$ rpki-client -vvf rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/2346577EAE5811EFAFE7FF84C4F9AE02.roa File: 2346577EAE5811EFAFE7FF84C4F9AE02.roa (raw, json) Hash identifier: 2DuyIR+wk4mvn+XwoOsHwRQcxItN+5KREj3DX0f4tYs= Subject key identifier: CE:C5:DE:6B:C7:36:61:E8:E1:C0:39:7A:A4:C9:7F:AD:B4:2F:66:14 Certificate issuer: /CN=A912B12A/serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Certificate serial: 03 Authority key identifier: EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/2346577EAE5811EFAFE7FF84C4F9AE02.roa Signing time: Fri 29 Nov 2024 13:45:04 +0000 ROA not before: Fri 29 Nov 2024 13:45:04 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 137047 IP address blocks: 2401:db60::/34 maxlen: 34 2401:db60:4000::/34 maxlen: 34 2401:db60:8000::/34 maxlen: 34 2401:db60:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B12A/serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Validity Not Before: Nov 29 13:45:04 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6749c560-2d24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fe:48:8b:54:a3:aa:66:c9:a6:13:df:f2:b5: 79:a0:8b:0d:1b:61:a7:b4:13:5d:2a:0d:d3:34:15: e9:32:5a:d2:c9:59:02:80:26:ef:18:bd:44:65:b4: 21:5a:02:76:1f:06:cf:eb:00:11:6f:4a:65:c5:79: b8:ce:1a:1f:45:18:7c:bc:d0:91:74:8e:00:30:96: 28:fe:5e:73:05:09:e3:10:e5:3a:14:91:40:ee:ce: a7:12:4b:87:e6:d3:56:75:c3:10:31:6c:22:74:a5: cc:e2:39:66:71:13:7b:d4:a9:a5:b3:cd:b9:f4:c3: 56:9d:e3:5b:90:43:a0:01:65:64:53:32:69:30:d8: f5:2a:f7:01:17:30:f5:81:e0:1f:36:1b:d3:9c:25: fa:87:cd:7e:10:2f:56:08:50:bb:b9:ab:ab:f8:82: c1:0d:95:36:61:b5:6f:c1:23:5d:77:05:3d:93:2d: d3:95:cf:e9:a1:5c:e3:55:f5:da:02:57:9f:b1:fe: ba:3c:2f:a3:8e:96:8f:a2:77:71:e2:d0:87:a0:2e: ec:28:c7:de:36:af:1f:af:1e:6d:50:cb:8f:a9:50: 85:8e:69:86:d3:52:ab:20:b7:8e:74:f5:1c:92:50: 24:ec:37:51:e3:cc:08:73:1c:96:f6:5f:e0:04:15: 05:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:C5:DE:6B:C7:36:61:E8:E1:C0:39:7A:A4:C9:7F:AD:B4:2F:66:14 X509v3 Authority Key Identifier: keyid:EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/2346577EAE5811EFAFE7FF84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:db60::/32 Signature Algorithm: sha256WithRSAEncryption c4:a1:c5:ef:f5:70:48:4e:42:c6:47:de:2f:2b:57:05:6b:f2: cf:b3:9f:db:86:f8:f4:63:59:5a:99:4e:c8:4e:12:84:58:9a: 84:31:6c:16:43:14:65:0b:97:75:44:b4:88:c7:e3:a7:34:4f: ec:5b:d6:8d:d6:73:29:7d:4f:16:a5:d8:9a:36:51:e3:3c:06: 95:8e:fe:0d:f1:ba:f1:21:71:97:36:50:4a:b8:03:b1:53:83: d6:4e:51:cf:af:b2:b0:c9:ff:cf:6b:a2:e5:0e:71:14:81:6a: 38:54:8b:e5:8c:c0:30:85:90:ee:62:f7:d4:82:38:e9:05:27: f5:ef:66:a1:b7:9a:a0:6f:8a:75:3e:d1:2c:5c:f8:77:c5:e2: 87:81:51:ce:cc:0b:f4:1a:14:58:a2:2a:e5:d5:90:fe:b3:19: 5a:11:88:5c:ca:fb:c0:e4:f7:16:b2:4b:9e:3c:f0:3f:d4:10: e6:06:61:77:12:8d:9b:aa:20:38:1f:3e:87:bb:fc:1d:9e:d5: d1:66:1a:7c:c3:f0:ed:70:e9:41:70:00:dc:6d:c8:c0:c5:a4: b8:d5:1e:50:ca:63:de:c6:4d:77:79:c1:51:00:f6:bb:b0:8e: c4:f4:a3:b2:5a:88:00:53:63:37:e5:c3:ea:2a:d9:85:b8:90: 4a:7c:08:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjEyQTExMC8GA1UEBRMoRUNGRjMyNDQwQzRFRTFEMjc5NDNDREI3MkE3RDQ5MTA2 MzQwMkRGMTAeFw0yNDExMjkxMzQ1MDRaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NDljNTYwLTJkMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv/kiLVKOqZsmmE9/ytXmgiw0bYae0E10qDdM0FekyWtLJWQKAJu8YvURltCFa AnYfBs/rABFvSmXFebjOGh9FGHy80JF0jgAwlij+XnMFCeMQ5ToUkUDuzqcSS4fm 01Z1wxAxbCJ0pcziOWZxE3vUqaWzzbn0w1ad41uQQ6ABZWRTMmkw2PUq9wEXMPWB 4B82G9OcJfqHzX4QL1YIULu5q6v4gsENlTZhtW/BI113BT2TLdOVz+mhXONV9doC V5+x/ro8L6OOlo+id3Hi0IegLuwox942rx+vHm1Qy4+pUIWOaYbTUqsgt4509RyS UCTsN1HjzAhzHJb2X+AEFQWrAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUzsXea8c2 YejhwDl6pMl/rbQvZhQwHwYDVR0jBBgwFoAU7P8yRAxO4dJ5Q823Kn1JEGNALfEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCMTJBL0I5RDRDRjQyQUUz RDExRUY5NkI3NkM2QUM0RjlBRTAyLzdQOHlSQXhPNGRKNVE4MjNLbjFKRUdOQUxm RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1A4eVJBeE80ZEo1UTgyM0tuMUpFR05BTGZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjEyQS9COUQ0Q0Y0MkFFM0QxMUVGOTZCNzZDNkFDNEY5QUUwMi8yMzQ2NTc3RUFF NTgxMUVGQUZFN0ZGODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB22AwDQYJKoZIhvcNAQELBQADggEBAMShxe/1cEhOQsZH 3i8rVwVr8s+zn9uG+PRjWVqZTshOEoRYmoQxbBZDFGULl3VEtIjH46c0T+xb1o3W cyl9Txal2Jo2UeM8BpWO/g3xuvEhcZc2UEq4A7FTg9ZOUc+vsrDJ/89rouUOcRSB ajhUi+WMwDCFkO5i99SCOOkFJ/XvZqG3mqBvinU+0Sxc+HfF4oeBUc7MC/QaFFii KuXVkP6zGVoRiFzK+8Dk9xayS5488D/UEOYGYXcSjZuqIDgfPoe7/B2e1dFmGnzD 8O1w6UFwANxtyMDFpLjVHlDKY97GTXd5wVEA9ruwjsT0o7JaiABTYzflw+oq2YW4 kEp8CD4= -----END CERTIFICATE-----Generated at Fri Dec 27 07:43:19 2024 by rpki-client on console-ams.rpki-client.org