$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/15E884EAF73311ED8E92F45DC4F9AE02.roa File: 15E884EAF73311ED8E92F45DC4F9AE02.roa (raw, json) Hash identifier: 4QNmYEjYSfs+rPixjKW3E7Qc4YMtxxHvXpHxkfjKdio= Subject key identifier: E1:C8:26:68:B3:33:A5:4D:EF:AE:DE:C0:F5:55:E9:FC:44:AC:D5:17 Certificate issuer: /CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Certificate serial: 039B Authority key identifier: 22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/15E884EAF73311ED8E92F45DC4F9AE02.roa Signing time: Fri 19 Jul 2024 06:23:08 +0000 ROA not before: Fri 19 Jul 2024 06:23:08 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 151338 IP address blocks: 2400:8a20:123::/48 maxlen: 48 2400:8a20:124::/48 maxlen: 48 2400:8a20:125::/48 maxlen: 48 2400:8a20:1a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 923 (0x39b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112DB1/serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5 Validity Not Before: Jul 19 06:23:08 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=669a064c-e6ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8e:1c:9f:52:e7:ca:c5:a4:de:5b:ef:d4:b1: df:39:e2:de:4e:11:32:7a:54:05:04:f9:dc:e4:40: 2f:f4:7f:9a:99:f2:e8:b8:13:2d:1b:36:8b:fb:84: db:de:9e:b8:03:86:28:41:ba:75:fd:36:f8:a7:06: 2f:c2:31:3e:f4:2e:1a:78:99:44:c9:86:3d:b3:35: 0d:85:7f:27:d3:62:01:a2:4b:f4:9d:78:0e:f1:29: df:de:22:53:39:1d:99:30:4d:ab:37:b4:2d:52:e6: 3c:0e:d3:8d:9b:83:21:00:4e:5f:7e:37:7d:e5:76: ed:c4:b0:f8:ca:a9:60:c4:27:2b:6c:48:81:ca:e0: d8:03:f5:5d:67:75:15:21:8f:05:3f:3a:70:b3:b1: 15:0c:d7:56:e5:d6:94:d0:64:4a:c3:44:32:fb:12: ad:e3:7a:fe:00:52:59:37:68:63:67:7f:c7:98:f3: 3a:8f:92:eb:c3:30:fa:f5:6a:55:47:57:c9:fb:17: 64:44:c5:48:2a:0a:0f:20:e5:ff:dc:7b:9b:59:ca: ed:a4:72:c7:ce:09:90:15:94:5c:04:e2:2d:6c:00: fd:00:56:19:0e:b4:c3:68:3e:bf:ae:c0:7f:99:37: 82:0a:4f:2e:8b:1c:49:fe:a1:83:c0:d4:2d:8f:ac: 56:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C8:26:68:B3:33:A5:4D:EF:AE:DE:C0:F5:55:E9:FC:44:AC:D5:17 X509v3 Authority Key Identifier: keyid:22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/15E884EAF73311ED8E92F45DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:8a20:123::-2400:8a20:125:ffff:ffff:ffff:ffff:ffff 2400:8a20:1a0::/44 Signature Algorithm: sha256WithRSAEncryption 59:62:ec:41:d6:96:9d:52:29:1d:da:50:93:8f:4a:de:6c:45: 65:f8:92:10:44:db:8e:2f:5a:79:42:02:c9:fc:bd:7e:05:af: 78:d2:61:e0:ed:0b:25:76:14:af:f2:51:d4:d8:ad:aa:fe:a1: 5e:51:ae:fa:b3:75:3d:1c:f7:46:50:01:af:26:d3:26:32:a2: 82:c7:73:fb:4a:55:4c:11:89:49:1a:c1:2c:77:d1:8b:28:db: a8:3e:97:f6:a6:0f:78:df:0e:be:77:d1:85:0a:3f:f1:b8:1a: 28:f9:d4:96:bb:e5:0e:36:18:a1:a9:0f:0f:09:08:f8:ef:4b: 7a:f7:d3:8b:3b:e8:42:18:f8:0c:17:72:22:f5:55:ae:ec:72: d4:53:ae:5c:e8:05:aa:ea:4f:81:4e:38:9c:34:65:99:27:5c: 93:83:77:99:0f:0a:ff:13:cd:4e:b7:46:93:26:82:3b:8f:f3: 76:ab:61:78:cc:ff:84:ff:7a:84:bd:ed:3f:43:17:ce:43:ae: de:6a:1e:13:ad:04:9d:4b:19:18:49:3e:d1:09:59:95:ff:c1: 36:22:20:ed:87:31:12:be:eb:c0:21:c1:4f:71:98:59:d8:80: fa:05:9a:7d:df:2b:f2:0d:42:2a:67:f2:ca:01:ad:e1:18:bc: 51:a7:96:3d -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICA5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJEQjExMTAvBgNVBAUTKDIyRURGOUVCNjYwODdGRDBFOTgxN0FFNzM2QzAwMzlE MTg4MDg4RDUwHhcNMjQwNzE5MDYyMzA4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjlhMDY0Yy1lNmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr44cn1LnysWk3lvv1LHfOeLeThEyelQFBPnc5EAv9H+amfLouBMtGzaL+4Tb 3p64A4YoQbp1/Tb4pwYvwjE+9C4aeJlEyYY9szUNhX8n02IBokv0nXgO8Snf3iJT OR2ZME2rN7QtUuY8DtONm4MhAE5ffjd95XbtxLD4yqlgxCcrbEiByuDYA/VdZ3UV IY8FPzpws7EVDNdW5daU0GRKw0Qy+xKt43r+AFJZN2hjZ3/HmPM6j5LrwzD69WpV R1fJ+xdkRMVIKgoPIOX/3HubWcrtpHLHzgmQFZRcBOItbAD9AFYZDrTDaD6/rsB/ mTeCCk8uixxJ/qGDwNQtj6xWLwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOHIJmiz M6VN767ewPVV6fxErNUXMB8GA1UdIwQYMBaAFCLt+etmCH/Q6YF65zbAA50YgIjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkRCMS8zRkE2OTIwMDgz QzAxMUVDQjU0QjM5N0ZDNEY5QUUwMi9JdTM1NjJZSWY5RHBnWHJuTnNBRG5SaUFp TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l1MzU2MllJZjlEcGdYcm5Oc0FEblJpQWlOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJEQjEvM0ZBNjkyMDA4M0MwMTFFQ0I1NEIzOTdGQzRGOUFFMDIvMTVFODg0RUFG NzMzMTFFRDhFOTJGNDVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMCMEAgACMB0wEgMHACQAiiABIwMHASQAiiABJAMHBCQAiiABoDANBgkqhkiG 9w0BAQsFAAOCAQEAWWLsQdaWnVIpHdpQk49K3mxFZfiSEETbji9aeUICyfy9fgWv eNJh4O0LJXYUr/JR1Nitqv6hXlGu+rN1PRz3RlABrybTJjKigsdz+0pVTBGJSRrB LHfRiyjbqD6X9qYPeN8OvnfRhQo/8bgaKPnUlrvlDjYYoakPDwkI+O9LevfTizvo Qhj4DBdyIvVVruxy1FOuXOgFqupPgU44nDRlmSdck4N3mQ8K/xPNTrdGkyaCO4/z dqtheMz/hP96hL3tP0MXzkOu3moeE60EnUsZGEk+0QlZlf/BNiIg7YcxEr7rwCHB T3GYWdiA+gWafd8r8g1CKmfyygGt4Ri8UaeWPQ== -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:55 2024 by rpki-client on console-ams.rpki-client.org