$ rpki-client -vvf rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/1A20AAF27BD311EBA6617987C4F9AE02.roa File: 1A20AAF27BD311EBA6617987C4F9AE02.roa (raw, json) Hash identifier: 6eHddETss++N0efl0wYCBKU3NII6SFsuAEjJL0+ySL4= Subject key identifier: 8E:1A:71:D6:97:CF:0C:D0:C3:3D:26:40:00:C3:67:AC:E4:93:8B:20 Certificate issuer: /CN=A911E807/serialNumber=C6AF925F3EA43F4E8EE7A31421821693B1ADF6A1 Certificate serial: 05A9 Authority key identifier: C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/1A20AAF27BD311EBA6617987C4F9AE02.roa Signing time: Sat 13 Apr 2024 00:32:46 +0000 ROA not before: Sat 13 Apr 2024 00:32:46 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 9304 IP address blocks: 2001:df3:3d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1449 (0x5a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E807/serialNumber=C6AF925F3EA43F4E8EE7A31421821693B1ADF6A1 Validity Not Before: Apr 13 00:32:46 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6619d2ae-5d1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b2:b3:fe:7c:57:0d:d7:c1:36:04:cc:d7:b1: 21:f0:2d:68:ca:ff:4b:83:87:d2:b6:0c:50:59:35: 1f:0e:80:97:77:cd:d5:c0:11:7f:d1:20:f1:c2:4d: 08:a3:3d:14:d6:ff:3d:8d:58:95:4b:cc:31:cb:ed: 20:67:52:15:e9:7a:13:ec:18:e9:98:f1:25:19:a0: e0:d1:ec:e3:bf:be:78:5c:8f:a8:79:73:95:1e:61: 1e:61:ce:53:e1:7c:6d:56:f9:28:89:33:d0:9b:0a: 36:80:1e:f1:83:01:9c:ad:5d:17:bb:e3:02:02:df: 0e:6e:26:9c:d6:d8:82:8a:96:df:fc:8b:b2:e2:20: 17:76:1b:93:f1:fd:f5:5a:ce:d4:1d:c6:77:72:0d: 1f:4b:e3:03:47:d9:bc:69:87:92:9b:79:d6:30:e1: 53:8f:99:1d:03:0a:65:30:2e:0f:3f:68:d6:60:69: f1:21:76:8c:e1:3b:f7:3b:f9:18:48:20:ce:87:1b: 1c:e0:04:06:a5:66:b8:0f:77:df:37:99:98:71:88: 98:48:c5:3a:a6:91:51:52:e4:4f:d8:17:19:86:69: 11:72:36:9d:65:9f:62:bd:49:34:22:e6:79:bf:75: ce:96:1a:22:b2:f6:d5:df:77:06:ee:cb:bf:bf:b3: db:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:1A:71:D6:97:CF:0C:D0:C3:3D:26:40:00:C3:67:AC:E4:93:8B:20 X509v3 Authority Key Identifier: keyid:C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/1A20AAF27BD311EBA6617987C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:3d00::/48 Signature Algorithm: sha256WithRSAEncryption bb:52:ba:ae:cd:86:0b:95:26:1e:70:75:92:ad:9f:66:65:d2: b3:80:2e:a2:eb:2d:fa:ac:02:87:1c:22:2f:af:19:75:3c:32: 57:c8:3a:80:1a:30:fb:b9:e5:6a:7c:23:6e:ca:ad:24:9e:f8: 0a:f4:c6:88:83:0e:2a:0d:b5:c8:9e:97:3d:a0:59:f8:5e:cc: ac:1e:a5:7d:30:8c:8d:36:6b:36:d6:85:0f:9a:cf:87:60:ab: 8c:57:ec:8d:7b:e8:7d:65:93:d7:98:1d:01:68:d1:ac:5a:36: 26:2a:39:68:7b:2f:6f:fc:bb:c1:e9:39:fb:65:b9:73:ac:16: 44:e2:27:95:cb:3c:7f:97:4d:2e:bb:8b:64:06:07:c1:2e:96: 80:db:3f:cf:05:3c:1b:fc:a2:ae:f0:1b:41:4f:29:85:7a:e9: 3e:d2:f3:2b:d7:f4:ea:e2:3c:dc:25:d7:ef:a0:5a:1b:03:4b: 96:f5:18:3b:7f:5d:58:f2:f4:51:0e:bb:f2:24:62:cf:77:4c: 8e:d7:62:52:eb:7a:5e:ff:06:e1:d6:d6:2b:33:d3:ca:8e:cb: 2c:9e:29:3d:0c:05:2e:1f:ca:bd:c1:05:ac:1d:90:7c:ea:e9: a2:18:ef:ab:50:92:2a:03:1f:d1:57:7d:31:4f:1d:63:46:81: c0:75:9b:63 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU4MDcxMTAvBgNVBAUTKEM2QUY5MjVGM0VBNDNGNEU4RUU3QTMxNDIxODIxNjkz QjFBREY2QTEwHhcNMjQwNDEzMDAzMjQ2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE5ZDJhZS01ZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbKz/nxXDdfBNgTM17Eh8C1oyv9Lg4fStgxQWTUfDoCXd83VwBF/0SDxwk0I oz0U1v89jViVS8wxy+0gZ1IV6XoT7BjpmPElGaDg0ezjv754XI+oeXOVHmEeYc5T 4XxtVvkoiTPQmwo2gB7xgwGcrV0Xu+MCAt8Obiac1tiCipbf/Iuy4iAXdhuT8f31 Ws7UHcZ3cg0fS+MDR9m8aYeSm3nWMOFTj5kdAwplMC4PP2jWYGnxIXaM4Tv3O/kY SCDOhxsc4AQGpWa4D3ffN5mYcYiYSMU6ppFRUuRP2BcZhmkRcjadZZ9ivUk0IuZ5 v3XOlhoisvbV33cG7su/v7PbvQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFI4acdaX zwzQwz0mQADDZ6zkk4sgMB8GA1UdIwQYMBaAFMavkl8+pD9OjuejFCGCFpOxrfah MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTgwNy8yNjk2RjZDNjdC MzYxMUVCQkU4NzY0NjFDNEY5QUUwMi94cS1TWHo2a1AwNk81Nk1VSVlJV2s3R3Q5 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hxLVNYejZrUDA2TzU2TVVJWUlXazdHdDlxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU4MDcvMjY5NkY2QzY3QjM2MTFFQkJFODc2NDYxQzRGOUFFMDIvMUEyMEFBRjI3 QkQzMTFFQkE2NjE3OTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zPQAwDQYJKoZIhvcNAQELBQADggEBALtSuq7NhguV Jh5wdZKtn2Zl0rOALqLrLfqsAoccIi+vGXU8MlfIOoAaMPu55Wp8I27KrSSe+Ar0 xoiDDioNtcielz2gWfhezKwepX0wjI02azbWhQ+az4dgq4xX7I176H1lk9eYHQFo 0axaNiYqOWh7L2/8u8HpOftluXOsFkTiJ5XLPH+XTS67i2QGB8EuloDbP88FPBv8 oq7wG0FPKYV66T7S8yvX9OriPNwl1++gWhsDS5b1GDt/XVjy9FEOu/IkYs93TI7X YlLrel7/BuHW1isz08qOyyyeKT0MBS4fyr3BBawdkHzq6aIY76tQkioDH9FXfTFP HWNGgcB1m2M= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:23 2024 by rpki-client on console-fra.rpki-client.org