$ rpki-client -vvf rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/0DFFB0D2989111EEB7938523C4F9AE02.roa File: 0DFFB0D2989111EEB7938523C4F9AE02.roa (raw, json) Hash identifier: iiBaXq57eZp8X6c5iWgE7TvYtMfnJe4YRExnQe6QN9g= Subject key identifier: 1C:BF:14:F5:A4:42:C1:8C:89:29:E3:15:F5:6A:9A:63:F3:91:4D:A1 Certificate issuer: /CN=A9144261/serialNumber=CD89A8268EB11E330FBD44C048720D1325C5A60B Certificate serial: 09 Authority key identifier: CD:89:A8:26:8E:B1:1E:33:0F:BD:44:C0:48:72:0D:13:25:C5:A6:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/0DFFB0D2989111EEB7938523C4F9AE02.roa Signing time: Tue 12 Dec 2023 01:52:07 +0000 ROA not before: Tue 12 Dec 2023 01:52:07 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9664 IP address blocks: 2001:df3:3fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.crl rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144261/serialNumber=CD89A8268EB11E330FBD44C048720D1325C5A60B Validity Not Before: Dec 12 01:52:07 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6577bcc7-0f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:78:01:7e:c7:3f:07:f4:87:f1:12:57:63:ba: ad:7a:9a:7a:c8:db:3b:3f:75:86:7c:92:49:ea:29: 12:85:77:c3:12:97:db:52:ff:e5:3f:ef:1c:fa:9b: ef:17:f0:0a:77:34:24:99:31:33:7d:e1:ea:b8:70: bc:e6:26:d7:50:13:08:67:cc:4e:dc:b0:a7:6c:67: 14:e3:4c:a4:71:3e:82:71:5d:8f:f7:55:b4:dc:25: 26:95:0e:60:6e:a1:c1:f3:5b:20:80:7b:e0:4d:9e: b9:06:2d:72:fe:6b:0b:d1:c9:59:5b:f6:68:e6:90: df:17:71:cc:ca:4c:ca:e3:f5:52:58:72:67:e3:fd: 07:a0:c2:78:0e:27:1e:d1:bf:ff:09:61:40:8d:27: 22:e0:5e:ec:ab:f4:fd:23:b1:d2:aa:29:fb:6c:f7: 30:0a:5a:5a:e5:eb:89:8b:91:05:11:0c:df:78:63: e7:0a:68:7b:d3:0a:61:41:35:fb:e6:3d:9d:ef:d7: 4c:fb:48:26:5f:56:33:bb:b5:68:91:88:03:f4:56: f4:32:17:9d:20:1b:62:1e:e6:6c:89:5d:30:c4:d1: ed:a4:85:b4:b3:bb:99:f1:11:35:3f:a1:f2:c4:37: dc:41:16:58:0c:f5:77:9f:76:64:98:1e:52:07:29: cb:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:BF:14:F5:A4:42:C1:8C:89:29:E3:15:F5:6A:9A:63:F3:91:4D:A1 X509v3 Authority Key Identifier: keyid:CD:89:A8:26:8E:B1:1E:33:0F:BD:44:C0:48:72:0D:13:25:C5:A6:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/0DFFB0D2989111EEB7938523C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:3fc0::/48 Signature Algorithm: sha256WithRSAEncryption 21:ea:5f:ac:78:22:53:c7:5e:28:a8:91:0d:76:bb:85:04:1c: 35:25:5d:3e:59:fb:0f:c7:f7:be:1b:d2:33:88:d2:e7:61:32: 05:a4:65:a4:70:ca:5b:0b:f3:17:dd:0a:b5:0a:66:f3:12:ae: 6d:e3:9a:56:56:54:14:cb:f7:2e:ef:c6:3f:61:92:b3:ae:f3: 40:b3:ab:df:10:bd:47:a4:73:fd:42:5e:f0:ad:8a:f3:5e:0b: 6c:44:a2:f1:6b:37:36:63:28:be:48:87:78:65:26:44:7c:75: 91:49:64:5e:e5:bf:28:42:fd:1a:19:8c:fd:9e:4d:c5:33:2b: 48:44:e2:9d:ca:31:89:bf:b7:5e:34:45:1e:a4:cf:98:4b:33: 68:f3:d3:49:34:c5:cb:94:3f:15:0e:69:fc:ba:05:20:37:89: e2:24:24:fc:b7:8e:22:05:e2:9a:bb:43:0b:03:12:57:7a:07: 7e:78:f5:15:6c:19:d4:a1:68:19:6c:ea:2d:04:58:31:ea:71: fa:63:2d:40:2c:e7:f5:17:97:ff:75:25:ba:cc:51:4f:ec:d9: bf:26:d3:90:08:bd:59:1c:97:86:e5:d4:56:fb:b0:8c:14:4d: 7b:50:a2:09:62:78:b8:e0:46:c5:7a:a0:a9:2b:44:f4:88:9f: 2b:dd:a8:10 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDI2MTExMC8GA1UEBRMoQ0Q4OUE4MjY4RUIxMUUzMzBGQkQ0NEMwNDg3MjBEMTMy NUM1QTYwQjAeFw0yMzEyMTIwMTUyMDdaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NzdiY2M3LTBmNWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYeAF+xz8H9IfxEldjuq16mnrI2zs/dYZ8kknqKRKFd8MSl9tS/+U/7xz6m+8X 8Ap3NCSZMTN94eq4cLzmJtdQEwhnzE7csKdsZxTjTKRxPoJxXY/3VbTcJSaVDmBu ocHzWyCAe+BNnrkGLXL+awvRyVlb9mjmkN8XcczKTMrj9VJYcmfj/QegwngOJx7R v/8JYUCNJyLgXuyr9P0jsdKqKfts9zAKWlrl64mLkQURDN94Y+cKaHvTCmFBNfvm PZ3v10z7SCZfVjO7tWiRiAP0VvQyF50gG2Ie5myJXTDE0e2khbSzu5nxETU/ofLE N9xBFlgM9XefdmSYHlIHKcunAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUHL8U9aRC wYyJKeMV9WqaY/ORTaEwHwYDVR0jBBgwFoAUzYmoJo6xHjMPvUTASHINEyXFpgsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0MjYxL0QwNjVCQzRDOTM0 MjExRUVBOEMxNTQ3OEM0RjlBRTAyL3pZbW9KbzZ4SGpNUHZVVEFTSElORXlYRnBn cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvelltb0pvNnhIak1QdlVUQVNISU5FeVhGcGdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDI2MS9EMDY1QkM0QzkzNDIxMUVFQThDMTU0NzhDNEY5QUUwMi8wREZGQjBEMjk4 OTExMUVFQjc5Mzg1MjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfM/wDANBgkqhkiG9w0BAQsFAAOCAQEAIepfrHgiU8de KKiRDXa7hQQcNSVdPln7D8f3vhvSM4jS52EyBaRlpHDKWwvzF90KtQpm8xKubeOa VlZUFMv3Lu/GP2GSs67zQLOr3xC9R6Rz/UJe8K2K814LbESi8Ws3NmMovkiHeGUm RHx1kUlkXuW/KEL9GhmM/Z5NxTMrSETincoxib+3XjRFHqTPmEszaPPTSTTFy5Q/ FQ5p/LoFIDeJ4iQk/LeOIgXimrtDCwMSV3oHfnj1FWwZ1KFoGWzqLQRYMepx+mMt QCzn9ReX/3UlusxRT+zZvybTkAi9WRyXhuXUVvuwjBRNe1CiCWJ4uOBGxXqgqStE 9IifK92oEA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:55 2024 by rpki-client on console-fra.rpki-client.org