$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/FD3934BC86E211EF8CF27626C4F9AE02.roa File: FD3934BC86E211EF8CF27626C4F9AE02.roa (raw, json) Hash identifier: q92cRpTpYuTn7sZTn7J75VBEAOI5W+lV4dg/tHrggGA= Subject key identifier: 85:1B:7F:4E:F0:E1:DB:69:BC:FF:B9:15:82:83:7B:7C:CA:1B:65:81 Certificate issuer: /CN=A913647F/serialNumber=367879A0B85DD8373637883793F55EEB3B221DCF Certificate serial: 03 Authority key identifier: 36:78:79:A0:B8:5D:D8:37:36:37:88:37:93:F5:5E:EB:3B:22:1D:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/FD3934BC86E211EF8CF27626C4F9AE02.roa Signing time: Thu 10 Oct 2024 08:38:14 +0000 ROA not before: Thu 10 Oct 2024 08:38:14 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133453 IP address blocks: 2401:a960::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.crl rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F/serialNumber=367879A0B85DD8373637883793F55EEB3B221DCF Validity Not Before: Oct 10 08:38:14 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67079276-48e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c6:c3:74:3c:ea:a6:b6:5b:35:73:42:e4:c3: bb:dd:57:0b:2b:32:44:15:30:f9:5a:7e:2e:e4:23: 5c:57:0c:67:fb:72:fb:59:36:e0:2e:9c:80:dd:65: e8:ed:50:b7:a2:a5:48:73:2e:60:ad:27:9c:de:0a: 24:b0:4d:03:6b:42:48:8d:78:ed:39:1e:5a:13:bc: da:0d:28:b9:b9:d8:58:4e:74:8b:3e:83:93:41:ad: 52:11:5a:f2:ba:b6:89:b5:f8:31:40:d9:81:82:9c: 6f:ca:05:92:c8:fa:a3:bf:b5:7f:75:e0:86:92:f3: 58:ca:50:57:ef:2b:5e:39:16:74:a4:58:c6:6a:c5: 42:ff:98:fc:cb:fc:45:6c:57:eb:b8:c8:7e:8f:05: 38:0a:1e:d8:2b:d3:3b:f5:81:92:27:b0:41:99:e1: c8:89:c0:b1:ae:00:af:53:61:1e:f0:a6:ab:d9:14: 05:ff:1c:46:b6:42:13:33:bd:1e:fe:a1:d6:bd:7c: 4c:61:9c:e1:15:88:e5:ab:24:1f:4f:e2:69:08:f3: ee:b7:79:fc:63:d0:0a:8d:f4:8d:be:99:3e:2b:9a: 65:9a:27:ee:4f:0d:41:8b:93:c0:38:5b:75:e5:66: a5:36:35:85:f1:a8:b1:f4:17:b9:f2:79:73:65:28: 06:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1B:7F:4E:F0:E1:DB:69:BC:FF:B9:15:82:83:7B:7C:CA:1B:65:81 X509v3 Authority Key Identifier: keyid:36:78:79:A0:B8:5D:D8:37:36:37:88:37:93:F5:5E:EB:3B:22:1D:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nnh5oLhd2Dc2N4g3k_Ve6zsiHc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/C21C7CF686DB11EFBA4D5F26C4F9AE02/FD3934BC86E211EF8CF27626C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a960::/32 Signature Algorithm: sha256WithRSAEncryption 3e:75:fe:00:53:53:13:5f:8d:14:4c:a3:d3:8c:b9:36:41:05: 1f:62:d3:80:de:a5:e6:4c:14:0a:7f:4f:61:52:95:23:27:44: 55:94:f3:a8:3f:aa:9e:c5:d2:3d:1e:ea:9e:bd:9f:23:af:9d: 95:81:29:95:35:39:a5:ca:0e:7d:17:fe:c9:55:76:78:d2:97: 87:df:4a:4f:53:6b:06:b2:d2:72:d0:3c:e3:32:0e:e2:ff:98: 53:51:0a:75:58:ca:ac:b6:61:70:d4:18:a7:f6:7d:1f:dc:a8: 6d:5c:08:c3:5a:54:0a:fc:de:32:99:40:a6:33:37:76:ce:b4: dc:1c:1c:e9:ea:5b:aa:7b:bc:0e:a2:c6:51:ed:41:17:ec:24: 7f:8d:61:13:f7:20:1b:c3:ad:06:11:b5:58:48:99:98:43:a6: 2b:7d:77:24:bf:1c:43:0f:24:00:98:a3:73:9b:8b:8a:e9:8b: 1f:61:ef:60:e0:ef:0c:4f:ea:31:2a:97:5b:0c:b2:46:07:86: 3d:f9:c4:c9:f1:16:99:f0:fb:f6:87:8d:5e:73:fe:8c:fd:f7: e9:37:17:06:d8:4d:f9:23:46:9e:17:5e:ac:01:87:af:85:07: 14:2d:cb:98:b4:8e:46:ea:7e:61:6d:47:93:8e:14:2b:f3:65: 4e:b4:87:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjQ3RjExMC8GA1UEBRMoMzY3ODc5QTBCODVERDgzNzM2Mzc4ODM3OTNGNTVFRUIz QjIyMURDRjAeFw0yNDEwMTAwODM4MTRaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDc5Mjc2LTQ4ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5xsN0POqmtls1c0Lkw7vdVwsrMkQVMPlafi7kI1xXDGf7cvtZNuAunIDdZejt ULeipUhzLmCtJ5zeCiSwTQNrQkiNeO05HloTvNoNKLm52FhOdIs+g5NBrVIRWvK6 tom1+DFA2YGCnG/KBZLI+qO/tX914IaS81jKUFfvK145FnSkWMZqxUL/mPzL/EVs V+u4yH6PBTgKHtgr0zv1gZInsEGZ4ciJwLGuAK9TYR7wpqvZFAX/HEa2QhMzvR7+ oda9fExhnOEViOWrJB9P4mkI8+63efxj0AqN9I2+mT4rmmWaJ+5PDUGLk8A4W3Xl ZqU2NYXxqLH0F7nyeXNlKAbTAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUhRt/TvDh 22m8/7kVgoN7fMobZYEwHwYDVR0jBBgwFoAUNnh5oLhd2Dc2N4g3k/Ve6zsiHc8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2NDdGL0MyMUM3Q0Y2ODZE QjExRUZCQTRENUYyNkM0RjlBRTAyL05uaDVvTGhkMkRjMk40ZzNrX1ZlNnpzaUhj OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTm5oNW9MaGQyRGMyTjRnM2tfVmU2enNpSGM4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9DMjFDN0NGNjg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9GRDM5MzRCQzg2 RTIxMUVGOENGMjc2MjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBqWAwDQYJKoZIhvcNAQELBQADggEBAD51/gBTUxNfjRRM o9OMuTZBBR9i04DepeZMFAp/T2FSlSMnRFWU86g/qp7F0j0e6p69nyOvnZWBKZU1 OaXKDn0X/slVdnjSl4ffSk9Taway0nLQPOMyDuL/mFNRCnVYyqy2YXDUGKf2fR/c qG1cCMNaVAr83jKZQKYzN3bOtNwcHOnqW6p7vA6ixlHtQRfsJH+NYRP3IBvDrQYR tVhImZhDpit9dyS/HEMPJACYo3Obi4rpix9h72Dg7wxP6jEql1sMskYHhj35xMnx Fpnw+/aHjV5z/oz99+k3FwbYTfkjRp4XXqwBh6+FBxQty5i0jkbqfmFtR5OOFCvz ZU60hzE= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:14 2024 by rpki-client on console-fra.rpki-client.org