$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/F34FF6B69C3B11EABC59DA11C4F9AE02.roa File: F34FF6B69C3B11EABC59DA11C4F9AE02.roa (raw, json) Hash identifier: MFk1nSICKweDEyitdcyRRusZH8cL5CRVKqUjAaaDNgc= Subject key identifier: 1B:00:DC:D4:4B:18:E2:59:AE:B4:FC:19:6B:7F:5C:7F:9E:13:54:FD Certificate issuer: /CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Certificate serial: 0F5B Authority key identifier: 5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/F34FF6B69C3B11EABC59DA11C4F9AE02.roa Signing time: Thu 08 Feb 2024 18:16:01 +0000 ROA not before: Thu 08 Feb 2024 18:16:01 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138586 IP address blocks: 2404:9ec0:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:31:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3931 (0xf5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Validity Not Before: Feb 8 18:16:01 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c51a61-9cc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ad:fb:f6:e9:dc:02:71:aa:66:cf:8b:b2:ea: b8:59:ab:d8:34:2f:56:2e:58:85:a6:08:f3:a7:45: b3:a6:54:58:62:be:1e:34:6b:3f:00:98:35:8f:bf: f4:d7:3d:5e:88:36:63:4d:3f:b9:d0:ba:69:cc:af: f0:d7:ec:e7:ec:eb:69:ae:96:0a:8a:34:01:6b:76: ca:11:9c:72:ed:9e:f4:78:db:c0:82:67:95:a7:d2: fd:34:fa:87:09:75:92:9f:d6:ca:19:4c:94:2b:d2: 05:51:14:30:ad:35:36:c2:35:47:2b:80:01:cd:ce: 00:a5:33:34:08:94:d4:47:87:70:01:0b:27:da:f4: 7d:39:72:79:b6:27:89:c5:a1:e2:e9:97:f3:93:71: 8d:c4:57:cb:6c:76:c4:04:2c:f9:b9:37:4f:2b:e9: 43:2d:f8:d9:91:92:f9:16:f1:71:a4:bf:0b:f5:39: 74:eb:01:4c:36:35:84:bc:a3:02:0f:ad:f0:15:5c: 9c:6b:c1:dd:f9:58:83:c1:2c:fd:c2:9e:45:72:98: 98:e7:ed:8f:39:f0:93:de:ca:34:e2:d5:0f:7d:6b: d3:d5:05:30:a2:19:e4:42:44:c9:fe:61:85:23:8d: 67:f9:66:2a:d4:99:ef:5d:d5:31:cc:67:53:c6:4c: fc:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:00:DC:D4:4B:18:E2:59:AE:B4:FC:19:6B:7F:5C:7F:9E:13:54:FD X509v3 Authority Key Identifier: keyid:5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/F34FF6B69C3B11EABC59DA11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:9ec0:1000::/40 Signature Algorithm: sha256WithRSAEncryption 4d:18:c9:4a:44:cb:cd:cb:1f:cd:3b:4c:fb:cb:24:e9:6e:d5: 16:79:34:e6:97:75:66:30:ca:9a:a3:78:7c:03:83:c0:36:43: 97:07:c5:4c:9f:c1:14:4f:de:e7:cb:c0:4a:ef:a8:dd:41:34: b3:6d:2d:98:e5:79:b3:3a:00:a3:f3:8b:28:a1:91:f3:95:98: be:5e:ac:d0:f5:7d:e7:c1:2c:e0:71:ae:4e:fd:8a:48:32:ae: 82:0c:b2:e2:37:32:fe:84:75:9c:86:12:e4:b1:2d:08:09:e2: ad:22:40:64:4b:63:f4:ab:3e:ef:48:52:7c:14:f4:47:5a:58: aa:4c:d4:23:aa:f3:f3:cb:47:bc:80:9f:ff:42:90:c7:df:0c: 7a:ad:31:4c:b7:4f:d2:a8:03:50:86:50:f5:4f:ae:59:5a:4a: e7:86:cf:79:4d:6b:9a:bb:03:77:f4:19:e6:81:67:a1:1f:43: ed:f9:e6:c0:90:73:86:68:f8:ba:2d:4f:48:f1:38:e1:9a:c3: 93:e9:e8:f6:f9:be:81:58:28:97:53:dc:f0:86:c2:ec:6a:5a: 91:52:52:a3:0e:86:88:15:e3:b5:c8:55:e3:e3:82:2c:e7:bf: b1:ab:5c:54:99:6d:10:29:80:fd:89:90:8a:0c:08:fc:32:37: 6a:ab:b8:e7 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICD1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEOUMxMTAvBgNVBAUTKDVCMkNGMEZCNjJGMTYwRjE4MzhBRUUzRTZDREUwNzU0 NERGRjhCRkYwHhcNMjQwMjA4MTgxNjAxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1MWE2MS05Y2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2K379uncAnGqZs+Lsuq4WavYNC9WLliFpgjzp0WzplRYYr4eNGs/AJg1j7/0 1z1eiDZjTT+50LppzK/w1+zn7OtprpYKijQBa3bKEZxy7Z70eNvAgmeVp9L9NPqH CXWSn9bKGUyUK9IFURQwrTU2wjVHK4ABzc4ApTM0CJTUR4dwAQsn2vR9OXJ5tieJ xaHi6Zfzk3GNxFfLbHbEBCz5uTdPK+lDLfjZkZL5FvFxpL8L9Tl06wFMNjWEvKMC D63wFVyca8Hd+ViDwSz9wp5FcpiY5+2POfCT3so04tUPfWvT1QUwohnkQkTJ/mGF I41n+WYq1JnvXdUxzGdTxkz8FwIDAQABo4IClzCCApMwHQYDVR0OBBYEFBsA3NRL GOJZrrT8GWt/XH+eE1T9MB8GA1UdIwQYMBaAFFss8Pti8WDxg4ruPmzeB1RN/4v/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Q5Qy80NTU5NDJENjUw QjIxMUU5QjVEQjZBNkJDNEY5QUUwMi9XeXp3LTJMeFlQR0RpdTQtYk40SFZFM19p XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d5enctMkx4WVBHRGl1NC1iTjRIVkUzX2lfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEOUMvNDU1OTQyRDY1MEIyMTFFOUI1REI2QTZCQzRGOUFFMDIvRjM0RkY2QjY5 QzNCMTFFQUJDNTlEQTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkBJ7AEDANBgkqhkiG9w0BAQsFAAOCAQEATRjJSkTLzcsf zTtM+8sk6W7VFnk05pd1ZjDKmqN4fAODwDZDlwfFTJ/BFE/e58vASu+o3UE0s20t mOV5szoAo/OLKKGR85WYvl6s0PV958Es4HGuTv2KSDKuggyy4jcy/oR1nIYS5LEt CAnirSJAZEtj9Ks+70hSfBT0R1pYqkzUI6rz88tHvICf/0KQx98Meq0xTLdP0qgD UIZQ9U+uWVpK54bPeU1rmrsDd/QZ5oFnoR9D7fnmwJBzhmj4ui1PSPE44ZrDk+no 9vm+gVgol1Pc8IbC7GpakVJSow6GiBXjtchV4+OCLOe/satcVJltECmA/YmQigwI /DI3aqu45w== -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org