$ rpki-client -vvf rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/246315A2AE5811EFAFE7FF84C4F9AE02.roa File: 246315A2AE5811EFAFE7FF84C4F9AE02.roa (raw, json) Hash identifier: GhFLUJsibCVFeaw+HURiwfIuyrQYgDP+XOZxzfH6Sw0= Subject key identifier: CC:7A:B0:ED:DB:00:42:F8:EC:1A:AD:2B:D2:E4:8C:8E:E8:98:AF:94 Certificate issuer: /CN=A912B12A/serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Certificate serial: 05 Authority key identifier: EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/246315A2AE5811EFAFE7FF84C4F9AE02.roa Signing time: Fri 29 Nov 2024 13:45:06 +0000 ROA not before: Fri 29 Nov 2024 13:45:06 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 17557 IP address blocks: 2401:db60::/34 maxlen: 34 2401:db60:4000::/34 maxlen: 34 2401:db60:8000::/34 maxlen: 34 2401:db60:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B12A/serialNumber=ECFF32440C4EE1D27943CDB72A7D491063402DF1 Validity Not Before: Nov 29 13:45:06 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6749c562-8032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:78:7b:56:e0:45:71:72:db:7e:e3:2a:5e:81: 52:7a:e1:ef:00:8a:70:70:71:29:f0:58:6b:2b:e1: 3f:9b:21:02:ea:85:21:34:5a:1d:6d:05:e3:92:96: 17:0a:30:d1:37:dc:23:b2:1b:0e:05:e6:bc:5f:38: d4:db:8f:95:11:67:ab:f8:1a:f5:2d:de:65:ac:b9: bc:24:b9:26:62:df:17:52:5d:0b:75:3b:d7:ff:16: f9:eb:ab:87:31:84:c8:a6:5c:21:42:1c:29:ea:b7: 51:3a:16:7f:82:4f:e2:ee:3e:4b:d1:9e:7a:4d:7b: 9b:a7:e7:e7:6e:de:b7:c1:f3:03:d7:6e:77:ab:fc: 0f:a0:d0:db:e8:1c:f7:1e:c1:c1:4d:64:41:90:65: 7e:9c:f7:f5:f9:23:f8:ea:02:ce:08:b6:96:a8:0a: ab:70:5c:dd:c1:7d:8f:1c:86:24:4d:68:cf:fc:8f: fd:a9:e4:bf:52:5b:84:04:0d:ae:77:00:21:de:53: 10:65:15:37:d5:1c:89:a2:67:06:47:28:8d:95:bf: 05:ee:6b:3a:48:a1:e7:0b:23:60:02:43:90:53:38: 2b:c5:c3:73:74:e0:4b:df:18:b7:2d:0f:cf:54:85: da:da:85:06:75:e2:5a:1e:fe:11:ff:ba:41:90:21: 4f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:7A:B0:ED:DB:00:42:F8:EC:1A:AD:2B:D2:E4:8C:8E:E8:98:AF:94 X509v3 Authority Key Identifier: keyid:EC:FF:32:44:0C:4E:E1:D2:79:43:CD:B7:2A:7D:49:10:63:40:2D:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/7P8yRAxO4dJ5Q823Kn1JEGNALfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7P8yRAxO4dJ5Q823Kn1JEGNALfE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B12A/B9D4CF42AE3D11EF96B76C6AC4F9AE02/246315A2AE5811EFAFE7FF84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:db60::/32 Signature Algorithm: sha256WithRSAEncryption c0:10:6a:d2:59:e3:25:63:94:10:5a:3e:09:4d:fd:1c:64:e9: 03:39:57:1e:1a:c7:ad:45:ec:17:50:45:cc:d3:51:5c:00:8b: 48:e5:1c:6b:5d:ea:00:1a:a2:4e:8a:08:79:b2:d7:89:c8:1e: 87:8a:df:b1:1e:9d:06:ea:b3:10:54:17:3b:c5:ad:bd:53:35: 32:6e:82:2f:1d:88:68:97:22:fe:71:a6:31:38:12:8c:bb:2e: 61:74:cc:af:db:a5:91:cd:53:03:36:8e:07:7d:1c:aa:78:20: 5a:59:a5:28:a8:0e:2d:dc:58:09:63:a1:7d:86:23:cd:a0:f5: bf:32:8b:2d:67:81:57:2f:23:4e:71:36:fb:d2:99:45:56:81: 0b:f7:81:4e:63:de:bf:38:62:5c:35:d0:d8:29:2c:35:03:c8: dd:0d:9c:bf:15:df:d0:8a:28:03:e9:67:94:a2:b8:e8:78:6e: d5:2e:ac:9a:b0:c3:4a:16:55:cd:56:9f:ca:aa:51:e0:2b:4f: ac:a4:3d:e8:c7:2d:cb:e3:cb:52:8a:aa:6e:32:b6:1c:a1:7b: 1f:41:6b:17:bb:44:b2:f7:51:54:da:bf:2a:b5:09:0f:24:26: 24:7f:85:82:ee:f0:a2:05:35:31:40:41:b4:d1:23:78:75:6c: 9a:12:4c:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjEyQTExMC8GA1UEBRMoRUNGRjMyNDQwQzRFRTFEMjc5NDNDREI3MkE3RDQ5MTA2 MzQwMkRGMTAeFw0yNDExMjkxMzQ1MDZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NDljNTYyLTgwMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4eHtW4EVxctt+4ypegVJ64e8AinBwcSnwWGsr4T+bIQLqhSE0Wh1tBeOSlhcK MNE33COyGw4F5rxfONTbj5URZ6v4GvUt3mWsubwkuSZi3xdSXQt1O9f/Fvnrq4cx hMimXCFCHCnqt1E6Fn+CT+LuPkvRnnpNe5un5+du3rfB8wPXbner/A+g0NvoHPce wcFNZEGQZX6c9/X5I/jqAs4ItpaoCqtwXN3BfY8chiRNaM/8j/2p5L9SW4QEDa53 ACHeUxBlFTfVHImiZwZHKI2VvwXuazpIoecLI2ACQ5BTOCvFw3N04EvfGLctD89U hdrahQZ14loe/hH/ukGQIU8zAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUzHqw7dsA QvjsGq0r0uSMjuiYr5QwHwYDVR0jBBgwFoAU7P8yRAxO4dJ5Q823Kn1JEGNALfEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCMTJBL0I5RDRDRjQyQUUz RDExRUY5NkI3NkM2QUM0RjlBRTAyLzdQOHlSQXhPNGRKNVE4MjNLbjFKRUdOQUxm RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1A4eVJBeE80ZEo1UTgyM0tuMUpFR05BTGZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjEyQS9COUQ0Q0Y0MkFFM0QxMUVGOTZCNzZDNkFDNEY5QUUwMi8yNDYzMTVBMkFF NTgxMUVGQUZFN0ZGODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB22AwDQYJKoZIhvcNAQELBQADggEBAMAQatJZ4yVjlBBa PglN/Rxk6QM5Vx4ax61F7BdQRczTUVwAi0jlHGtd6gAaok6KCHmy14nIHoeK37Ee nQbqsxBUFzvFrb1TNTJugi8diGiXIv5xpjE4Eoy7LmF0zK/bpZHNUwM2jgd9HKp4 IFpZpSioDi3cWAljoX2GI82g9b8yiy1ngVcvI05xNvvSmUVWgQv3gU5j3r84Ylw1 0NgpLDUDyN0NnL8V39CKKAPpZ5SiuOh4btUurJqww0oWVc1Wn8qqUeArT6ykPejH Lcvjy1KKqm4ythyhex9Baxe7RLL3UVTavyq1CQ8kJiR/hYLu8KIFNTFAQbTRI3h1 bJoSTOc= -----END CERTIFICATE-----Generated at Fri Dec 27 07:43:19 2024 by rpki-client on console-ams.rpki-client.org