$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/06FAE294924F11EF80B1115DC4F9AE02.roa File: 06FAE294924F11EF80B1115DC4F9AE02.roa (raw, json) Hash identifier: wMMRS1JViaq+eV+0w4JQp61QJ0KALAvEktrddj79/AQ= Subject key identifier: 40:AC:E5:7C:4E:3A:D8:52:5F:FC:A8:A8:D0:9F:80:E0:3D:2F:D1:04 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0681 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/06FAE294924F11EF80B1115DC4F9AE02.roa Signing time: Thu 24 Oct 2024 21:29:19 +0000 ROA not before: Thu 24 Oct 2024 21:29:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 967 IP address blocks: 2401:2660:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Oct 24 21:29:19 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671abc2f-75c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:56:89:69:0c:41:4d:b7:61:21:f8:ce:c2:81: c2:02:07:b1:3a:1f:c9:b2:08:88:b4:ef:49:ba:95: be:c7:d0:bd:91:eb:06:3a:27:f3:e5:05:d5:e5:84: 1e:f8:32:d3:d9:8b:c7:3c:a7:c0:2c:ca:f5:34:73: 39:b4:8c:07:96:11:4a:73:72:d4:c3:08:b9:85:2b: 7f:6d:70:43:cc:cc:16:3e:4f:4e:b4:08:e2:98:e3: 07:d8:5a:f9:00:d1:3f:80:46:1b:58:08:dc:ef:d9: 3d:b2:63:37:af:f5:d8:32:f5:11:d3:d9:6b:62:11: 28:35:4e:45:e9:7f:15:b3:7e:9a:c4:72:e5:55:95: 42:dd:85:d2:b0:1a:d5:27:03:7d:07:cd:16:0b:e8: 10:e1:21:8b:4e:eb:9a:57:c3:9b:5e:aa:bf:d4:0f: 49:ef:9f:9e:f8:81:f8:33:64:d7:93:a8:ff:3b:40: 85:c8:de:51:ec:2e:04:20:5a:a6:c0:86:d7:9f:8b: 70:4f:38:45:06:55:f8:8c:1f:13:66:0c:7b:4e:53: 32:da:af:70:1a:47:35:81:a0:29:3a:37:f5:de:4c: 6d:74:0d:f1:ab:6a:4d:fc:b4:19:80:4b:42:b2:85: 74:90:85:3b:1d:32:89:33:e4:80:62:6b:0c:06:3d: d2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:AC:E5:7C:4E:3A:D8:52:5F:FC:A8:A8:D0:9F:80:E0:3D:2F:D1:04 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/06FAE294924F11EF80B1115DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:2660:2000::/36 Signature Algorithm: sha256WithRSAEncryption 21:ff:1b:f3:89:24:3b:db:57:d4:0f:7d:de:58:5a:18:1d:67: 82:dd:b5:84:e2:88:04:76:cc:80:2e:08:4c:02:2c:46:08:1c: a5:4e:a9:86:ba:42:07:5b:70:89:d5:37:d0:9c:a3:14:9a:db: 51:78:57:a2:3c:19:41:15:a1:2c:79:00:22:95:38:a5:01:e2: 00:91:39:18:87:67:a2:79:41:f0:1a:b5:72:db:68:f1:be:e8: 52:bc:d2:2e:2d:e1:fa:b4:23:26:8f:92:8d:f0:73:45:05:8b: d5:3a:94:80:a1:03:a8:fa:18:b4:73:52:f9:19:71:01:53:46: 65:ce:ca:1b:c3:2b:99:6c:70:93:65:78:9c:54:50:65:20:b8: e8:c0:32:56:ed:6b:11:33:80:21:9a:d4:2b:7a:66:23:c8:56: 80:ac:e5:aa:15:5f:37:31:1a:c0:b1:03:b0:33:e9:21:a1:64: 69:eb:44:eb:9c:9b:7c:2a:a3:f5:e8:2a:24:36:5d:a7:15:f7: d8:db:0d:15:be:b5:fa:90:ef:51:14:ff:49:7a:b3:4d:48:bf: c4:3f:50:d2:9f:61:3e:36:0a:4e:67:4c:00:07:40:d9:fb:0f: f9:e9:cd:1f:dd:dd:ef:1f:a4:4c:5d:18:ab:e0:4c:cb:85:b6: a2:cb:ae:62 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQxMDI0MjEyOTE5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhYmMyZi03NWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFaJaQxBTbdhIfjOwoHCAgexOh/JsgiItO9JupW+x9C9kesGOifz5QXV5YQe +DLT2YvHPKfALMr1NHM5tIwHlhFKc3LUwwi5hSt/bXBDzMwWPk9OtAjimOMH2Fr5 ANE/gEYbWAjc79k9smM3r/XYMvUR09lrYhEoNU5F6X8Vs36axHLlVZVC3YXSsBrV JwN9B80WC+gQ4SGLTuuaV8ObXqq/1A9J75+e+IH4M2TXk6j/O0CFyN5R7C4EIFqm wIbXn4twTzhFBlX4jB8TZgx7TlMy2q9wGkc1gaApOjf13kxtdA3xq2pN/LQZgEtC soV0kIU7HTKJM+SAYmsMBj3S5wIDAQABo4IClzCCApMwHQYDVR0OBBYEFECs5XxO OthSX/yoqNCfgOA9L9EEMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvMDZGQUUyOTQ5 MjRGMTFFRjgwQjExMTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkASZgIDANBgkqhkiG9w0BAQsFAAOCAQEAIf8b84kkO9tX 1A993lhaGB1ngt21hOKIBHbMgC4ITAIsRggcpU6phrpCB1twidU30JyjFJrbUXhX ojwZQRWhLHkAIpU4pQHiAJE5GIdnonlB8Bq1ctto8b7oUrzSLi3h+rQjJo+SjfBz RQWL1TqUgKEDqPoYtHNS+RlxAVNGZc7KG8MrmWxwk2V4nFRQZSC46MAyVu1rETOA IZrUK3pmI8hWgKzlqhVfNzEawLEDsDPpIaFkaetE65ybfCqj9egqJDZdpxX32NsN Fb61+pDvURT/SXqzTUi/xD9Q0p9hPjYKTmdMAAdA2fsP+enNH93d7x+kTF0Yq+BM y4W2osuuYg== -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:44 2024 by rpki-client on console-fra.rpki-client.org