$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa File: 39C6EF3688BF11EABC04973FC4F9AE02.roa (raw, json) Hash identifier: E3ZTe2bEAycjBIVFstyPiPS8lw3hN6h/g285ab56Ew4= Subject key identifier: F2:67:B9:50:2C:88:76:26:68:80:42:59:10:E1:CF:6E:66:F3:9B:41 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 0FC8 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa Signing time: Thu 04 Jul 2024 17:55:17 +0000 ROA not before: Thu 04 Jul 2024 17:55:17 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 137945 IP address blocks: 203.9.40.0/24 maxlen: 24 203.9.41.0/24 maxlen: 24 203.9.42.0/24 maxlen: 24 203.9.43.0/24 maxlen: 24 203.9.44.0/24 maxlen: 24 203.9.45.0/24 maxlen: 24 203.9.46.0/24 maxlen: 24 203.9.47.0/24 maxlen: 24 2403:20c0:2::/48 maxlen: 48 2403:20c0:3::/48 maxlen: 48 2403:20c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4040 (0xfc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Jul 4 17:55:17 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6686e205-baa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:72:e7:15:eb:4e:cb:c7:d7:7f:23:b7:9a:d6: 40:15:3c:a3:03:f8:b4:a7:73:e8:5d:10:42:f0:fb: 6c:97:d0:02:1d:85:69:58:9f:53:7b:45:27:fb:10: fa:e0:6d:84:fe:18:b9:6a:6c:3b:56:d2:75:25:e9: 47:05:b5:ea:53:22:18:db:85:ea:a1:04:1f:c1:36: 4c:58:04:bc:cc:b6:75:de:44:15:14:25:5d:69:f0: 67:53:b4:6e:3f:65:5f:02:80:32:0c:4a:ac:fb:f2: 5a:55:24:be:5f:bc:0b:f6:61:19:f9:34:65:aa:7d: 3d:fd:cb:e1:a6:fa:10:cf:7e:1a:22:aa:10:af:e0: 58:32:44:27:df:b6:32:8e:76:e7:74:38:3f:60:f6: 01:05:e6:a0:b3:03:bc:62:f7:06:76:be:8a:dc:79: fa:fa:3c:b1:cf:c6:be:98:95:1b:c2:af:8c:6a:21: 69:0d:8c:1d:35:3c:27:53:07:25:8c:02:6d:ca:ab: 7c:9e:19:8d:5e:fc:b8:10:17:c3:51:64:72:61:aa: d5:43:f3:3a:1f:e1:f5:4b:84:5e:3b:be:d4:34:dd: 82:80:4f:84:1e:6d:51:e1:e1:b4:87:4c:b8:50:6c: 5e:d3:1f:a6:ef:90:4d:1c:04:95:f4:64:1f:f0:3f: 6c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:67:B9:50:2C:88:76:26:68:80:42:59:10:E1:CF:6E:66:F3:9B:41 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.9.40.0/21 IPv6: 2403:20c0:2::-2403:20c0:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 2f:e5:5b:d7:f3:56:f7:6f:19:69:c4:c9:56:e6:a8:b2:54:6e: 59:1b:b3:20:39:80:4f:36:7b:dc:27:20:8c:11:79:7b:5f:44: 2e:e5:66:93:a1:d3:75:09:18:98:c9:d6:63:7d:09:76:4c:52: 09:5b:5b:39:7a:76:b9:af:52:64:06:5e:7f:c8:40:b0:be:03: 36:69:6c:12:4c:a9:21:67:ee:fb:2e:35:d1:e7:9d:11:e2:59: 72:c7:4a:fd:5d:b3:f7:0c:f9:89:f7:06:2d:de:7d:72:33:12: 22:6f:93:98:1c:cf:13:91:51:89:ae:4a:09:be:54:43:7d:fd: 18:d2:3c:5b:db:91:e6:1a:c0:5d:c9:00:0c:5a:91:e8:4a:8c: 47:4e:3f:69:59:74:64:4b:a6:f2:a8:06:75:96:b7:55:86:94: 10:9a:53:0c:23:d9:9f:55:b3:4e:a2:dc:64:be:3b:40:79:2f: cd:45:25:41:60:93:12:6e:3e:56:d4:9d:58:a8:24:a9:31:9a: d3:50:fd:10:41:f0:4c:33:bc:30:f3:30:e7:3c:83:30:a7:15: 7c:5d:7a:2a:76:0f:6b:46:db:63:c8:91:c3:be:92:fd:b5:b3: e3:81:55:82:01:9a:6e:e7:bb:28:d1:f7:b0:5f:75:b6:3f:6a: 6d:dd:0c:54 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICD8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjQwNzA0MTc1NTE3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg2ZTIwNS1iYWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nLnFetOy8fXfyO3mtZAFTyjA/i0p3PoXRBC8Ptsl9ACHYVpWJ9Te0Un+xD6 4G2E/hi5amw7VtJ1JelHBbXqUyIY24XqoQQfwTZMWAS8zLZ13kQVFCVdafBnU7Ru P2VfAoAyDEqs+/JaVSS+X7wL9mEZ+TRlqn09/cvhpvoQz34aIqoQr+BYMkQn37Yy jnbndDg/YPYBBeagswO8YvcGdr6K3Hn6+jyxz8a+mJUbwq+MaiFpDYwdNTwnUwcl jAJtyqt8nhmNXvy4EBfDUWRyYarVQ/M6H+H1S4ReO77UNN2CgE+EHm1R4eG0h0y4 UGxe0x+m75BNHASV9GQf8D9s8wIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFPJnuVAs iHYmaIBCWRDhz25m85tBMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M5MUQvRDkwQ0Q4NzQzNTg0MTFFOTlBOTkwMjI4QzRGOUFFMDIvMzlDNkVGMzY4 OEJGMTFFQUJDMDQ5NzNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAPLCSgwGgQCAAIwFDASAwcBJAMgwAACAwcAJAMgwAAEMA0G CSqGSIb3DQEBCwUAA4IBAQAv5VvX81b3bxlpxMlW5qiyVG5ZG7MgOYBPNnvcJyCM EXl7X0Qu5WaTodN1CRiYydZjfQl2TFIJW1s5ena5r1JkBl5/yECwvgM2aWwSTKkh Z+77LjXR550R4llyx0r9XbP3DPmJ9wYt3n1yMxIib5OYHM8TkVGJrkoJvlRDff0Y 0jxb25HmGsBdyQAMWpHoSoxHTj9pWXRkS6byqAZ1lrdVhpQQmlMMI9mfVbNOotxk vjtAeS/NRSVBYJMSbj5W1J1YqCSpMZrTUP0QQfBMM7ww8zDnPIMwpxV8XXoqdg9r RttjyJHDvpL9tbPjgVWCAZpu57so0fewX3W2P2pt3QxU -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:59 2024 by rpki-client on console-ams.rpki-client.org