$ rpki-client -vvf rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/C8E6CF687AE811EFA0337A38C4F9AE02.roa File: C8E6CF687AE811EFA0337A38C4F9AE02.roa (raw, json) Hash identifier: tX7lm1nOa6r+dedq7UOBuZmnOgxOghWuASrmaNTRTBw= Subject key identifier: BC:B1:05:30:50:CF:CB:DE:DE:7E:E8:BB:66:AA:0C:C3:B9:DC:E8:55 Certificate issuer: /CN=A919BE9A/serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Certificate serial: 014A Authority key identifier: A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/C8E6CF687AE811EFA0337A38C4F9AE02.roa Signing time: Wed 25 Sep 2024 03:14:01 +0000 ROA not before: Wed 25 Sep 2024 03:14:01 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 36530 IP address blocks: 2400:e3e0:aa00::/40 maxlen: 48 2400:e3e0:ab00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Oct 2024 03:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BE9A/serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Validity Not Before: Sep 25 03:14:01 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66f37ff8-c729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:90:ab:24:c4:13:63:3f:34:7f:00:bc:84:80: 0c:1a:c9:d8:d7:38:da:2d:0a:46:66:da:06:ce:dc: 0d:03:e9:ca:22:ed:6a:ce:4a:32:1a:b8:36:a7:d9: 90:2b:84:1d:a7:84:45:94:bd:16:e8:54:17:4c:63: 9e:e4:f3:34:91:34:3a:da:bd:0c:6a:96:0a:07:ce: 27:4b:cc:5c:75:5b:70:94:30:b4:48:63:19:69:dc: 65:bd:0d:28:49:ac:82:61:9f:e9:a4:d6:0d:7e:f2: 04:fd:a8:92:99:0e:ee:02:21:27:d6:90:1d:6c:64: 81:f7:40:21:ba:1f:f9:88:95:ea:0f:19:2d:45:eb: ec:72:09:f7:ff:16:ec:14:5e:0e:63:8a:21:59:b4: 67:bf:fd:26:d5:07:9d:67:b5:8c:b9:0b:2d:d9:fb: f3:2c:da:20:c0:f4:e8:e0:df:6a:7b:38:66:a4:44: 39:e0:43:5c:f4:c5:a7:fa:0c:71:57:bb:1d:4d:3d: e5:8d:c8:c9:b6:9f:03:93:99:60:f7:6b:87:40:20: 17:85:a7:76:cd:d9:d9:87:f8:fa:82:35:da:42:25: 85:bb:e9:35:e4:b6:dd:e5:42:c4:a4:89:c0:ec:2e: 11:3c:3e:93:72:42:4e:96:5e:3b:c9:e0:44:d1:90: 82:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B1:05:30:50:CF:CB:DE:DE:7E:E8:BB:66:AA:0C:C3:B9:DC:E8:55 X509v3 Authority Key Identifier: keyid:A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/C8E6CF687AE811EFA0337A38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:e3e0:aa00::/39 Signature Algorithm: sha256WithRSAEncryption 71:16:f4:9f:1c:9b:69:fd:db:12:2b:ec:3e:b8:07:83:cf:b7: cd:1e:0e:fb:7f:7b:c1:72:9b:34:2a:31:a6:1a:0f:99:59:83: d8:49:11:cb:d1:c8:77:ee:63:c6:c7:86:77:36:5e:cb:2d:d2: 99:cb:a7:3d:06:3a:b2:6d:73:b4:34:3f:f6:2e:77:2d:e6:f9: c7:e0:8b:ab:59:5e:bd:2e:05:66:eb:a5:a2:3e:cf:2e:25:f0: 0d:c9:ec:ca:1d:37:fe:fe:e9:7d:16:fb:fd:63:80:c9:1f:be: b8:9a:9a:ec:6e:09:ae:3d:e7:dd:7a:f2:14:88:55:fa:69:f5: 45:d1:23:5e:d5:98:23:ab:4c:3b:6f:7c:58:bf:2c:20:06:f3: ea:cb:6c:bd:67:ad:ba:62:f6:16:9e:eb:0e:be:89:8d:ba:00: 0f:a3:ad:2c:7a:df:39:97:ce:54:a2:d8:08:77:ff:05:40:52: f6:d8:03:66:b6:86:00:3f:cd:d5:08:7b:17:5a:d7:50:9b:d1: f9:b6:d0:5e:94:46:0a:92:fc:fb:21:f2:6f:93:d1:2c:dc:ab: 18:ed:d5:36:4c:ad:f7:d6:f1:30:f1:7f:67:ac:18:24:40:19: 9c:27:fb:ce:bd:51:fc:c5:9e:b1:47:f4:34:9e:a3:6a:c7:31: a6:d3:c4:55 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFOUExMTAvBgNVBAUTKEE3OUI4Mjg4NzAzMTQ0MTk5MEIxOEQxQTA1RjlFMjcx RTdFN0I4RTYwHhcNMjQwOTI1MDMxNDAxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzN2ZmOC1jNzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJCrJMQTYz80fwC8hIAMGsnY1zjaLQpGZtoGztwNA+nKIu1qzkoyGrg2p9mQ K4Qdp4RFlL0W6FQXTGOe5PM0kTQ62r0MapYKB84nS8xcdVtwlDC0SGMZadxlvQ0o SayCYZ/ppNYNfvIE/aiSmQ7uAiEn1pAdbGSB90Ahuh/5iJXqDxktRevscgn3/xbs FF4OY4ohWbRnv/0m1QedZ7WMuQst2fvzLNogwPTo4N9qezhmpEQ54ENc9MWn+gxx V7sdTT3ljcjJtp8Dk5lg92uHQCAXhad2zdnZh/j6gjXaQiWFu+k15Lbd5ULEpInA 7C4RPD6TckJOll47yeBE0ZCCNwIDAQABo4IClzCCApMwHQYDVR0OBBYEFLyxBTBQ z8ve3n7ou2aqDMO53OhVMB8GA1UdIwQYMBaAFKebgohwMUQZkLGNGgX54nHn57jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkU5QS84RkExRjU2RUI4 NUUxMUVEOEU2RjQyMTNDNEY5QUUwMi9wNXVDaUhBeFJCbVFzWTBhQmZuaWNlZm51 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A1dUNpSEF4UkJtUXNZMGFCZm5pY2VmbnVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFOUEvOEZBMUY1NkVCODVFMTFFRDhFNkY0MjEzQzRGOUFFMDIvQzhFNkNGNjg3 QUU4MTFFRkEwMzM3QTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgEkAOPgqjANBgkqhkiG9w0BAQsFAAOCAQEAcRb0nxybaf3b EivsPrgHg8+3zR4O+397wXKbNCoxphoPmVmD2EkRy9HId+5jxseGdzZeyy3Smcun PQY6sm1ztDQ/9i53Leb5x+CLq1levS4FZuuloj7PLiXwDcnsyh03/v7pfRb7/WOA yR++uJqa7G4Jrj3n3XryFIhV+mn1RdEjXtWYI6tMO298WL8sIAbz6stsvWetumL2 Fp7rDr6JjboAD6OtLHrfOZfOVKLYCHf/BUBS9tgDZraGAD/N1Qh7F1rXUJvR+bbQ XpRGCpL8+yHyb5PRLNyrGO3VNkyt99bxMPF/Z6wYJEAZnCf7zr1R/MWesUf0NJ6j ascxptPEVQ== -----END CERTIFICATE-----Generated at Fri Sep 27 05:00:44 2024 by rpki-client on console-fra.rpki-client.org