$ rpki-client -vvf rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/849C352211F811EF820BF24FC4F9AE02.roa File: 849C352211F811EF820BF24FC4F9AE02.roa (raw, json) Hash identifier: wwGZpT48wP330+bWP5HvFyf3d6u+Sna23wh8+O18ssw= Subject key identifier: 3F:74:68:F1:C8:34:13:30:9F:CA:73:E0:C1:67:E3:91:50:2C:D9:41 Certificate issuer: /CN=A911B6FB/serialNumber=AD234E3F1EBBADAD019FE09AFFF70E8075AFDE17 Certificate serial: 04 Authority key identifier: AD:23:4E:3F:1E:BB:AD:AD:01:9F:E0:9A:FF:F7:0E:80:75:AF:DE:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/849C352211F811EF820BF24FC4F9AE02.roa Signing time: Tue 14 May 2024 13:47:35 +0000 ROA not before: Tue 14 May 2024 13:47:35 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152853 IP address blocks: 2001:df3:cec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.crl rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B6FB/serialNumber=AD234E3F1EBBADAD019FE09AFFF70E8075AFDE17 Validity Not Before: May 14 13:47:35 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66436b76-3640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:40:bb:46:bc:f1:c6:e4:29:43:b7:3d:80:a5: 7a:f8:5d:b5:57:12:61:da:d0:4f:68:d1:b9:2d:ff: c5:0d:38:13:be:a9:b2:dc:70:ce:38:01:9d:d5:08: 82:e6:b8:54:1b:2d:7b:c6:f7:50:11:22:5f:02:6b: 88:d8:4a:43:6a:6d:87:86:08:f1:89:03:61:e1:64: d6:bf:82:53:3c:eb:08:21:4f:d5:82:4d:5d:cd:7d: 03:c4:fb:0e:68:d6:21:94:2e:b3:e7:e9:df:1e:5a: d7:79:af:df:67:40:69:36:16:8a:c9:a8:d0:12:af: 1b:2a:9f:e6:fb:1c:26:40:13:28:fe:fa:8d:e4:d4: 8d:97:79:2b:22:d0:52:34:0b:37:fc:ab:16:57:b9: 19:be:76:cd:bd:ad:05:40:e5:bd:6d:68:c6:7e:4b: 41:f3:3e:9b:33:e7:d6:cf:5e:18:6f:92:ab:1e:d1: 8b:45:67:15:55:07:df:c5:37:a1:07:fe:8e:24:9a: 70:65:ef:07:bb:be:a1:d5:2e:16:eb:45:1b:4e:26: 3f:55:c3:b6:6d:88:89:49:45:d7:0d:d7:18:72:06: ec:be:c9:51:1b:10:89:fd:3a:9e:df:61:ec:77:86: 83:16:90:37:64:96:62:25:51:41:8d:54:c2:51:18: 87:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:74:68:F1:C8:34:13:30:9F:CA:73:E0:C1:67:E3:91:50:2C:D9:41 X509v3 Authority Key Identifier: keyid:AD:23:4E:3F:1E:BB:AD:AD:01:9F:E0:9A:FF:F7:0E:80:75:AF:DE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/849C352211F811EF820BF24FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:cec0::/48 Signature Algorithm: sha256WithRSAEncryption 4e:e8:62:09:14:5d:05:e3:b1:3c:12:fc:a6:05:c4:4c:7b:15: dc:fb:16:9c:8a:6a:d6:e0:92:f8:ac:18:fa:e9:9a:b3:d5:57: 36:ac:70:21:e4:a3:2a:93:f9:87:54:13:81:f8:2e:39:ee:0a: 46:f9:8b:86:92:13:7f:f4:77:3b:2d:6a:e3:0e:17:bf:0d:3a: a4:c8:8d:c6:59:eb:01:c5:db:16:29:9f:2a:33:ae:35:f2:0b: 31:1e:a9:90:ed:d5:a3:a1:1d:81:7c:3b:3f:45:fa:3e:4d:76: ab:74:60:03:35:d8:aa:4b:b2:10:d8:03:06:21:4f:ca:57:82: e7:b9:0d:4a:b6:9c:27:0b:57:a6:f3:85:d1:8c:9e:0e:59:1f: 66:df:e7:dc:96:b8:cb:5a:0d:85:59:5f:60:97:ea:8d:c6:87: 7e:6e:2a:3c:82:11:56:29:42:e8:a3:76:d2:0c:a6:ce:da:1f: b1:d4:fa:2a:cb:c2:9f:bc:b7:fc:47:3d:61:73:9e:48:1c:97: 1e:fe:87:a9:a6:55:75:2d:4d:81:d8:3e:27:2e:18:a4:87:1d: 00:74:b6:8d:1d:29:3c:e1:2b:78:a9:fc:40:92:4c:84:cf:58: f4:4c:f4:f3:1c:93:a1:3b:73:68:9a:12:18:81:0d:34:6c:4a: eb:75:70:b5 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QjZGQjExMC8GA1UEBRMoQUQyMzRFM0YxRUJCQURBRDAxOUZFMDlBRkZGNzBFODA3 NUFGREUxNzAeFw0yNDA1MTQxMzQ3MzVaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDM2Yjc2LTM2NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCQLtGvPHG5ClDtz2ApXr4XbVXEmHa0E9o0bkt/8UNOBO+qbLccM44AZ3VCILm uFQbLXvG91ARIl8Ca4jYSkNqbYeGCPGJA2HhZNa/glM86wghT9WCTV3NfQPE+w5o 1iGULrPn6d8eWtd5r99nQGk2ForJqNASrxsqn+b7HCZAEyj++o3k1I2XeSsi0FI0 Czf8qxZXuRm+ds29rQVA5b1taMZ+S0HzPpsz59bPXhhvkqse0YtFZxVVB9/FN6EH /o4kmnBl7we7vqHVLhbrRRtOJj9Vw7ZtiIlJRdcN1xhyBuy+yVEbEIn9Op7fYex3 hoMWkDdklmIlUUGNVMJRGIchAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUP3Ro8cg0 EzCfynPgwWfjkVAs2UEwHwYDVR0jBBgwFoAUrSNOPx67ra0Bn+Ca//cOgHWv3hcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCNkZCL0Q5Q0M5RURFMTFG NzExRUY5M0JEOTQ0RUM0RjlBRTAyL3JTTk9QeDY3cmEwQm4tQ2FfX2NPZ0hXdjNo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclNOT1B4NjdyYTBCbi1DYV9fY09nSFd2M2hjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjZGQi9EOUNDOUVERTExRjcxMUVGOTNCRDk0NEVDNEY5QUUwMi84NDlDMzUyMjEx RjgxMUVGODIwQkYyNEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfPOwDANBgkqhkiG9w0BAQsFAAOCAQEATuhiCRRdBeOx PBL8pgXETHsV3PsWnIpq1uCS+KwY+umas9VXNqxwIeSjKpP5h1QTgfguOe4KRvmL hpITf/R3Oy1q4w4Xvw06pMiNxlnrAcXbFimfKjOuNfILMR6pkO3Vo6EdgXw7P0X6 Pk12q3RgAzXYqkuyENgDBiFPyleC57kNSracJwtXpvOF0YyeDlkfZt/n3Ja4y1oN hVlfYJfqjcaHfm4qPIIRVilC6KN20gymztofsdT6KsvCn7y3/Ec9YXOeSByXHv6H qaZVdS1Ngdg+Jy4YpIcdAHS2jR0pPOEreKn8QJJMhM9Y9Ez08xyToTtzaJoSGIEN NGxK63VwtQ== -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:50 2024 by rpki-client on console-ams.rpki-client.org