$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/20B02A7A2C6D11EF9E3D5230C4F9AE02.roa File: 20B02A7A2C6D11EF9E3D5230C4F9AE02.roa (raw, json) Hash identifier: 8IsaRO5y457NFc0zmdYXwCocVS+OcjVQCzrJ7+chrZI= Subject key identifier: 92:A9:8E:96:30:41:42:C1:52:E2:05:B8:19:CA:F7:04:63:39:21:81 Certificate issuer: /CN=A913AE23/serialNumber=E8876B51AB2B177440CD4C4CD2E4F0A598E0381C Certificate serial: 51 Authority key identifier: E8:87:6B:51:AB:2B:17:74:40:CD:4C:4C:D2:E4:F0:A5:98:E0:38:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/20B02A7A2C6D11EF9E3D5230C4F9AE02.roa Signing time: Mon 28 Oct 2024 07:15:29 +0000 ROA not before: Mon 28 Oct 2024 07:15:29 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138933 IP address blocks: 2401:a820::/32 maxlen: 32 2401:a820:22::/48 maxlen: 48 2401:a820:100::/48 maxlen: 48 2401:a820:200::/48 maxlen: 48 2401:a820:300::/48 maxlen: 48 2401:a820:500::/48 maxlen: 48 2401:a820:600::/48 maxlen: 48 2401:a820:700::/48 maxlen: 48 2401:a820:800::/48 maxlen: 48 2401:a820:900::/48 maxlen: 48 2401:a820:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.crl rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23/serialNumber=E8876B51AB2B177440CD4C4CD2E4F0A598E0381C Validity Not Before: Oct 28 07:15:29 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=671f3a10-8538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4e:74:47:f7:85:7c:a8:c3:87:94:aa:39:02: 8a:a2:08:a7:25:d8:84:ab:62:d4:f4:ec:e8:05:4f: 93:6a:64:8b:d2:52:78:d3:0c:91:34:d6:4e:5e:4c: 32:7b:66:f6:28:be:cb:5e:49:c7:f8:76:0d:0e:f8: bc:31:df:83:34:ba:fd:0a:73:ba:7c:0b:ec:d2:8c: d4:fa:28:82:b9:52:d7:51:0d:88:2e:92:82:a7:a1: 86:d8:18:27:ae:89:bf:de:38:2b:c3:3e:aa:a3:96: b4:69:b4:b3:db:4a:d1:2b:d1:98:dd:6a:51:37:49: aa:f3:f2:3d:06:c1:bf:34:9d:fd:51:d6:4c:31:7e: c1:a8:34:b2:4d:ea:10:a0:13:2f:7a:02:ff:27:5d: 73:d7:ad:d3:78:70:bd:35:dd:d5:10:d4:b6:4d:04: 06:2a:92:33:67:db:22:47:09:13:17:61:4c:d9:86: 07:7c:c7:bb:c5:e8:89:52:d2:1b:a4:21:b4:c7:d9: 5d:97:00:64:34:97:49:09:59:bd:d0:97:ee:5d:c3: 38:08:e2:59:ec:85:83:e6:17:ad:fa:48:c9:18:86: b9:7b:6d:be:f0:17:6b:cf:fa:7d:1e:fd:6c:66:5c: 61:91:42:76:84:71:a4:99:e4:d1:5f:1d:b9:b1:13: ac:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A9:8E:96:30:41:42:C1:52:E2:05:B8:19:CA:F7:04:63:39:21:81 X509v3 Authority Key Identifier: keyid:E8:87:6B:51:AB:2B:17:74:40:CD:4C:4C:D2:E4:F0:A5:98:E0:38:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/20B02A7A2C6D11EF9E3D5230C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a820::/32 Signature Algorithm: sha256WithRSAEncryption b8:80:24:a1:90:52:8d:9d:3f:9d:c2:98:9d:87:73:4c:94:67: c4:c6:6f:bd:a1:e9:ba:24:6f:d5:3e:7b:a1:18:0f:a8:d7:86: 28:4e:36:43:c3:9f:b0:03:94:83:f3:ff:d3:88:67:c8:2a:30: a1:a8:ac:67:38:d5:0a:c3:40:b5:e4:d2:38:5c:45:4e:20:a1: e6:51:f3:b1:54:e0:ee:27:94:bf:94:03:d1:66:46:07:80:63: c3:4a:83:48:ca:5f:fe:a1:bd:7e:f7:5e:2f:e4:99:23:3a:8a: 41:62:eb:c0:e6:32:2b:e2:29:4e:66:28:e2:27:ef:ed:f7:13: c1:e3:d7:28:35:70:8a:2f:ce:23:b4:71:d2:49:52:c9:0b:0e: 07:45:77:2e:cb:51:d8:e0:71:e1:95:90:c7:df:3c:8c:85:4e: 81:21:c4:b8:be:72:47:a7:a9:2e:03:d5:a1:8c:7b:ad:ec:a6: 64:11:33:c7:27:2f:be:a1:d2:b2:d4:0e:0d:ab:f6:80:c7:25: c1:ae:f0:cd:74:50:7a:2b:5a:df:8b:81:b4:4f:04:c4:a3:87: f8:7a:da:93:62:c1:31:fc:f5:1f:ed:88:28:c9:a4:54:04:e5: 5c:9c:37:8b:e3:72:5d:57:1e:3c:cf:23:70:d8:6c:50:12:dc: 36:63:0f:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QUUyMzExMC8GA1UEBRMoRTg4NzZCNTFBQjJCMTc3NDQwQ0Q0QzRDRDJFNEYwQTU5 OEUwMzgxQzAeFw0yNDEwMjgwNzE1MjlaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWYzYTEwLTg1MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrTnRH94V8qMOHlKo5AoqiCKcl2ISrYtT07OgFT5NqZIvSUnjTDJE01k5eTDJ7 ZvYovsteScf4dg0O+Lwx34M0uv0Kc7p8C+zSjNT6KIK5UtdRDYgukoKnoYbYGCeu ib/eOCvDPqqjlrRptLPbStEr0ZjdalE3Sarz8j0Gwb80nf1R1kwxfsGoNLJN6hCg Ey96Av8nXXPXrdN4cL013dUQ1LZNBAYqkjNn2yJHCRMXYUzZhgd8x7vF6IlS0huk IbTH2V2XAGQ0l0kJWb3Ql+5dwzgI4lnshYPmF636SMkYhrl7bb7wF2vP+n0e/Wxm XGGRQnaEcaSZ5NFfHbmxE6w5AgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUkqmOljBB QsFS4gW4Gcr3BGM5IYEwHwYDVR0jBBgwFoAU6IdrUasrF3RAzUxM0uTwpZjgOBww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNBRTIzLzNBNzJBQkZBMkM2 QzExRUZBMzQ2OTQyREM0RjlBRTAyLzZJZHJVYXNyRjNSQXpVeE0wdVR3cFpqZ09C dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNklkclVhc3JGM1JBelV4TTB1VHdwWmpnT0J3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zQTcyQUJGQTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi8yMEIwMkE3QTJD NkQxMUVGOUUzRDUyMzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBqCAwDQYJKoZIhvcNAQELBQADggEBALiAJKGQUo2dP53C mJ2Hc0yUZ8TGb72h6bokb9U+e6EYD6jXhihONkPDn7ADlIPz/9OIZ8gqMKGorGc4 1QrDQLXk0jhcRU4goeZR87FU4O4nlL+UA9FmRgeAY8NKg0jKX/6hvX73Xi/kmSM6 ikFi68DmMiviKU5mKOIn7+33E8Hj1yg1cIovziO0cdJJUskLDgdFdy7LUdjgceGV kMffPIyFToEhxLi+ckenqS4D1aGMe63spmQRM8cnL76h0rLUDg2r9oDHJcGu8M10 UHorWt+LgbRPBMSjh/h62pNiwTH89R/tiCjJpFQE5VycN4vjcl1XHjzPI3DYbFAS 3DZjDxA= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org