$ rpki-client -vvf rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/19EC3DA4180011EFA54E0D68C4F9AE02.roa File: 19EC3DA4180011EFA54E0D68C4F9AE02.roa (raw, json) Hash identifier: hVUGi9m+OwvNH7TbrXc1fwjew5nG1Cv6vGaeXYpQ8O0= Subject key identifier: 96:FA:9B:8E:B5:A3:7F:11:0F:E8:81:D5:69:6F:57:1F:A8:94:F3:E3 Certificate issuer: /CN=A9133CD2/serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87 Certificate serial: F3 Authority key identifier: 9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/19EC3DA4180011EFA54E0D68C4F9AE02.roa Signing time: Wed 22 May 2024 05:56:59 +0000 ROA not before: Wed 22 May 2024 05:56:59 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135345 IP address blocks: 2400:4ce0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 03:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133CD2/serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87 Validity Not Before: May 22 05:56:59 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=664d892a-64d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ce:bb:8f:74:04:1f:4d:70:73:cf:2d:6e:ba: 6c:fe:4b:2e:49:e3:2c:49:cd:87:a9:c9:a0:30:49: 04:d2:3d:0f:71:91:2e:ee:0a:34:0c:75:06:9e:ed: fd:8f:a8:5d:7b:f1:1f:9f:14:7d:c2:f7:df:5f:db: 8e:7f:9f:dc:8b:31:02:ef:a8:d1:48:14:cb:bc:00: 9b:82:08:05:2a:6a:6c:bd:9a:77:ee:78:7a:44:59: f8:80:7a:a8:ed:2d:a3:25:79:4c:a8:34:2d:a9:d1: ba:25:4a:d5:4f:71:95:f9:1a:79:9f:57:70:6a:0e: 2d:ce:7b:9f:5d:ae:06:24:bf:23:ec:5c:d1:40:0e: 68:68:1f:77:1f:e5:81:43:36:7d:c7:ac:fa:5a:40: 34:b6:55:1e:4e:a2:e4:86:27:44:c4:af:b3:98:03: e1:8e:06:c0:83:29:32:26:f5:27:ec:f5:31:ea:60: 13:4f:d4:60:19:17:dc:5b:d5:5f:40:9e:55:f2:42: eb:3b:a8:34:dd:ab:4b:62:09:06:da:f1:ef:c1:79: c2:26:44:89:6a:f0:2d:11:56:a0:f6:17:d0:dc:98: 2e:df:86:32:24:33:9d:db:af:71:d6:8b:ad:ca:79: b7:51:66:a5:bd:b7:1e:cd:b6:6b:a7:8c:4f:e1:f3: da:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:FA:9B:8E:B5:A3:7F:11:0F:E8:81:D5:69:6F:57:1F:A8:94:F3:E3 X509v3 Authority Key Identifier: keyid:9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/19EC3DA4180011EFA54E0D68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:4ce0::/32 Signature Algorithm: sha256WithRSAEncryption c0:6f:f9:01:07:83:f1:d2:c1:08:39:47:4d:b3:57:12:d2:a6: 88:cd:a0:69:8c:ed:bc:62:d4:e7:99:ee:2a:9c:df:77:59:b4: d0:b1:c3:ca:6c:30:c7:69:75:2a:c4:13:f3:c0:8d:c8:97:f2: 9b:e0:73:3c:69:04:69:23:af:c9:fa:29:0c:d4:5a:75:ad:6f: c1:70:c6:67:15:a4:df:83:f2:3f:f4:4a:91:02:19:23:06:2c: 3f:b4:bf:63:7f:51:26:37:4e:9f:5f:a3:14:45:d8:64:d7:ba: 8a:1e:36:79:fe:67:08:57:c3:c5:75:32:33:65:9b:89:37:38: 1e:74:b8:63:3c:fd:6b:a0:b3:fe:a6:58:0e:72:0d:44:05:ad: 02:b1:f9:92:62:d8:69:8f:ad:04:3a:8c:9b:70:4e:5a:d4:b5: e5:22:8a:e9:4f:e4:df:6b:0b:8b:0e:a0:f2:9c:8f:4a:f3:6e: 44:2b:b5:d0:78:79:60:8b:ee:88:c4:f5:4b:36:9a:ac:ff:c3: f5:00:38:82:77:2d:b4:c7:4d:0e:25:ce:5b:07:2e:f2:bb:e0: 43:63:d7:f2:69:82:0f:20:6b:23:a1:97:87:5d:37:95:f0:99: 7f:e4:0d:ce:70:cc:f6:7e:37:7d:13:f1:d7:92:b5:6b:c8:ac: 84:da:2d:0f -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNDRDIxMTAvBgNVBAUTKDlBQUMxNTZGQTkxOEI0MzA1NzQxREFFOUQ1REJBMjkz Mzc0NkNFODcwHhcNMjQwNTIyMDU1NjU5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRkODkyYS02NGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAos67j3QEH01wc88tbrps/ksuSeMsSc2HqcmgMEkE0j0PcZEu7go0DHUGnu39 j6hde/EfnxR9wvffX9uOf5/cizEC76jRSBTLvACbgggFKmpsvZp37nh6RFn4gHqo 7S2jJXlMqDQtqdG6JUrVT3GV+Rp5n1dwag4tznufXa4GJL8j7FzRQA5oaB93H+WB QzZ9x6z6WkA0tlUeTqLkhidExK+zmAPhjgbAgykyJvUn7PUx6mATT9RgGRfcW9Vf QJ5V8kLrO6g03atLYgkG2vHvwXnCJkSJavAtEVag9hfQ3Jgu34YyJDOd269x1out ynm3UWalvbcezbZrp4xP4fPajQIDAQABo4ICljCCApIwHQYDVR0OBBYEFJb6m461 o38RD+iB1WlvVx+olPPjMB8GA1UdIwQYMBaAFJqsFW+pGLQwV0Ha6dXbopM3Rs6H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0NEMi80NUYzQUE3RUFD MTYxMUVEQjk0N0I4NjBDNEY5QUUwMi9tcXdWYjZrWXREQlhRZHJwMWR1aWt6ZEd6 b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21xd1ZiNmtZdERCWFFkcnAxZHVpa3pkR3pvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzNDRDIvNDVGM0FBN0VBQzE2MTFFREI5NDdCODYwQzRGOUFFMDIvMTlFQzNEQTQx ODAwMTFFRkE1NEUwRDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAEzgMA0GCSqGSIb3DQEBCwUAA4IBAQDAb/kBB4Px0sEI OUdNs1cS0qaIzaBpjO28YtTnme4qnN93WbTQscPKbDDHaXUqxBPzwI3Il/Kb4HM8 aQRpI6/J+ikM1Fp1rW/BcMZnFaTfg/I/9EqRAhkjBiw/tL9jf1EmN06fX6MURdhk 17qKHjZ5/mcIV8PFdTIzZZuJNzgedLhjPP1roLP+plgOcg1EBa0CsfmSYthpj60E OoybcE5a1LXlIorpT+TfawuLDqDynI9K825EK7XQeHlgi+6IxPVLNpqs/8P1ADiC dy20x00OJc5bBy7yu+BDY9fyaYIPIGsjoZeHXTeV8Jl/5A3OcMz2fjd9E/HXkrVr yKyE2i0P -----END CERTIFICATE-----Generated at Thu Sep 19 03:59:38 2024 by rpki-client on console-fra.rpki-client.org