$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8D2CC3EE17DC11EE959DE671C4F9AE02.roa File: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (raw, json) Hash identifier: zZr/wa0m1rFLaToJf+3XeU5H/f8ci0Eq6bfOYc73d3k= Subject key identifier: F1:BB:E6:0C:DA:5F:92:2F:5A:36:1A:43:F8:85:4C:2D:AF:63:3D:29 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0C1C Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8D2CC3EE17DC11EE959DE671C4F9AE02.roa Signing time: Wed 06 Nov 2024 19:08:56 +0000 ROA not before: Wed 06 Nov 2024 19:08:56 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 65037 IP address blocks: 1.9.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3100 (0xc1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 6 19:08:56 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=672bbec7-eee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:60:03:34:9d:b5:8e:50:37:c3:f6:2d:f0:0f: a0:d1:85:cc:a9:84:44:4f:2b:61:e9:3c:81:27:fb: 5e:e1:68:36:fd:13:bf:4c:fc:ea:e4:27:f1:ed:69: 25:cc:68:a2:e5:96:73:fd:bf:09:52:c3:38:98:c9: 16:44:ac:59:49:a3:8f:f4:35:2d:01:b3:bb:a3:df: 62:16:93:e8:53:9f:8a:1e:93:52:da:86:ce:ca:67: 09:79:9b:2c:66:a8:d4:f9:c1:e6:b7:85:b8:37:94: 5e:55:be:63:66:a5:10:7b:d1:66:f2:5c:c3:67:5c: 09:95:d3:7e:d7:0b:46:b0:82:a0:17:6b:b0:5d:16: bc:ba:75:9c:f7:d9:d3:80:8a:17:d4:25:a1:f3:0b: 29:f2:e5:ad:12:3e:a4:d4:7d:b6:ee:9a:b7:f6:47: 78:a8:b2:31:1a:fe:44:1b:5d:29:de:64:be:43:1a: 48:0e:f2:da:a3:c2:c3:ad:bd:98:8a:d8:2a:0e:c5: 7e:a0:1e:64:74:ae:ae:44:ab:9d:32:de:db:b9:22: 1a:0b:1a:6e:51:dd:07:70:76:94:73:a2:03:d4:92: 26:74:41:14:ed:9e:49:cf:89:78:54:48:e1:6a:37: 96:1c:d9:3c:6f:82:aa:b6:af:ac:60:c9:ba:7d:09: f0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:BB:E6:0C:DA:5F:92:2F:5A:36:1A:43:F8:85:4C:2D:AF:63:3D:29 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8D2CC3EE17DC11EE959DE671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.9.12.0/24 Signature Algorithm: sha256WithRSAEncryption 90:ce:c8:f0:06:f5:1a:4c:70:06:fb:0a:94:aa:b4:62:48:0e: 90:f0:2e:7a:33:58:4d:f9:25:a5:c6:71:bd:fd:10:df:aa:ce: 54:b2:55:06:c8:2e:97:d8:19:0b:d4:6b:78:3c:0e:af:dc:6a: ef:f8:74:2a:62:fe:e4:4d:26:bd:77:6d:38:b3:8d:a8:c8:e0: b4:5a:98:b1:10:95:d0:39:8c:6b:8c:0c:35:a8:e7:ea:8a:db: 38:93:b3:39:76:f0:6a:30:41:d6:eb:ab:ca:7d:26:9e:53:4f: b0:af:76:c5:cd:e8:c4:0f:7b:04:08:72:13:41:0e:6e:91:63: a2:29:bd:83:c7:1d:2a:c7:61:bb:2f:fa:b2:b8:19:4c:38:06: b9:57:4e:bc:09:1c:32:9c:dd:7c:fe:8c:57:7c:ff:75:d5:12: f9:d9:fb:a8:67:e2:81:a1:fb:9b:1e:e3:2a:c7:a0:7e:2f:87: fb:ca:36:42:b9:84:fb:4c:d4:29:26:56:5b:02:ba:f9:0b:24: 7b:b8:39:1d:6a:80:43:92:a1:6b:53:fb:87:25:97:43:43:81: 47:cd:78:0e:e0:7d:3a:88:82:3d:8c:dd:7e:71:b6:b3:25:38: 5d:b6:ab:0a:18:44:96:3e:9f:f5:9f:af:35:90:7a:f5:13:63: 6b:9a:12:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjQxMTA2MTkwODU2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYmVjNy1lZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22ADNJ21jlA3w/Yt8A+g0YXMqYRETyth6TyBJ/te4Wg2/RO/TPzq5Cfx7Wkl zGii5ZZz/b8JUsM4mMkWRKxZSaOP9DUtAbO7o99iFpPoU5+KHpNS2obOymcJeZss ZqjU+cHmt4W4N5ReVb5jZqUQe9Fm8lzDZ1wJldN+1wtGsIKgF2uwXRa8unWc99nT gIoX1CWh8wsp8uWtEj6k1H227pq39kd4qLIxGv5EG10p3mS+QxpIDvLao8LDrb2Y itgqDsV+oB5kdK6uRKudMt7buSIaCxpuUd0HcHaUc6ID1JImdEEU7Z5Jz4l4VEjh ajeWHNk8b4Kqtq+sYMm6fQnw0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPG75gza X5IvWjYaQ/iFTC2vYz0pMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvOEQyQ0MzRUUx N0RDMTFFRTk1OURFNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAABCQwwDQYJKoZIhvcNAQELBQADggEBAJDOyPAG9RpMcAb7 CpSqtGJIDpDwLnozWE35JaXGcb39EN+qzlSyVQbILpfYGQvUa3g8Dq/cau/4dCpi /uRNJr13bTizjajI4LRamLEQldA5jGuMDDWo5+qK2ziTszl28GowQdbrq8p9Jp5T T7CvdsXN6MQPewQIchNBDm6RY6IpvYPHHSrHYbsv+rK4GUw4BrlXTrwJHDKc3Xz+ jFd8/3XVEvnZ+6hn4oGh+5se4yrHoH4vh/vKNkK5hPtM1CkmVlsCuvkLJHu4OR1q gEOSoWtT+4cll0NDgUfNeA7gfTqIgj2M3X5xtrMlOF22qwoYRJY+n/WfrzWQevUT Y2uaEtU= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:21 2024 by rpki-client on console-ams.rpki-client.org