$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/A8DA1B1E9EE511EA890A7220C4F9AE02.roa File: A8DA1B1E9EE511EA890A7220C4F9AE02.roa (raw, json) Hash identifier: n0I3mFWn4zx5HdP+/EVuE3GsQLubN+IQGazgufG3pgY= Subject key identifier: 28:87:4B:B9:59:E7:3F:11:06:07:7E:B1:A3:53:9F:5A:62:47:BF:42 Certificate issuer: /CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Certificate serial: 0F5E Authority key identifier: 5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/A8DA1B1E9EE511EA890A7220C4F9AE02.roa Signing time: Thu 08 Feb 2024 18:16:03 +0000 ROA not before: Thu 08 Feb 2024 18:16:03 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 140675 IP address blocks: 2404:9ec0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:31:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3934 (0xf5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Validity Not Before: Feb 8 18:16:03 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c51a63-ff78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:50:ce:1b:0b:5d:dc:6d:47:72:67:ae:b2: 8e:43:5e:5e:4d:3f:a3:8a:f2:4f:66:e8:88:de:3a: 84:0a:d7:a2:ab:e5:bc:06:b1:c4:4b:66:7a:b2:3b: 07:94:6c:64:aa:80:3b:e4:29:3b:45:0c:9d:05:00: e3:9e:e1:73:73:04:e5:30:43:21:19:26:6c:26:2f: 6d:27:7a:9c:e1:8d:88:6d:e9:09:84:df:72:12:3d: 7e:34:40:db:06:ac:d1:7d:8d:3f:4e:8f:84:66:78: 2d:8b:1f:92:96:ef:28:d0:af:ec:75:27:6d:23:ae: cb:c7:ae:ce:33:2c:4b:b8:75:b0:9a:18:03:7d:c4: e1:13:ce:13:b5:4e:a0:7b:34:73:d7:68:bc:8d:a6: e9:a4:d8:66:65:f0:53:8c:87:da:bf:b7:df:38:ed: db:a1:68:8f:32:44:c6:c1:e6:9b:09:df:dd:11:13: 0c:76:af:22:c5:88:cf:24:9d:e7:e0:9e:61:02:bb: c2:b7:85:1f:4a:d1:93:be:2a:ed:fd:0b:7d:8f:9e: 43:32:7d:8d:ab:0b:eb:2e:fb:86:67:8c:8e:84:df: c2:26:61:d9:85:43:fe:6f:0f:f5:69:a0:d1:b6:ac: b3:e0:24:15:60:3b:ce:7f:5c:4b:f0:5f:66:42:27: 73:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:87:4B:B9:59:E7:3F:11:06:07:7E:B1:A3:53:9F:5A:62:47:BF:42 X509v3 Authority Key Identifier: keyid:5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/A8DA1B1E9EE511EA890A7220C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:9ec0:8::/48 Signature Algorithm: sha256WithRSAEncryption 37:0b:db:a8:91:f0:ac:6d:4d:bf:e4:b9:21:5d:4c:2b:bd:88: d2:80:eb:27:eb:87:5f:57:f2:ec:87:a0:f8:08:70:38:e0:4d: af:8f:e2:5d:11:b8:42:a9:6b:78:cf:40:7d:96:33:b8:62:86: a7:31:18:29:15:ab:62:40:7d:aa:24:95:19:43:63:1b:1e:35: da:8d:9e:b3:06:66:c3:9c:ea:33:d8:34:c7:eb:b4:8c:78:9e: a3:d3:50:a9:20:79:c4:a7:cc:3d:a7:cb:89:c6:ba:ad:b7:e7: 09:df:5d:4e:ee:5e:5d:e5:8c:43:a7:43:91:1d:b9:0e:be:21: c4:36:48:f3:ea:f0:61:0c:2a:52:27:4a:39:f5:8d:5a:73:b1: b0:0e:cc:56:5b:b2:bc:67:3a:c9:c2:86:82:7e:12:31:11:ac: 16:b9:b3:ec:02:fd:b1:21:b6:c6:79:1d:a9:1a:7e:19:3e:a8: c9:79:38:7a:ee:4a:b0:ea:98:d9:78:d9:79:77:08:53:87:8b: 3e:01:80:5d:ef:ef:d7:9a:2d:dd:73:bf:d3:e6:f5:33:86:90: 58:9d:cf:f6:42:4a:88:ae:72:33:2c:38:18:6d:db:78:be:b6: 7c:68:cc:00:39:a0:d5:ee:09:f0:1c:90:07:6e:6d:41:64:ea: 99:d7:3f:c7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICD14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEOUMxMTAvBgNVBAUTKDVCMkNGMEZCNjJGMTYwRjE4MzhBRUUzRTZDREUwNzU0 NERGRjhCRkYwHhcNMjQwMjA4MTgxNjAzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1MWE2My1mZjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNNQzhsLXdxtR3JnrrKOQ15eTT+jivJPZuiI3jqECteiq+W8BrHES2Z6sjsH lGxkqoA75Ck7RQydBQDjnuFzcwTlMEMhGSZsJi9tJ3qc4Y2IbekJhN9yEj1+NEDb BqzRfY0/To+EZngtix+Slu8o0K/sdSdtI67Lx67OMyxLuHWwmhgDfcThE84TtU6g ezRz12i8jabppNhmZfBTjIfav7ffOO3boWiPMkTGweabCd/dERMMdq8ixYjPJJ3n 4J5hArvCt4UfStGTvirt/Qt9j55DMn2NqwvrLvuGZ4yOhN/CJmHZhUP+bw/1aaDR tqyz4CQVYDvOf1xL8F9mQidzMwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCiHS7lZ 5z8RBgd+saNTn1piR79CMB8GA1UdIwQYMBaAFFss8Pti8WDxg4ruPmzeB1RN/4v/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Q5Qy80NTU5NDJENjUw QjIxMUU5QjVEQjZBNkJDNEY5QUUwMi9XeXp3LTJMeFlQR0RpdTQtYk40SFZFM19p XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d5enctMkx4WVBHRGl1NC1iTjRIVkUzX2lfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEOUMvNDU1OTQyRDY1MEIyMTFFOUI1REI2QTZCQzRGOUFFMDIvQThEQTFCMUU5 RUU1MTFFQTg5MEE3MjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBJ7AAAgwDQYJKoZIhvcNAQELBQADggEBADcL26iR8Kxt Tb/kuSFdTCu9iNKA6yfrh19X8uyHoPgIcDjgTa+P4l0RuEKpa3jPQH2WM7hihqcx GCkVq2JAfaoklRlDYxseNdqNnrMGZsOc6jPYNMfrtIx4nqPTUKkgecSnzD2ny4nG uq235wnfXU7uXl3ljEOnQ5EduQ6+IcQ2SPPq8GEMKlInSjn1jVpzsbAOzFZbsrxn OsnChoJ+EjERrBa5s+wC/bEhtsZ5Hakafhk+qMl5OHruSrDqmNl42Xl3CFOHiz4B gF3v79eaLd1zv9Pm9TOGkFidz/ZCSoiucjMsOBht23i+tnxozAA5oNXuCfAckAdu bUFk6pnXP8c= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org