$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/92F8F6D042DA11ED93029A6AC4F9AE02.roa File: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (raw, json) Hash identifier: TeIPGyGqDRDL84HA9NnAzVJOOMFf2EjmrKH/elumev8= Subject key identifier: A1:B2:D3:29:E7:0E:39:06:24:F2:CC:FE:20:C8:58:45:A4:81:AE:A6 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0C4E Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/92F8F6D042DA11ED93029A6AC4F9AE02.roa Signing time: Wed 20 Nov 2024 18:26:51 +0000 ROA not before: Wed 20 Nov 2024 18:26:51 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141731 IP address blocks: 2406:ff80::/32 maxlen: 32 2406:ff80:1::/48 maxlen: 48 2406:ff80:2::/48 maxlen: 48 2406:ff80:3::/48 maxlen: 48 2406:ff80:4::/48 maxlen: 48 2406:ff80:5::/48 maxlen: 48 2406:ff80:6::/48 maxlen: 48 2406:ff80:7::/48 maxlen: 48 2406:ff80:8::/48 maxlen: 48 2406:ff80:9::/48 maxlen: 48 2406:ff80:a::/48 maxlen: 48 2406:ff80:b::/48 maxlen: 48 2406:ff80:c::/48 maxlen: 48 2406:ff80:d::/48 maxlen: 48 2406:ff80:e::/48 maxlen: 48 2406:ff80:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3150 (0xc4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Nov 20 18:26:51 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=673e29eb-ecc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c7:f8:29:a2:f7:ab:d9:94:7e:d3:b3:75:3d: 89:10:de:8d:38:af:0a:d3:d5:f4:6d:6d:98:30:c3: ae:44:27:a2:70:cf:ab:78:73:d5:de:b9:16:43:98: 53:43:4e:f8:fd:51:aa:d1:03:06:fd:6d:8a:4e:d1: e8:ec:32:be:bb:a1:56:24:3d:2b:dd:8a:be:02:20: de:ae:48:85:a8:56:7e:98:87:ab:df:e4:43:72:39: ff:f4:d7:40:98:dc:0a:62:81:54:ea:e3:24:be:17: 6b:b9:3c:22:f6:e0:4d:fc:86:fd:a5:86:a2:e3:1c: 64:49:bd:39:75:d4:a2:b4:6e:82:9a:b1:03:47:5f: 3f:54:e9:6e:d8:4f:a9:7f:36:ed:6f:3f:5d:0f:bd: 9b:5e:fe:0a:e4:22:67:82:7d:1a:81:21:78:3b:1f: 47:9f:1d:df:0e:af:ba:55:9a:1d:66:e6:6f:0c:3f: d2:17:8b:d9:d6:5b:42:2d:cc:96:cf:b2:e8:62:c4: 70:55:a4:f4:19:ed:ce:16:df:0a:96:f7:2d:21:b3: fe:90:03:4e:f9:c6:52:88:a7:fc:02:20:35:c8:a0: 76:84:59:09:69:c6:9d:1d:ef:d7:c0:d7:11:f7:1f: 1e:a9:34:5d:ea:e9:98:1b:14:a6:2c:49:6f:32:72: 06:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B2:D3:29:E7:0E:39:06:24:F2:CC:FE:20:C8:58:45:A4:81:AE:A6 X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/92F8F6D042DA11ED93029A6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:ff80::/32 Signature Algorithm: sha256WithRSAEncryption ba:cd:1b:b8:88:ac:55:1a:c9:a9:c5:de:f5:24:c8:80:ba:6f: c8:ac:4d:30:3f:ee:d8:fd:40:62:71:f5:e0:de:cb:61:3a:fc: da:4a:15:e0:72:b4:b5:19:44:a6:40:f4:dc:eb:0b:47:12:fb: 15:76:4e:39:ea:00:e6:b8:f5:52:66:c6:44:03:b8:bf:a2:85: a2:a5:61:04:42:ef:2f:05:05:ea:aa:2b:fb:fb:a9:a2:22:96: 3d:8e:be:19:0b:3a:9c:07:6c:5f:ca:6f:c4:58:2c:14:13:a1: aa:a1:8c:f7:2e:ed:29:76:7a:68:13:84:39:75:82:8d:b4:83: dc:22:b7:aa:4f:67:bf:ed:a1:ac:cf:57:e9:03:be:33:f1:7e: 5b:57:3c:0e:48:0d:74:de:f8:87:8e:b3:43:4f:57:3a:58:5b: b8:5a:45:7a:c5:2c:09:0b:8c:87:6d:16:a3:72:66:bf:c4:5b: 42:3e:1e:fe:8e:21:e7:62:72:48:d2:c4:b7:0e:36:30:3f:ca: 75:aa:77:ec:ef:00:2b:d9:50:8d:18:88:ab:de:83:f0:aa:a1: fe:a0:6d:05:28:73:9b:76:46:1c:55:b6:da:c2:e4:15:2a:33: 0d:74:12:90:bf:89:c6:37:b0:08:8f:46:64:bf:54:b8:9e:0e: 7f:f8:a7:85 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjQxMTIwMTgyNjUxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlMjllYi1lY2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcf4KaL3q9mUftOzdT2JEN6NOK8K09X0bW2YMMOuRCeicM+reHPV3rkWQ5hT Q074/VGq0QMG/W2KTtHo7DK+u6FWJD0r3Yq+AiDerkiFqFZ+mIer3+RDcjn/9NdA mNwKYoFU6uMkvhdruTwi9uBN/Ib9pYai4xxkSb05ddSitG6CmrEDR18/VOlu2E+p fzbtbz9dD72bXv4K5CJngn0agSF4Ox9Hnx3fDq+6VZodZuZvDD/SF4vZ1ltCLcyW z7LoYsRwVaT0Ge3OFt8KlvctIbP+kANO+cZSiKf8AiA1yKB2hFkJacadHe/XwNcR 9x8eqTRd6umYGxSmLElvMnIGBQIDAQABo4ICljCCApIwHQYDVR0OBBYEFKGy0ynn DjkGJPLM/iDIWEWkga6mMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Q0NkYvN0RBMjRDN0EwMDY5MTFFQThGREIyODVEQzRGOUFFMDIvOTJGOEY2RDA0 MkRBMTFFRDkzMDI5QTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBv+AMA0GCSqGSIb3DQEBCwUAA4IBAQC6zRu4iKxVGsmp xd71JMiAum/IrE0wP+7Y/UBicfXg3sthOvzaShXgcrS1GUSmQPTc6wtHEvsVdk45 6gDmuPVSZsZEA7i/ooWipWEEQu8vBQXqqiv7+6miIpY9jr4ZCzqcB2xfym/EWCwU E6GqoYz3Lu0pdnpoE4Q5dYKNtIPcIreqT2e/7aGsz1fpA74z8X5bVzwOSA103viH jrNDT1c6WFu4WkV6xSwJC4yHbRajcma/xFtCPh7+jiHnYnJI0sS3DjYwP8p1qnfs 7wAr2VCNGIir3oPwqqH+oG0FKHObdkYcVbbawuQVKjMNdBKQv4nGN7AIj0Zkv1S4 ng5/+KeF -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org