$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8B707C6C17DC11EE959DE671C4F9AE02.roa File: 8B707C6C17DC11EE959DE671C4F9AE02.roa (raw, json) Hash identifier: bv2/9mHV5hvQUwYa7AUUUWrf3R41IAn85lkqotp1enw= Subject key identifier: 3E:7B:6C:81:F6:11:C2:F8:90:9B:A7:75:2E:C7:F9:15:C5:E1:DA:0D Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0C19 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8B707C6C17DC11EE959DE671C4F9AE02.roa Signing time: Wed 06 Nov 2024 19:08:53 +0000 ROA not before: Wed 06 Nov 2024 19:08:53 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 54994 IP address blocks: 2001:e68:20db:10::/64 maxlen: 64 2001:e68:20db:11::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:28:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3097 (0xc19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 6 19:08:53 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=672bbec5-e568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e4:3a:54:7c:62:c2:3a:95:96:94:55:87:57: be:4b:9f:87:c6:6f:50:53:c0:74:c5:79:36:eb:6c: 04:98:66:2b:f4:c4:d5:f4:69:54:8b:29:7d:55:17: ff:af:f1:1f:3a:41:73:20:20:13:1e:ae:20:2c:b6: 5b:b1:56:9f:d2:ed:9c:71:a0:09:48:16:a0:49:ff: 0b:62:29:ea:8a:53:99:af:38:16:f5:2b:ed:18:06: a1:d6:7b:96:bb:39:0c:98:15:d6:18:ff:f4:3e:61: 03:48:a2:c9:b3:d7:cf:ad:93:95:51:fc:f4:39:db: d5:92:3d:e3:d7:79:cf:f7:a2:35:03:36:4f:d0:1b: d4:de:3d:ac:3f:57:6b:8f:50:e0:9c:02:bb:4b:42: a2:57:b0:a2:23:c8:64:46:0b:a3:da:06:03:d7:a5: b8:68:32:93:73:a8:d8:81:68:6a:c6:88:8e:fb:56: 27:81:85:fa:d1:2f:3b:a5:68:5b:3b:c9:2a:4a:7d: 92:29:74:91:0c:c7:bd:67:17:93:e9:06:8a:8b:fd: 89:ab:dd:33:68:8a:4b:29:43:e7:a7:b6:3d:b5:5d: 85:a5:4e:4f:97:67:e3:74:9c:4f:ac:25:3c:7e:f1: f3:a5:d9:57:51:3c:8f:80:06:cd:5e:e9:f6:c9:e3: 59:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7B:6C:81:F6:11:C2:F8:90:9B:A7:75:2E:C7:F9:15:C5:E1:DA:0D X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8B707C6C17DC11EE959DE671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:e68:20db:10::/63 Signature Algorithm: sha256WithRSAEncryption 21:91:bb:cd:71:76:eb:65:47:67:a7:29:9c:5f:68:04:84:30: 0d:fd:82:e5:97:3c:26:09:f2:02:b3:d1:41:cc:fe:17:c0:d5: 66:37:cd:5c:2e:85:af:25:16:f3:3f:a1:d1:7f:cd:41:99:55: 30:c1:86:c0:40:a7:b4:74:20:f8:cd:7c:b8:5b:65:c0:bb:20: 5a:ba:b8:bf:88:81:1b:cb:ee:5d:bd:d4:3e:b9:f5:e7:63:bf: 3f:b1:ee:10:ac:c3:23:11:d6:2e:70:ae:82:0b:48:09:76:a0: 1f:68:5a:59:f2:39:45:f9:8d:69:0c:13:ea:36:ce:a3:50:0d: b2:ad:33:dc:26:34:00:23:8b:10:c7:4b:fe:5a:ba:c4:38:98: 50:32:43:c9:94:98:6d:a2:39:20:6e:6b:0a:a1:34:fe:08:45: d8:3f:b5:71:97:1f:e5:65:c6:66:ee:70:21:41:09:5b:00:8b: 5f:ab:fc:f9:04:dc:a6:09:cf:ca:04:d3:1a:2b:f6:f7:92:17: f2:86:36:81:a2:0c:cc:0c:41:76:e9:89:d4:b0:fc:a8:46:ec: b2:aa:eb:c8:94:7a:60:63:68:3d:fa:b5:8d:bc:8f:29:8c:98: f5:46:71:66:20:51:bd:aa:29:a7:6e:b1:26:e6:ac:a7:0f:bf: e4:19:b6:c6 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICDBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjQxMTA2MTkwODUzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYmVjNS1lNTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5OQ6VHxiwjqVlpRVh1e+S5+Hxm9QU8B0xXk262wEmGYr9MTV9GlUiyl9VRf/ r/EfOkFzICATHq4gLLZbsVaf0u2ccaAJSBagSf8LYinqilOZrzgW9SvtGAah1nuW uzkMmBXWGP/0PmEDSKLJs9fPrZOVUfz0OdvVkj3j13nP96I1AzZP0BvU3j2sP1dr j1DgnAK7S0KiV7CiI8hkRguj2gYD16W4aDKTc6jYgWhqxoiO+1YngYX60S87pWhb O8kqSn2SKXSRDMe9ZxeT6QaKi/2Jq90zaIpLKUPnp7Y9tV2FpU5Pl2fjdJxPrCU8 fvHzpdlXUTyPgAbNXun2yeNZ7QIDAQABo4ICmjCCApYwHQYDVR0OBBYEFD57bIH2 EcL4kJundS7H+RXF4doNMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvOEI3MDdDNkMx N0RDMTFFRTk1OURFNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgACMAsDCQEgAQ5oINsAEDANBgkqhkiG9w0BAQsFAAOCAQEAIZG7zXF2 62VHZ6cpnF9oBIQwDf2C5Zc8JgnyArPRQcz+F8DVZjfNXC6FryUW8z+h0X/NQZlV MMGGwECntHQg+M18uFtlwLsgWrq4v4iBG8vuXb3UPrn152O/P7HuEKzDIxHWLnCu ggtICXagH2haWfI5RfmNaQwT6jbOo1ANsq0z3CY0ACOLEMdL/lq6xDiYUDJDyZSY baI5IG5rCqE0/ghF2D+1cZcf5WXGZu5wIUEJWwCLX6v8+QTcpgnPygTTGiv295IX 8oY2gaIMzAxBdumJ1LD8qEbssqrryJR6YGNoPfq1jbyPKYyY9UZxZiBRvaopp26x Juaspw+/5Bm2xg== -----END CERTIFICATE-----Generated at Mon Nov 25 04:43:50 2024 by rpki-client on console-ams.rpki-client.org