$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/021F5D1E005F11EE9D6E2530C4F9AE02.roa File: 021F5D1E005F11EE9D6E2530C4F9AE02.roa (raw, json) Hash identifier: D9Du1jxG8oE9wceHFEoY5Nl8COEasjJYKId8W2qCUf8= Subject key identifier: BC:64:A5:E8:87:27:1B:1D:60:9B:BE:15:38:A4:DE:A7:6A:87:47:AF Certificate issuer: /CN=A911B5B0/serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Certificate serial: 078E Authority key identifier: 87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/021F5D1E005F11EE9D6E2530C4F9AE02.roa Signing time: Sun 30 Jun 2024 22:26:25 +0000 ROA not before: Sun 30 Jun 2024 22:26:25 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132442 IP address blocks: 2406:59c0:8000::/36 maxlen: 36 2406:59c0:9000::/36 maxlen: 36 2406:59c0:a000::/36 maxlen: 36 2406:59c0:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1934 (0x78e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B0/serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Validity Not Before: Jun 30 22:26:25 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6681db91-d56b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:af:1a:ab:24:d2:2d:33:74:9d:b3:48:b7:98: cd:bc:44:70:7e:29:52:e9:1f:e8:5e:3a:60:09:ce: 18:b5:50:d5:84:e1:ca:38:84:39:30:18:f0:f1:80: 8e:79:f0:82:74:c3:76:ca:d4:3b:8a:aa:bd:39:d0: ea:9a:1b:0b:c4:6d:7e:99:a6:d1:1b:b1:c0:db:90: 90:4e:99:75:08:a2:dd:96:89:9f:e0:d0:47:e4:75: e6:83:22:15:d2:23:0c:0f:f4:9c:b0:b9:19:2c:1e: 4e:fa:72:3b:e5:cc:9e:7b:4f:4a:ae:aa:0e:20:57: c1:99:b1:07:46:9c:88:a8:6c:b7:7a:51:67:0a:18: 1a:51:84:72:e6:5c:f2:76:e0:4f:b2:c8:16:30:26: a1:f6:b9:64:eb:21:77:78:9c:90:66:88:a2:78:ad: 7e:bd:8c:aa:ad:20:d9:99:7d:5d:94:04:d7:76:c0: 4e:e9:56:a6:9b:af:5f:40:50:a6:87:9c:65:4c:9f: 06:7b:e6:91:ce:cc:96:e8:d7:d2:f0:5e:0e:cf:9a: 89:08:a9:c0:70:f5:a0:ad:cd:35:76:52:14:b0:97: 0c:a2:82:f2:fe:6f:0f:ca:cd:f8:06:a6:cb:fe:22: 40:df:3e:0d:56:c2:fb:57:61:3d:f2:5e:d9:e7:a2: c5:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:64:A5:E8:87:27:1B:1D:60:9B:BE:15:38:A4:DE:A7:6A:87:47:AF X509v3 Authority Key Identifier: keyid:87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/021F5D1E005F11EE9D6E2530C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:59c0:8000::/34 Signature Algorithm: sha256WithRSAEncryption b8:e5:3e:c9:82:b5:2a:09:f5:f3:2e:2e:04:4c:bd:ee:04:a0: 59:1e:c6:4f:b0:a8:6b:11:44:33:11:58:d3:cb:27:71:34:d9: bb:dc:ce:6e:2b:62:0c:31:29:91:33:89:d9:f0:b8:22:4e:0e: f0:fe:da:3b:19:e8:6f:af:5b:a4:c9:a1:2b:7c:69:6d:29:5d: d6:df:d4:ce:18:74:7b:4f:ed:3b:8d:b8:ea:49:61:b2:01:8e: 20:de:37:5c:0c:7b:04:71:5b:b2:8b:e9:27:10:31:6d:ad:5a: 2d:b8:d0:3d:f6:1c:2e:7c:ee:00:a9:f4:cb:de:c1:f6:79:17: bb:73:a2:38:46:f8:bf:7f:a5:aa:1b:04:6b:83:f8:10:54:2e: bc:ce:84:86:24:60:b2:ef:0e:42:e9:c5:31:67:35:5c:a4:d3: 1a:3b:42:64:db:17:77:56:fe:03:78:ab:3c:d3:45:14:37:7a: 5c:24:4e:54:a7:ac:e3:eb:2d:e0:40:8e:31:99:b2:4c:94:9f: 5f:0a:cb:d8:8c:31:59:69:66:ff:6a:ed:cf:2b:04:ac:86:a2: 4d:a9:18:31:56:a9:25:38:52:64:8d:d1:2f:7c:c2:f2:07:e8: 97:f8:2c:b4:89:d6:95:15:3a:fd:37:fc:4c:5d:dd:43:20:14: cb:b8:29:a2 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICB44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjAxMTAvBgNVBAUTKDg3QjJDMEU4Mjk1NDFEMkVGNTI2NjM4NUVCMzk0NkI4 RDUyOTA2MDgwHhcNMjQwNjMwMjIyNjI1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgxZGI5MS1kNTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6K8aqyTSLTN0nbNIt5jNvERwfilS6R/oXjpgCc4YtVDVhOHKOIQ5MBjw8YCO efCCdMN2ytQ7iqq9OdDqmhsLxG1+mabRG7HA25CQTpl1CKLdlomf4NBH5HXmgyIV 0iMMD/ScsLkZLB5O+nI75cyee09KrqoOIFfBmbEHRpyIqGy3elFnChgaUYRy5lzy duBPssgWMCah9rlk6yF3eJyQZoiieK1+vYyqrSDZmX1dlATXdsBO6Vamm69fQFCm h5xlTJ8Ge+aRzsyW6NfS8F4Oz5qJCKnAcPWgrc01dlIUsJcMooLy/m8Pys34BqbL /iJA3z4NVsL7V2E98l7Z56LFHwIDAQABo4IClzCCApMwHQYDVR0OBBYEFLxkpeiH JxsdYJu+FTik3qdqh0evMB8GA1UdIwQYMBaAFIeywOgpVB0u9SZjhes5RrjVKQYI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCMC9BMkRGNENFQ0RE NEQxMUVBQkI3Njk2N0JDNEY5QUUwMi9oN0xBNkNsVUhTNzFKbU9GNnpsR3VOVXBC Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3TEE2Q2xVSFM3MUptT0Y2emxHdU5VcEJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI1QjAvQTJERjRDRUNERDREMTFFQUJCNzY5NjdCQzRGOUFFMDIvMDIxRjVEMUUw MDVGMTFFRTlENkUyNTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgYkBlnAgDANBgkqhkiG9w0BAQsFAAOCAQEAuOU+yYK1Kgn1 8y4uBEy97gSgWR7GT7CoaxFEMxFY08sncTTZu9zObitiDDEpkTOJ2fC4Ik4O8P7a Oxnob69bpMmhK3xpbSld1t/Uzhh0e0/tO4246klhsgGOIN43XAx7BHFbsovpJxAx ba1aLbjQPfYcLnzuAKn0y97B9nkXu3OiOEb4v3+lqhsEa4P4EFQuvM6EhiRgsu8O QunFMWc1XKTTGjtCZNsXd1b+A3irPNNFFDd6XCROVKes4+st4ECOMZmyTJSfXwrL 2IwxWWlm/2rtzysErIaiTakYMVapJThSZI3RL3zC8gfol/gstInWlRU6/Tf8TF3d QyAUy7gpog== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org