjQ2RjI0NEE3QzA3 QkE2OTU0MDgwHhcNMjQxMDE5MDMxNjQ4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEzMjRhMC1mNzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Y/lNe7VUMKePRoZbvtehYPKyolZPijltL9/KYCdiXJ58KpqB4UHGgfK7+Hq jthoPfDUkDpKd3Thex9S6VUqQ28IU1g/tlklwnpDQ0INSVaJfHm0UchONy1fXiWM aVmBbl3DF4KVbAEqWyXfGtELj03MkmeZXHgVBYq4TxGCCfIhySmtazvExhrVwZ9r WpWwuufrI6dT81mzW+lH0KeUfjOrVDfn3uSEiXOnzQATcmTTIra0DiId2CTxhYjU 5t8LTrl1f6JcxLrTH17DeNpTiiymdIhN5yiLb3z+ppr37MMoYH9q155INCrnjqdO EcjMod3tr99N0pLZwZILiRg3tQIDAQABo4ICljCCApIwHQYDVR0OBBYEFJlofKwA qKkwDl8CwO0lnUQ3PINBMB8GA1UdIwQYMBaAFDhFRdb1XzKzH+hkbyRKfAe6aVQI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkQwOS9GMEYyRURCMjkz MUMxMUVEQjlCNzlDNDlDNEY5QUUwMi9PRVZGMXZWZk1yTWY2R1J2SkVwOEI3cHBW QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09FVkYxdlZmTXJNZjZHUnZKRXA4QjdwcFZBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJEMDkvRjBGMkVEQjI5MzFDMTFFREI5Qjc5QzQ5QzRGOUFFMDIvREQ4RDQ4MDI5 MzIyMTFFREJGNDY2RjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBEMAMA0GCSqGSIb3DQEBCwUAA4IBAQAohbVakHvUIEpF /UdSEYKPTkFAq3HzAhr+fQ9xMQ7qsnTO9QWgrStfVJR6Gh1E/bI1nH80/RcDMUI5 QVv5haRDmoQJ3t7QF4x176pW9ONHSpVEQ9GClxorxWgTPEgRCor9YsBOwKc/XmQ9 E8r5xUpk2lTG2MAjG4DnpTa7bjxJlRDTBK/Naq8Gz2Mlilum0UvbahpDCL+Qj3Tt 80C0zXaPdDv57a0VFKS47bvHifYNICXEuDiWCUyRhvM4gGDhO2wVxjK4dwjrIYlx 1nCTueeL5K+IgtNz6EJsSs0hqUxJ84wH28cvxkH2zlftTkMwX5VwjR9tyYcPU7C3 lr5iiees -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org