$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/F3B00CD2666C11EEB1B4711CC4F9AE02.roa File: F3B00CD2666C11EEB1B4711CC4F9AE02.roa (raw, json) Hash identifier: R6LgYLeeG431V+MNRMFG0A1SQaUDq0hWnr4R0asmc6k= Subject key identifier: 84:49:CE:EC:DB:DC:8A:A8:BA:C7:5B:5C:97:71:CA:3B:1F:5F:4D:6A Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 0238 Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/F3B00CD2666C11EEB1B4711CC4F9AE02.roa Signing time: Sat 03 Aug 2024 03:34:22 +0000 ROA not before: Sat 03 Aug 2024 03:34:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 150180 IP address blocks: 2001:df0:ddc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: Aug 3 03:34:22 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ada53e-c667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e2:70:60:4b:68:67:36:7d:a3:45:41:6d:9f: 65:e1:6e:77:ee:97:71:31:f8:c1:aa:5d:dd:91:a2: 9a:3b:4a:60:a8:b6:7c:71:08:b3:53:3a:74:b7:24: 54:1f:48:ab:05:05:91:f9:c5:12:bc:75:d6:01:2b: 2d:e0:bf:95:09:1e:30:ab:3d:7f:1f:f7:92:6b:1b: 44:3f:cf:16:93:4d:24:f1:73:39:fa:36:a8:ed:16: f9:20:00:dc:30:3e:49:f1:82:9f:60:3f:78:54:05: 26:85:cd:30:f3:f6:5c:04:6e:cc:42:be:fc:d6:d8: 91:8f:2a:bd:0b:3d:df:c4:01:fa:2b:d5:d7:db:32: 86:67:2b:84:e2:8e:5d:cb:d7:29:21:ab:b0:95:77: 78:ce:fc:e0:9b:65:8c:da:d8:f8:b1:09:77:e2:6b: 86:e6:0f:26:c5:ca:2f:88:5d:04:05:2e:22:98:06: 32:b4:c0:3f:10:12:51:41:06:dc:8f:7b:c3:38:5f: 07:a6:91:9d:5f:09:d8:7b:0b:c2:d2:70:48:b0:e1: 90:d1:47:50:49:05:59:63:77:0f:55:43:6a:e1:ed: 11:38:69:21:38:36:e1:47:a8:df:ce:7a:ce:92:58: 19:f4:4f:87:4c:22:c1:f7:14:e7:b5:d6:64:7d:f0: d4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:49:CE:EC:DB:DC:8A:A8:BA:C7:5B:5C:97:71:CA:3B:1F:5F:4D:6A X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/F3B00CD2666C11EEB1B4711CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:ddc0::/48 Signature Algorithm: sha256WithRSAEncryption 9d:82:d6:56:1f:77:40:95:84:65:85:da:6e:10:68:b2:89:a8: 0c:5f:a4:44:02:e1:44:a7:46:f3:d4:af:24:30:c0:a6:50:2f: 34:5a:53:4a:66:9a:8e:8c:d7:d0:73:b6:7c:b2:86:31:97:06: db:cf:df:15:fe:64:4a:76:bd:27:fa:d8:3d:f1:6d:5c:51:71: 14:dc:01:21:f6:83:a4:b1:ee:cc:b4:80:07:a0:7f:e8:9a:6f: ad:e3:08:d3:41:fd:6d:10:cc:4f:30:7d:02:88:62:a4:a0:b4: 1a:9c:0e:52:5b:f2:21:17:0e:04:8e:c8:8c:05:96:4f:fb:31: 9f:a8:fe:af:f0:43:35:df:da:95:b2:18:dd:aa:1c:c7:06:a4: 8a:e3:d9:89:b9:c9:71:13:c1:37:d9:af:86:f6:4d:9b:9a:8a: 8c:d6:fc:0b:c5:a0:92:d5:1b:83:f7:28:72:d9:74:41:f9:5b: 4a:1b:8b:c7:6e:c9:4c:c7:4d:af:73:a7:81:53:28:0d:5a:f2: 70:78:3a:bd:2e:85:7d:d8:e8:e4:a4:eb:c7:0c:84:1b:e7:9a: 32:24:75:0f:3a:d3:5c:32:bb:75:b3:ae:79:5d:dc:28:73:c0: 30:fe:14:e1:1f:f0:97:8a:3a:25:31:d9:81:03:3b:bb:98:1c: 11:c5:c6:5a -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjQwODAzMDMzNDIyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkYTUzZS1jNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuJwYEtoZzZ9o0VBbZ9l4W537pdxMfjBql3dkaKaO0pgqLZ8cQizUzp0tyRU H0irBQWR+cUSvHXWASst4L+VCR4wqz1/H/eSaxtEP88Wk00k8XM5+jao7Rb5IADc MD5J8YKfYD94VAUmhc0w8/ZcBG7MQr781tiRjyq9Cz3fxAH6K9XX2zKGZyuE4o5d y9cpIauwlXd4zvzgm2WM2tj4sQl34muG5g8mxcoviF0EBS4imAYytMA/EBJRQQbc j3vDOF8HppGdXwnYewvC0nBIsOGQ0UdQSQVZY3cPVUNq4e0ROGkhODbhR6jfznrO klgZ9E+HTCLB9xTntdZkffDUOwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIRJzuzb 3IqousdbXJdxyjsfX01qMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTNCRTUvNjExQzUxMkNGMEYzMTFFQzg0QjI5QzgwQzRGOUFFMDIvRjNCMDBDRDI2 NjZDMTFFRUIxQjQ3MTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3w3cAwDQYJKoZIhvcNAQELBQADggEBAJ2C1lYfd0CV hGWF2m4QaLKJqAxfpEQC4USnRvPUryQwwKZQLzRaU0pmmo6M19BztnyyhjGXBtvP 3xX+ZEp2vSf62D3xbVxRcRTcASH2g6Sx7sy0gAegf+iab63jCNNB/W0QzE8wfQKI YqSgtBqcDlJb8iEXDgSOyIwFlk/7MZ+o/q/wQzXf2pWyGN2qHMcGpIrj2Ym5yXET wTfZr4b2TZuaiozW/AvFoJLVG4P3KHLZdEH5W0obi8duyUzHTa9zp4FTKA1a8nB4 Or0uhX3Y6OSk68cMhBvnmjIkdQ8601wyu3Wzrnld3ChzwDD+FOEf8JeKOiUx2YED O7uYHBHFxlo= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:30 2024 by rpki-client on console-fra.rpki-client.org