$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/D4AECB7A701611EF824F7281C4F9AE02.roa File: D4AECB7A701611EF824F7281C4F9AE02.roa (raw, json) Hash identifier: 05sTqgo+Z4rvsk50BgwNBJM+KFLlXu8LZA40jZLQRSk= Subject key identifier: D2:1C:61:EB:47:BB:0A:71:6B:99:6A:91:0B:EC:9B:43:1C:AA:12:3A Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 09AB Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/D4AECB7A701611EF824F7281C4F9AE02.roa Signing time: Sat 02 Nov 2024 19:58:31 +0000 ROA not before: Sat 02 Nov 2024 19:58:31 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58877 IP address blocks: 2405:2d00::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2475 (0x9ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Nov 2 19:58:31 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67268467-616a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ed:9c:36:2a:96:c4:fb:d0:3a:c2:be:f5:09: b5:f4:ef:ad:52:99:cb:98:91:0e:30:c1:ad:d9:bd: d4:5a:d2:80:78:3b:34:3a:bd:c8:85:fd:7e:9b:1c: a7:a7:a8:25:8c:41:63:17:08:71:6a:af:88:ea:52: 5a:cd:39:c8:a5:d7:1a:f2:8b:74:f2:ff:83:b9:e5: 65:91:88:3c:53:46:37:1a:4c:7a:9e:71:65:88:97: 0b:bd:64:9e:49:30:e9:63:9b:8b:28:e3:92:7e:0c: 7b:c9:50:d8:87:87:89:26:da:cd:65:27:12:f0:56: 38:b8:c2:cf:ea:ed:a3:03:27:a9:ee:fa:56:ba:16: d0:2b:71:c4:80:ab:d8:bc:fc:96:57:87:24:e1:f9: ac:3e:98:7e:4c:c5:7b:21:e3:5f:ee:5e:3a:5b:da: 7c:f1:c3:3d:fb:b3:38:0e:65:96:30:c1:95:c5:e9: a8:20:00:7f:61:25:d5:43:43:f4:d6:1c:10:4d:c2: a4:4e:95:95:f9:61:d2:66:0e:31:95:bf:f7:58:4b: 47:ba:e4:f4:de:91:d8:f9:3e:80:8e:53:11:ce:a6: dc:bb:16:07:d7:96:e5:3e:44:54:fd:43:51:01:7f: 91:ea:7b:65:3e:9a:a8:04:9e:8b:38:a7:3c:34:0b: 74:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:1C:61:EB:47:BB:0A:71:6B:99:6A:91:0B:EC:9B:43:1C:AA:12:3A X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/D4AECB7A701611EF824F7281C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:2d00::/32 Signature Algorithm: sha256WithRSAEncryption 88:c5:5e:07:59:db:9b:9b:b2:77:5c:a2:88:d1:de:e8:25:f4: 68:d8:d9:b7:41:d9:f2:8b:7a:fa:d6:2f:00:8f:6c:63:d4:65: 42:30:c0:da:43:4e:09:f5:7b:48:8b:d5:f1:1c:26:b8:1e:1a: 23:b0:1e:97:35:80:41:6d:cf:53:55:93:88:83:c0:91:2f:db: 81:8f:67:41:a1:e9:4a:1c:23:85:18:55:24:f3:9e:d1:bd:ea: 87:fe:f0:48:0b:e1:c3:95:bf:9d:eb:9e:e6:ef:75:61:0e:6b: 32:a5:e8:d9:aa:4a:1b:ca:9b:8a:f4:df:d5:20:18:b7:01:33: 36:37:f6:69:86:db:7f:36:04:cb:4d:37:43:53:d4:56:c8:21: b9:50:12:5f:bb:5a:c1:f5:a2:b5:a4:90:75:da:55:6e:30:c2: 12:17:40:3a:66:5d:28:f9:9e:f9:a5:13:8a:21:d5:b4:3a:46: 6c:6b:2a:74:67:08:32:e2:56:c5:44:8f:b5:d7:34:7a:05:77: 60:16:bb:ab:be:7a:ac:0a:9e:94:a9:8f:a0:e0:0f:e5:60:af: f2:85:fb:48:aa:3d:e4:ab:c9:5f:e3:ad:bd:f3:d9:08:e8:dc: 0b:94:26:9e:eb:91:34:99:47:73:7b:4f:37:ca:8e:d7:f8:5b: 17:19:bd:8e -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjQxMTAyMTk1ODMxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ODQ2Ny02MTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAou2cNiqWxPvQOsK+9Qm19O+tUpnLmJEOMMGt2b3UWtKAeDs0Or3Ihf1+mxyn p6gljEFjFwhxaq+I6lJazTnIpdca8ot08v+DueVlkYg8U0Y3Gkx6nnFliJcLvWSe STDpY5uLKOOSfgx7yVDYh4eJJtrNZScS8FY4uMLP6u2jAyep7vpWuhbQK3HEgKvY vPyWV4ck4fmsPph+TMV7IeNf7l46W9p88cM9+7M4DmWWMMGVxemoIAB/YSXVQ0P0 1hwQTcKkTpWV+WHSZg4xlb/3WEtHuuT03pHY+T6AjlMRzqbcuxYH15blPkRU/UNR AX+R6ntlPpqoBJ6LOKc8NAt0/wIDAQABo4ICljCCApIwHQYDVR0OBBYEFNIcYetH uwpxa5lqkQvsm0McqhI6MB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0E3QTYvNERCOTQ0M0E3M0I2MTFFQTlCOEMxRjVDQzRGOUFFMDIvRDRBRUNCN0E3 MDE2MTFFRjgyNEY3MjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBS0AMA0GCSqGSIb3DQEBCwUAA4IBAQCIxV4HWdubm7J3 XKKI0d7oJfRo2Nm3Qdnyi3r61i8Aj2xj1GVCMMDaQ04J9XtIi9XxHCa4HhojsB6X NYBBbc9TVZOIg8CRL9uBj2dBoelKHCOFGFUk857RveqH/vBIC+HDlb+d657m73Vh DmsypejZqkobypuK9N/VIBi3ATM2N/Zphtt/NgTLTTdDU9RWyCG5UBJfu1rB9aK1 pJB12lVuMMISF0A6Zl0o+Z75pROKIdW0OkZsayp0Zwgy4lbFRI+11zR6BXdgFrur vnqsCp6UqY+g4A/lYK/yhftIqj3kq8lf462989kI6NwLlCae65E0mUdze083yo7X +FsXGb2O -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:46 2024 by rpki-client on console-ams.rpki-client.org