$ rpki-client -vvf rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/9A20324CDD6011EB9935406BC4F9AE02.roa File: 9A20324CDD6011EB9935406BC4F9AE02.roa (raw, json) Hash identifier: crjIi9A4daWBIMavWgwdrvqfs6rboASaaFeiLlhaj3I= Subject key identifier: 84:B9:C8:64:A2:57:E8:71:76:C3:8C:79:27:6E:15:F1:E8:20:3F:91 Certificate issuer: /CN=A9121B73/serialNumber=66CE6D078C88930FAC801089C3E4C4A33382901E Certificate serial: 2395 Authority key identifier: 66:CE:6D:07:8C:88:93:0F:AC:80:10:89:C3:E4:C4:A3:33:82:90:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zs5tB4yIkw-sgBCJw-TEozOCkB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/9A20324CDD6011EB9935406BC4F9AE02.roa Signing time: Sun 30 Jun 2024 16:13:56 +0000 ROA not before: Sun 30 Jun 2024 16:13:56 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 59347 IP address blocks: 2403:cc80::/32 maxlen: 32 2403:cc80::/48 maxlen: 48 2403:cc80:1::/48 maxlen: 48 2403:cc80:2::/48 maxlen: 48 2403:cc80:3::/48 maxlen: 48 2403:cc80:4::/48 maxlen: 48 2403:cc80:5::/48 maxlen: 48 2403:cc80:d::/48 maxlen: 48 2403:cc80:e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/Zs5tB4yIkw-sgBCJw-TEozOCkB4.crl rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/Zs5tB4yIkw-sgBCJw-TEozOCkB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zs5tB4yIkw-sgBCJw-TEozOCkB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9109 (0x2395) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121B73/serialNumber=66CE6D078C88930FAC801089C3E4C4A33382901E Validity Not Before: Jun 30 16:13:56 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66818443-bcb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:88:8b:43:75:4c:c9:d2:f4:3d:b6:1d:1d:51: 4f:bb:b6:62:62:b5:d8:d8:a9:e0:a9:52:b1:8e:09: 67:52:bd:d4:10:d1:e7:f7:22:63:2e:9f:40:8e:9f: be:76:ad:d6:9b:a1:0a:a4:c1:51:de:7d:94:7a:9e: a1:d6:fd:89:8b:35:7d:4a:bc:e3:13:0f:4f:3f:16: 95:e2:34:06:23:d3:75:04:cc:00:06:c5:a0:a2:f1: aa:6e:34:a6:ca:ca:b3:31:26:59:69:b5:16:d3:4d: b4:8c:fa:20:f0:7f:8b:c1:7a:be:9c:52:d7:ec:b9: f1:bd:c3:99:ca:f2:5e:dd:06:80:9b:58:b6:27:1d: ba:26:68:f4:3b:01:f0:bd:73:1a:22:40:15:8d:08: 8f:ea:de:19:72:a4:1c:46:a7:f7:2e:bf:9b:72:5c: fa:a4:c9:e7:12:92:04:86:8d:eb:e7:10:0c:30:1b: d5:11:33:e9:dc:29:93:7f:20:76:4a:a6:da:a5:6b: 83:28:3e:e1:79:f7:b4:22:bd:3e:0d:e5:e7:a4:b6: 5e:1a:a6:f1:4b:19:d6:d7:0a:15:0a:3a:45:93:83: 5f:84:7f:fc:4a:2f:bb:d5:2d:3c:98:c6:f8:8d:a3: 87:f2:b8:4d:b3:df:26:be:b8:a9:e5:ab:c0:e4:5e: 50:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B9:C8:64:A2:57:E8:71:76:C3:8C:79:27:6E:15:F1:E8:20:3F:91 X509v3 Authority Key Identifier: keyid:66:CE:6D:07:8C:88:93:0F:AC:80:10:89:C3:E4:C4:A3:33:82:90:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/Zs5tB4yIkw-sgBCJw-TEozOCkB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zs5tB4yIkw-sgBCJw-TEozOCkB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/9A20324CDD6011EB9935406BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cc80::/32 Signature Algorithm: sha256WithRSAEncryption 9a:cd:39:bd:ad:e9:92:b5:b2:bc:0d:0e:5c:74:4a:06:47:b4: 65:bd:e1:e8:c2:5b:dc:f5:72:19:e3:ca:66:fc:0e:19:f5:41: 90:6a:56:fa:af:2f:07:92:a9:e2:55:6c:5e:41:2a:34:33:13: 65:9b:e2:fe:d8:33:37:56:ce:7e:cc:60:8a:21:73:56:32:b0: 5b:41:a0:71:5b:06:24:32:10:2e:3b:3f:77:2c:1a:0c:a1:fb: 5e:d4:19:42:52:6e:1f:10:d0:36:c5:89:e2:f5:77:47:72:49: 9d:b8:f3:08:17:39:5a:4f:e6:e5:ff:ca:2c:2e:b2:c7:e3:b5: 4f:de:c4:a4:8d:39:9b:31:56:84:d5:00:7c:1d:46:13:2c:29: bc:67:30:fb:ac:62:28:20:ab:47:61:56:42:41:5f:10:8d:6a: e8:b2:35:cd:e0:80:da:98:68:5a:7d:fb:9f:d4:8f:58:90:7c: b9:34:4f:ac:9d:1e:04:da:b4:d7:35:fe:a7:fe:99:de:f3:cf: 4b:43:d6:08:92:27:d8:6a:62:9d:6a:ce:31:1d:c5:a2:cb:7b: 08:a9:9c:80:e4:49:e4:97:7e:50:2d:63:06:87:aa:f8:ea:b0: d5:8f:a7:9b:aa:45:f2:9d:00:fa:fb:b7:23:93:8e:b8:e7:58: 53:ce:b0:aa -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICI5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFCNzMxMTAvBgNVBAUTKDY2Q0U2RDA3OEM4ODkzMEZBQzgwMTA4OUMzRTRDNEEz MzM4MjkwMUUwHhcNMjQwNjMwMTYxMzU2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgxODQ0My1iY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IiLQ3VMydL0PbYdHVFPu7ZiYrXY2KngqVKxjglnUr3UENHn9yJjLp9Ajp++ dq3Wm6EKpMFR3n2Uep6h1v2JizV9SrzjEw9PPxaV4jQGI9N1BMwABsWgovGqbjSm ysqzMSZZabUW0020jPog8H+LwXq+nFLX7LnxvcOZyvJe3QaAm1i2Jx26Jmj0OwHw vXMaIkAVjQiP6t4ZcqQcRqf3Lr+bclz6pMnnEpIEho3r5xAMMBvVETPp3CmTfyB2 SqbapWuDKD7hefe0Ir0+DeXnpLZeGqbxSxnW1woVCjpFk4NfhH/8Si+71S08mMb4 jaOH8rhNs98mvrip5avA5F5QAQIDAQABo4ICljCCApIwHQYDVR0OBBYEFIS5yGSi V+hxdsOMeSduFfHoID+RMB8GA1UdIwQYMBaAFGbObQeMiJMPrIAQicPkxKMzgpAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUI3My8yQjc3RUYyQTVF REYxMUU1ODFBRDg4MENDNEY5QUUwMi9aczV0QjR5SWt3LXNnQkNKdy1URW96T0Nr QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pzNXRCNHlJa3ctc2dCQ0p3LVRFb3pPQ2tCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjFCNzMvMkI3N0VGMkE1RURGMTFFNTgxQUQ4ODBDQzRGOUFFMDIvOUEyMDMyNENE RDYwMTFFQjk5MzU0MDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA8yAMA0GCSqGSIb3DQEBCwUAA4IBAQCazTm9remStbK8 DQ5cdEoGR7RlveHowlvc9XIZ48pm/A4Z9UGQalb6ry8HkqniVWxeQSo0MxNlm+L+ 2DM3Vs5+zGCKIXNWMrBbQaBxWwYkMhAuOz93LBoMofte1BlCUm4fENA2xYni9XdH ckmduPMIFzlaT+bl/8osLrLH47VP3sSkjTmbMVaE1QB8HUYTLCm8ZzD7rGIoIKtH YVZCQV8QjWrosjXN4IDamGhaffuf1I9YkHy5NE+snR4E2rTXNf6n/pne889LQ9YI kifYamKdas4xHcWiy3sIqZyA5Enkl35QLWMGh6r46rDVj6ebqkXynQD6+7cjk464 51hTzrCq -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:39 2024 by rpki-client on console-fra.rpki-client.org